HomeDescriptions of Functions / Utility KeysSA

SA

To display:

[Utility]
- [Administrator]
  - [Network]
    - [TCP/IP Setting]
      - [IPsec]
        [IPsec Setting]
        [SA]

Configure SA (Security Association) required for encrypted communication. Up to 10 groups can be registered for the SA.

Setting	Description
[Name]	Enter the SA name (using 1 to 10 characters, excluding ").
[Encapsulation Mode]	Select the IPsec operation mode (default: [Transport]).
[Security Protocol]	Select a security protocol.
[Key Exchange Method]	Select the key replacement method to securely create a common key used to encrypt communications (default: [IKEv1]).
[Tunnel End Point]	If [tunnel] is selected in [Encapsulation Mode], enter the IP address of the IPsec gateway that is used as a peer.
[Lifetime After Establishing SA]	Enter the lifetime of a common key used to encrypt communications (default: [3600] sec.).
[IKE Setting]	Configure IKE settings used for this SA. This is required when [IKEv1] or [IKEv2] is selected in [Key Exchange Method]. [Authentication Method]: Select the authentication method. [Local Authentication Method]: Select the authentication method of this machine when [IKEv2] is selected in [Key Exchange Method]. [Peer Authentication Method]: Select the peer authentication method when [IKEv2] is selected in [Key Exchange Method]. [ESN]: When applying the 64-bit extended sequence number, set this option to ON. [Replay Detection]: When enabling replay defense, set this option to ON. [ESP Encryption Algorithm]: If you select [ESP] for [Security Protocol], configure the ESP encryption algorithm. [ESP Authentication Algorithm]: If you select [ESP] for [Security Protocol], configure the ESP authentication algorithm. [AH Authentication Algorithm]: If you select [AH] for [Security Protocol], configure the AH authentication algorithm. [Perfect Forward-Secrecy]: When increasing the IKE intensity, set this option to ON. Setting to ON increases the time spent for communication.