Configuring IPSEC
My setup is 1 Windows domain controller running WS2008 and a Vista client joined to this domain. Im trying to learn how to use IPSEC so this test should block ping from client to server. I have configured IPSEC to block all traffic from this client PC (just to test how IPSEC works) using a separate GPO. I followed the steps outlined here http://technet.microsoft.com/en-us/library/bb742429.aspxand replicated them accordingly. I apply the policy to the PC and run Gpupdate /force. So far seems to be fine. I restart the Vista PC to have the settings applied and log on as a standard domain user, but the problem is it seems the policy hasnt taken affect. I run rsop.msc and see the policy has been applied. I try to ping the domain controler yet i still can. So delete the IPSEC policy and start over incase i made a mistake again i was very careful to follow the steps. This time i restarted the server too but strangely i cant seem to get it to work. Does anyone have any idea on whats going wrong? Thanks in advance
March 14th, 2008 11:48pm

The article you are looking at is from Windows 2000. There are some advancements that you should look at with Windows 2003 (pretty much the same for Windows 2008). Here is a white paper that I am pretty sure covers the part of your system that is breaking: http://www.microsoft.com/downloads/details.aspx?FamilyID=e6590330-d903-4bdd-9655-81b86df655e4&displaylang=en If you check page 15 on how to configure an IPsec policy, that will be usefull. Also, this page has everything you would ever want to know on Microsoft's latest stance on IPsec: http://technet.microsoft.com/en-us/network/bb531150.aspx Luck,
Free Windows Admin Tool Kit Click here and download it now
March 16th, 2008 7:10pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics