Conguring IPSec Settings
0X7U-04H
Internet Protocol Security (IPSec or IPsec) is a protocol suite for encrypting data transported over a network, including
Internet networks. While TLS only encrypts data used on a specic application, such as a Web browser or an e-mail
application, IPSec encrypts either whole IP packets or the payloads of IP packets, offering a more versatile security
system. The IPSec of the machine works in transport mode, in which the payloads of IP packets are encrypted. With
this feature, the machine can connect directly to a computer that is in the same virtual private network (VPN). Check
the system requirements and set the necessary conguration on the computer before you congure the machine.
Registering Security Policies(P. 299)
Enabling IPSec Communication(P. 306)
System Requirements
IPSec that is supported by the machine conforms to RFC4301, RFC4302, RFC4303, and RFC4305.
Operating systems supported by
communication partners
Windows Vista/7/8/Server 2003/Server 2008/Server 2012
Connection mode Transport mode
Key exchange protocol
IKEv1
Print Mode
● Main mode
● Aggressive mode
Authentication method
● Pre-shared key
● Digital signature
Hash algorithm
● HMAC-MD5-96
● HMAC-SHA1-96
Encryption algorithm
(and key length)
● 3DES-CBC
● AES-CBC (128 bits, 192 bits, or 256 bits)
Key exchange algorithm/group
(and key length)
Die-Hellman (DH)
● Group 1 (768 bits)
● Group 2 (1024 bits)
● Group 14 (2048 bits)
ESP (Encapsulating Security
Payload)
Hash algorithm
● HMAC-MD5-96
● HMAC-SHA1-96
Encryption algorithm
(and key length)
● 3DES-CBC
● AES-CBC (128 bits, 192 bits, or 256 bits)
AH (Authentication Header) Hash algorithm
● HMAC-MD5-96
● HMAC-SHA1-96
Security
298
Comments to this Manuals