No AuthIP user authentication of Ping with IPSec?

02-13-2010

Hello:

It appears on Server 2008-R2 and Windows 7 that you cannot require IPSec
user authentication for inbound ICMPv4 echo requests (pings) without causing
those ping requests to be dropped.

In my testing, you can require IPSec for pings, you can also
require computer authentication from the pinging peer in the forest and
it'll still work fine, but once you add IPSec user authentication (with or
without computer auth too), then the incoming ping packets are dropped.

Yes, I've got IPSec user authentication correctly configured and working
with other protocols on the same test boxes (Kerberos for computer auth,
Kerberos for user auth), but it seems ping does not work with IPSec user
authentication. On my test systems, ICMP is not exempted. Testing was done
with the built-in ICMPv4-In incoming firewall rule in the "File and Printer
Sharing" group. No testing done with ICMPv6.

Has this been the experience of others too?

Thx

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Re: win 7 new to accounts help - How to Fix the Error The User Profile Service failed the logon User profile cannot be loaded	Ace Fekay [MVP-DS, MCT]	Windows Server	0	01-24-2010 04:15 AM
Re: win 7 new to accounts help - How to Fix the Error The User Profile Service failed the logon User profile cannot be loaded	Peter Foldes	Windows Server	0	01-23-2010 07:31 PM
KDC Event ID 7 and Wins startup errors.	GihanZ	Windows Small Business Server	4	11-23-2009 01:43 AM
Vista Upgrade fails at "Gathering Files" when two users share the same user profile (ProfileImagePath). Message: "the upgrade was cancelled".	Carl Farrington	Windows Vista Installation	4	10-24-2007 07:26 AM
Administrator log in	Ben	Windows Vista Administration	41	04-29-2007 11:08 PM