Introduction
IPSec is a method of using local security policy to filter IP network traffic to and from a server. It can be used to secure, block or pass defined traffic. IST uses IPSec primarily to block and permit.

Normally any service that opens a port on a server opens it to the world unless some filtering is applied, either locally or on the network itself. Since this has been the source of numerous violations measures have been put in place to block certain protocols at the network level. IPSec gives us a means to control network access to-and-from the server even more and is often unique on each server as the services offered are different.
Method

Under Control Panel/Administrative Tools/Local Security Policy” there is an entry called IP Security Policies on Local Computer”. Three example policies exist. We will be creating a new policy here that contains the filters and the rules of the protocols deemed important. Since each server offers different services, and needs different filters and rules applied a generic command file has been created to allow you, the server administrator, the ability to pick and choose among some of the more popular filters deemed important.

The steps to apply this command file are:
Download it to your server: We prefer to create a new directory on the C: disk called Utility under which we create a directory called IPSEC. This way you can easily keep track of how a server has been customised.
Uncompress the W2K3ipsec.zip file to extract the W2K3ipsec.cmd file
Edit the command file: *This is important* The file was written in such a way that the first lines easily allow you to assign a name for the policy and select the filters of interest. Additional editing may be required to add custom filters and rules, if desired.
Run the command file:  by double clicking on it or run it from within a Command Prompt window or at the Start/Run command. It will create the new policy for you and populate it with the filters you have chosen.

Download  this :-

http://windows.uwaterloo.ca/Security/Hardening/IP_Security/W2K_IPSEC_Cmd_files/Workstation/IPSECfilter.zip

Leave a Reply