Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

How to Configure IPSec between Windows 2003 Server

Status
Not open for further replies.

bindu143

Technical User
Sep 8, 2009
40
GB
Hi
I have a Intranet Server which In my domain and its a member server of our domain . At the moment users in my LAN are able to access the Intranet from their web browser. Iam going to move this intranet server to the DMZ. The reason to move this intranet server to DMZ is for the external world to access it .We will be creating user accounts for all external user in our domain controller.

Now I want to establish a secure communication to happen between my DC and Intranet server, because the authentication request comes from external world.

I have made two test PC one as my Win2003 DC and other as a Win2003 intranet server(Member Server) and both are connect ed through a crossover cable.Iam trying to configure an IP sec communications between them.Please send me some video links or some How to do material to implement on the test PCs before I implement on my network. So that when I ping the from one server to another the packets gets encrypted.
I tried configuring IPsec and tried to capure Packets through wire shark but the packets dosent get encrypted. I think I have not correctly configured IPsec previously.
Iam not sure if we need to configure IPsec differently Between Windows 2003 DC and a windows 2003 member server.

If so Any ideas will be greately appreciated.
Thankyou

 
As Per the below link it says
Create IPSec Policy
Typically, a Windows Server 2003 gateway is not a member of a domain, so a local IPSec policy is created. If the Windows Server 2003 gateway is a member of a domain that has IPSec policy applied to all members of the domain by default, this prevents the Windows Server 2003 gateway from having a local IPSec policy. In this case, you can create an organizational unit in Active Directory, make the Windows Server 2003 gateway a member of this organizational unit, and assign the IPSec policy to the Group Policy object (GPO) of the organizational unit. For more information, see the "Creating, modifying, and assigning IPSec policies" section of Windows Server 2003 online Help.

But in my situation I need to establish a IPsec between my Domain Controller and my Intranet Server which is a member server at the moment and will be moved to my DMZ. If so please tell me exactly what type of setup I need to do for a IPsec to work properly between them.Iam not very techy please let me know the steps or any how to do materials. Appreciated and Thanks for your help
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top