Hardening my w2k server with IpSec -> TROUBLES!

Hello,
I'm having trouble hardening my Windows 2000 server install.
I've configured IpSec to only allow (incoming, I hope) connections on port
20 (FTP data)
21 (FTP)
80 (HTTP)
3389 (Terminal server)

Now the problem is that this server is unable to browse the internet. (Not that it's needed, but windows update doesn't work either.) It is also unable to lookup DNS information with nslookup. Surfing via IP works. But if my server can't perform DNS queries to other servers, this means mail won't work because it can't look up MX records. If I do nslookup it says it can't find the server name. I'm sure I've set my DNS settings right. (I got the server IP's from my ISP). Note that NetBIOS is disabled.
This is my configuration:

(That language is dutch )

Any help is appreciated,

Thanks,
Glenn

 

 

 

 

Top