IPSec Filtering

[Tom]

Archived from groups: microsoft.public.win2000.security (More info?)

Hello
I have 3 Web servers on which I need to apply
filters,..port filtering and Ipsec filtering.
I am running Win2000 advanced servers in an Active
Directory DNS domain and I have two nics in each server.
Nic1 allows traffic in and Nic2 allows traffic to flow and
communicate with the other servers.
The Port filtering is fine has I only need to allow Port
80 traffic through one Nic1.
When setting up IPSec filtering on these servers, I assume
extra care must be taken not to filter Win200 ports
specific to AD and DNS (ie. TCP Port 53 etc).
Is there a list of ports that shows what's needed for FULL
AD functionality or examples of IPSec anywhere..?

 

[Guest]

Archived from groups: microsoft.public.win2000.security (More info?)

Hi Tom,

Try here:

Active Directory Replication over Firewalls
http://www.microsoft.com/serviceproviders/columns/config_ipsec_P63623.asp

I hope it helps,

Mike

"Tom" <anonymous@discussions.microsoft.com> wrote in message
news:4bdd01c473c0$75662500$a601280a@phx.gbl...
>
> Hello
> I have 3 Web servers on which I need to apply
> filters,..port filtering and Ipsec filtering.
> I am running Win2000 advanced servers in an Active
> Directory DNS domain and I have two nics in each server.
> Nic1 allows traffic in and Nic2 allows traffic to flow and
> communicate with the other servers.
> The Port filtering is fine has I only need to allow Port
> 80 traffic through one Nic1.
> When setting up IPSec filtering on these servers, I assume
> extra care must be taken not to filter Win200 ports
> specific to AD and DNS (ie. TCP Port 53 etc).
> Is there a list of ports that shows what's needed for FULL
> AD functionality or examples of IPSec anywhere..?