Adding A Block Rule For a Specific Protocol And Port

• 1). Install "IPSeccmd.exe." IPSeccmd.exe is part of the Windows XP Service Pack 2, or SP2, Support Tools folder. If you have SP2 installed, you can install IPSeccmd.exe directly from your SP2 folder. If you don't have SP2 or would like more information, visit Microsoft Support (see Resources).
  
  
• 2). Click on the "Start" button and open the program "Run."
  
  
• 3). Type "Command Prompt" into the text box and press "Enter."
  
  
• 4). Type "netdiag /test:ipsec" into the command prompt box. This will identify if IPSec is running. If the command box reads "IP Security test . . . . . . . . . : Passed
  
  Local IPSec Policy Active: 'Block UDP 1434 Filter," then continue to Step 5. If this message does not appear, re-install Windows Service Pack 2.
  
  
• 5). Type the second command, "IPSeccmd.exe -p "Existing_IPSec_Policy_Name" -w REG -r "Block ProtocolPortNumber Rule" -f *=0:PortNumber:Protocol -n BLOCK" into the command prompt box. To change any of IPSec filters and block ports, do this by changing any of these variable "Existing_IPSec_Policy_Name," "Protocol" and "PortNumber."