I recently set up an IPsec environment (specifically, server isolation) on Windows Server 2012 R2, and had a hard time getting clients to talk to the server. The last problem I had to solve involved the endpoint configuration in the Connection Security Rules. Initially, I had set both endpoints to be any address, thinking that the port and protocol rules would make the rule apply to what I wanted. Making Endpoint 1 be the machine running the isolated service made the connections work.
This may or may not be a bug/surprise in Windows Server, but it looks like it fixed my problem. At least it's another thing to try if you're having IPsec issues.
No comments:
Post a Comment