Securing WINS Traffic with Tunnels

  • Article

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

All WINS replication traffic sent over public networks should be encrypted. Encrypt the replication traffic by using Internet Protocol security (IPSec) or VPN tunnels. When choosing to encrypt replication traffic by using IPSec or VPN tunnels, do the following to further increase security:

  • Use the strongest level of encryption.

  • Use the Routing and Remote Access service to provide the IPSec or VPN tunnel.

  • Use Kerberos V5 or other certificate-based authentication for secure communication channels.

For more information about deploying IPSec, see "Deploying IPSec" in this book. For more information about virtual private networks and the Routing and Remote Access service, see "Deploying Dial-up and VPN Remote Access Servers" in this book. For more information about enabling Kerberos V5 authentication, see "Enabling Kerberos V5 authentication" in Help and Support Center for Windows Server 2003.