DS3Circuit 0 Posted January 12, 2003 Interesting .... A first thought I am thinking of modifying local ARP tables. APK you got me into doing a GOOGLE on this one. **EDIT** Wouldnt it be easier just to mail you a PIX firewall **EDIT2** Scratch the ARP notion .... was hoping mapping a particular IP to the local NIC MAC would work .... Share this post Link to post
Jerry Atrik 0 Posted January 12, 2003 in xp u can learn the firewall stuff it's long and painfull but works quite well ipsec policies can be reached from the gpedit.msc the are tons of things u can do from there. after creating or altering apolicy dont forget to "assign" it or nothing will happen Share this post Link to post
DS3Circuit 0 Posted January 12, 2003 A tutorial on blocking direct IP internet access through windows http://www.pacificnet.net/~bbruce/route_intro.htm Is this what you wanted? Share this post Link to post
DS3Circuit 0 Posted January 13, 2003 Very Nice Jerry, that idea of using IPsec policies works .... and here's how you do it I will be using nd.edu as an example ... its a football thing Under Local Security Settings / IP Security Policies 1. Create a new IP Filter list 2. Source IP is My IP address 3. Destination (in this example) is 129.74.250.101 (nd.edu) 4. Protocol is any 5. Create a new IP Security Policy (use Kerberos 5 authentication) 6. Add an IP Security Rule (this rule is not a tunnel) (all network connections) 7. Add the new IP filter list that you just created. (require security) 8. Assign the new policy Upon doing this I CAN go to http://www.nd.edu but I CANNOT go to http://129.74.250.101 Scripting can be done with this tool: http://www.microsoft.com/windows2000/techinfo/reskit/tools/existing/ipsecpol-o.asp I imagine this is what you were looking for APK? Share this post Link to post
DS3Circuit 0 Posted January 13, 2003 Good glad to hear boss, and of course, feel free to add my name in lights anywhere you wish Share this post Link to post
Jerry Atrik 0 Posted January 13, 2003 thnx the xp firewall is very good but a pain to configure (as u can see) it looks like it worked out well maybe dosfreak or someone can tell us how to automate or even save for the next install of xp :x btw this is what i did for a firewall before norton made an xp compatible one Share this post Link to post
DS3Circuit 0 Posted January 13, 2003 Importing and Exporting Policies is seen here to save for a rainy day http://www.microsoft.com/technet/treevie...PSEC_export.asp And if you truly wished to have these installed automatically on the initial install of windows, you could use CMDLINES.TXT These are far easier to maintain, manage, and deploy in a domain environment *EDIT* LOL .... APK was typing the answers at the same time I was ... woah Share this post Link to post
