Information Technology Reference
In-Depth Information
10.
If you selected TCP or UDP in step 9, select one of the following for the source port:
From Any Port:
This filter will apply to traffic originating from any port.
From This Port:
This filter will apply only to traffic originating from the port you specify.
11.
If you selected TCP or UDP in step 9, select one of the following for the destination port:
To Any Port:
This filter will apply to traffic being sent to any port.
To This Port:
This filter will apply only to traffic being sent to the port you specify.
12.
Click OK to save the new filter.
To edit or delete an existing filter, follow these steps:
1.
Open the Group Policy Management Console or the IP Security Policy Management
MMC snap-in.
2.
Navigate to Computer Configuration\Windows Settings\Security Settings.
3.
Right-click the IP Security Policies node and select Manage IP Filter Lists and Filter
Actions.
4.
Do one of the following:
To edit an existing filter, select the filter and click Edit.
To delete an existing filter, select the filter and click Remove.
Using a Command-Line Interface
The following command creates a new IP filter for the Web Server filter list, with a source IP
address of my IP address (
ME
), a destination IP of any IP address, and a destination port of TCP 80:
> netsh ipsec static add filter filterlist = "Web Server" srcaddr = ME
dstaddr = ANY protocol = TCP description = "Controlling web server traffic"
mirrored = yes dstport = 80
The following command deletes the IP filter created in the previous example:
> netsh ipsec static delete filter filterlist = "Web Server" srcaddr = ME
dstaddr = ANY protocol = TCP description = "Controlling web server traffic"
mirrored = yes dstport = 80
■
Note
There is not a
netsh
command syntax to modify an existing filter list.
