Additional Resources
Applies To: Windows Server 2008, Windows Server 2008 R2
For more information about the technologies discussed in this guide, see topics referenced in the following sections.
Windows Firewall with Advanced Security
Windows Firewall (https://go.microsoft.com/fwlink/?linkid=95393)
This TechNet page contains links to a variety of documents available for Windows Firewall, for Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008.
Windows Firewall with Advanced Security Content Roadmap (https://go.microsoft.com/fwlink/?linkid=96525)
This topic describes the documents currently available in the Windows Technical Library for Windows Firewall with Advanced Security in Windows Vista and Windows Server 2008.
Windows Firewall with Advanced Security - Diagnostics and Troubleshooting (https://go.microsoft.com/fwlink/?linkid=95372)
This article describes how Windows Firewall with Advanced Security works, what the common troubleshooting situations are, and which tools you can use for troubleshooting.
IPsec
IPsec (https://go.microsoft.com/fwlink/?linkid=95394)
This TechNet page contains links to a variety of documents currently available for Internet Protocol security (IPsec), for Windows XP, Windows Server 2003, and the version available as connection security rules in Windows Firewall with Advanced Security on Windows Vista and Windows Server 2008.
Simplifying IPsec Policy with the Simple Policy Update (https://go.microsoft.com/fwlink/?linkid=94767)
This article describes a downloadable update available for Windows XP with SP2 and Windows Server 2003 with SP1. The update changes the behavior of IPsec negotiation so that the IPsec policy rules can be simplified, in some cases significantly reducing the number of required IP filters and their ongoing maintenance.
Server and Domain Isolation
Server and Domain Isolation (https://go.microsoft.com/fwlink/?linkid=95395)
This TechNet page contains links to documentation about the most common uses for IPsec: server isolation and domain isolation. Documentation is available for Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008.
Group Policy
Group Policy is a key method for implementing firewall and server and domain isolation designs.
For more information about Group Policy and related technologies, see:
Group Policy (https://go.microsoft.com/fwlink/?linkid=93542)
This page contains links to the documents currently available for Group Policy, for both the version available in Windows XP and Windows Server 2003, and the version available in Windows Vista and Windows Server 2008.
WMI Filtering Using GPMC (https://go.microsoft.com/fwlink/?linkid=93188)
HOWTO: Leverage Group Policies with WMI Filters (https://go.microsoft.com/fwlink/?linkid=93760)
This article describes how to create a WMI filter to set the scope of a GPO based on computer attributes, such as operating system.
Active Directory Domain Services
In Windows Server 2008, organizations can use AD DS to manage users and resources, such as computers, printers, or applications, on a network. Server isolation and domain isolation also require AD DS to use the Kerberos V5 protocol for IPsec authentication.
For more information about AD DS and related technologies, see:
- Active Directory Domain Services (https://go.microsoft.com/fwlink/?linkid=102573)