need help with ipsec in w2k3


  • hi,

    I am using w2k3, and I need to add a few rules in IPSec that has ipaddress range in which i don't know how to configure.

    For example, I want to create a rule in ipsec to block any tcp traffic from to subnet.

    As you can see, there is a ip range from 15-65. I tried looking into a few articles from microsoft, but I can't seem to find a solution to that.

    for instance, i tried this netsh but it replied with an invalid ip range

    netsh ipsec static add filter filterlist="...." srcaddr= dstaddr=Me description="...." protocol=TCP srcmask=24 dstport=0
    netsh ipsec static add rule name="...." policy="...." Filterlist="...." filteraction=block description="...."

    Your help and comments are thankful.
    Tuesday, August 04, 2009 6:17 PM


  • i found the answer by using subnet mask.


    • Marked as answer by TuBong Wednesday, August 05, 2009 2:01 PM
    Wednesday, August 05, 2009 2:01 PM