In this video i will configure a policy for IPSec tunnel mode.
In this lab, you will configure a policy for IPSec tunnel mode.
If this were not a simulated environment, this lab would require you to use two separate machines to which you have administrator access. Let’s call them machine A and machine B. Before you start, you would need their IP addresses, and you would need to have their local IPSec policies open in an MMC console.
- In the MMC console that should still be open from the previous lab, right-click the IP Security Policies On Local Computer node, then choose the Create IP Security Policy command. The IP Security Policy Wizard appears. Click Next.
- Name your policy Tunnel To B and then click the Next button.
- On the Requests For Secure Communication page, turn off the Activate Default Response Rule checkbox and click the Next button.
- When the summary page for the wizard appears, make sure the Edit Properties checkbox is on and then click Finish. The Tunnel To B Properties dialog box appears. Click the Add button on the Rules tab. The Welcome To The Create IP Security Rule Wizard begins. Click Next.
- In the Tunnel Endpoint page of the wizard, select The Tunnel Endpoint Is Specified By The Following IP Address and enter the IP address of machine B. Click Next.
- In the Network Type page, select Local Area Network (LAN). Click Next.
- Select the All IP Traffic radio button. Click Next.
- Select the Request Security (Optional) radio button on the Filter Action page. Click Next.
- In the Authentication Method page, select Active Directory Default (Kerberos V5 protocol). Click Next.
- Clear the Edit Properties checkbox, click Finish, then click OK. Leave the window open for the next lab.
