Win2k3 Server Enterprise Edition and IPSec

Discussion in 'Server Security' started by Frank T. Lee, Oct 27, 2004.

  1. Frank T. Lee

    Frank T. Lee Guest

    I am hoping someone can help me. I am trying to use IPSec to only allow RDP
    (Port 3389) and deny all other IP traffic on a Win2k3 Server. The first
    policy that I setup is the one for RDP. Everything still works at this
    point. I then setup a policy to deny all IP traffic. Once this policy is
    established, I can no longer RDP to the server.

    This is exactly the way we have it setup on WinXP machines and it works.
    Does anyone know what may be wrong?

    Thanks,

    Frank T. Lee
     
    Frank T. Lee, Oct 27, 2004
    #1
    1. Advertisements

  2. First off you might want to try the built in ICF firewall in Windows 2003
    and then configure it to allow port 3389 TCP. That would allow port 3389 TCP
    from any IP address however and only control inbound traffic. Otherwise
    double check your ipsec policy to make sure source and destination ports and
    addresses are correct.

    Start off with a mirrored block all IP rule and then create the mirrored
    rule exception which would be: destination address - my IP, source address -
    any IP or restricted list, destination port - 3389, source port - any,
    protocol -TCP. You can use the command " netsh ipsec static showall " to
    see the applied ipsec policy to the computer, though you may want to port it
    to a text file. --- Steve

    http://www.microsoft.com/resources/.../2003/standard/proddocs/en-us/netsh_ipsec.asp
    -- netsh ipsec command syntax.

    http://tinyurl.com/62kdy -- same link shortened.
     
    Steven L Umbach, Oct 27, 2004
    #2
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.