Solved

IPSEC Firewall windows 2000

Posted on 2004-08-21
2
355 Views
Last Modified: 2013-12-04
I created an ipsec firewall on windows 2000.  Is there a way for me to export that so I can put it on multiple machines?

Thanks!

Randy
0
Comment
Question by:rjohnsonjr
2 Comments
 
LVL 38

Accepted Solution

by:
Rich Rumble earned 500 total points
ID: 11860763
Yes... but a word of caution... the IPSEC firewall is eaily by-passed if you bind your source port to port 88 or 500
This is by design... and not a flaw (recently M$ has intorduced ways that prevent this now, sp4 and sp2 for XP)
http://support.microsoft.com/default.aspx?scid=811832 
So someone with  port scanner like Nmap can scan your box by using the following
nmap -sS -g 88 -P0 ip.ip.ip.ip -vv
They would see all the ports that were open, can could use any number of ways to bind their src port to 88,500,46 and get past the firewall.

To export your IPSEC rules, open Secpol.msc (go to the Run line, them type  "secpol.msc" press eter)
-->Highlight<-- "IP Security Policies for Local..." and then go to Action, and you'll see Export List, this will open a window for you to save the list (all policies) and you can specify how they will be saved, Tab Delimited, or Comma... if you want to save just one or two of the rules, you'll have to delete the ones you don't want... I export all, then delete what I do not want- that way there is a backup of the defaults, and the others.
-rich
0
 
LVL 6

Author Comment

by:rjohnsonjr
ID: 11885187
Thanks for your help!  I will definately following with that article :-)


-Randy
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Current IT security breaches/attacks in banking 2 134
default domain policy in AD exemptions 3 90
Botnet detection help me please 21 150
Need to disable SSL Cipher 7 294
The term "Bad USB" is a buzz word that is usually used when talking about attacks on computer systems that involve USB devices. In this article, I will show what possibilities modern windows systems (win8.x and win10) offer to fight these attacks wi…
OfficeMate Freezes on login or does not load after login credentials are input.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question