互联网与内联网 [英] Internet vs Intranet

问题描述

全部，

我正在开展一个项目，要求公司客户登录我们的网站

。

但是员工他们不想登录的公司。但是

a很多我依赖登录成功的asp页面

因为它返回了一些关于用户权限等的值。


我因此允许公司员工通过登录并访问

所有内容！

但要做到这一点，我需要在幕后有效设置登录到

数据库。

我以为我可以将每个请求的IP地址陷入我们的IIS服务器

并基于IP地址我将强制登录或者如果来自公司

本身我可以在幕后登录。


这是一个很好的方法>

我正在尝试使用servervariables（REMOTE_ADDR）和

ServerVaraibles（REMOTE_HOST）

都只返回IP地址。

我实际上可以得到服务器名称的名称（发出

请求的服务器）这种方式很容易判断它是内联网还是互联网


任何一个ughts？


谢谢

Jawahar Rajan

All,
I am working on a project that requires the companies clients to login to
our web site.
however for employees of the companies they do not want to have a login. But
a lot of the asp pages that I have depend on the login being successful
because it return some values about the user privileges etc.

I am thus allowing company employees to by pass the login and get access to
everything!.
But to do this I need effectively set up behind the scene login to the
database.
I thought that I could trap the IP address of each request to our IIS server
and based on the IP address I will force a login or if from the company
itself I can do a behind the scene login.

Is this a good approach>
I am trying servervariables("REMOTE_ADDR") and
ServerVaraibles("REMOTE_HOST")
both return only IP Address.
can I actually get the name of the server name ( The server that makes the
request) this way It is easy to tell if it is Intranet or internet

Any thoughts?

Thanks
Jawahar Rajan

推荐答案

您的解决方案可能不会如果您的组织使用DHCP，则最好。例如，如果承包商进入您的组织并将他们的笔记本电脑连接到您的网络，那该怎么办？他们会得到与员工相同的服务器名称，是吗？


这个怎么样？我假设所有员工都在早上登录到工作站，然后将其作为域用户进行身份验证。

根据您的内部网是否位于单独的域中，您可以创建包含所有内容的文件夹你的网页集成的Windows

经过身份验证的而不是匿名访问。然后将您的Web服务器设置为允许域用户来自他们的工作站域。


这将锁定承包商的情况，因为，至少在我们的组织中，我们不给承包商域登录帐户

由于缺少身份验证而阻止他们访问任何服务器。所有他们都可以访问的是通过代理的互联网

服务器。


希望有所帮助。


Andy Sutorius
www.sutorius.com

Your solution may not be the best if your organization is using DHCP. For instance what if a contractor came into your organization and
connected their laptop to your network? They would get the same server name as the employees, yes?

How about this? I assume all employees are logging onto the workstations in the morning which then authenticates them as "Domain Users".
Depending on if you have your intranet in a seperate domain you could make the folder with all of you webpages "Integrated Windows
Authenticated" instead of "Anonymous Access". Then set your web server to allow "Domain Users" from their workstation domain.

That would lock out the contractor scenario because, at least in our organization, we don''t give contractors domain logon accounts which
prevents them from accessing any of the servers due to lack of authentication. All they have access to is the internet through a proxy
server.

Hope that helps.

Andy Sutorius
www.sutorius.com

让您的员工访问您的内部网，转到
http：// namewithoutanydotsinit 并关闭该站点的匿名访问。

当用户使用内部地址在内部访问该站点时，IE将发送用户的网络登录凭据自动。人们不会

必须登录，服务器才会知道他们是谁。


雷在家


Jawahar Rajan < JR **** @ nc.rr.com>在消息中写道

news：5O ********************* @ twister.southeast.rr。 com ...

Have your employees access your intranet by going to
http://namewithoutanydotsinit and turn off anonymous access for the site.
When the users access the site internally with the internal address, IE will
send the users'' network logon credentials automatically. People will not
have to log in, and the server will know who they are.

Ray at home

"Jawahar Rajan" <jr****@nc.rr.com> wrote in message
news:5O*********************@twister.southeast.rr. com...

全部，
我正在开展一个项目，要求公司客户登录我们的网站。
但对于公司的员工他们不想登录。
但是我的很多asp页面依赖于登录成功
因为它返回了一些关于用户权限等的值。

我因此允许公司员工通过登录并获取访问
的所有内容！
但要做到这一点，我需要在现场后有效设置登录到
数据库。
我以为我可以陷阱我们的IIS
服务器的每个请求的IP地址，并根据我将强制登录的IP地址，或者如果来自公司
本身我可以在幕后登录。
我正在尝试servervariables（REMOTE_ADDR）和
ServerVaraibles（REMOTE_HOST）
两者都只返回IP地址。
我可以吗？实际上得到服务器名称的名称（发出
请求的服务器）这样很容易判断它是Intranet还是互联网

有什么想法吗？

谢谢
Jawahar Rajan

All,
I am working on a project that requires the companies clients to login to
our web site.
however for employees of the companies they do not want to have a login. But a lot of the asp pages that I have depend on the login being successful
because it return some values about the user privileges etc.

I am thus allowing company employees to by pass the login and get access to everything!.
But to do this I need effectively set up behind the scene login to the
database.
I thought that I could trap the IP address of each request to our IIS server and based on the IP address I will force a login or if from the company
itself I can do a behind the scene login.

Is this a good approach>
I am trying servervariables("REMOTE_ADDR") and
ServerVaraibles("REMOTE_HOST")
both return only IP Address.
can I actually get the name of the server name ( The server that makes the
request) this way It is easy to tell if it is Intranet or internet

Any thoughts?

Thanks
Jawahar Rajan

" Ray at<％= sLocation％>"写道：

"Ray at <%=sLocation%>" wrote:

...关闭该网站的匿名访问。当用户使用内部地址在内部访问网站时，IE将自动发送
用户的网络登录凭据。人们不会登录，服务器会知道他们是谁。

...turn off anonymous access for the site. When the users access
the site internally with the internal address, IE will send the
users'' network logon credentials automatically. People will not
have to log in, and the server will know who they are.

我不同意。

-

戴夫安德森


未经请求的商业电子邮件将以

I beg to differ.
--
Dave Anderson

Unsolicited commercial email will be read at a cost of

这篇关于互联网与内联网的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！