iis 6 - Using Powershell to Manipulate IP Restrictions on IIsWebVirtualDir -


having trouble using powershell manipulate ip restrictions on iiswebvirtualdir (virtual directories).

however, have code in vbs, simple matter :)

code in vbs:

 sub add2iprlist(websiteadsi, strip2add, strip2addsubnet)     set webrootobj = getobject(websiteadsi) '"iis://localhost/w3svc/2/root/testvdir"     set ipsecobj = webrootobj.ipsecurity     if(ipsecobj.grantbydefault)then         iplist = ipsecobj.ipdeny     else         iplist = ipsecobj.ipgrant     end if      redim preserve iplist (ubound(iplist)+1)     'resize local copy of iplist array currentsize+1     iplist(ubound(iplist))=strip2add&","&strip2addsubnet     'add entry end of array       if(ipsecobj.grantbydefault)then         ipsecobj.ipdeny = iplist     else         ipsecobj.ipgrant = iplist     end if      webrootobj.ipsecurity = ipsecobj     webrootobj.setinfo        'apply setttings on server.     set ipsecobj = nothing     set webrootobj = nothing     end sub

attempt 1 in powershell: object returns, of strange type.

ps c:\> $vdir=[adsi]"iis://localhost/w3svc/2/root/testvdir";([adsi]$vdir).ipsecurity; system.__comobject

attempt 2 in powershell: object doesnt return

ps c:\> $vdir = get-wmiobject -namespace 'root\microsoftiisv2' -class iiswebvirtualdir |where ($_.name).contains("testvdir")};$vdir.ipsecurity; ps c:\>

anyone know how either 1) deal system.__comobject when using adsi in powershell or 2) have idea how work ipsecurity object in iis6 via wmi provider in powershell?

additionally:

i found way pull , modify iisipsecuritysetting object associated w3svc/2/root/testvdir using following code.

param([string]$computer, [string]$w3svcpath, [string]$strip2add, [string]$strip2addsubnet) <# $w3svcpath = "w3svc/2/root/testvdir" #>; $ipsecurity = get-wmiobject -authentication packetprivacy -class iisipsecuritysetting -computername $computer -namespace 'root\microsoftiisv2' | {($_.name).equals("$w3svcpath")}; if($ipsecurity.grantbydefault){$gd="deny"}else{$gd="grant"} if($ipsecurity.grantbydefault){$iplist=$ipsecurity.ipdeny;}else{$iplist=$ipsecurity.ipgrant;}; "ipsecurity.grantbydefault=$gd($iplist)"; $iplist=$iplist+"$strip2add, $strip2addsubnet"; if($ipsecurity.grantbydefault){$ipsecurity.ipdeny=$iplist;}else{$ipsecurity.ipgrant=$iplist;}; if($ipsecurity.grantbydefault){$iplist=$ipsecurity.ipdeny;}else{$iplist=$ipsecurity.ipgrant;}; "($iplist)";

i cant seem find way set object metabase apply change. in vbs ipsecurity object referenced directly within webrootobj , .setinfo() function used. however, we're going wmi object class directly, , references set within object itself, cant seem find function set within iisipsecuritysettings class.

since cant find reference ipsecurity property/object within webrootobj when using "attempt 2 in powershell" above, uses wmi, i'm not sure direction move in next.

any thoughts?

this can tricky doable using system.directoryservices. i'll give 2 examples, 1 set value of grantbydefault true or false, other show how add ip addresses ipdeny or ipgrant list.

1. set grantbydefault value

$iisobject = new-object system.directoryservices.directoryentry("iis://localhost/w3svc/2/root/testvdir") $ipsec = $iisobject.properties["ipsecurity"].value  # need pass values 1 element object arrays [object[]] $grantbydefault = @() $grantbydefault += , $false            # <<< we're setting false  $ipsec.gettype().invokemember("grantbydefault", $bindingflags, $null, $ipsec, $grantbydefault);  $iisobject.properties["ipsecurity"].value = $ipsec $iisobject.commitchanges()

2. add ip address ipdeny or ipgrant lists

$iisobject = new-object system.directoryservices.directoryentry("iis://localhost/w3svc/2/root/testvdir") $ipsec = $iisobject.properties["ipsecurity"].value $bindingflags = [reflection.bindingflags] "public, instance, getproperty" $isgrantbydefault = $ipsec.gettype().invokemember("grantbydefault", $bindingflags, $null, $ipsec, $null);  # set iplist need first if($isgrantbydefault) {     $iplist = $ipsec.gettype().invokemember("ipdeny", $bindingflags, $null, $ipsec, $null); } else {     $iplist = $ipsec.gettype().invokemember("ipgrant", $bindingflags, $null, $ipsec, $null); }  # add single computer list: $iplist = $iplist + "10.0.0.1, 255.255.255.255"  # important, need pass object array of 1 element containing our iplist array [object[]] $iparray = @() $iparray += , $iplist  # update $bindingflags = [reflection.bindingflags] "public, instance, setproperty" if($isgrantbydefault) {     $iplist = $ipsec.gettype().invokemember("ipdeny", $bindingflags, $null, $ipsec, $iparray); } else {     $iplist = $ipsec.gettype().invokemember("ipgrant", $bindingflags, $null, $ipsec, $iparray); }  $iisobject.properties["ipsecurity"].value = $ipsec $iisobject.commitchanges()

this tested powershell 2.0 on windows 2003.

hopefully not late save day.


Comments

Post a Comment

Popular posts from this blog

c# - SharpSVN - How to get the previous revision? -

i trying find efficient way previous revision of file text comparison using sharpsvn. using (svnclient c = new svnclient()) { c.authentication.defaultcredentials = new networkcredential( configurationmanager.appsettings.get("svnserviceusername") , configurationmanager.appsettings.get("svnservicepassword") , configurationmanager.appsettings.get("svnservicedomain") ); c.authentication.sslservertrusthandlers += new eventhandler<svnsslservertrusteventargs>(authentication_sslservertrusthandlers); collection<svnfileversioneventargs> fileversioncollection = new collection<svnfileversioneventargs>(); svnrevisionrange range = new svnrevisionrange(0, this.hooks.revision); svnfileversionsargs args = new svnfileversionsargs(); args.retrieveproperties = true; args.range = range; foreach (svnchangeitem item in log.changedpaths) { string path = this.repositorypath + it...
Read more

c++ - Is it possible to compile a VST on linux? -

for class project i'm attempting write vst plugin backed cuda. current cuda workflow on linux box, i'd prefer compile , link there. according wikipedia , should possible (i couldn't find steinberg documentation relevant linux) can't find makefile or instructions on how build if aren't using xcode or visual studio. i'm vst 3 sdk doesn't support linux. when try compile plugin under linux, error: ./base/source/fatomic.cpp:39:30: fatal error: libkern/osatomic.h: no such file or directory this issue caused following code in "vst3 sdk/base/source/fatomic.cpp" #if mac #include <libkern/osatomic.h> #if mac_os_x_version_min_required > mac_os_x_version_10_4 #define native_atomic_type (volatile int32_t*) #else #define native_atomic_type (int32_t*) #endif #elif windows #include <windows.h> #endif but hope compiling under linux work vst sdk 2.4. reading. jvstwrapper seems run on lin...
Read more

url - Querystring manipulation of email Address in PHP -

i using third party application (email2http) send me emailid, body , message. unable retrieve email id due name appended on , enclosed < , >. here querystring getting. test.php?from=ajay+reddy &subject=cx&body=somebody when print variable in php returns name , not email id. $from = $_get['from']; echo $from; //output ajay reddy please suggest me how can emailid also. i dont want use post method due testing , debugging. it's working fine. forgot use htmlentities() in debugging.
Read more