IPSEC for scripting



UWide User
07-09-2005, 11:53 PM
Hey can anyone provide an example of how to use IPSEC in a script/commandline
between a Win2000 and Win2003 server. I want to create a tunnel so I can use
Robocopy between the boxes like I use Rsync and SSH on my linux boxes. I'm
new to this so please be descriptive.

Thanks!

-----------
Anyone who knows everything, leads a pretty boring life

Roger Abell
07-09-2005, 11:53 PM
Well, if I have read the implications of your posting correctly,
that is not quite how it is done.

IPsec may be used to define how and with what a machine may
communicate over IP. It is done for the machine.

So, if on each of the involved machines in your robo scenario
standard IPsec policy rules were used to state that when one
of these speaks with the other that there would have to be
a hard association and encryption of the packet content, then
whenever those two communicated it would be within IPsec
protected packets.

--
Roger Abell
Microsoft MVP (Windows Security)

"UWide User" <UWideUser@discussions.microsoft.com> wrote in message
news:8E754F6B-6F76-4646-926F-62071F9B842D@microsoft.com...
> Hey can anyone provide an example of how to use IPSEC in a
script/commandline
> between a Win2000 and Win2003 server. I want to create a tunnel so I can
use
> Robocopy between the boxes like I use Rsync and SSH on my linux boxes. I'm
> new to this so please be descriptive.
>
> Thanks!
>
> -----------
> Anyone who knows everything, leads a pretty boring life

Mark Gamache
07-09-2005, 11:54 PM
If you are free to install software on the servers, there are a couple of
great ssh servers for windows. I use them and putty for all of that

--
Mark Gamache
Certified Security Solutions
http://www.css-security.com



"UWide User" <UWideUser@discussions.microsoft.com> wrote in message
news:8E754F6B-6F76-4646-926F-62071F9B842D@microsoft.com...
> Hey can anyone provide an example of how to use IPSEC in a
> script/commandline
> between a Win2000 and Win2003 server. I want to create a tunnel so I can
> use
> Robocopy between the boxes like I use Rsync and SSH on my linux boxes. I'm
> new to this so please be descriptive.
>
> Thanks!
>
> -----------
> Anyone who knows everything, leads a pretty boring life

Lionel Fourquaux
07-09-2005, 11:54 PM
"Mark Gamache" <mark.gamache@css-security.com.nospam> a écrit dans le
message de news: OHsDmvecFHA.3404@tk2msftngp13.phx.gbl...
> If you are free to install software on the servers, there are a couple of
> great ssh servers for windows. I use them and putty for all of that

Unfortunately, some features of ssh (authentication by RSA or DSA key) are
not compatible with the Windows security model, and many such servers (if
not all) end up using undocumented hacks to provide a pseudologin (no
network identity) in this case.


IPSEC for scripting