Web Debug

Fix broken web applications, from servers to clients.

Request Filtering vs URLScan

UrlScan, a security tool, was provided as an add-on to earlier versions of Internet Information Services (IIS) so administrators could enforce tighter security policies on their Web servers. Within IIS 7 and above, all the core features of URLScan have been incorporated into a module called Request Filtering, and a Hidden Segments feature has been added..

  • It gives a tighter level of control over the settings and where they are applied.
  • It can be configured from the GUI as well as web.config file.


request-filtering

There are plenty of great resources online, I’ll provide some links for your reference below.

http://www.iis.net/ConfigReference/system.webServer/security/requestFiltering

http://learn.iis.net/page.aspx/143/use-request-filtering/

http://learn.iis.net/page.aspx/504/using-enhanced-request-filtering-features-in-iis/

Fork me on GitHub