Creating a new protocol group, Editing or deleting a protocol group, Creating a new action – Xerox WorkCentre 7970-2606 User Manual
Page 101: Configuring manual keying settings
Security
Xerox
®
WorkCentre
®
7970 Multifunction Printer 101
System Administrator Guide
Creating a New Protocol Group
1.
Click Protocol Groups at the top of the IPsec page.
2.
Click Add New Protocol Group.
3.
Type a Name and a Description for the group.
4.
Under Service Name, select the protocols that you want to add to the group.
5.
To control a service that is not listed, under Custom Protocols type a name for the service and select
the check box under Service Name.
6.
To control a service that is not listed, under Custom Protocols type a name for the service and select
the check box under Service Name.
7.
Select TCP or UDP from the Protocol list.
8.
Type the port number, and specify if the printer is the server or client.
9.
Click Save to apply the new settings or Undo to retain the previous settings. Click Cancel to return
to the previous page.
Editing or Deleting a Protocol Group
To edit or delete a protocol group, select the protocol group from the list, and click Edit or Delete.
Creating a New Action
1.
Click Actions at the top of the IPsec page.
2.
Click Add New Action.
3.
On the Step 1 of 2 page, under IP Action Details, type in the Name. This field is required.
4.
In the Description field, type a description for the action, if desired.
5.
Under Keying Method, select Manual Keying or Internet Key Exchange (IKE).
Note:
Select Manual Keying if client devices are not configured for or do not support IKE.
6.
If you selected IKE, under Pre-shared Key Passphrase, type the passphrase, then click Next.
Configuring Manual Keying Settings
Manual Keying is used when client systems either do not support IKE or are not configured for IKE.
1.
Under IPsec Mode, select Transport Mode or Tunnel Mode.
Transport mode only encrypts the IP payload, whereas Tunnel mode encrypts the IP header and the
IP payload. Tunnel mode provides protection for an entire IP packet by treating it as an
Authentication Header (AH), or Encapsulating Security Payload (ESP).
2.
If you selected Tunnel Mode, under Enable Security End Point Address, select the address type.
Options are
Disabled, IPv4 Address, or IPv6 Address.
3.
Under IPsec Security, select ESP, AH, or BOTH.
4.
In the Security Parameter Index: IN field, type a 32-bit number larger than 256 that identifies the
inbound Security Association (SA).
5.
In the Security Parameter Index: OUT field, type a 32-bit number larger than 256 that identifies the
outbound Security Association (SA).