locked
need help with ipsec in w2k3

    Question

  • hi,

    I am using w2k3, and I need to add a few rules in IPSec that has ipaddress range in which i don't know how to configure.

    For example, I want to create a rule in ipsec to block any tcp traffic from 192.168.10.15 to 192.168.10.65 subnet.

    As you can see, there is a ip range from 15-65. I tried looking into a few articles from microsoft, but I can't seem to find a solution to that.

    for instance, i tried this netsh but it replied with an invalid ip range


    netsh ipsec static add filter filterlist="...." srcaddr=192.168.10.15-192.168.10.65 dstaddr=Me description="...." protocol=TCP srcmask=24 dstport=0
    netsh ipsec static add rule name="...." policy="...." Filterlist="...." filteraction=block description="...."


    Your help and comments are thankful.
    Tuesday, August 04, 2009 6:17 PM

Answers

  • i found the answer by using subnet mask.

    Thanks

    • Marked as answer by TuBong Wednesday, August 05, 2009 2:01 PM
    Wednesday, August 05, 2009 2:01 PM