Information Technology Reference
In-Depth Information
Solution
Using a Graphical User Interface
1.
Open the Group Policy Management Console or the IP Security Policy Management
MMC snap-in.
2.
Navigate to Computer Configuration\Windows Settings\Security Settings.
3.
Right-click IP Security Policies, select All Tasks, and then select Import Policies.
4.
Browse to the location of the .ipsec file and click Open.
Using a Command-Line Interface
The following command imports the current IPSec configuration to
c:\temp\config.ipsec
:
> netsh ipsec static importpolicy c:\temp\config.ipsec
How It Works
In a network environment that does not use Group Policy, you can use .ipsec files to import
IPSec security policies that were configured on another computer. This feature allows you to
deploy the same IPSec configuration to multiple Windows Server 2003 computers that do not
use Group Policy, as well as to quickly roll back IPSec to a previous configuration.
■
Note
When you import IPSec policies, the import process will overwrite any policies configured on the
local computer that have the same name as one being imported. Policies with unique names will be unaffected.
See Also
Recipe 7-11 for exporting IPSec policies
Microsoft TechNet: “Import IPSec Policies” (
http://technet2.
microsoft.com/WindowsServer/en/Library/
38dcee43-6829-4331-8fce-3b9fee963e491033.mspx?mfr=true
)
7-13. Configuring the Default Response Rule
Problem
You want to enable or disable the default response rule in an IPSec policy. The default
response rule ensures that a computer will respond securely to any traffic to which no other
IPSec rules apply.
