(for Windows 2000 / XP / 2003 / Vista)
IPSecScan is a tool that can scan either a single IP address or a range of IP addresses looking for systems that are IPSec enabled.
Download the exe file and run it from a Command Prompt. It will give you the instructions you need.
Q: What does Enabled, Disabled and Indeterminable mean?
A: Enabled means that the system has IPSec enabled. Disabled means that it either doesn't support IPSec, has IPSec disabled, or that it is configured not to reveal to you that it has IPSec enabled. Indeterminable means that the scanner isn't sure if IPSec is enabled or disabled, it is also the label put on IP addresses which are not in use at all.
Q: How realiable are the results from the scanner?
A: If the scanner tells you that a system is IPSec enabled you can trust the result almost completely. The scanner isn't capable of telling you for sure that a system does not have IPSec enabled, simply because of the way the technology works, so the result Disabled is a qualified guess. If you receive the result Indeterminable and you know that the IP address is in use, there is a high probability that the system has IPSec enabled, but the scanner isn't completely sure.
Q: When I double-click on the file a window comes up and disappears immediately. What's wrong?
A: You must run the file from a Command Prompt.
Q: Why does IPSecScan say that I'm not running Windows 2000 or above even though I do?
A: Make sure that you don't have SocketLock installed as it will prevent IPSecScan from working.
Q: I have a question that is not covered here. Where can I get help?
A: Send me
your question. I can't promise that I will have time to answer, but I'll do my best.