Check out my web site:
http://www.ibb.gatech.edu/~jglass/tips-n-tricks/windowsipsec/
I worked w/some other IT professionals and student workers, and put
together a scripted implementation of IPSEC for windows 2000 & XP.
Jonathan Glass
Rasmus Rønlev wrote:
Hi,
Not really having much luck searching on Google, I thought I’d turn to this
list, in hopes someone is able to help :)
The scenario I have is, that I got Windows XP (SP2) clients, that I want to
do ‘outbound’ packet filtering on. The unusual thing at this point in time
is, that they’re running on an NT4 domain. This means I do not have access
to AD based GPO rollout of IPSec (gpo policies in general).
I’ve been experimenting with making an “IP Security Policy” on a local
computer through the mmc. However, I need to apply the same policy on
multiple computers – i.e. be able to script it in some way. As a note, I do
have access to deploying various types of script jobs to the Windows XP
computers.
So my question is two fold;
1.) Is it possible either through the ‘local’ mmc based “IP Security Policy”
or using another tool to export the given IPSec policy (for importing
elsewhere and/or using in a script)
2.) Does anyone know of a way to script applying this IPSec policy onto
other/client PC’s (They’re all Windows XP SP2 boxes).
Hope you all got some good ideas ;)
Regards,
r@smus
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
