Home > Developer > Windows

Windows Server IP Security Policy--How to block IP

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

In a Windows Server 2008 environment, IP Security policy enables you to block all IPs for a specified IP or for a complete network segment. Easy to understand the whole operation process can be divided into three parts.

    1. Create an IP filter list;

    2. Create an Execution action (license or block, etc.);

    3. Create an IP Security policy to combine lists and actions;

One, create IP filter list

1. In start, locate Administrative Tools, check the local security policy to run, or enter the command "Secpol.msc" to open the Local Security policy window.

650) this.width=650; "src=" http://p3.pstatp.com/large/191c0007460cfe6dd81d "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

2. In the Local Security Policy window, right-click IP Security Policy, select Manage IP filter lists and filter actions on local computer.

650) this.width=650; "src=" http://p2.pstatp.com/large/191f00072fc19fe1919a "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

3. Select Manage Filter list in the Manage IP filter list and filter Actions window and click Add below.

650) this.width=650; "src=" http://p1.pstatp.com/large/191e0007431ebeb1eddd "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

4. Enter the filter list name in the Manage Filter List window and click Add to add a filter.

650) this.width=650; "src=" http://p3.pstatp.com/large/191d00019ec882af7918 "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

5. Click "Next", fill in the Description information and click "Next" again.

6. In the IP Traffic Sources window, select "A specific IP address or subnet" from the Source Address drop-down menu and enter the IP address you want to block and click "Next". Here is an example: 210.174.169.130, if the block is a network segment of all IP such as: 210.174.169.0~210.174.169.255, here you need to enter 210.174.169.0/24.

650) this.width=650; "src=" HTTP://P3.PSTATP.COM/LARGE/191C0007460BBC34ECD1 "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

7. In the "IP Traffic Destination" window, select "My IP Address" in the destination address and click "Next".

650) this.width=650; "src=" Http://p1.pstatp.com/large/191f00072fc23afd2c50 "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

8. Select the protocol type "any" in the "IP Protocol Type" window and click "Next".

650) this.width=650; "src=" http://p3.pstatp.com/large/191d00019ec94050091e "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

9. Click "Finish" and go back to the "Manage Filter List" window to see the newly created filter, then click "OK".

650) this.width=650; "src=" http://p3.pstatp.com/large/191f00072fc33c98f5c2 "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

Second, create the execution action

1. Go back to the Manage IP filter list and filter Actions window, this time select "Manage Filter Actions" and click "Add" below.

650) this.width=650; "src=" Http://p1.pstatp.com/large/1919000739cc926314e1 "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

2. Click "Next", enter an action name in the "Filter Action name" window and click "Next".

650) this.width=650; "src=" Http://p1.pstatp.com/large/191e0007432104333de9 "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

3. Select Block in the Filter Action General Options window and click Next.

650) this.width=650; "src=" Http://p3.pstatp.com/large/191e000743208e6f94a8 "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

4. Click "Finish", go back to "Manage IP filter list and filter Actions" window, click "Apply" "OK".

650) this.width=650; "src=" http://p9.pstatp.com/large/1919000739cd88b8e874 "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

Iii. Creating IP Security Policies

1. In the Local Security Policy window, right-click IP Security Policy, on local computer, select Create IP Security policy.

650) this.width=650; "src=" http://p3.pstatp.com/large/191f00072fc4146502c0 "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

2. Click "Next", enter a policy name in the "IP Security Policy Name" window and click "Next".

650) this.width=650; "src=" http://p3.pstatp.com/large/1921000711e0199e9e1d "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

3. In the "Secure Communication Request" window, click "Next" directly.

650) this.width=650; "src=" Http://p3.pstatp.com/large/191c0007460dff82a9e9 "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

4. By default, "Edit Properties" is selected, click "Finish". Click "Add" in the Security Policy Properties window that follows.

650) this.width=650; "src=" Http://p3.pstatp.com/large/1919000739ce6fbbaac2 "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

5. Click "Next", select "This rule does not specify tunnel" in the "Tunnel endpoint" window and click "Next".

650) this.width=650; "src=" http://p9.pstatp.com/large/1921000711e1c802c4a4 "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

6. Select "All network Connections" in the "Network Type" window and click "Next".

650) this.width=650; "src=" http://p1.pstatp.com/large/191f00072fc52ea12367 "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

7. Select the previously created list and click "Next".

650) this.width=650; "src=" http://p3.pstatp.com/large/19200007415aae83f57b "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

8. Select the previously created action and click "Next".

650) this.width=650; "src=" Http://p9.pstatp.com/large/191c0007460ec5fd35ac "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

9. Click "Done", in the "Local Security Policy" window, click "IP Security Policy, local computer", in the right window appears the newly created security policy, right-click the policy select "Assign".

650) this.width=650; "src=" http://p3.pstatp.com/large/191c0007460fe1781448 "alt=" Windows Server IP Security Policy--How to block IP " style= "border:0px;margin:10px auto;"/>

Summary

At this point, the IP Security policy is implemented to block the entire IP of a given IP and a complete network segment.


This article is from the "12379439" blog, please be sure to keep this source http://12389439.blog.51cto.com/12379439/1908742

Windows Server IP Security Policy--How to block IP

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
how to remove ip block how to block certain ip addresses how to block ip address from tracked how to bypass ip address block how to block ip address from website how to know server name from ip how to know dns server ip address
Related Article
Windows Server 2016-active Directory Domain Services Port rollup
Using word to convert a PDF file to a DOC file

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More