PPTP and IPSec Policy

[Dennis van Vroonhoven]

Hi there,

I have a W2k Server (SP4) with routing and remote access installed. I'm able
to set up a vpn over pptp and also in combination with an ipsec policy with
a shared secret. If I unassign the ipsec policy at server-end the client
will not be able to make a connection. But when at both sides no ipsec
policies are defined they also are able to connect. Is it possible to
require an ipsec policy (defined at server-end)?

Thanks,
Dennis

 

[David Beder [MSFT]]

I'm not completely sure I understand the question, but I think you're
looking for an implementation that relys on the default response rule.
By setting the ipsec policy on the client to default response (in the IPSec
Management snap-in I think it's called the Client policy), you should be
able to change policy settings on the server (even turn off ipsec) without
having to reconfigure the client as much (ie, you'll need to update shared
secrets when they change).