Guest cyberwatchers Posted March 22, 2009 Posted March 22, 2009 I run domain enviornment from a 2003 domain controller. The machines are XP and Vista machines. I have folder redirection going to a machine running Vista Enterprise. I decided to secure the data to and from that machine using IPSec. This works especially nice due to laptop users and the WiFi. I am running any any for the DC so policy and what have you works fine. (between machines and the Domain Controller) "Require Security" with Authentication being Kerberos of course since all machines in question are joined to the domain. (between machines and the file server) I setup IPSec using Group Policy and all the machines are in the same group. The filter I use for the "Require Security" filter action allows ANY from the Source being the Sever hosting the folder redirection, and the Destination being the IP of a particular machine. This works great between a laptop user runing XP, and a desktop user running XP. However when I just added my new laptop running Vista, It does not even attempt to negotiate. Ping requests time out. I have added it just as the others which are working great. The only thing I can think of is that because this new laptop runs Vista just as the Server hosting the files for the folder redirection does, maybe the two are trying to use something that my Group Policy is not allowing? I have turned the firewall off and testes as well. Require Security Filter: uses AH Integrity = None ESP Confidential = 3DES or DES ESP Inegrity = SHA1 or MD5 I am thinking when two Vista OS's try to communicate using IPSec maybe my policy is missing something? Again as I have stated above, all other machines being XP communicating with the Vista (not the laptop) server hosing the files works fine. Any help would be great thanks! -- cyberwatchers Quote
Guest cyberwatchers Posted April 26, 2009 Posted April 26, 2009 ::Well apparently no one knows the answer to my question. I found that the IKEEXT service was disabled. It is needed in order for IKE negotiations to take place during PHASE 1. :: :: ::::I enabled it and it works. However it causes Vista to Blue Screen. (BSOD):: :: ::::Anyone have this type of behavior? :: ::Thanks.:: -- cyberwatchers Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.