How to Block TCP/UDP Ports using IPsec in Windows

Uma Mahesh.G
Senior QA Engineer
gunipati81@gmail.com

Microsoft Management Console

Creating IP Security Policy
Creating an IPSec Filter List
Managing Filter Actions
Creating IP Security Rule Wizard
Assigning the Policy

1. Microsoft Management Console

1. Start > Run > Type “MMC ( Microsoft Management Console )”

2. Go to File Menu and select Add/Remove Snap-in
3. Select Add “IP Security Policy Management“snap- in and select your local computer

2. Creating IP Security Policy

Blocking TCP/UDP Ports using -1- Created by

IPsec in Windows Uma Mahesh
 1. Select IP Security Policies on Local Computer and select Action menu to create a IP
Security policy for your local computer
2. After Getting IP Security Policy Wizard, click Next
3. Give the name of the IP Security Policy : “Blocking TCP and UDP Ports” , click Next
4. In the Requests for Secure communication , click Next
5. Default Response Rule Authentication Method, select Active Directory Default, Click Next
and Select “Yes”
6. In the completing the IP Security Policy Wizard, Click Finish.

Creating an IPSec Filter List

Blocking TCP/UDP Ports using -2- Created by

IPsec in Windows Uma Mahesh
 1. Select IP Security Policies on Local Computer and select Action menu to Manage IP
filter lists and filter actions for your local computer
2. Select Mange IP Filter Lists Tab and select “All IP Traffic”, click Add button
3. Give the name of the Filter “Filter”, click Add button
4. In the “IP Filter Wizard”, click Next
5. Give the IP filter description in the description wizard, Click Next
6. Specify the Source Address: “Any IP Address” for the IP Traffic, click Next
7. Specify the Destination Address: “My IP Address” for the IP Traffic, click Next
8. Select the IP Protocol Type: TCP or UDP, click Next
9. Select the IP Protocol port: From Any port - To this port: 139, click next and finish the
IPSec Filter List wizard.

Managing Filter Actions

Blocking TCP/UDP Ports using -3- Created by

IPsec in Windows Uma Mahesh
 1. Select Mange Filter Actions from the Manage IP filter lists and filter actions wizard.
2. Click Add button to create Filter Action and in the IP Security Filter Action Wizard, click
Next
3. Give the name of the Filter Action : “Block” , click Next
4. Select Block option from the filter action general options, click Next
5. Select Finish button to complete the wizard.

Blocking TCP/UDP Ports using -4- Created by

IPsec in Windows Uma Mahesh
Creating IP Security Rule Wizard

1. Select the created IP Security Policy : “Blocking TCP and UDP Ports” and Select
“Properties”
In the Blocking ports properties window , click Add to create a rule
In the Create IP Security Rule Wizard, click Next
In the Tunnel End point , click Next
Select Network Type : “All Network Connections” and click Next
Select IP Filter List as “ Created Filter : Filter”, click next
Select the Filter Action as “Created Filter Action : Block”, click Next
Select Finish button to complete the wizard.

Assigning the Policy

Select the created Policy: Blocking TCP and UDP Ports do Right Click and select assign to
assign the policy.

Blocking TCP/UDP Ports using -5- Created by

IPsec in Windows Uma Mahesh