Re: Setup firewall using W2K IPSec MMC snap-in?

From: Karl Levinson [x y] mvp (levinson_k@excite.com)
Date: 03/26/03

  • Next message: Eric Dawes: "Unathorized attempts to logon via SMTP-SVC" 
    From: "Karl Levinson [x y] mvp" <levinson_k@excite.com>
Date: Wed, 26 Mar 2003 00:02:57 -0500

    FWIW, IMHO IPSec in Win2K makes a poor firewall replacement. You have no
    logging, no alerting, no way to research hacking incidents or know who
    hacked you or who is using up your bandwidth, etc. I think of IPsec as
    something to use MAYBE in addition to a real firewall. Some free and
    not-free alternatives:

    http://securityadmin.info/faq.htm#firewall

    "HuntBchGuy" <huntbchguy@hotmail.com> wrote in message
    news:xE0ga.15289$hz3.882@fe06.atl2.webusenet.com...
    > Hello,
    >
    > I've installed the IPSec MMC snap-in and am trying to get a firewall
    going.
    >
    > I've defined a firewall security policy with a few security rules and
    > assigned it.
    >
    > For my local LAN I allow all ICMP traffic but have one Block rule and one
    > Permit rule for IP traffic.
    >
    > My block rule blocks all TCP traffic and my permit rule permits traffic
    only
    > on the ports I've specified in a filter list.
    >
    > Will this work?
    > Am I correct to assume that blocking all ports in one rule and permitting
    > ports in another rule will allow access to permitted ports?
    >
    > The problem I'm seeing is that if I disable my block and permit rules, all
    > ports are permitted (ie. accessible).
    > If I just enable my block rule, all ports are blocked.
    > If I enable my permit rule and my block rule, all ports are block.
    >
    > Any ideas on what I'm doing wrong?
    >
    > Thanks,
    >
    > -Randy
    >
    >
    > --
    > "Trying is just the first step to failure."
    >
    >
    >

  • Next message: Eric Dawes: "Unathorized attempts to logon via SMTP-SVC"

    Relevant Pages

    • Setup firewall using W2K IPSec MMC snap-in?
      ... I've defined a firewall security policy with a few security rules and ... My block rule blocks all TCP traffic and my permit rule permits traffic only ... Am I correct to assume that blocking all ports in one rule and permitting ...
      (microsoft.public.win2000.security)
    • Re: Setup firewall using W2K IPSec MMC snap-in?
      ... I am planning to use IPSec on my W2k server in addition to a hardware NAT ... >> My block rule blocks all TCP traffic and my permit rule permits traffic ... >> on the ports I've specified in a filter list. ...
      (microsoft.public.win2000.security)
    • Re: Setup firewall using W2K IPSec MMC snap-in?
      ... how your single block rule looks like as well as a an example permit rule? ... My IP to Any address all ports block; ... filters with the protocol specified (i.e. not set to ... > For my local LAN I allow all ICMP traffic but have one Block rule and one ...
      (microsoft.public.win2000.security)
    • Re: limiting access on a desktop
      ... This would best done at the firewall if possible using a firewall that can manage ... ipsec filtering on those computers. ... then a permit rule for the lan subnet, and finally a permit rule for each website ... > i particularly need to limit internet access to a few key ...
      (microsoft.public.win2000.security)
    • Quantcast