Creating a new action, Configuring manual keying settings – Xerox WorkCentre 7835ii User Manual

Page 110

Advertising
background image

Security

110

Xerox

®

WorkCentre

®

7800/7800i Series Color Multifunction Printer

System Administrator Guide

Creating a New Action

1.

Click Actions at the top of the IPsec page.

2.

Click Add New Action.

3.

On the Step 1 of 2 page, under IP Action Details, type in the Name. This field is required.

4.

In the Description field, type a description for the action, if desired.

5.

Under Keying Method, select Manual Keying or Internet Key Exchange (IKE).

Note:

Select Manual Keying if client devices are not configured for or do not support IKE.

6.

If you selected IKE, under Pre-shared Key Passphrase, type the passphrase, then click Next.

Configuring Manual Keying Settings

Manual Keying is used when client systems either do not support IKE or are not configured for IKE.
1.

For IPsec Mode, select Transport Mode or Tunnel Mode.

Transport mode only encrypts the IP payload, whereas Tunnel mode encrypts the IP header and the

IP payload. Tunnel mode provides protection for an entire IP packet by treating it as an

Authentication Header (AH), or Encapsulating Security Payload (ESP).

2.

If you selected Tunnel Mode, under Enable Security End Point Address, select the address type.

Options are

Disabled, IPv4 Address, or IPv6 Address.

3.

Under IPsec Security, select ESP, AH, or BOTH.

4.

In the Security Parameter Index: IN field, type a 32-bit number larger than 256 that identifies the

inbound Security Association (SA).

5.

In the Security Parameter Index: OUT field, type a 32-bit number larger than 256 that identifies the

outbound Security Association (SA).

6.

If you selected ESP under IPsec security, under Hash, select an option.

7.

Under Enter Keys as, select ASCII format or Hexadecimal number.

8.

For Hash Key: IN and Hash Key: OUT, type a 20-character ASCII key or 40-character Hexadecimal

key.

9.

If you selected ESP or BOTH for the IPsec Security type, under Encryption, select an option.

Note:

If you are configuring an IPsec security policy to communicate with a Linux computer, and

you selected BOTH for the security type, select 3DES encryption. If you select AES encryption, the

data transfer rate is reduced.

10.

For Encryption Key: IN and Encryption Key: OUT, type a 24-character ASCII key or 48-character

Hexadecimal key.

11.

Click Save.

Advertising
Popular Brands
Popular manuals