Understanding IPSec Protection During Computer Startup
Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2
Windows Server 2003 IPSec provides several options for protection during computer startup. To provide maximum protection against attacks during computer startup, it is highly recommended that you configure and assign a persistent IPSec policy. If you do not configure a persistent policy, the IPSec driver cannot enforce IPSec policy until domain-based or local IPSec policy is retrieved and applied.