https://www.betaarchive.com/wiki/index.php?title=Microsoft_KB_Archive/248043&feed=atom&action=history
Microsoft KB Archive/248043 - Revision history
2024-03-28T20:51:58Z
Revision history for this page on the wiki
MediaWiki 1.39.3
https://www.betaarchive.com/wiki/index.php?title=Microsoft_KB_Archive/248043&diff=136419&oldid=prev
3155ffGd: importing KB archive
2020-07-18T16:13:57Z
<p>importing KB archive</p>
<p><b>New page</b></p><div><div id="nsbanner"><br />
<br />
<div id="bannerrow1"><br />
<br />
{|<br />
| Knowledge Base<br />
|<br />
|}<br />
<br />
<br />
</div><br />
<div id="TitleRow"><br />
<br />
= <span id="KB248043"></span>Error Message: 403.6 - Forbidden: IP address rejected =<br />
<br />
<br />
</div><br />
<br />
</div><br />
<div id="nstext" valign="BOTTOM"><br />
<br />
Article ID: 248043<br />
<br />
Article Last Modified on 12/3/2007<br />
<br />
<br />
-----<br />
<br />
APPLIES TO<br /><br />
<br /><br />
<br />
* Microsoft Internet Information Server 4.0<br />
* Microsoft Internet Information Services 5.0<br />
* Microsoft Internet Information Services 6.0<br />
<br />
<br />
-----<br />
<br />
<div class="notice_section"><br />
<br />
This article was previously published under Q248043<br />
<br />
</div><br />
<div class="notice_section"><br />
<br />
We strongly recommend that all users upgrade to Microsoft Internet Information Services (IIS) version 6.0 running on Microsoft Windows Server 2003. IIS 6.0 significantly increases Web infrastructure security. For more information about IIS security-related topics, visit the following Microsoft Web site:<br />
<div class="indent"><br />
<br />
http://www.microsoft.com/technet/security/prodtech/IIS.mspx<br />
<br />
<br />
</div><br />
<br />
</div><br />
<div class="symptoms_section"><br />
<br />
== SYMPTOMS ==<br />
<br />
When connecting to Internet Information Services using a Web browser, you may receive the following error message:<br />
<div class="errormessage"><br />
<br />
HTTP 403.6 - Forbidden: IP address rejected<br />
<br />
</div><br />
<br />
</div><br />
<div class="cause_section"><br />
<br />
== CAUSE ==<br />
<br />
Each client has a unique IP address. If the server defines a list of IP addresses that are not allowed to access the site and the IP address you are using is on this list, you will receive the error message.<br /><br />
<br /><br />
This is a feature that grants or denies specific users access to a Web site, directory, or file.<br />
<br />
</div><br />
<div class="resolution_section"><br />
<br />
== RESOLUTION ==<br />
<br />
To resolve this problem, follow these steps.<br />
# Using the Internet Service Manager (Microsoft Management Console), open the Internet Information Server (IIS) snap-in and select the Web site reporting the 403.6 error. Right-click the Web site, virtual directory, or file where the error is occurring. Click '''Properties''' to display the property sheet for that item.<br />
# Select the appropriate '''Directory Security''' or '''File Security''' property page. Under '''IP Address and Domain Name Restrictions''', click '''Edit'''.<br />
# In the '''IP Address and Domain Name Restrictions''' dialog box, if the '''Denied Access''' option is selected, then add the IP address, network ID, or domain of the computer that requires access to the exceptions list.<br /><br />
<br /><br />
In the '''IP Address and Domain Name Restrictions''' dialog box, if the '''Granted Access''' option is selected, then remove the IP address, network ID, or domain of the computer that requires access to the exceptions list.<br />
<br />
'''Important'''<br />
* When you set security properties for a specific Web site, you automatically set the same security properties for directories and files belonging to that site, unless the security properties of the individual directories and files have been previously set.<br />
* Your Web server will prompt you for permission to reset the properties of individual directories and files when you attempt to set security properties for your Web site. If you choose to reset these properties, your previous security settings will be replaced by the new settings. The same condition applies when you set security properties for a directory containing subdirectories or files with previously set security properties.<br />
<br />
'''Notes'''<br />
<ul><br />
<li>By default, some sites are only granted access from the IP address 127.0.0.1, which corresponds to the computer name ''localhost'' and is considered a different address/name than the NetBIOS or fully qualified domain name (FQDN) of the Web server. To access a site restricted to ''localhost'', you must be at the console of the computer with the localhost restriction.</li><br />
<li>Computers accessing your server across proxy servers will appear to have the IP address of the proxy server.</li><br />
<li>Restricting by domain name is not recommended because it decreases the performance of your Web server by forcing the Web server to perform a reverse DNS lookup for each connection to that site. In addition to increasing the load on the Web server, reverse lookups can also result in unexpected denials. For more information, click the following article number to view the article in the Microsoft Knowledge Base:<br />
<div class="indent"><br />
<br />
<p>[[../227943|227943]] How Internet Information Services (IIS) handles reverse lookup failures</p><br />
<br />
</div></li></ul><br />
<br />
<br />
</div><br />
<div class="moreinformation_section"><br />
<br />
== MORE INFORMATION ==<br />
<br />
If the product documentation was installed with IIS, one of the following links will be available when viewed on the IIS server:<br />
<div class="indent"><br />
<br />
'''Internet Information Services 5.0 Documentation'''<br /><br />
http://localhost/iishelp/iis/misc/default.asp?jumpurl=../htm/core/iigdasc.htm<br /><br />
<br /><br />
'''Internet Information Server 4.0 Documentation'''<br /><br />
http://localhost/iishelp/iis/htm/core/igdasc.htm<br />
<br />
<br />
</div><br />
<br /><br />
For more information, click the following article numbers to view the articles in the Microsoft Knowledge Base:<br />
<div class="indent"><br />
<br />
[[../172218|172218]] Microsoft TCP/IP host name resolution order<br />
<br />
<br />
</div><br />
<div class="indent"><br />
<br />
[[../163391|163391]] Troubleshooting problems communicating with a server on the Internet using a dial-up networking connection in Windows 2000, Windows NT 4.0, or Windows NT<br />
<br />
<br />
</div><br />
<br />
</div><br />
<br /><br />
<br />
Additional query words: iis 5<br />
<br />
Keywords: kbprb kbprod2web KB248043<br />
<br />
<div class="footer"><br />
<br />
<br /><br />
<br />
<br />
-----<br />
<br />
[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]<br />
<br />
<span>© Microsoft Corporation. All rights reserved.</span><br />
<br />
<br />
</div><br />
<br />
</div></div>
3155ffGd