Jump to content
Compatible Support Forums
Sign in to follow this  
DS3Circuit

How to block IP address (NOT URL or UNC name)?

Recommended Posts

Interesting ....

 

 

A first thought I am thinking of modifying local ARP tables.

 

APK you got me into doing a GOOGLE on this one.

 

**EDIT**

 

Wouldnt it be easier just to mail you a PIX firewall laugh

 

**EDIT2**

 

Scratch the ARP notion .... was hoping mapping a particular IP to the local NIC MAC would work ....

Share this post


Link to post
Share on other sites

in xp u can learn the firewall stuff

it's long and painfull but works quite well

 

ipsec policies can be reached from the gpedit.msc

the are tons of things u can do from there.

after creating or altering apolicy dont forget to "assign" it

or nothing will happen

Share this post


Link to post
Share on other sites

Very Nice Jerry, that idea of using IPsec policies works .... and here's how you do it laugh

 

I will be using nd.edu as an example ... its a football thing laugh

 

Under Local Security Settings / IP Security Policies

1. Create a new IP Filter list

2. Source IP is My IP address

3. Destination (in this example) is 129.74.250.101 (nd.edu)

4. Protocol is any

5. Create a new IP Security Policy (use Kerberos 5 authentication)

6. Add an IP Security Rule (this rule is not a tunnel) (all network connections)

7. Add the new IP filter list that you just created. (require security)

8. Assign the new policy

 

Upon doing this I CAN go to http://www.nd.edu but I CANNOT go to http://129.74.250.101

 

Scripting can be done with this tool:

http://www.microsoft.com/windows2000/techinfo/reskit/tools/existing/ipsecpol-o.asp

 

I imagine this is what you were looking for APK?

Share this post


Link to post
Share on other sites

thnx

the xp firewall is very good but a pain to configure (as u can see)

 

it looks like it worked out well

 

maybe dosfreak or someone can tell us how to automate or even save for the next install of xp

:x

 

btw this is what i did for a firewall before norton made an xp compatible one

laugh

Share this post


Link to post
Share on other sites

Importing and Exporting Policies is seen here to save for a rainy day

 

http://www.microsoft.com/technet/treevie...PSEC_export.asp

 

And if you truly wished to have these installed automatically on the initial install of windows, you could use CMDLINES.TXT

 

These are far easier to maintain, manage, and deploy in a domain environment

 

*EDIT*

LOL .... APK was typing the answers at the same time I was ... woah

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

×