屏蔽192.168.1.2的远程登录
'建立一个名字叫XBLUE的安全策略先
netsh ipsec static add policy name=XBLUE
'建立一个ip筛选器,指定192.168.1.2
netsh ipsec static add filterlist name=denyip
netsh ipsec static add filter filterlist=denyip srcaddr=192.168.1.2 dstaddr=Me dstport=3389 protocol=TCP
'建立一个筛选器操作
netsh ipsec static add filteraction name=denyact action=block
'加入规则到安全策略XBLUE
netsh ipsec static add rule name=kill3389 policy=XBLUE filterlist=denyip filteraction=denyact
'激活这个策略
netsh ipsec static set policy name=XBLUE assign=y
删除所有策略
'删除所有安全策略
netsh ipsec static del all
导入导出
'把安全策略导出
netsh ipsec static exportpolicy d:\ip.ipsec
'把安全策略导入
netsh ipsec static importpolicy d:\ip.ipsec
更多