Do it in code, <cfif cgi.remote_addr neq "127.0.0.1"><cfabort></cfif>
Of course you may want to add a couple others then you could use listFind instead of a simple string compare. Steve -----Original Message----- From: Asaf Peleg [mailto:a...@locusenergy.com] Sent: Friday, October 01, 2010 2:14 PM To: cf-talk Subject: Restricting CFM file access Hi, I have a ColdFusion server running over IIS on a Win2k3 machine and I wanted to know how to restrict someone from running a CFM file unless it is executed locally or within my firewall. For instance, imagine someone executes http://mywebsite.com/test.cfm in their browser. Is there anyway to restrict access to test.cfm either through CF Admin or is this an IIS issue? Thanks, Asaf ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:337755 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm