11 internet protocol security (ipsec) – Dascom 7010 PrintServer Manual User Manual

Internet Protocol Security (IPsec)

Print Server User Manual

111

11 Internet Protocol Security (IPsec)

What is IPsec?

’Internet Protocol Security’ (IPsec) is a protocol that provides
security mechanisms such as access control, data integrity,
encryption and authentication for the communication via IP
networks.

What is special about IPsec is its flexibility. You can enable or disable
functions according to your needs. When it comes to encryption and
authentication, you can freely define the algorithms to be used.

The IPsec security mechanisms are provided by two protocols - the
’Authentication Header’ (AH) or ’Encapsulating Security Payload’
(ESP). AH will only provide for authentication while ESP will (in
addition to authentication) encrypt the IP data packets.

IPsec Policy

IPsec policies are used to assign and handle IP data packets. You can
specify several policies. However, only one policy can be active at a
time. An IPsec policy is a collection of one or more rules.

IPsec analyzes all IP data packets for addresses, ports, and transport
protocols via packet filtering. Based on the rules it is decided how to
proceed with the IP data packet. An IPsec policy consists of the
following elements:

To defend against the internal threads for the network,
the IPsec protocol provides confidentiality, authenticity
and integrity for the IP-based network traffic. The print
server can participate in various IPsec procedures. This
chapter describes which procedures are supported and
how these procedures are configured on the print server.