WINS Replication IPSec Script
Brief Description
IPSec script for blocking WINS replication
On This Page
Quick Details
| File Name: | WINS Replication Blocker.exe |
| Version: | 1.0 |
| Date Published: | 12/3/2004 |
| Language: | English |
| Download Size: | 122 KB |
| Estimated Download Time: | 1 min 56K |
Overview
This is a sample script that can be used to automate the creation of a local registry based IPSec policy on a WINS server.
WINS Replication Blocker Script version 1.0
Purpose:
The purpose of this script is to create an IPSec policy on Windows 2000 or later WINS servers that will protect them from remote hosts exploiting a vulnerability in the WINS Replication protocol operating over TCP or UDP port 42.
This script accomplishes this by creating an IPSec policy with two filter rules that:
1. Block inbound packets destined for TCP or UDP port 42 from any host
2. Block outbound packets destined for TCP or UDP port 42 to any host
These default block rules will break WINS replication between any configured WINS replication partners, so in addition to the rules defined above; if the script is run interactively with no command line parameters it will prompt the user to enter the IP addresses of any WINS replication partners to exempt them from the default ‘block’ rule and allow WINS replication to continue functioning between trusted replication partners.
If you chose to enter IP addresses of WINS replication partners, the IP addresses you specify will be allowed to communicate with the local WINS server (i.e. these IP addresses will be exempt from the ‘block’ policy being created on the local WINS server).
All other IP addresses will be unable to communicate with the WINS server on TCP or UDP port 42.
This script can be run interactively and will guide the user through creating the policy and entering the IP addresses of the WINS replication partners or the script can be used with command line parameters to automate deployment from other scripts such as a logon script or machine startup script.
For more information please refer to the following knowledge base article:
890710 How to help protect against a WINS security issue
http://support.microsoft.com/?id=890710 
Top of page
System Requirements
- Supported Operating Systems: Windows 2000 Server; Windows Server 2003
Windows 2000 Server
Windows Server 2003 Top of page
Instructions
Download this self-extracting .EXE to a known location and then double click the .EXE to extract the contents of the file to a directory on the server that you wish to create the IPSec policy on. By default the files will be extracted to the "c:\temp" folder. If this folder does not exist it will be created.
Top of page
Top of page
