Re: IPSec Policy
From: Steven L Umbach (n9rou_at_nospam-comcast.net)
Date: 03/01/05
- Next message: Steven L Umbach: "Re: Exportable computer certificate"
- Previous message: Juan Villegas Azuaje: "How to include a "Power Users" group to be include in a GPO"
- Next in thread: Jordan Samulaitis: "Re: IPSec Policy"
- Reply: Jordan Samulaitis: "Re: IPSec Policy"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 28 Feb 2005 17:43:05 -0600
The client computer needs a compatible ipsec policy such as the
client/respond ipsec policy or a custom policy you create. Also you must
exempt the domain controller from the ipsec policy with a rule that has a
permit action for traffic to and from the dc by it's static IP address or
you will have problems as domain controllers do the authentication. You can
use netdiag /test:ipsec to see ipsec info on a Windows 2000 computer
including any policy assigned and for XP Pro/W2003 use the two IP security
mmc snapins. --- Steve
http://support.microsoft.com/default.aspx?scid=kb;en-us;254949
"Jordan Samulaitis" <jordan@jvsDELETEnetworks.com> wrote in message
news:%23eeaaxUHFHA.720@TK2MSFTNGP10.phx.gbl...
> Hello,
>
> I created an IPSec policy for port 80 on my server to require security
> using
> AH and ESP. When I logon my workstation to the domain it does not display
> the page, but I can view the local server webpage from the server. What
> do
> I need to do to my workstation?
>
> P.S - I did a gpupdate /force before letting the workstation to logon the
> network.
>
> Thanks in advance,
>
> Jord
>
>
- Next message: Steven L Umbach: "Re: Exportable computer certificate"
- Previous message: Juan Villegas Azuaje: "How to include a "Power Users" group to be include in a GPO"
- Next in thread: Jordan Samulaitis: "Re: IPSec Policy"
- Reply: Jordan Samulaitis: "Re: IPSec Policy"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
