IPSec Transport Mode

hi,

i trying setup ipsec transport mode policy test server in office vm in azure in order replicate data rodc.

both servers sit behind nat firewall , have private ip addresses.

i have created security policy @ each end specifies both private address of server , public address of cloud service (azure) , firewall (on prem)

i have opened firewall ports on both sides allow both 500/udp , 4500/udp

using network monitor tool, can see ike transmissions can't ping/rdp either way.

any ideas?

thanks
dave

hi dave,

please try enable auditing of ipsec command below. may give hints.

auditpol.exe /set /subcategory:"ipsec main mode","ipsec extended mode" /success:enable /failure:enable

best regards.

---

---

steven lee

technet community support

Windows Server  >  Platform Networking