beautypg.com

Konica Minolta bizhub C3350 User Manual

Page 38

background image

[Applied Functions]

1-32

1.5

Available operations in Administrator mode

1

4

From [Peer] on the [IPsec Settings] screen, click [Edit] and register peers of this machine.

% Up to 10 [Peer] can be registered.

[Key Exchange Method]

Select the key replacement method to securely create a common key used to
encrypt communications.
[IKEv1] is specified by default.

[Tunnel End Point]

Enter the IP address of the peer's IPsec gateway.
This is required when [Tunnel] is selected in [Encapsulation Mode].

[IKE Settings]

Configure IKE settings used for this SA.
This is required when [IKEv1] or [IKEv2] is selected in [Key Exchange Method].

[Authentication
Method]

Select an authentication method.
[Pre-Shared Key] is specified by default.

[Replay Detection]

Select whether or not to protect from replay attacks.
[Disable] is specified by default.

[ESN]

If you select [Enable] for [Replay Detection], select whether or not to apply ex-
tended sequence numbering for IPsec communication.
[Disable] is specified by default.

[ESP Encryption Al-
gorithm]

If you select [ESP] for [Security Protocol], configure the ESP encryption algo-
rithm.

[ESP Authentication
Algorithm]

If you select [ESP] for [Security Protocol], configure the ESP authentication al-
gorithm.

[AH Authentication
Algorithm]

If you select [AH] for [Security Protocol], configure the AH authentication algo-
rithm.

[Perfect Forward
Secrecy]

Select this check box if you wish to increase the IKE strength.
Selecting this check box increases the time spent for communication.
This option is available when [IKEv2] is selected on the [IPsec Settings] screen.

[Diffie-Hellman
Group]

Select the Diffie-Hellman group.
[Group2] is specified by default.

[Lifetime After Es-
tablishing SA]

Enter the lifetime of a common key used to encrypt communications.
[3600] sec. is specified by default.

[Manual Key Settings]

When using a device that does not support automatic key exchange using IKE,
configure each parameter manually.
This is required when [Manual Key] is selected in [Key Exchange Method].

[Encryption Algo-
rithm]

If you select [ESP] for [Security Protocol], select the algorithm to be used for
encryption.
If you select [AES_CBC] for [Encryption Algorithm], specify the [Key Length].

[Authentication Al-
gorithm]

Select the algorithm to be used for authentication.
If you select [SHA2] for [Authentication Algorithm], specify the [Key Length].

[SA Index]

Specify the SA Security Parameter Index to be added to the IPsec header.
You can specify different security parameter indexes respectively for send and
receive.

[Common Key En-
cryption]

Specify the common key used for encryption.
You can specify different common keys respectively for send and receive.

[Common Key Au-
thentication]

Specify the common key used for authentication.
You can specify different common keys respectively for send and receive.

Item

Description

[Name]

Enter a peer name (using up to 10 characters).

[Set IP Address]

Select the method to specify the peer address. Specify the IP address of the
peer depending on the selected method.

[Pre-Shared Key Text]

Enter the Pre-Shared Key text to be shared with the peer (using ASCII charac-
ters of up to 128 bytes).
To enter text in HEX code, select the [HEX Format] check box, then enter the
text.
Specify the same text as that for the peer.

Item

Description

This manual is related to the following products:
See also other documents in the category Konica Minolta Printers: