IPSec between Win2000 and Win2000 Adv Server

  • Thread starter Thread starter Patrick
  • Start date Start date
P

Patrick

I am trying to establish an IPSec connection between the 2
PC's. I am using the default IPSec policies on both
machines and successfully created the session (as
indicated by ipsecmon). When I stopped it (net stop
policyagent)and restarted it (net start policyagent), the
connection does not get re-established. I did not change
any settings on either the IPSec client nor server. I
have not been able to re-establish the IPSec connection
for the life of me.
Any ideas what the problem may be??

Thanks,
Pat
 
You should configure the ipsec policy to be between just the two computers
based on IP address if you are in a domain. Ipsec negotiation is not
supported between domain computers and domain controllers which may be part
of your problem as kerberos authentication is failing due to inability to
communicate with a domain controller. Using netdiag is also very useful for
viewing if there are problems with ipsec by using " netdiag /test:ipsec /v
" which will show detailed ipsec statistics. netdiag is on the install disk
as part of the support tools package under the support/tools folder where
you will need to run the setup. --- Steve

http://support.microsoft.com/?kbid=254949
 
Back
Top