Rules

Rules govern how and when an IPSec policy protects communication. A rule provides the ability to trigger and control secure communication based on the source, destination, and type of IP traffic.

Each rule contains a list of IP filters and a collection of security actions that take place upon a match with that filter list:

• Filter Actions
• Authentication methods
• IP tunnel settings
• Connection types

Each policy can contain one or multiple rules; one or all of which can be active simultaneously. For example, you might want to have one policy for a site router, but you require different security actions for intranet and Internet communications. One policy can be used for the router by creating multiple rules: one for each possible communication scenario.

Default rules are provided with IPSec, and encompass a variety of client and server based communications. These can be used as is, or modified to your requirements.

© 1985-2000 Microsoft Corporation. All rights reserved.