Brother HL-S7000DN User Manual

Page 18

background image

IPsec Settings

15

2

Diffie-Hellman Group

This key exchange method allows secret keys to be securely exchanged over an unprotected
network. The Diffie-Hellman key exchange method uses a discrete logarithm problem, not the
secret key, to send and receive open information that was generated using a random number and
the secret key.
(If Custom is selected in Use Prefixed Template, and IKEv1 or IKEv2 is selected in IKE) Select
Group1, Group2, Group5, or Group14. If IKEv2 is selected, multiple selections are possible.
(If Custom is selected in Use Prefixed Template, and Manual is selected in IKE) The group will
not be displayed.
(If a setting other than Custom is selected in Use Prefixed Template) The above-mentioned
enabled group will be displayed.

Encryption

(If Custom is selected in Use Prefixed Template, and IKEv1 or IKEv2 is selected in IKE) Select
DES, 3DES, AES-CBC 128, or AES-CBC 256. If IKEv2 is selected, multiple selections are
possible.
(If Custom is selected in Use Prefixed Template, and Manual is selected in IKE) The encryption
will not be displayed.
(If a setting other than Custom is selected in Use Prefixed Template) The above-mentioned
enabled encryption will be displayed.

Hash

(If Custom is selected in Use Prefixed Template, and IKEv1 or IKEv2 is selected in IKE) Select
MD5, SHA1, SHA256, or SHA512. If IKEv2 is selected, multiple selections are possible.
(If Custom is selected in Use Prefixed Template, and Manual is selected in IKE) The hash
algorithm type will not be displayed.
(If a setting other than Custom is selected in Use Prefixed Template) The above-mentioned
enabled hash algorithm type will be displayed.

SA Lifetime

Specify the IKE SA lifetime.
(If Custom is selected in Use Prefixed Template, and IKEv1 or IKEv2 is selected in IKE) Enter
the time (seconds) and number of kilobytes (KByte).
(If Custom is selected in Use Prefixed Template, and Manual is selected in IKE) The SA Lifetime
information will not be displayed.
(If a setting other than Custom is selected in Use Prefixed Template) The time (seconds) and
number of kilobytes (KByte) will be displayed.

Encapsulating Security

Protocol

(If Custom is selected in Use Prefixed Template) Select ESP or AH. If IKEv2 is selected in IKE,
only ESP can be selected.
(If a setting other than Custom is selected in Use Prefixed Template) The above-mentioned
enabled protocol will be displayed.