IPsec question

IPsec question
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
IPsec question Ahmad El Ghazouly 04-19-2006
---> Re: IPsec question Roger Abell [MV...04-19-2006
---> Re: IPsec question Ahmad El Ghazou...04-20-2006
`--> Re: IPsec question Roger Abell [MV...04-20-2006
Posted by Ahmad El Ghazouly on April 19, 2006, 7:24 am
If you were  Registered and logged in, you could reply and use other advanced thread options
I have a problem with IPsec.
I want to secure the connection to a server that have oracle server
installed on it.
I've applied IPsec policy on the server so that the server require security
for any connectio from the server or to the server on the port 1521.
but still the users are able to connect to the port without the ipsec policy
applied.
any help?????
thanks



Posted by Roger Abell [MVP] on April 19, 2006, 9:44 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Did you also define a baseline blocking rule so that the only
rule allowing connection to that port is the rule you mentioned?
(rule you mentioned needs to be stating the exception to the
rule that say connection is blocked)

>I have a problem with IPsec.
> I want to secure the connection to a server that have oracle server
> installed on it.
> I've applied IPsec policy on the server so that the server require
> security for any connectio from the server or to the server on the port
> 1521.
> but still the users are able to connect to the port without the ipsec
> policy applied.
> any help?????
> thanks
>



Posted by Ahmad El Ghazouly on April 20, 2006, 2:21 am
If you were  Registered and logged in, you could reply and use other advanced thread options
how can I do that??
I need only to secure Oracle connection to the server, but any other traffic
, can be unsecure.
thanks

> Did you also define a baseline blocking rule so that the only
> rule allowing connection to that port is the rule you mentioned?
> (rule you mentioned needs to be stating the exception to the
> rule that say connection is blocked)
>
>>I have a problem with IPsec.
>> I want to secure the connection to a server that have oracle server
>> installed on it.
>> I've applied IPsec policy on the server so that the server require
>> security for any connectio from the server or to the server on the port
>> 1521.
>> but still the users are able to connect to the port without the ipsec
>> policy applied.
>> any help?????
>> thanks
>>
>
>



Posted by Roger Abell [MVP] on April 20, 2006, 8:33 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Two rules. In IPsec the most specific, applicable rule governs.
Rule 1 - block all traffic on that port
Rule 2 - allow traffic on that port if it meets your conditions

> how can I do that??
> I need only to secure Oracle connection to the server, but any other
> traffic , can be unsecure.
> thanks
>
>> Did you also define a baseline blocking rule so that the only
>> rule allowing connection to that port is the rule you mentioned?
>> (rule you mentioned needs to be stating the exception to the
>> rule that say connection is blocked)
>>
>>>I have a problem with IPsec.
>>> I want to secure the connection to a server that have oracle server
>>> installed on it.
>>> I've applied IPsec policy on the server so that the server require
>>> security for any connectio from the server or to the server on the port
>>> 1521.
>>> but still the users are able to connect to the port without the ipsec
>>> policy applied.
>>> any help?????
>>> thanks
>>>
>>
>>
>
>



Similar ThreadsPosted
Can IPSec connect 2 VPN Clients or is ALWAYS an IPSec server needed ? July 25, 2005, 3:40 pm
firewall question and windows installer/spyware question September 24, 2006, 8:48 am
IPSec help August 25, 2005, 12:30 pm
IPSEC VPN September 14, 2005, 10:21 am
IPSec November 4, 2005, 1:43 pm
IPSec March 24, 2007, 4:10 am
IPsec Implementation July 29, 2005, 11:11 am
IPSEC for scripting June 12, 2005, 10:30 am
IPSEC Will not start March 26, 2006, 5:42 pm
IPsec Over Tunnel May 17, 2006, 7:34 pm

The site map in XML format XML site map

Contact Us | Privacy Policy