Set an active IP filter list for a rule: Internet Protocol Security (IPsec)

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

Create a console containing IP Security Policies. Or, open a saved console file containing IP Security Policies.
Double-click the policy that you want to modify.
Double-click the rule that contains the IP filter list you want to modify.
On the IP Filter List tab, select the option that precedes the name of the IP filter list that you want to designate as the active filter list for this rule.

The IP filter list you selected is now the active filter list for the rule.

Notes

To manage Active Directory-based IPSec policies, you must be a member of the Domain Admins group in Active Directory, or you must have been delegated the appropriate authority. To manage local or remote IPSec policies for a computer, you must be a member of the Administrators group on the local or remote computer. If the computer is joined to a domain, members of the Domain Admins group might be able to perform this procedure. For more information, see Default local groups and Default groups.
To create a console containing IP Security Policies, start the IP Security Policies snap-in. To open a saved console file, open MMC. For more information, see Related Topics.
If the option preceding the name of an IP filter list is not selected, the IP filter list will not be set as active for the rule.

Information about functional differences

Your server might function differently based on the version and edition of the operating system that is installed, your account permissions, and your menu settings. For more information, see Viewing Help on the Web.