TCP/IP Solution  «Prev  Next»

IPSec Protection Levels - Exercise

Problem Solver: troubleshoot IPSec protection

Objective: Troubleshoot IPSec implementation on domain controllers.


This Problem Solver exercise is worth a total of 10 points. Once you have completed your solution, you will submit it to a tutor.

The scenario

After upgrading your domain controllers to Windows 2000, you have decided to implement IPSec on these machines to increase the security of network communications arriving and leaving these machines. You are still in the process of a network upgrade, and not all machines have been upgraded. There are still a good number of Windows 9x and Windows NT® 4.0 Workstation machines on the network.
After implementing IPSec on the domain controllers, you begin receiving calls from users who claim they cannot access resources on the domain controllers, and some users who cannot even log on to the domain controllers. Some of the error messages include statements such as "A domain controller for your domain cannot be contacted."

Your task

Answer the following questions:
  1. Why are the users having problems accessing resource and logging on to the domain controllers that are protected by IPSec?
  2. What would you do to correct the situation?

Submitting your solution

Enter your solution into the text box below. Click the Submit button to submit the exercise.