Restrict Tcp/IP connetions

[Per]

Hello!

I wonder if there is a way to restrict Tcp/IP connetions
to a Windows 2000 prof. I want that the W2K Prof only can
accept connetions from one server and that the W2K Prof
only can access that server and nothing else on the
network.

Hope that some one can help me.

Thanks

 

[news.microsoft.com]

Check the gpedit.msc
Run it from the start -> Run -> gpedit.msc
Then open the Computer Configuration -> Windows Settings -> Security
Settings -> IP Secrity Policies on local machine.

Shai

 

[Per]

And then?? I don't understand what i should do then?

Per

 

[Steven L Umbach]

You want to create an ipsec filtering policy. You will first want to create
a mirrored "block all" ip rule, then an mirrored rule that will permit all
ip traffic to the server based on it's ip address. Ipsec rules are different
that firewall rules in that their ordering does not matter, but a specific
rule will override a general rule. See the link below for details on ipsec
configuration. A personal firewall is also another option which could also
control traffic based on application if need be and provide logging. ---
Steve

http://www.microsoft.com/windows2000/techinfo/planning/security/ipsecsteps.asp
http://www.webattack.com/Freeware/security/fwfirewall.shtml

 

[Per]

Thanks for the help, I will try this.

/Per

-----Original Message-----
You want to create an ipsec filtering policy. You will first want to create
a mirrored "block all" ip rule, then an mirrored rule that will permit all
ip traffic to the server based on it's ip address. Ipsec rules are different
that firewall rules in that their ordering does not matter, but a specific
rule will override a general rule. See the link below for details on ipsec
configuration. A personal firewall is also another option which could also
control traffic based on application if need be and provide logging. ---
Steve

http://www.microsoft.com/windows2000/techinfo/planning/sec urity/ipsecsteps.asp
l




.