NETSH - Windows 7 & Vista + Server 2008

netsh » ipsec » dynamic » set » rule

Microsoft Windows [Version 6.1.7000]
(C) Copyright 2009 Microsoft Corp.
C:\Windows>netsh ipsec dynamic set rule ? Usage: rule [ srcaddr = ] (ip | dns | server) [ dstaddr = ] (ip | dns | server) [ protocol = ] (ANY | ICMP | TCP | UDP | RAW | ) [ srcport = ] [ dstport = ] [ mirrored = ] (yes | no) [ conntype = ] (lan | dialup | all) [ [ srcmask = ] (mask | prefix) ] [ [ dstmask = ] (mask | prefix) ] [ [ tunneldstaddress = ] (ip | dns) ] [ [ mmpolicy = ] ] [ [ qmpolicy = ] ] [ [ actioninbound = ] (permit | block | negotiate) ] [ [ actionoutbound = ] (permit | block | negotiate) ] [ [ kerberos = ] (yes | no) ] [ [ psk = ] ] [ [ rootca = ] " certmap:(yes | no) excludecaname:(yes | no)" ] Modifies a rule and associated filters in SPD. Parameters: Tag Value srcaddr - Source ip address (ipv4 or ipv6), address range, dns name, or server type. dstaddr -Destination ip address (ipv4 or ipv6), address range, dns name, or server type. protocol -Can be ANY, ICMP, TCP, UDP, RAW, or an integer. srcport -Source port (0 means any port) dstport -Destination port (0 means any port) mirrored -'Yes' creates two filters, one in each direction. conntype -Connection type srcmask -Source address mask or a prefix of 1 through 32. Not applicable if srcaddr is set to a range dstmask -Destination address mask or a prefix of 1 through 32. Not applicable if dstaddr is set to a range tunneldstaddress -Tunnel destination ip address or dns name. mmpolicy -Main mode policy qmpolicy -Quick mode policy actioninbound -Action for inbound packets actionoutbound -Action for outbound packets kerberos -Provides kerberos authentication if 'yes' is specified psk -Provides authentication using a specified preshared key rootca -Provides authentication using a specified root certificate, attempts to map the cert if certmap:Yes is specified, excludes the CA name if excludecaname:Yes is specified. Remarks: 1. Mmpolicy, qmpolicy, actioninbound, actionoutbound and authmethods can be set; other fields are identifiers. 2. Server type can be WINS, DNS, DHCP or GATEWAY 3. Certificate, mapping, and CA name settings are all to be within quotes; embedded quotes are to be replaced with \'. 4. Certificate mapping is valid only for domain members. 5. Multiple certificates can be provided by using the rootca parameter multiple times. 6. The preference of each authentication method is determined by its order in the command. 7. If no auth methods are stated, dynamic defaults are used. 8. All authentication methods are overwritten with the stated list. 9. Excluding the root certification authority (CA) name prevents the name from being sent as part of the certificate request. 10. If an address range is specified, the endpoints need to be specific addresses (not lists, or subnets) and of the same type (both should be v4 or both should be v6). Examples: 1. set rule srca=WINS dsta=0.0.0.0 srcmask=32 dstmask=32 tunneldst=192.168.145.1 proto=tcp srcport=80 dstport=80 mir=no con=lan qmp=qmp actionin=negotiate actionout=permit 2. set rule srcaddr=192.168.145.110 dstaddr=192.168.145.215 mmpolicy=mmp qmpolicy=qmp mirrored=no srcmask=32 rootca="C=US,O=MSFT,CN=Microsoft Authenticode(tm) Root Authority" rootca="C=US,O=MSFT,CN=\'Microsoft North, South, East, and West Root Authority\' certmap:yes excludecaname:no"

NETSH / IPSEC / DYNAMIC / SET / RULE

netsh ipsec dynamic set rule - Windows Seven - command Modifies a rule and associated filters in SPD. / Windows Seven
netsh, ipsec, dynamic, set, rule, cmd, command, Windows, Seven
Quick - Link:
netsh ipsec static add filterlist
Creates an empty filter list.
netsh wlan delete
Deletes a configuration entry from a table.
netsh ipsec dynamic add
Adds policy, filter, and actions to SPD.
netsh winhttp
Changes to the `netsh winhttp' context.
netsh interface tcp
Changes to the `netsh interface tcp' context.
netsh trace show helperclass
Show helper class information.








... Windows-10




Windows 10 How To

... Windows 10 FAQ
... Windows 10 How To




Modifies a rule and associated filters in SPD. / Windows 10, 8.1, Seven

HTTP: ... cmd/en/Windows_7/netsh/ipsec/dynamic/set/rule.htm
0.14
16910

Can I display my Computer as a menu in Windows-7 start menu?

 /

Very practical as a door sign or as another message!

 /

Scroll or jump to the selected object / files when filtering?

 /

Use the address bar to change the directory faster on MS Windows 11, 10, ... OS!

 /

Size in Giga, Mega, Kilo and Bytes directorys and files!

 /

Can I find the BIT on my PC?

 /

Change settings in Win 8.1/8 when to be notified about customizes on your computer!

 /

Ich habe das Windows 7 Passwort vergessen, was kann ich machen?

 /

Set the default printer for the apps, programs in Windows 8.1 and 10!

 /

How can I find pictures with Find.Same.Images.OK!

 /

Desktop shortcut to lock your Windows 11, 10, ... etc. PC!

 /

Can I still shoot the viruses away on Windows 11?

 /