+ Post New Thread
Results 1 to 7 of 7
Wireless Networks Thread, ipsec in Technical; westfield setup ipsec on our servers so laptops can connect to sims on the admin network. laptops and dcs are ...
  1. #1
    browolf's Avatar
    Join Date
    Jun 2005
    Location
    Mars
    Posts
    1,524
    Thank Post
    106
    Thanked 88 Times in 74 Posts
    Blog Entries
    46
    Rep Power
    40

    ipsec

    westfield setup ipsec on our servers so laptops can connect to sims on the admin network. laptops and dcs are in "secured" OUs. they have group policies with ip sec settings in.

    some laptops are logging on uber slowly today but if i try and sniff the traffic it's all encrypted ESP. I've rememoved the laptop from the secured laptops and rebooted bou but the traffic is still being encrypted. is there anyway to get unencrypted traffic?

  2. #2

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,803
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224

    Re: ipsec

    No, thats the point.

  3. #3
    browolf's Avatar
    Join Date
    Jun 2005
    Location
    Mars
    Posts
    1,524
    Thank Post
    106
    Thanked 88 Times in 74 Posts
    Blog Entries
    46
    Rep Power
    40

    Re: ipsec

    so if i was to remove the DCs from the secured DCs OU then the traffic would become unencrypted?

  4. #4

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,803
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224

    Re: ipsec

    Depends if windows feels like it. I suspect you'd have to enforce unencypted traffic in your other OU(s).

  5. #5
    browolf's Avatar
    Join Date
    Jun 2005
    Location
    Mars
    Posts
    1,524
    Thank Post
    106
    Thanked 88 Times in 74 Posts
    Blog Entries
    46
    Rep Power
    40

    Re: ipsec

    normal computers dont have encrypted traffic so if i make a test OU and put the laptop in it and somehow....force encryption off for that OU the laptop traffic should become visible.

  6. #6

    Join Date
    Jun 2005
    Posts
    223
    Thank Post
    6
    Thanked 8 Times in 8 Posts
    Rep Power
    30

    Re: ipsec

    Depending on how its been set i'm pretty sure you would have to remove the policy from the server as well. There's some instructions here

    http://www.microsoft.com/resources/d...in_policy.mspx

    but the last line may be appropriate for you

    'If you need to disable IPSec for only a specific computer, you can disable the IPSEC Services service on that computer.'

  7. #7
    browolf's Avatar
    Join Date
    Jun 2005
    Location
    Mars
    Posts
    1,524
    Thank Post
    106
    Thanked 88 Times in 74 Posts
    Blog Entries
    46
    Rep Power
    40

    Re: ipsec

    we discovered that if we rename the laptops and remove them from the ipsec OU. logging on goes back to the normal speed.

SHARE:
+ Post New Thread

Similar Threads

  1. L2TP/IPSEC based VPN using ISA Server
    By Norphy in forum Wireless Networks
    Replies: 2
    Last Post: 22nd June 2007, 02:13 PM
  2. IPSec
    By k-strider in forum Wireless Networks
    Replies: 5
    Last Post: 24th October 2006, 10:05 PM
  3. VPN showdown: IPSec vs SSL vs client-less SSL
    By ITWombat in forum Wireless Networks
    Replies: 9
    Last Post: 25th September 2006, 09:35 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •