This entry was posted on Friday, May 16th, 2008 at 9:28 pm and is filed under Windows. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
Hoaxblog.com
Everything is hoax!
Blogroll
Windows 2008 has made few enormous development over windows 2003. One of the most important change they have made is integration of IPSec and Windows Firewall both at once. Now with windows firewall, you can block an IP address from accessing your windows server or filter your Tcp/IP requests. I was trying to find a way to block ips using windows and i failed to configure IPSec Manually, so i thought to give this a try. First time, i got blocked by my own server, and had to IPMI my server to fix this :P, but finally, i got this working 
To do this Ip filtering, go to “Server Manager” of Windows 2008
Here under the configuration menu there is a option for Windows Firewall, if you expand it, you will get “Inbound Rules”.
Right click on “Inbound Rules” and click “New Rule”
On the “Rule Type” select “Custom” press ‘Next’
Now, select the option “All Programs” and press ‘next’
For protocol, keep “Any” and press “next”
In this box, keep the first one marked as “All IP addresses” for local IP options.
On the remote IP box, select “These IP addresses” and use the ADD button to add your IP addresses in the blacklist.
Now press next, put a name for the ruleset and finish. You are done. To add more IPs in the list, just edit the custom ruleset from all inbound rules by right clicking on it and select properties. Go to the “Scope” tab and add new IPs in the “Remote IP” box to block them.
Its really the best and easy way to block ip addresses without manually configuring a IPsec policy. Basically, it uses the integrated IPsec policy of Windows firewall and works perfect!
So start blocking intruders 
Leave a Reply