IPSec Policy Extension Technical Reference

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

Internet Protocol Security (IPSec) consists of a set of open standards designed to ensure private, secure communications over Internet Protocol (IP) networks, through the use of cryptographic security services.

IPSec uses policy-based management to define IPSec configuration options and security settings to enable two systems to agree on how to secure traffic between them. To configure IPSec security services, you create IPSec policies. An IPSec policy is a collection of settings and rules that determine IPSec behavior, including the types of network traffic IPSec examines, whether to permit or block traffic, whether to negotiate security, and how to authenticate an IPSec peer.

IPSec is included in the Microsoft Windows Server 2003, Standard Edition; Windows Server 2003, Enterprise Edition; Windows Server 2003, Datacenter Edition; Windows Server 2003, Web Edition operating systems; the 64-bit editions of Windows Server 2003, and Windows 2000 Server and Windows 2000 Professional, Windows XP Professional, and Windows XP Home Edition operating systems (Kerberos authentication is not available in Windows XP Home edition).

In this subject

• What Is IPSec Policy Extension?

• How IPSec Policy Extension Works

• IPSec Policy Extension Tools and Settings