I was curious about the criteria on which an IP address is denied based on the new Dynamic IP Address Restrictions new to IIS8.
Does this factor any other information about the incoming HTTP client, or just strictly the IP address?
For example:
- I have an application 1 on Server A that I want to enable the Dynamic IP Restrictions to limit web service calls to 5 calls per second
- I have 5 applications on Server B
- They share the same IP address
- They all run as different service accounts
- These applications will be calling application 1 three times per second each
If all 5 applications are running, will the IP be denied since there will be a total of 15 calls per second? Or does it take the connecting user into consideration along with the IP address of the client?