G
Guest
I have an Internet-VPN setup using IPsec and company owned PCs will be using a combination of non-company LAN , broadband and dialup Internet access. I am happy that while the IPsec-VPN client is running that the PC is isolated from the Internet, but system will likely be "online" without the VPN-Client running ![Frown :( :(](/styles/default/custom/smilies/frown.gif)
We wish to deny all direct Internet access and only permit access to company service through the VPN-tunnel.
Is the IP filtering (IPsecurity ?) facility in Windows capable of limiting IP connections to only IPsec, preferably to a single destination. I have looked at Personal Firewalls but not found one that can be restrictive.
To complicate matters, we wahnt the same XP system to have full IP contivity to company LAN and WAN while directly connected to a company LAN.
So, if Windows TCP/IP filtering can do it, can this only be invoked only when a condition fails e.g. when a repetative DNS query to company internal DNS fails - invoke the filters. A reboot would be okay.
Any help and suggestions welcome.
John Hamilton
Edinburgh (UK)
![Frown :( :(](/styles/default/custom/smilies/frown.gif)
We wish to deny all direct Internet access and only permit access to company service through the VPN-tunnel.
Is the IP filtering (IPsecurity ?) facility in Windows capable of limiting IP connections to only IPsec, preferably to a single destination. I have looked at Personal Firewalls but not found one that can be restrictive.
To complicate matters, we wahnt the same XP system to have full IP contivity to company LAN and WAN while directly connected to a company LAN.
So, if Windows TCP/IP filtering can do it, can this only be invoked only when a condition fails e.g. when a repetative DNS query to company internal DNS fails - invoke the filters. A reboot would be okay.
Any help and suggestions welcome.
John Hamilton
Edinburgh (UK)