Ipseccmd is not supported on Vista. You can implement the same policy
config using NETSH IPSEC STATIC commands.
http://www.windowsitpro.com/Articles/ArticleID/93146/93146.html?Ad=1
http://www.windowsitpro.com/Windows/Article/ArticleID/92767/92767.html
Jason
"Michael W. Dietrich" <MichaelWDietrich[ at ]discussions.microsoft.com> wrote in
message news:BDF926DD-F881-4094-AAD2-C260C07E790D[ at ]microsoft.com...
[Quoted Text] > As a response to the MPACK-Threat (10.000 Servers in Europe poisoned by an
> iframe that loads MPACK Trojan) we issued a Domain Policy stopping
> connections to 64.38.33.13 as recommended by e.g. Avira.
>
> Additionaly we issued the IPSeccmd
>
> Ipseccmd -x -w REG -p "MPACK Server block" -r "MPACK Server block" -n
> BLOCK
> -f 0/255.255.255.0+64.38.33.13/255.255.255.255
>
> To every Client/Server which is not in the AD.
>
> If I try to issue the above mentioned command to a Vista machine I get the
> error message
>
> "The procedure entry point IPSecFreePolMem could not be located in the
> dynamic link library POLSTORE.DLL.
>
> Which gives my the doubt that IPSeccmd from the Windows XP Ressource Kit
> does probably not run with Vista.
>
> BUT: Is there a replacement in or for Vista?
>
> Regards
> Michael
|