Understanding IPSec Protection During Computer Startup

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

Windows Server 2003 IPSec provides several options for protection during computer startup. To provide maximum protection against attacks during computer startup, it is highly recommended that you configure and assign a persistent IPSec policy. If you do not configure a persistent policy, the IPSec driver cannot enforce IPSec policy until domain-based or local IPSec policy is retrieved and applied.