1.3 Overview
The Group Policy: IPsec Protocol allows administrators to arbitrarily instruct large groups of client machines to configure their local IPsec/IKE components to provide basic IP traffic filtering, IP data integrity, and optionally, IP data encryption.
This allows administrators to configure client machines to block, permit, or secure (using IPsec) IP traffic, which enables the configuration of IP network isolation, for example server isolation and domain isolation as described in [MSFT-ISOLATION-1].