Canon VB-C60B User Manual
Page 54
1-40
8 SA ESP Encryption Algorithm
Select the ESP encryption algorithm from “AES”, “3DES”, “DES” and “NULL” according to the
encryption algorithm supported by the destination device.
“AES” or “3DES” is recommended to use normally.
9 SA ESP Authentication Algorithm
Select the ESP authentication algorithm from “HMAC_SHA1_96”, “HMAC_MD5_96” and “No
Authentication” according to the authentication algorithm supported by the destination device.
If only “ESP” is used, “None” cannot be selected.
0 SA ESP Encryption Key (outbound)
Set the SA encryption key for outbound. Set a hexadecimal value that corresponds to 128bit if “AES” is
selected in 8, 192bit if “3DES” or “64bit if “DES”. If “NULL” is selected, this setting is not necessary.
!1 SA ESP Authentication Key (outbound)
Set the SA authentication key for outbound. Use a hexadecimal value that corresponds to
160bit if “HMAC_SHA1_96” is selected in 9 or 128bit if “HMAC_MD5_96”. If “None” is selected,
this setting is not necessary.
!2 SA ESP SPI (outbound)
Set the SA SPI value for outbound. Set it in the range of 256 - 4294967295.
!3 SA ESP Encryption Key (inbound)
Set the SA encryption key for inbound. Set a hexadecimal that corresponds to 128bit if “AES” is selected
in 8, 192bit if “3DES” or “64bit if “DES”. If “NULL” is selected, this setting is not necessary.
!4 SA ESP Authentication Key (inbound)
Set the SA encryption key for inbound. Set a hexadecimal that corresponds to 160bit if “HMAC_SHA1_96”
is selected in 9 or 128bit if “HMAC_MD5_96”. If “None” is selected, this setting is not necessary.
!5 SA ESP SPI (inbound)
Set the SA SPI value for inbound. Set it in the range of 256 - 4294967295. Since the setting value is
used as an ID number to identify SA, do not specify the same value as the SPI of another ESP.
■ When “Security Protocol” in 5 is set to “AH” or “ESP and AH”, the following setting items must be configured.
Set IPsec (IPsec)
12
12
9
12
12
!1
12
12
8
12
12
!2
12
12
!0
12
12
!5
12
12
!4
12
12
!3