Notes
  • Introduction
  • 應用程式
    • Azure
      • Logic App
      • web app
    • Android
    • Bower
    • Curl
    • DNS
    • Docker
    • Fail2ban
    • Git
    • GitLab-CI
    • GitLab
    • GPG
    • Home Assistant
    • IIS
    • Line Bot
    • Ngrok
    • Npm
    • PowerShell
    • Redis
    • SSH
    • Synology
    • VS Code
    • Web
  • 程式語言
    • C#
      • 遠端偵錯-Remote Debugger
      • 預設值表
      • .Net Core
    • JavaScript
    • PowerShell
  • 作業系統
    • Mac OS
    • Windows 10
    • Raspberry Pi
    • Ubuntu
  • 其他
    • SSL
    • Tools
Powered by GitBook
On this page
  • IIS Crypto Tool
  • 讓 IIS 網站保持運作狀態
  • 讓 IIS Express 外部存取
  • 403. Forbidden
  • 透過 URL Rewrite 來實作 cookie 重導
Edit on Git
  1. 應用程式

IIS

PreviousHome AssistantNextLine Bot

Last updated 1 year ago

IIS Crypto Tool

IIS Crypto is a free tool that gives administrators the ability to enable or disable protocols, ciphers, hashes and key exchange algorithms on Windows Server 2008, 2012, 2016 and 2019. It also lets you reorder SSL/TLS cipher suites offered by IIS, change advanced settings, implement Best Practices with a single click, create custom templates and test your website.

Download

讓 IIS 網站保持運作狀態

  1. 安裝「應用程式初始化(Application Initialization)」

  2. 網站的進階設定「預先載入已啟用」設為 True

  3. 應用程式集區的進階設定「啟動模式」設為 True

讓 IIS Express 外部存取

  1. 使用 netsh 以本機 IP 及 站台 port 加入 URL 保留區( access control list)

     netsh http add urlacl url=http://10.211.55.3:49486/ user=everyone

    刪除

     netsh http delete urlacl url=http://10.211.55.3:49486

  2. 修改專案底下 .vs/config

    Edit bindingInformation <ip-address>:<port>:<host-name>

         <site name="GSS.Duck.WebApi" id="2">
         <application path="/" applicationPool="Clr4IntegratedAppPool">
             <virtualDirectory path="/" physicalPath="Z:\Workspace\BizForm\duck\src\GSS.Duck.WebApi" />
         </application>
         <bindings>
             <binding protocol="http" bindingInformation="*:49486:localhost" />
 +           <binding protocol="http" bindingInformation="*:49486:10.211.55.4" />
         </bindings>
     </site>

  3. 開啟防火牆

     netsh advfirewall firewall add rule name="Demo IIS Express" protocol=TCP dir=in localport=49486 action=allow

403. Forbidden

Folder permissions for web application

Folder add permission User Name: IIS AppPool\ApplicationPoolName

透過 URL Rewrite 來實作 cookie 重導

<rewrite>
    <rules>
        <!-- Rule to conditionally remove "backend" based on a cookie -->
        <rule name="Conditional Remove Backend from URL" stopProcessing="true">
            <match url="^backend/(.*)" ignoreCase="true" />
            <conditions>
                <add input="{HTTP_COOKIE}" pattern="x-ms-routing-name=self" />
            </conditions>
            <action type="Rewrite" url="staging/{R:1}" />
        </rule>

        <!-- Rules for cookie-based routing to staging and preview -->
        <rule name="Route to Staging" stopProcessing="true">
            <match url="^backend/(.*)" />
            <conditions>
                <add input="{HTTP_COOKIE}" pattern="x-ms-routing-name=staging" />
            </conditions>
            <action type="Rewrite" url="staging/{R:1}" />
        </rule>

        <rule name="Route to Preview" stopProcessing="true">
            <match url="^backend/(.*)" />
            <conditions>
                <add input="{HTTP_COOKIE}" pattern="x-ms-routing-name=preview" />
            </conditions>
            <action type="Rewrite" url="preview/{R:1}" />
        </rule>

        <rule name="Route to Production" stopProcessing="true">
            <match url="^backend/(.*)" />
            <conditions>
                <add input="{HTTP_COOKIE}" pattern="x-ms-routing-name=production" />
            </conditions>
            <action type="Rewrite" url="production/{R:1}" />
        </rule>
    </rules>
</rewrite>
image
image
image