Advanced Access Controls for IIS

Control Your Site's Access. Secure Your Site from Leeching

LinkDeny provides full control of site requests and responses, allowing you to prevent hotlinking and stop bandwidth theft.

Access management puts you in control of your site with the ability to: Redirect request to a specific URL on your site or any site, replace response with a specific file (image, HTML, etc.), and replace response with 404 HTTP server error message.

Dynamic Access Management

The flexible, rules-based system allows you to use a wide variety of criteria to deny access to content resources.

GeoIP Database

Block country-level and targeted site attacks with LinkDeny's GeoIP database.

Hassle-free Integration

An XML-formatted rules engine makes integration of LinkDeny into existing systems hassle-free.

  Industries We Secure

Port80 provides security for a variety of industries:

  • Finance
  • Government
  • Healthcare
  • & More...

Easily Control Access

Control access to proprietary, paid, or copyrighted Web site content and help reduce affiliate fraud by ensuring legitimate referrals; ensure your bandwidth is available only to your users.

Learn More: LinkDeny Features »


What LinkDeny Does:

Blocks Unauthorized Content Downloads

LinkDeny's powerful access controls can block downloads of your content based on requestor's: IP address, Referring URL, Country or geographic location, Length of user session, Type of Web browser, Existence of cookie, or HTTP request header type and content.

Provides URL Paths or MIME Type Rules

Allow or Deny access to specific URL paths or MIME types of files (wildcards and regular expressions supported) requested by a browser or proxy server based on pre-configured criteria:

  • By Referer URL, domain or host name (the URL from which a request is made)
  • By User-agent type (browsers like Internet Explorer and Firefox (Mozilla/5.0), search engine robots like Googlebot, etc.)
  • By IP address (by single IP address, a range of IP addresses or the IP addresses of specific countries by a geographic IP address database integrated from Port80 Software partner MaxMind - learn more about included 97% accurate database or optional 99% accurate database upgrade)
  • By HTTP request headers standards conformance (the presence of specific text in request headers)
  • By user session (allowed time for URL access, managed by URL or cookie flag and mask)

Full Access Control

Full control of LinkDeny site requests and responses, including: Log and take no action (by default on installation), Redirect request to a specific URL on your site or any site, Replace response with a particular file (image, HTML, etc.), and Replace response with 404 HTTP server error message.

Full Logging Functionality

LinkDeny provides a transparent logging only mode (by default) and logs available in text files for review.

Rule Testing Utility

Access LinkDeny's rule testing utility to validate rules and insure proper anti-leeching and access control rules you are able to ensure your rules are set up correctly.

Import/Export Settings

Import/export settings for migration and server-farm deployments.

Multiple Management Interface Options

Easy to use GUI management interface and direct XML rule file editing.

Server and Web Farm Support

LinkDeny supports single IIS Web server or IIS Web farms.

ISAPI Compatibility

Implemented as super-fast ISAPI filter.

No Server Bounce Required

LinkDeny does not require a restart on install and causes no service interrupt on settings change.

Multiple Server Environment Compatibilty

Compatible with ASP, ASP.NET, ColdFusion, PHP and most JSP application server environments.

Learn More: Rules Templates »

Rules Templates

XML-based Rule Templates

LinkDeny's XML-based Rule Templates provide ready-to-deploy anti-leeching and access control rules; dozens of access control templates provided.

Templates to Allow or Deny a request based on geographic IP data:

  • Any specific country
  • More than two dozen continental and regional rule templates (North America, Europe, Southeast Asia, the Caribbean, etc.)
  • Rule templates by demographic information:
    • Top Countries with Most Internet Users
    • Top Countries with Longest Surfing Internet Users
    • Top Countries with High Risk for Hacking or Fraud
    • Top Countries with High Risk for Phishing Attacks
    • English Speaking Countries
  • Miscellaneous country affiliation rule templates:
    • European Union (EU)
    • World Trade Organization (WTO) Countries
    • U.S. Embargoed Countries

Templates to Allow or Deny a request based on the request's referring site:

  • Content Leeching Sites rule templates:
    • Top Blog Hosts (Blogspot, LiveJournal, etc.)
    • Top Social Networking Sites (MySpace, etc.)
    • Top Auction Sites (eBay, etc.)
    • Top Anonymous Surfing Sites (Proxify, The-Cloak, etc.)
  • Other Major Internet Sites rule templates:
    • Top Search Engines (Google, Yahoo!, etc.)
    • Top News Sites - General (NYTimes, Slate etc.)
    • Top News Sites - Local and TV (NYPost, Telemundo, etc.)
    • Top News Sites - Financial (SmartMoney, Bloomberg, etc.)
    • Top News Sites - Tech (Slashdot, InfoWorld, etc.)
    • Top Internet Portals (MSN, Amazon, etc.)

Templates to Allow or Deny a request based on best practice security policies:

  • Allow common Web browsers only rule template
  • Deny images or video without user-agent header present rule template
  • Deny image or video without referrer present rule template

Learn More: Requirements »


System Requirements

  • IIS 8 / Server 2012 (please email support@port80software.com for more information).
  • IIS 7.5 / Server 2008 R2 with Service Pack 1
  • IIS 7 / Server 2008 with Service Pack 2
  • IIS 6 / Server 2003 (all editions) with Service Pack 2

Compatible hardware:

  • x86 (32-bit)
  • x64 (64-bit)

The following runtimes are also required but can be installed by the LinkDeny installer if not already present on the target system:


  • The current LinkDeny installer does not support scenarios in which one or more IIS application pools are running in 32-bit mode on 64-bit hardware. Please contact Port80 Software Technical Support for additional information.
  • IIS 5.0 Isolation (compatibility) Mode on IIS 6.0 / Server 2003 is not supported.
  • For IIS 7.x / Server 2008 installations, the following IIS Role Services must be installed:
    • ISAPI Filters
    • IIS 6.0 Metabase Compatibility

Learn More: Overview »