Block an IP address with IP Security Policy Management for Windows 2003

1. Click 'Start' > 'Run' >type 'MMC' press ok.
2. In the console click > 'File' > 'Add/Remove Snap in
3. In the 'Standalone Tab' click The 'add' button
4. Select 'IP Security Policy Management' > 'ADD' > 'Local Computer' > 'finish' > 'close' > 'ok'
5. You should now be back to the console. In the left frame right click 'IP security policies on local computer' > 'Create IP security policy'.
6. Click Next and then name your policy 'Block IP' and type a description.
7. Click 'Next' then leave 'activate' ticked then click 'Next' Leave the 'edit properties ticked and click 'Finish'
8. You should now have the properties window open.
9. Click 'ADD' then click 'Next' to continue.
10. Leave 'This rule does not specify a tunnel' selected and click 'next'
11. Leave 'all network connections' selected and click 'next'
12. You should now be on the IP filter list. You need to create a new filter, so don't select any of the default ones. Click 'ADD'
13. Type a Name for your list; call it 'IP block list'. Type a description in, can be same as name.
    Click 'ADD' then click 'Next' to continue.
14. In the description box type a description. As it's the first IP you are blocking call it 'IP1' or 'IP Range 1'. Leave ticked the 'Mirrored. Match packets with the exact opposite source and destination addresses'. Click 'Next'
15. The 'Source address' should be left as 'My IP address' click 'Next'.
16. You can now select 'A Specific IP address' or 'A Specific Subnet' for the Destination address.
    Type in the IP address you want to block and if blocking a subnet type in the subnet block. Click 'next'
17. Leave the protocol type as 'Any' and click 'Next' and then 'Finish'