Configure IPsec SA settings.
You can set the group name or key exchange method for each group.
Screen access
Control panel - Utility/Counter - [Administrator Setting] - [Network Setting] - [NIC Settings] - [TCP/IP Settings] - [IPsec Settings] - [IPsec Settings] - [IPsec SA Settings] - [Edit]
Setting item | Description | |
---|---|---|
[ON] | Uses IPsec SA in currently selected [Group]. | |
[OFF] | Does not use IPsec SA in currently selected [Group]. | |
[Group Name] | Enter the group name used for the encrypted communication. Up to 10 single-byte characters can be entered. | |
[Encapsulation Mode] | [Tunnel Mode] | Set [Tunnel Mode] as the data encryption method. Adds a new IP header to an encrypted data that is created by combining IP header and data. Higher security level encryption is possible. In [Tunnel End Point], enter the IP address of the IPsec gateway that is used as the communication recipient. |
[Transport Mode] | Set [Transport Mode] as the data encryption method. Encrypts only the data, and sends by adding an IP header to it. | |
[Tunnel End Point]* | [IP Address] | Set the IP address of the IPsec gateway to communicate with. |
[Security Protocol] | [AH] | Set the security protocol used for IPsec SA. |
[ESP] | ||
[Key Exchange Method] | Generates a common key used to encrypt KEv1 communication. | |
Generates a common key used to encrypt KEv2 communication. | ||
[Lifetime After Establishing SA] | Set the time between the establishment of the IPsec SA and its discard. Press C of the Control panel to allow input using the Keypad. Range: 600 sec. to 604800 sec. |
*: The following setting is required to use this function.
Set [Encapsulation Mode] to [Tunnel Mode].
The displayed screen differs depending on the selected key.
For details about how to enter characters, refer to Entering Text.
When [Undo] is pressed, the numerical value returns to the value before corrections (default: 0.0.0.0.).