Hello, I have a dedicated server installed windows 2008 server standard. I have lots of event logs about; someone is - Trying to log in system - Trying to connect MsSQL with sa user. I made a research and IP Policy was the soluition for me. I blocked the all IPs which attack to me. then i realized, i can not connect some web sites or cant even ping them. I got the following error when i ping a site in command promt (for example hotmail.com) General Failure i stoped the ipsec policiy agent and i can ping it. how can i use ipsec policiy and can connect the sites at the same time?

Why not using the Windows Firewall in your 2008 server instead of IPSec filtering? You need to enable the windows firewall and create inbound rules to block connections from the specific addresses that attacks your server /Hasain

Hasain, I already tried that. Firewall is still enabled but it didn't work. 3 months ago, i could block IPs via Windows Firewall, but now although i can create rules to block ips, it doesn't work. what am i missing ?

Check the profile configuration of your firewall and make sure its enabled for that profile, please check this article http://technet.microsoft.com/en-us/library/ff602926(WS.10).aspx and http://technet.microsoft.com/en-us/library/bb877967.aspx and http://technet.microsoft.com/en-us/library/dd421709(WS.10).aspx for more details about the default settings and how rules are ordered. I would suggest that you configure the firewall to block all inbound connections as a default action and then create rules to allow inbound connections to certain ports/protocols as well as adding the desired block rules for the bad ip addresses you have listed. /Hasain