There may be a time when you have certian .ASP pages that you only want people to be able to access when going through your site. You don't want other websites to link directly to these pages (for example, you may want a user to have filled out a lengthy form before arriving at a certain page). It's not difficult to protect your ASP pages this way. We will use the Request.ServerVariables collection to perform this task. (To see information on how to make sure your images are only accessed by pages on your site, be sure to read Bart Silverstein's article, Protecting Your Images!)

At the top of the .ASP page that you want "protected" put this code:

<%
if left(Request.ServerVariables("HTTP_REFERER"),24)  <> "http://www.yoursite.com/" and _
	Request.ServerVariables("HTTP_REFERER") <> "" then

	'We used Request.ServerVariables to get the domain name
	'of the referring web page.

	'If the domain name doesn't equal my domain name, then
	'I want to send the user to some other site
	Response.Redirect "http://www.yahoo.com"
end if
%>

This next method uses the IP number, which can be useful when you do not yet have the domain but still want to test it online.

At the top of your ASP page put this code:

<%
if Request.ServerVariables("REMOTE_HOST") <> "195.161.73.13" and _
	Request.ServerVariables("REMOTE_HOST") <> "" then

	'Send them away, if you like
	Response.Redirect "http://www.yahoo.com"
end if
%>

Happy Programming!

João Vieira BIO: (email me!)
- Age : 23
- Student And worker (tryin' to finish university, on the last year of the graduation)
- Workin' now at NetGate Portugal
- Programming little stuff since 1989
- Programming HTML since 1996
- Programming JavaScript since 1997, made some experiences with Java.
- Programming ASPs since the Summer of 1997 (yeap, I didn't had nothing to do. Now I love it.)
- Programming ActiveX since 1998
- Webmaster of www.joaovieira.com