1. Home
  2. Canon
  3. Canon 1474C009AA User Manual
  4. Page 399

User Manual - Page 399

For 1474C009AA. Also, The document are for others Canon models: MF735CDW, MF733CDW, MF731CDW, MF634CDW, MF632CDW

Loading ...
Loading ...
Loading ...
Conguring IPSec Settings
1W2U-07C
Internet Pr
otocol Security (IPSec or IPsec) is a protocol suite for encrypting data transported over a network, including
Internet networks. While TLS only encrypts data used on a specic application, such as a Web browser or an e-mail
application, IPSec encrypts either whole IP packets or the payloads of IP packets, offering a more versatile security
system. The IPSec of the machine works in transport mode, in which the payloads of IP packets are encrypted. With
this feature, the machine can connect directly to a computer that is in the same virtual private network (VPN). Check
the system requirements (
Management Functions(P. 711) ) and set the necessary congur
ation on the computer
before you congure the machine.
Using IPSec with IP address lter
IP addr
ess lter settings are applied before the IPSec policies.
Specifying IP Addresses for Firewall
Settings(P
. 371)
Conguring IPSec Settings
Befor
e using IPSec for encrypted communication, you need to register security policies (SP). A security policy consists
of the groups of settings described below. After registering policies, specify the order in which they are applied.
Selector
Selector denes conditions for IP pack
ets to apply IPSec communication. Selectable conditions include IP
addresses and port numbers of the machine and the devices to communicate with.
IKE
IKE congur
es the IKEv1 that is used for key exchange protocol. Note that instructions vary depending on the
authentication method selected.
[Pre-Shared Key Method]
This authentication method uses a common key word, called Shared Key, for communication between the
machine and other devices. Enable TLS for the Remote UI before specifying this authentication method (
Conguring the Key and Certicate for TLS(P. 380) ).
[Digital Signature Method]
The machine and the other devices authenticate each other by mutually verifying their digital signatures.
Generate or install the key and certicate beforehand ( Registering the Key and Certicate for Network
Communication
(P. 389) ).
AH/ESP
Specify the settings for AH/ESP, which is added to packets during IPSec communication. AH and ESP can be used
at the same time. Y
ou can also select whether or not to enable PFS for tighter security.
Managing the Machine
391
Loading ...
Loading ...
Loading ...