Re: IPSec filter to allow only sending e-mail
From: Louise Bowman [MSFT] (lbowman_at_microsoft.com)
Date: 07/02/03
- Next message: Karl Levinson [x y] mvp: "** READ THIS BEFORE POSTING - answers to frequently asked questions"
- Previous message: David Sanders: "auditing 1 AD account"
- In reply to: Tomislav Herceg: "Re: IPSec filter to allow only sending e-mail"
- Next in thread: Tomislav Herceg: "Re: IPSec filter to allow only sending e-mail"
- Reply: Tomislav Herceg: "Re: IPSec filter to allow only sending e-mail"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 2 Jul 2003 10:05:13 -0700
Tomislav,
You seem to be suggesting that the problem is not with the filter itself but
that the filter is not getting applied after a server restart.
Questions:
Do the other filters get applied after the server restart? Are these filters
delivered via a Local IPSec Policy or an IPSec Policy stored in the AD?
Have you checked IPSec Monitor to see if the SMTP filters show up under your
Main Mode Generic and Specific filter lists after a reboot.
If instead of un-assigning and re-assinging the policy you stop and start
policy agent do the SMTP filters work?
Louise
IPSec Team (MSFT)
-- This posting is provided "AS IS" with no warranties, and confers no rights. "Tomislav Herceg" <therceg@rot13.org> wrote in message news:zrtxb9vmyxr9$.22jlpbmt9ffv.dlg@40tude.net... > On Wed, 02 Jul 2003 02:22:01 GMT, Steven L Umbach wrote: > > > Try this policy: > > Source address: My Ip > > Destination address: Any Ip [or smpt server] > > From any port to port 25. > > Action: allow. > > I think your policy may be backwards. --- Steve > > > > "Tomislav Herceg" <therceg@rot13.org> wrote in message > > news:1iicpibbll4xv.1v3rqtoi5fu6a$.dlg@40tude.net... > > >> Hi! > >> > >> I have web server secured by IPsec policy that allowed only port 80 and > >> 443. From my application I need to send e-mail message to SMTP server. > >> > >> How to create IPSec filter to allow connection to SMTP server and sending > >> e-mail messages from application? I don't want to install IIS SMTP service > >> because I only need to send e-mail. > >> > >> When I configure IPsec filter as follow: > >> Source address: Any IP Address > >> Destination address: My Ip Address > >> Protocol: TCP, 6 > >> From any port to port 25 > >> Mirrored > >> > >> and unsigned and assigned IPsec policy I can connect to SMTP server and > >> send mail. But after server restart connection to SMTP server doesn't > > work. > >> If after server restart I unsigned IPsec policy and try to connect to SMTP > >> server everything work (expected because I remove IPsec policy). After > > that > >> when I again assigned policy with SMTP filter connection still work. > >> > >> But after restart connection doesn't work. > >> > >> Any sugestion? > >> > >> Tnx. > > I try policy that you suggested but have the same problem. When I unsigned > and after that assigned policy everything works. But after server restart > doesn't !?!. Why o why ? > >
- Next message: Karl Levinson [x y] mvp: "** READ THIS BEFORE POSTING - answers to frequently asked questions"
- Previous message: David Sanders: "auditing 1 AD account"
- In reply to: Tomislav Herceg: "Re: IPSec filter to allow only sending e-mail"
- Next in thread: Tomislav Herceg: "Re: IPSec filter to allow only sending e-mail"
- Reply: Tomislav Herceg: "Re: IPSec filter to allow only sending e-mail"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
