Computer Performance, Windows Server 2003

 

IPSec in Windows Server 2003

Introduction to IPSec in Windows Server 2003

IPSec deals with encrypting data over the network.  What IPSec does is protect data against those bad people with their protocol analysers.  Encryption prevents these network monitors capturing packets and reading sensitive information inside.  In my mind's eye, using IPSec is like putting one of those clear cellophane envelopes in a sealed parcel.

Topics for IPSec

  ‡

Attacks that you are protecting against

  • Network Monitoring - Protocol Analysers capturing data
  • Data Modification - Sending counterfeit data in your name e.g. alter the delivery address
  • Password cracking - Intruders capturing your password then logging to your network
  • Address Spoofing - Appear to come from a different email address

IPSec OptionsIPSec in Windows Server 2003

The best way to set IPSec is through Group Policies, alternatively, you can check through TCP/IP properties, Advanced.

IPSec is Disabled by default, here are the other three settings

  1. Client (Respond only) Means 'I will speak IPSec if you wish'.
  2. Server (Request Security) Means 'I would like to speak IPSec, but if you cannot comprehend IPSec then I will speak normally.
  3. Secure Server (Require Security) Means 'I will only speak with clients who understand IPSec'.

Guy Recommends: SolarWinds LANSurveyorSolarwinds LANSurveyor

LANSurveyor will produce a neat diagram of your network topology.  But that's just the start; LANSurveyor can create an inventory of the hardware and software of your machines and network devices.  Other neat features include dynamic update for when you add new devices to your network.  I also love the ability to export the diagrams to Microsoft Visio.

Finally, Guy bets that if you take a free trial of LANSurveyor then you will find a device on your network that you had forgotten about, or someone else installed without you realizing!

Download a Free Trial of LANSurveyor

IPSec ModesIPSEC in Windows Server 2003

Transport Mode is designed to ensure that traffic between two machines is secure, for example the Financial Director and the CEO.

Tunnel Mode is to secure traffic between two networks and is particularly useful for VPN traffic where you need encryption over the internet.

The diagram on the right gives a hint that there are a surprising number of setting and properties for IPSec.  In particular I recommend that you check out the filtering tabs.  (If necessary click and enlarge the thumb-nailed picture)

Encryption Schemes

Remembering that the whole purpose is to encrypt the data leads me to check out the encryption settings.

Authentication

  • SHA - Secure Hashing Algorithm. US government 160-bit encryption
  • MD5 - Message Digest 5.  Widespread for commerce 138-bit encryption

 

Packet Encryption

  • 56-bit DES (Data Encryption Standard)
  • 40-bit DES (France uses)
  • 3 DES (Triple 56-bit highest level of encryption utilizes the processor significantly)

Related topics

 *


Google

Web  This website

Review of Orion NPMGuy Recommends: Orion's Network Performance Monitor (NPM)

Orion NPM is designed for detecting network outages.

Network-centric views (screenshot) make it easy to see what's working, and what needs your attention.

Download your free trial of Orion's network performance monitor

 

Home Copyright © 1999-2009 Computer Performance LTD All rights reserved

Please report a broken link, or an error.