IPSEC firewall
From: Tibor Biro (tiborbiro@rogers.com)
Date: 08/27/02
- Next message: Tibor Biro: "Local Logon"
- Previous message: Jim Campau: "Re: Multiuser logon"
- In reply to: Greg Graham: "IPSEC firewall"
- Next in thread: jussi jaakonaho: "Re: IPSEC firewall"
- Reply: jussi jaakonaho: "Re: IPSEC firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Tibor Biro" <tiborbiro@rogers.com> Date: Tue, 27 Aug 2002 14:04:56 -0700
The IPSec filters will only set filters regarding secure
communications with other computers. You can set the ICMP
to be encrypted but that's about it.
If you want to block the ICMP protocol entirely then you
have to do it with a TCP/IP filter but windows 2000 can't
filter out ICMP.
Here's an interesting article on TCP/IP filtering.
http://support.microsoft.com/default.aspx?scid=KB;EN-
US;Q309798&
Towards the bottom it says:
"Note that you cannot block ICMP messages, even if you
select Permit Only in the IP Protocols column and you do
not include IP protocol 1. "
Regards,
Tibor Biro
MCSE
>-----Original Message-----
>I want to block incoming ICMP traffic and allow ICMP
>outbound traffic using the IPSEC policy editor. I have
>configured the policy and implemented, but have had no
>luck. I can only block ICMP traffic inbound and outbound.
>I have even created two rules filters, one calling
inbound
>and one called outbound. But, it still block all ICMP
>traffic. Is there a way to create these two differnt
rules
>for it to work?
>.
>
- Next message: Tibor Biro: "Local Logon"
- Previous message: Jim Campau: "Re: Multiuser logon"
- In reply to: Greg Graham: "IPSEC firewall"
- Next in thread: jussi jaakonaho: "Re: IPSEC firewall"
- Reply: jussi jaakonaho: "Re: IPSEC firewall"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
