Using IPSec as a Packet Filter Firewall
From: Forrester, Mike (mforrester@hsacorp.net)Date: 08/26/01
- Previous message: rusecure ???: "RE: MS IIS Lockdown tool"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Message-ID: <A2DD4A0747C2D41189F400B0D03E46C61D877F@hsadenmx06.hsacorp.net> From: "Forrester, Mike" <mforrester@hsacorp.net> To: "'focus-ms@securityfocus.com'" <focus-ms@securityfocus.com> Subject: Using IPSec as a Packet Filter Firewall Date: Sat, 25 Aug 2001 20:41:13 -0600
Greetings,
I am in the process of starting my practical for the GIAC NT Security
certification and decided on the topic of how to use the IPSec filters on
Windows 2000 as a packet filtering firewall. I'll probably talk about it in
a defense-in-depth approach and only as a host-based firewall (not as router
or gateway). Does anyone have any recommendations on books, white-papers,
websites, etc. that cover IPSec packet filtering on Windows 2000 in detail?
I'm looking for information on rule ordering, known limitations, bugs, etc.,
not on how to create rules or about IPSec for encryption. I know the IPSec
filtering on Windows 2000 still leaves a lot to be desired (state,
fragmentation, and flag checking; logging; etc.), but due to the lack of
knowledge on this aspect of IPSec on Windows 2000, it seems like a good
topic.
Now before everyone goes on about the pros or cons of Windows, packet
filters, etc., understand that the purpose of my research and paper is to
get a good understanding of IPSec packet filtering on Windows 2000. Not
network design, defense-in-depth, or any other religious security topic. I
plan to cover these topics on a basic level in my paper, but just enough to
compliment the subject.
Thanks in advance,
Mike
- Previous message: rusecure ???: "RE: MS IIS Lockdown tool"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
