This forum has been moved here:
Helicon Tech Community Forum

ISAPI_Rewrite 3.0 (Forum Locked Forum Locked)
 Helicon Tech : ISAPI_Rewrite 3.0
Subject Topic: 403 Forbidden after installing
Author
Message |
Guests
Guest


Joined: 01 October 2003
Online Status: Online
Posts: -160
Posted: 15 February 2012 at 2:32am

Hello,

we have just downloaded and installed the ISAPI_Rewrite to test the filter with a means to purchase it.

We had it previously on a 32 bit server and purchased a license but realize now we need to purchase another license which is fine if we can get it working.

We are now running Windows 2008 R2 with IIS 7.5 (64-bit) and installed the ISAPI msi for 64-bit no problems with the installation.

However, now we only get 403 forbidden errors for the domain. (www.123xlsx.com)

The website (123XLSX) was set up in IIS and has its own application pool (123XLSX).

We imported the 2.0 Http.ini file into the converter and we saved the new output and put it in the directory with security privileges to:

SYSTEM (Full Control)
NETWORK SERVICE (Modify, Read & execute, Read, Write)

Why are we getting no access and only 403 errors now in the browser? Is there some missing permission?

Please Please help me as I must admit I thought this was a simple installation but I don't understand why no pages are now being shown.

Thank you for any help and assistance,
Wendy

Here is the complete Http.ini output from the 2.0 imported file.

 

[ISAPI_Rewrite]


RewriteCond Host: ^123xlsx\.com
RewriteRule (.*) http\://www\.123xlsx\.com$1 [I,RP]

RewriteRule /excel-templates/(\d+)\.htm /excel-templates/detail.asp\?ProductID=$1 [I,L]
RewriteRule /excel-dashboards/(\d+)\.htm /excel-dashboards/detail.asp\?ProductID=$1 [I,L]
RewriteRule /fonts/(\d+)\.htm /fonts/fonts-detail.asp\?ProductID=$1 [I,L]
RewriteRule /fonts/([^.]+)\.htm /fonts/fonts-family-detail.asp\?family=$1 [I,L]


#spambots
RewriteCond User-Agent: (?:Alexibot|aipbot|Art-Online|asterias|asterias/2.0|baiduspider|BackDoorbot|BecomeBot|Black.Hole|BlackWidow|BlowFish|botALot|BuiltbotTough|Bullseye|BunnySlippers|CazoodleBot/Nutch-0.9-dev|Cegbfeieh|Cheesebot|CherryPicker|ChinaClaw|CopyRightCheck|cosmos|Crescent|Custo|DISCo|DittoSpyder|DownloadsDemon|eCatch|EirGrabber|EmailCollector|EmailSiphon|EmailWolf|EroCrawler|ExpresssWebPictures|Exabot|Exabot/3.0|ExtractorPro|EyeNetIE|FlashGet|Foobot|FrontPage|Gaisbot/3.0|Gaisbot/3.0+|GetRight|GetWeb!|Go-Ahead-Got-It|Go!Zilla|GrabNet|Grafula|Harvest|hloader|HMView|httplib|HTTrack|humanlinks|ImagesStripper|ImagesSucker|IndysLibrary|Infonavirobot|InterGET|Internet\sNinja|irlbot/2.0|Jennybot|JetCar|JOC\sWeb\sSpider|Jyxobot/1|Kenjin.Spider|Keyword.Density|larbin|LeechFTP|Lexibot|linkwalker|libWeb/clsHTTP|LinkextractorPro|linksmanager_bot|inksmanager|http://linksmanager.com/linkchecker.html|LinkScan/8.1a.Unix|LinkWalker|lwp-trivial|mail.ru/1.0|Mass\sDownloader|Mata.Hari|Microsoft.URL|MIDown\stool|MIIxpc|Mister.PiX|Mister\sPiX|mj12bot|moget|Mozilla/3.Mozilla/2.01|Mozilla.*NEWT|Navroad|NearSite|NetAnts|NetMechanic|NetSpider|Net\sVampire|NetZIP|nicebot|NICErsPRO|NPbot|Octopus|Offline.Explorer|Offline\sExplorer|Offline\sNavigator|Openfind|Pagerabber|Papa\sFoto|page_verifier|pavuk|pcBrowser|Program\sShareware\s1|ProPowerbot/2.14|ProWebWalker|ProWebWalker|psbot/0.1|psycheclone|QueryN.Metasearch|RealDownload|ReGet|RepoMonkey|RMA|sbider|scspider/0.2|SiteSnagger|SlySearch|SmartDownload|Spankbot|spanner|Superbot|SuperHTTP|Surfbot|surveybot/2.3|suzuran|Szukacz/1.4|tAkeOut|Teleport|Teleport\sPro|Telesoft|The.Intraformant|TheNomad|TightTwatbot|Twiceler|Titan|toCrawl/UrlDispatcher|toCrawl/UrlDispatcher|True_robot|turingos|Turnitinbot/1.5|Twiceler|URLy.Warning|VCI|VoilaBot|VoidEYE|voyager/1.0|WebAuto|WebBandit|WebCopier|WebEMailExtrac.*|WebEnhancer|WebFetch|WebGo\sIS|Web.Image.Collector|Web\sImage\sCollector|WebLeacher|WebmasterWorldForumbot|WebReaper|WebSauger|Website\seXtractor|Website.Quester|Website\sQuester|Webster.Pro|WebStripper|Web\sSucker|WebWhacker|WebZip|Wget|Widow|wire|[Ww]eb[Bb]andit|WWW-Collector-E|WWWOFFLE|Xaldon\sWebSpider|Xenu's|yandex|Yandex/1.01.001|Zeus).*
RewriteRule .* /404.asp

#nasty ips

RewriteCond %REMOTE_ADDR 41\.200\..*\..*
RewriteRule (.*) $1 [F]

RewriteCond %REMOTE_ADDR 41\.201\..*\..*
RewriteRule (.*) $1 [F]

RewriteCond %REMOTE_ADDR 110\.172\.31\..*
RewriteRule (.*) $1 [F]

RewriteCond %REMOTE_ADDR 202\.88\.246\..*
RewriteRule (.*) $1 [F]

RewriteCond %REMOTE_ADDR 202\.88\.247\..*
RewriteRule (.*) $1 [F]

RewriteCond %REMOTE_ADDR 202\.88\.248\..*
RewriteRule (.*) $1 [F]

RewriteCond %REMOTE_ADDR 202\.88\.249\..*
RewriteRule (.*) $1 [F]

RewriteCond %REMOTE_ADDR 202\.88\.250\..*
RewriteRule (.*) $1 [F]

RewriteCond %REMOTE_ADDR 221\.134\..*\..*
RewriteRule (.*) $1 [F]

RewriteCond %REMOTE_ADDR 222\.124\.18\..*
RewriteRule (.*) $1 [F]

RewriteCond %REMOTE_ADDR 219\.232\.2(?:[4][0-9]|[5][0-5])\..*
RewriteRule (.*) $1 [F]

RewriteCond %REMOTE_ADDR 203\.187\.1(?:9[2-9]|2(?:[0-4][0-9]|5[0-5]))\..*
RewriteRule (.*) $1 [F]

RewriteCond %REMOTE_ADDR 210\.211\.1(?:2[8-9]|[3456789][0-9]|2(?:[01][0-9]|[12345][0-9]))\..*
RewriteRule (.*) $1 [F]

RewriteCond %REMOTE_ADDR 125\.63\.(?:6[4-9]|[789][0-9]|1(?:[01][0-9]|2[0-7]))\..*
RewriteRule (.*) $1 [F]

RewriteCond %REMOTE_ADDR 125\.163\(.?:6[4-9]|[789][0-9])\..*
RewriteRule (.*) $1 [F]


RewriteCond  Referer: .+
RewriteCond  Referer: (?!http://(www\.)?123xlsx\.com).*
RewriteRule  .*\.(gif|jpg)  /404.asp [I,L]


# Block external access to the httpd.ini and httpd.parse.errors files
RewriteRule /httpd(?:\.ini|\.parse\.errors).* / [F,I,O]
# Block external access to the Helper ISAPI Extension
RewriteRule .*\.isrwhlp / [F,I,O]

Back to Top
 
Guests
Guest


Joined: 01 October 2003
Online Status: Online
Posts: -160
Posted: 15 February 2012 at 4:01am

SORRY what I posted was the 2.0 output not the 3.0 output. (I'm a bit stressed because the site has been down now for 2 days and my boss is really stressing me about it)

HERE is the 3.0 Http.ini file created from the converter


RewriteEngine On
RewriteCompatibility2 On
RepeatLimit 200
RewriteBase
# unsupported directive: [ISAPI_Rewrite]


RewriteCond %{HTTP:Host} ^123xlsx\.com$
RewriteRule (.*) http\://www\.123xlsx\.com$1 [NC,R=301]

RewriteRule ^/excel-templates/(\d+)\.htm$ /excel-templates/detail.asp\?ProductID=$1 [NC,L]
RewriteRule ^/excel-dashboards/(\d+)\.htm$ /excel-dashboards/detail.asp\?ProductID=$1 [NC,L]
RewriteRule ^/fonts/(\d+)\.htm$ /fonts/fonts-detail.asp\?ProductID=$1 [NC,L]
RewriteRule ^/fonts/([^.]+)\.htm$ /fonts/fonts-family-detail.asp\?family=$1 [NC,L]


# spambots
RewriteCond %{HTTP:User-Agent} ^(?:Alexibot|aipbot|Art-Online|asterias|asterias/2.0|baiduspider|BackDoorbot|BecomeBot|Black.Hole|BlackWidow|BlowFish|botALot|BuiltbotTough|Bullseye|BunnySlippers|CazoodleBot/Nutch-0.9-dev|Cegbfeieh|Cheesebot|CherryPicker|ChinaClaw|CopyRightCheck|cosmos|Crescent|Custo|DISCo|DittoSpyder|DownloadsDemon|eCatch|EirGrabber|EmailCollector|EmailSiphon|EmailWolf|EroCrawler|ExpresssWebPictures|Exabot|Exabot/3.0|ExtractorPro|EyeNetIE|FlashGet|Foobot|FrontPage|Gaisbot/3.0|Gaisbot/3.0+|GetRight|GetWeb!|Go-Ahead-Got-It|Go!Zilla|GrabNet|Grafula|Harvest|hloader|HMView|httplib|HTTrack|humanlinks|ImagesStripper|ImagesSucker|IndysLibrary|Infonavirobot|InterGET|Internet\sNinja|irlbot/2.0|Jennybot|JetCar|JOC\sWeb\sSpider|Jyxobot/1|Kenjin.Spider|Keyword.Density|larbin|LeechFTP|Lexibot|linkwalker|libWeb/clsHTTP|LinkextractorPro|linksmanager_bot|inksmanager|http://linksmanager.com/linkchecker.html|LinkScan/8.1a.Unix|LinkWalker|lwp-trivial|mail.ru/1.0|Mass\sDownloader|Mata.Hari|Microsoft.URL|MIDown\stool|MIIxpc|Mister.PiX|Mister\sPiX|mj12bot|moget|Mozilla/3.Mozilla/2.01|Mozilla.*NEWT|Navroad|NearSite|NetAnts|NetMechanic|NetSpider|Net\sVampire|NetZIP|nicebot|NICErsPRO|NPbot|Octopus|Offline.Explorer|Offline\sExplorer|Offline\sNavigator|Openfind|Pagerabber|Papa\sFoto|page_verifier|pavuk|pcBrowser|Program\sShareware\s1|ProPowerbot/2.14|ProWebWalker|ProWebWalker|psbot/0.1|psycheclone|QueryN.Metasearch|RealDownload|ReGet|RepoMonkey|RMA|sbider|scspider/0.2|SiteSnagger|SlySearch|SmartDownload|Spankbot|spanner|Superbot|SuperHTTP|Surfbot|surveybot/2.3|suzuran|Szukacz/1.4|tAkeOut|Teleport|Teleport\sPro|Telesoft|The.Intraformant|TheNomad|TightTwatbot|Twiceler|Titan|toCrawl/UrlDispatcher|toCrawl/UrlDispatcher|True_robot|turingos|Turnitinbot/1.5|Twiceler|URLy.Warning|VCI|VoilaBot|VoidEYE|voyager/1.0|WebAuto|WebBandit|WebCopier|WebEMailExtrac.*|WebEnhancer|WebFetch|WebGo\sIS|Web.Image.Collector|Web\sImage\sCollector|WebLeacher|WebmasterWorldForumbot|WebReaper|WebSauger|Website\seXtractor|Website.Quester|Website\sQuester|Webster.Pro|WebStripper|Web\sSucker|WebWhacker|WebZip|Wget|Widow|wire|[Ww]eb[Bb]andit|WWW-Collector-E|WWWOFFLE|Xaldon\sWebSpider|Xenu's|yandex|Yandex/1.01.001|Zeus).*$
RewriteRule .* /404.asp


# nasty ips

RewriteCond %{REMOTE_ADDR} ^41\.200\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^120\.61\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^120\.62\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^120\.63\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^121\.12\.106\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^121\.54\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^121\.240\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.21\.147\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.46\.22\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.46\.23\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.47\.124\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.54\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.56\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.58\.102\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.88\.254\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.88\.255\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.134\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.137\.157\.58$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.148\.192\.8$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.148\.192\.9$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.148\.192\.10$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.173\.208\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.173\.209\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.173\.221\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.173\.222\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^202\.173\.223\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^203\.129\.205\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^203\.129\.206\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^203\.129\.207\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^203\.194\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^203\.195\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^203\.196\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^203\.197\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^203\.198\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^203\.199\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^203\.200\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^210\.212\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^210\.214\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^212\.14.\.224\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^212\.14.\.225\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^213\.6.\.185\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^213\.198.\.207\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^216\.198\.210\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^216\.236\.203\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^217\.66\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^217\.218\.80\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^219\.64\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^220\.224\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^220\.225\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^220\.226\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^220\.227\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^221\.134\..*\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^222\.124\.18\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^61\.11\.(?:3[2-9]|[456789][0-9]|1(?:[01][0-9]|2[0-7]))\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^219\.232\.2(?:[4][0-9]|[5][0-5])\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^203\.187\.1(?:9[2-9]|2(?:[0-4][0-9]|5[0-5]))\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^210\.211\.1(?:2[8-9]|[3456789][0-9]|2(?:[01][0-9]|[12345][0-9]))\..*$
RewriteRule (.*) $1 [F]

RewriteCond %{REMOTE_ADDR} ^125\.63\.(?:6[4-9]|[789][0-9]|1(?:[01][0-9]|2[0-7]))\..*$
RewriteRule (.*) $1 [F]

# # Line 1535: (Unknown expression) RewriteCond %REMOTE_ADDR 125\.163\(.?:6[4-9]|[789][0-9])\..*
RewriteRule (.*) $1 [F]


RewriteCond %{HTTP:Referer} ^.+$
RewriteCond %{HTTP:Referer} ^(?!http://(www\.)?123xlsx\.com).*$
RewriteRule ^.*\.(gif|jpg)$ /404.asp [NC,L]


# Block external access to the httpd.ini and httpd.parse.errors files
RewriteRule ^/httpd(?:\.ini|\.parse\.errors).*$ / [NC,F,O]
# Block external access to the Helper ISAPI Extension
RewriteRule ^.*\.isrwhlp$ / [NC,F,O]
Back to Top
 
Guests
Guest


Joined: 01 October 2003
Online Status: Online
Posts: -160
Posted: 15 February 2012 at 6:53am

Have to say guys that I am a bit amazed by this as its a brand new server with Windows 2008 R2 just installed.

If it's this difficult to get the filter working then maybe it's better for us to just abandon your software. Our site is also running the Hotlink Blocker which after reading through your site documentation means that for the new server we would also need to purchase a license for Ape which has took over from Hotlink Blocker under the 64-bit platform.

But if it is this difficult to ISAPI running and with no response from support or from my ticket I don't see how you can expect we purchase a license for ISAPI_Rewrite and a license for Ape.

We had no problems on the 32-bit server but it seems hard for my boss Damon, to payout another $200 for software from you when there's no feedback in getting it running.

Really disappointed because we had built our site and links up around your technology :(

Wendy



Edited by WendyF - 15 February 2012 at 6:54am
Back to Top
 
Guests
Guest


Joined: 01 October 2003
Online Status: Online
Posts: -160
Posted: 15 February 2012 at 1:16pm

I don't know if anyone looks at this forum but I have been working with this all day and what I now know is.

If I remove all database content from the index page the site loads and I can see that ISAPI is working because the http:// gets redirected to http://www.

BUT

If I have a database connection and content on the page then I get:

403 - Forbidden: Access is denied.

You do not have permission to view this directory or page using the credentials that you supplied.

Does anyone look at this forum or have any idea why this is happening?

This did not happen under ISAPI_Rewrite 2.0 in 32-bit Window 2003

So why is this happening with ISAPI_Rewrite 3.0 in 64-bit Windows 2008 R2?

Anyone?  Please!!!!!!

Wendy

Back to Top
 

Sorry, you can NOT post a reply.
This forum has been locked by a forum administrator.

Printable version Printable version