Domain Isolation and non-windows IPSec capable systems

Domain Isolation and non-windows IPSec capable systems
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Domain Isolation and non-windows IPSec capable systems Andrea Casini 09-05-2007
Posted by =?Utf-8?B?QW5kcmVhIENhc2luaQ== on September 5, 2007, 5:56 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Did anyone make a study, created a whitepaper or simply written some
documentation about the topic in Microsoft?

I find myself most of the time suggesting Ipsec as a good way to protect lan
traffic for my customers but since we don't live in a simple world there are
always non-microsoft systems around the network that could take advantage of
ipsec but i've never got into trying to make them talk ipsec with the rest of
the domain.

Nowdays almost any OS can talk IPSec but we miss guidelines on how to
implement it with IPSec and Domain Isolation on Linux, UNIX-Based systems,
ecc..; in many scenarios i have to deal with legacy IBM systems running OS400
or linux systems and it's a shame to make exceptions to these systems.

I'd like to know if any of you digged into this matter and what your
consideration are on the subject.

Posted by Steve Riley [MSFT] on September 5, 2007, 3:12 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Our documentation on server and domain isolation includes scenarios
involving interoperability. Start your journey here:
http://www.microsoft.com/technet/security/guidance/architectureanddesign/ipsec/default.mspx

--
Steve Riley
steve.riley@microsoft.com
http://blogs.technet.com/steriley
http://www.protectyourwindowsnetwork.com


> Did anyone make a study, created a whitepaper or simply written some
> documentation about the topic in Microsoft?
>
> I find myself most of the time suggesting Ipsec as a good way to protect
> lan
> traffic for my customers but since we don't live in a simple world there
> are
> always non-microsoft systems around the network that could take advantage
> of
> ipsec but i've never got into trying to make them talk ipsec with the rest
> of
> the domain.
>
> Nowdays almost any OS can talk IPSec but we miss guidelines on how to
> implement it with IPSec and Domain Isolation on Linux, UNIX-Based systems,
> ecc..; in many scenarios i have to deal with legacy IBM systems running
> OS400
> or linux systems and it's a shame to make exceptions to these systems.
>
> I'd like to know if any of you digged into this matter and what your
> consideration are on the subject.


Similar ThreadsPosted
How does domain isolation with Windows 2003 IPsec happen? October 28, 2008, 11:56 pm
IPSEC with non-domain Server September 15, 2005, 5:02 pm
How do I turn IPsec on a Win2k3 domain? July 15, 2005, 4:45 am
getting IPSec Certificates for VPN access for non domain members January 4, 2007, 11:02 am
domain users added to local administrators cannot use the IPSEC certification of administrator? February 9, 2006, 12:26 am
Running WWW Service in IIS 5.0 Isolation Mode... January 9, 2006, 8:04 pm
Can IPSec connect 2 VPN Clients or is ALWAYS an IPSec server needed ? July 25, 2005, 3:40 pm
domaine vergabe free de domains domain de eu domain name registrieren de be domain July 28, 2008, 4:14 pm
Event log Systems October 30, 2006, 8:56 pm
Multifunction systems March 22, 2007, 3:38 pm

The site map in XML format XML site map

Contact Us | Privacy Policy