Linking Filter Actions and Filter Lists

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

Filter lists and filter actions are linked together to form a rule in an IPSec policy. Although filter lists can be reused in different policies, they cannot be reused in the same policy. Filter actions can be reused by rules in the same policy, and they can be shared among different policies.

You can manage IPSec policy in one of two ways:

• Create a new policy and define the set of rules for the policy, adding filter lists and filter actions as required.

  In this method, you create an IPSec policy first and then add and configure rules. Filter lists (specifying traffic types) and filter actions (specifying how the traffic is treated) are added during rule creation.

• Create the set of filter lists and filter actions, and then create the policies and add rules that combine the filter lists with filter actions.

  In this method, you configure the filter lists and the filter actions. Next, you create IPSec policies and add rules that combine the appropriate filter list with the appropriate filter action. Additionally, you specify authentication methods, connection types, and tunnel settings.