Utility to block traffic to one specific IP address

Hello,

Running Windows Server 2003 SP2 on a multi-homed machine. Is there a
Windows utility that I can use to temporarily block all traffic to
(and possibly from) a specific IP address on the server?

For example, server has following addresses

10.12.1.2
10.12.1.3
10.12.1.4

I want to temporarily block all incoming traffic to 10.12.1.3 on the
fly. Meaning, I don't want to use something that will require a reboot
before it will take effect. Also, I need to be able to unblock it just
as quickly. I need to run a series of tests where I will be blocking
and unblocking the IP repeatedly. IPSec sounds like one option. Are
there other options?

All the traffic will be restricted to an internal LAN.

Thanks,
pimy

<(E-Mail Removed)> wrote:
> Hello,
>
> Running Windows Server 2003 SP2 on a multi-homed machine. Is there a
> Windows utility that I can use to temporarily block all traffic to
> (and possibly from) a specific IP address on the server?
>
> For example, server has following addresses
>
> 10.12.1.2
> 10.12.1.3
> 10.12.1.4
>
> I want to temporarily block all incoming traffic to 10.12.1.3 on the
> fly. Meaning, I don't want to use something that will require a reboot
> before it will take effect.

If each IP address is on a different NIC, why don't you disable the
10.12.1.3 NIC ? It is quick and does not require a restart.

ThePro

<(E-Mail Removed)> wrote in message
news:(E-Mail Removed) ups.com...
> Running Windows Server 2003 SP2 on a multi-homed machine. Is there a
> Windows utility that I can use to temporarily block all traffic to
> (and possibly from) a specific IP address on the server?
>
> For example, server has following addresses
>
> 10.12.1.2
> 10.12.1.3
> 10.12.1.4

You have bigger problems here.

If these are all on different Nics then,...you just can't do that,...unless
you are using Nic Teaming. IP addresses from the same subnet need to be on
the same Nic.

IP Addresses from different subnet must be on different Nic except for VLANs
while running VLAN capable Nics. There is another exception to that but I
not going to get into that because it is not relevant here.

If these are all on the same Nic than traffic leaving the machine is always
going to come "from" the Primary IP,...the others may "receive" but they
don't send.

I don't think there is a real answer to your original question because I
think the original premise leading up to it is incorrect.

--
Phillip Windell
www.wandtv.com

The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------

When I said multi-homed, I meant a single link with multiple
addresses. Sorry for not being more clear about that.

On Oct 11, 9:03 am, "ThePro" <mcthep...@nospam.hotmail.com> wrote:
> <robpimen...@yahoo.com> wrote:
> > Hello,
>
> > Running Windows Server 2003 SP2 on a multi-homed machine. Is there a
> > Windows utility that I can use to temporarily block all traffic to
> > (and possibly from) a specific IP address on the server?
>
> > For example, server has following addresses
>
> > 10.12.1.2
> > 10.12.1.3
> > 10.12.1.4
>
> > I want to temporarily block all incoming traffic to 10.12.1.3 on the
> > fly. Meaning, I don't want to use something that will require a reboot
> > before it will take effect.
>
> If each IP address is on a different NIC, why don't you disable the
> 10.12.1.3 NIC ? It is quick and does not require a restart.
>
> ThePro- Hide quoted text -
>
> - Show quoted text -

In news:(E-Mail Removed) ups.com,
(E-Mail Removed) <(E-Mail Removed)> typed:
> When I said multi-homed, I meant a single link with multiple
> addresses. Sorry for not being more clear about that.

You can use IPSec or a third party firewall (Symantec, McAfee, NetworkIce,
etc).

How To: Use IPSec for Filtering Ports and Authentication
http://msdn2.microsoft.com/en-us/library/aa302366.aspx

Step-by-Step Guide to Internet Protocol Security (IPSec)Internet Protocol
Security (IPSec) provides application-transparent encryption services for IP
network traffic as well as other network access protections ...
http://technet.microsoft.com/en-us/l.../bb742429.aspx

Guide to Internet Protocol Security (IPSec)This guide explains the fastest
way to use IPSec to secure application traffic between a client and a server
and shows how to enable security using IPSec ...
https://thesource.ofallevil.com/tech...o/ispstep.mspx


--
Regards,
Ace

This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT,
MVP Microsoft MVP - Directory Services
Microsoft Certified Trainer

Infinite Diversities in Infinite Combinations

Having difficulty reading or finding responses to your post?
Try using Outlook Express or any other newsreader, configure a news
account, and point it to news.microsoft.com. Anonymous access. It's
easy and it's free:

How to Configure OEx for Internet News
http://support.microsoft.com/?id=171164

"Life isn't like a box of chocolates or a bowl of cherries or
peaches... Life is more like a jar of jalapenos. What you do today
may burn your butt tomorrow." - Garfield