Home » Konica Minolta Manuals » Printers » Konica Minolta bizhub 4020i » Manual Viewer

Konica Minolta bizhub 4020i bizhub 5020i/4020i User Guide - Page 408

Internet Key Exchange IKE, Use Prefixed Template

View all Konica Minolta bizhub 4020i manuals

Add to My Manuals
Save this manual to your list of manuals

Page 408 highlights

Use Prefixed Template Select Custom, IKEv1 High Security or IKEv1 Medium Security. The setting items are different depending on the selected template. The default template differs depending on whether you chose Main or Aggressive for Negotiation Mode on the IPsec configuration screen. Internet Key Exchange (IKE) IKE is a communication protocol that is used to exchange encryption keys in order to carry out encrypted communication using IPsec. To carry out encrypted communication for that time only, the encryption algorithm that is necessary for IPsec is determined and the encryption keys are shared. For IKE, the encryption keys are exchanged using the Diffie-Hellman key exchange method, and encrypted communication that is limited to IKE is carried out. If you selected Custom in Use Prefixed Template, select IKEv1. Authentication Type Configure the IKE authentication and encryption. • Diffie-Hellman Group This key exchange method allows secret keys to be securely exchanged over an unprotected network. The Diffie-Hellman key exchange method uses a discrete logarithm problem, not the secret key, to send and receive open information that was generated using a random number and the secret key. Select Group1, Group2, Group5, or Group14. • Encryption Select DES, 3DES, AES-CBC 128, or AES-CBC 256. • Hash Select MD5, SHA1, SHA256, SHA384 or SHA512. • SA Lifetime Specify the IKE SA lifetime. Type the time (seconds) and number of kilobytes (KByte). Encapsulating Security • Protocol Select ESP, AH or AH+ESP. - ESP is a protocol for carrying out encrypted communication using IPsec. ESP encrypts the payload (communicated contents) and adds additional information. The IP packet is comprised of the header and the encrypted payload, which follows the header. In addition to the encrypted data, the IP packet also includes information regarding the encryption method and encryption key, the authentication data, and so on. - AH is part of the IPsec protocol that authenticates the sender and prevents manipulation (ensures the completeness) of the data. In the IP packet, the data is inserted immediately after the header. In addition, the packets include hash values, which are calculated using an equation from the communicated contents, secret key, and so on, in order to prevent the falsification of the sender and manipulation of the data. Unlike ESP, the communicated contents are not encrypted, and the data is sent and received as plain text. • Encryption Select DES, 3DES, AES-CBC 128, or AES-CBC 256. The encryption can be selected only when ESP is selected in Protocol. • Hash Select None, MD5, SHA1, SHA256, SHA384, or SHA512. When AH+ESP is selected in Protocol, select each protocol for Hash(ESP) and Hash(AH). • SA Lifetime Specify the IPsec SA lifetime. 402

Section	Page
Table of Contents	2
Before You Use Your Machine	7
Applicable Models	8
Definitions of Notes	9
Trademarks	10
Important Note	11
Introduction to Your Machine	12
Before Using Your Machine	13
Control Panel Overview	14
Touchscreen LCD Overview	15
How to Navigate the Touchscreen LCD	18
Settings Screen Overview	20
Setting the Home Screen	21
Access KONICA MINOLTA Utilities (Windows)	22
Uninstall the Software (Windows)	24
Paper Handling	25
Load Paper	26
Load and Print Using the Paper Tray	27
Load Plain Paper, Letterhead, Colored Paper, Thin Paper and Recycled Paper in the Paper Tray	28
Load Thick Paper in the Paper Tray	31
Load and Print Using the Multi‑purpose Tray (MP Tray)	34
Load Paper in the Multi‑purpose Tray (MP Tray)	35
Load and Print Thick Paper and Labels Using the MP Tray	37
Load and Print on Envelopes Using the MP Tray	39
Paper Settings	42
Change the Paper Size and Paper Type	43
Select the Tray to Be Used For Printing	44
Change the Check Paper Size Setting	45
Load Documents	46
Load Documents in the Automatic Document Feeder (ADF)	47
Load Documents on the Scanner Glass	49
Unscannable and Unprintable Areas	50
Using Special Paper	51
Print	52
Print from Your Computer (Windows)	53
Print a Document (Windows)	54
Secure Print (Windows)	55
Change the Default Print Settings (Windows)	56
Configure the Optional Tray Settings (Windows)	57
Print from Your Computer (Mac)	58
Print a Document (Mac)	59
Secure Print (Mac)	60
Configure the Optional Tray Settings (Mac)	61
Cancel a Print Job	62
Test Print	63
Scan	64
Scan Using the Scan Button on Your Machine	65
Scan Photos and Graphics	66
Save Scanned Data to a Folder as a PDF File	68
Save Scanned Data to a USB Flash Drive	70
Scan to an Editable Text File (OCR)	72
Scan to Email Attachment	74
Send Scanned Data to an Email Server	76
Scan to FTP	78
Set up a Scan to FTP Profile	79
Upload Scanned Data to an FTP Server	82
Scan to SSH FTP (SFTP)	83
Set up a Scan to SFTP Profile	84
Create a Client Key Pair Using Web Based Management	87
Export a Client Key Pair Using Web Based Management	88
Import a Server Public Key Using Web Based Management	89
Upload Scanned Data to an SFTP Server	90
Scan to Network (Windows)	91
Set up a Scan to Network Profile	92
Set the Date and Time Using Web Based Management	95
Upload Scanned Data to a CIFS Server	96
Scan to SharePoint	97
Set up a Scan to SharePoint Profile	98
Upload Scanned Data to a SharePoint Server	101
Web Services for Scanning on Your Network (Windows 7, Windows 8.1 and Windows 10)	102
Use Web Services to Install Drivers Used for Scanning (Windows 7, Windows 8.1 and Windows 10)	103
Scan Using Web Services from This Machine (Windows 7, Windows 8.1 and Windows 10)	104
Configure Scan Settings for Web Services	105
Change Scan Button Settings from ControlCenter4 (Windows)	106
Configure Certificate for Signed PDF	109
Disable Scanning from Your Computer	110
Scan from Your Computer (Windows)	111
Scan Using ControlCenter4 Home Mode (Windows)	112
Scan Using ControlCenter4 Home Mode (Windows)	113
Select Document Type Using ControlCenter4 Home Mode (Windows)	115
Custom Scan Settings (Windows)	116
Change Scan Size Using ControlCenter4 Home Mode (Windows)	118
Crop a Scanned Image Using ControlCenter4 Home Mode (Windows)	119
Scan to an Application Using ControlCenter4 Home Mode (Windows)	121
Save Scanned Data to a Folder as a PDF File Using ControlCenter4 Home Mode (Windows)	122
Scan Both Sides of a Document Automatically Using ControlCenter4 Home Mode (Windows)	124
Scan Settings for ControlCenter4 Home Mode (Windows)	126
Scan Using ControlCenter4 Advanced Mode (Windows)	128
Scan Photos and Graphics Using ControlCenter4 Advanced Mode (Windows)	129
Save Scanned Data to a Folder as a PDF File Using ControlCenter4 Advanced Mode (Windows)	131
Scan Both Sides of a Document Automatically Using ControlCenter4 Advanced Mode (Windows)	133
Scan Both Sides of an ID Card Using ControlCenter4 Advanced Mode (Windows)	135
Scan to Email Attachment Using ControlCenter4 Advanced Mode (Windows)	137
Scan to an Editable Text File (OCR) Using ControlCenter4 Advanced Mode (Windows)	139
Scan Settings for ControlCenter4 Advanced Mode (Windows)	141
Scan Using Windows Photo Gallery or Windows Fax and Scan	145
WIA Driver Settings (Windows)	146
Scan from Your Computer (Mac)	148
Scan Using iPrint&Scan (Mac)	149
Configure Scan Settings Using Web Based Management	150
Set the Scan Job Email Report Using Web Based Management	151
Copy	152
Copy a Document	153
Enlarge or Reduce Copied Images	155
Make N in 1 Copies Using the Page Layout Feature	156
Sort Copies	158
Copy an ID Card	159
Copy on Both Sides of the Paper (2-sided Copy)	160
Copy Options	162
Fax	164
Send a Fax	165
Send a Fax	166
Send a 2-sided Fax from the ADF	168
Send a Fax Manually	169
Send a Fax at the End of a Conversation	170
Send the Same Fax to More than One Recipient (Broadcasting)	171
Cancel a Broadcast in Progress	172
Send a Fax in Real Time	173
Send a Fax at a Specified Time (Delayed Fax)	174
Add a Cover Page to Your Fax	175
Compose Your Own Comments	176
Use a Printed Cover Page	177
Cancel a Fax in Progress	178
Check and Cancel a Pending Fax	179
Fax Options	180
Receive a Fax	181
Receive Mode Settings	182
Receive Modes Overview	183
Choose the Correct Receive Mode	184
Set the Number of Rings Before the Machine Answers (Ring Delay)	185
Set the F/T Ring Time (Pseudo/Double-ring)	186
Set Easy Receive	187
Shrink Page Size of an Oversized Incoming Fax	188
Set the 2-sided Printing for Received Faxes	189
Set the Fax Receive Stamp	190
Receive a Fax at the End of a Telephone Conversation	191
Memory Receive (Remote Fax) Options	192
Forward Incoming Faxes to Another Machine	193
Set the Machine to Dial a Cell Phone or Pager Number When Receiving Faxes	194
Store Incoming Faxes in the Machine's Memory	195
Change Memory Receive Options	196
Turn Off Memory Receive	197
Print a Fax Stored in the Machine's Memory	198
Use PC-Fax Receive to Transfer Received Faxes to Your Computer (Windows only)	199
Remote Fax Retrieval	200
Set a Remote Access Code	201
Use Your Remote Access Code	202
Remote Retrieval Commands	203
Forward Faxes Remotely	204
Change the Fax Forwarding Number	205
Voice Operations and Fax Numbers	206
Voice Operations	207
Send Tone Signals (For Canada)	208
Pick up a Voice Call in Fax/Tel Receive Mode	209
Special Line Considerations	210
Rollover Telephone Lines	211
Two-Line Telephone System	212
Convert Telephone Wall Outlets	213
Install Your Machine, an External Two-Line TAD and Two-Line Telephone	214
Store Fax Numbers	215
Store Address Book Numbers	216
Store Address Book Numbers from Outgoing Calls	217
Change or Delete Address Book Names or Numbers	218
Set up Groups for Broadcasting	219
Change a Group Name	220
Delete a Group	221
Add or Delete Group Members	222
Dial Access Codes and Credit Card Numbers	223
Telephone Services and External Devices	224
Voice Mail	225
Distinctive Ring	226
Register the Distinctive Ring Pattern	228
Turn Off Distinctive Ring	229
External TAD (Telephone Answering Device)	230
Connect an External TAD	231
Record an Outgoing Message (OGM) on the External TAD	232
External and Extension Telephones	233
Connect an External or Extension Telephone	234
Operation from External and Extension Telephones	235
Use the Remote Codes	236
Change the Remote Codes	237
Multi-line Connections (PBX)	238
Fax Reports	239
Print a Transmission Verification Report	240
Print a Fax Journal	241
PC-FAX	242
PC-FAX for Windows	243
PC-FAX Overview (Windows)	244
Configure PC-FAX (Windows)	245
Configure your PC-Fax Address Book (Windows)	247
Add a Member to the Address Book (Windows)	248
Create a Group in the Address Book (Windows)	250
Edit Member or Group Information (Windows)	252
Delete a Member or Group (Windows)	253
Export the Address Book (Windows)	254
Import Information to the Address Book (Windows)	256
Send a Fax Using PC-FAX (Windows)	258
Receive Faxes on Your Computer (Windows)	259
Receive Faxes Using PC-FAX Receive (Windows)	260
Run PC-FAX Receive on Your Computer (Windows)	261
Set Up Your Computer for PC-FAX Receiving (Windows)	262
Add Your Machine to PC-FAX Receiving (Windows)	263
View Received Messages (Windows)	265
Print Data Directly from a USB Flash Drive	267
Compatible USB Flash Drives	268
Print Data Directly from a USB Flash Drive or Digital Camera Supporting Mass Storage	269
Create a PRN File for Direct Printing (Windows)	271
Network	272
Get Started	273
Supported Basic Network Features	274
Network Management Software and Utilities	275
Learn about Network Management Software and Utilities	276
Additional Methods of Configuring Your Machine for a Wireless Network	277
Before Configuring Your Machine for a Wireless Network	278
Configure Your Machine for a Wireless Network	279
Configure Your Machine for a Wireless Network Using the One Push Method of Wi-Fi Protected Setup™ (WPS)	280
Configure Your Machine for a Wireless Network Using the PIN Method of Wi-Fi Protected Setup™ (WPS)	281
Configure Your Machine for a Wireless Network in Ad-Hoc Mode (For IEEE 802.11b/g/n)	284
Configure Your Machine for a Wireless Network in Ad-Hoc Mode Using a New SSID	285
Configure Your Machine for a Wireless Network in Ad-Hoc Mode Using an Existing SSID	286
Configure Your Machine for a Wireless Network Using the Machine's Control Panel Setup Wizard	288
Configure Your Machine for a Wireless Network When the SSID Is Not Broadcast	290
Configure Your Machine for an Enterprise Wireless Network	292
Use Wi-Fi Direct®	294
Print or Scan from Your Mobile Device Using Wi-Fi Direct	295
Configure Your Wi-Fi Direct Network	296
Wi-Fi Direct Network Configuration Overview	297
Configure Your Wi-Fi Direct Network Using the One-Push Method	298
Configure Your Wi-Fi Direct Network Using the One-Push Method of Wi-Fi Protected Setup™ (WPS)	299
Configure Your Wi-Fi Direct Network Using the PIN Method	300
Configure Your Wi-Fi Direct Network Using the PIN Method of Wi-Fi Protected Setup™ (WPS)	301
Configure Your Wi-Fi Direct Network Manually	302
Advanced Network Features	303
Print the Network Configuration Report	304
Configure Your Mail Server Settings Using Web Based Management	305
Configure the Machine for Email or Internet Fax (I-Fax)	307
Fax Using the Internet (I-Fax)	308
Important Information about Internet Fax (I-Fax)	309
Initial Setup for Email or Internet Fax (I-Fax)	310
Send an Internet Fax (I-Fax)	311
Poll the Server Manually	312
How Your Computer Receives an I-Fax	313
Forward Received Email and Fax Messages	314
Relay Broadcast	315
Relay Broadcast from Your Machine	317
Relay Broadcast from Your Computer	319
I-Fax Options	320
Internet Fax (I-Fax) Verification Mail	321
Enable Send Notifications for TX Verification Mail	322
Enable Receive Notification for TX Verification Mail	323
Error Mail	324
Use the Send Fax to Server Feature	325
Before Sending a Fax to the Fax Server	326
Enable Fax to Server	327
Operate Fax to Server	328
Print the WLAN Report	329
Wireless LAN Report Error Codes	330
Configure and Operate LDAP Search	332
Change LDAP Configuration Using Web Based Management	333
Perform an LDAP Search Using Your Machine's Control Panel	334
Synchronize Time with the SNTP Server Using Web Based Management	335
Configure Date and Time Using Web Based Management	336
Configure the SNTP Protocol Using Web Based Management	337
Technical Information for Advanced Users	339
Gigabit Ethernet (Wired Network Only)	340
Configure the Gigabit Ethernet Settings Using Web Based Management	341
Reset the Network Settings to the Factory Settings	342
Security	343
Lock the Machine Settings	344
About Using Setting Lock	345
Set the Setting Lock Password	346
Change the Setting Lock Password	347
Turn On Setting Lock	348
Network Security Features	349
Before Using Network Security Features	350
Secure Function Lock 3.0	351
Before Using Secure Function Lock 3.0	352
Configure Secure Function Lock 3.0 Using Web Based Management	353
Scan Using Secure Function Lock 3.0	354
Configure Public Mode for Secure Function Lock 3.0	355
Additional Secure Function Lock 3.0 Features	356
Register a new ID Card Using Machine's Control Panel	357
Use Active Directory Authentication	358
Introduction to Active Directory Authentication	359
Configure Active Directory Authentication Using Web Based Management	360
Log On to Change the Machine Settings Using the Machine's Control Panel (Active Directory Authentication)	362
Use LDAP Authentication	363
Introduction to LDAP Authentication	364
Configure LDAP Authentication Using Web Based Management	365
Log On to Change the Machine Settings Using the Machine's Control Panel (LDAP Authentication)	366
Manage Your Network Machine Securely Using SSL/TLS	367
Introduction to SSL/TLS	368
Brief History of SSL/TLS	369
Benefits of Using SSL/TLS	370
Certificates and Web Based Management	371
Supported Security Certificate Features	372
Create and Install a Certificate	373
Step by Step Guide for Creating and Installing a Certificate	374
Create and Install a Self-signed Certificate	375
Create a Self-signed Certificate	376
Install the Self-signed Certificate for Windows users with Administrator Rights	378
Import and Export the Self-signed Certificate on your Machine	382
Import the Self-signed Certificate	383
Export the Self-signed Certificate	384
Create and Install a Certificate from a Certificate Authority (CA)	385
Create a Certificate Signing Request (CSR)	386
Install a Certificate on Your Machine	388
Import and Export the Certificate and Private Key	389
Import a Certificate and Private Key	390
Export the Certificate and Private Key	391
Import and Export a CA Certificate	392
Import a CA Certificate	393
Export a CA Certificate	394
Manage Multiple Certificates	395
Manage Your Network Machine Securely Using Web Based Management	396
Print Documents Securely Using SSL/TLS	398
Manage Your Network Machine Securely Using IPsec	399
Introduction to IPsec	400
Configure IPsec Using Web Based Management	401
Configure an IPsec Address Template Using Web Based Management	403
Configure an IPsec Template Using Web Based Management	405
IKEv1 Settings for an IPsec Template	407
IKEv2 Settings for an IPsec Template	410
Manual Settings for an IPsec Template	414
Send or Receive an Email Securely	417
Configure Email Sending or Receiving Using Web Based Management	418
Send an Email with User Authentication	419
Send or Receive an Email Securely Using SSL TLS	420
Use IEEE 802.1x Authentication for a Wired or a Wireless Network	422
What Is IEEE 802.1x Authentication?	423
Configure IEEE 802.1x Authentication for a Wired or a Wireless Network Using Web Based Management (Web Browser)	424
IEEE 802.1x Authentication Methods	426
Store Print Log to Network	427
Store Log to Network Overview	428
Configure the Store Print Log to Network Settings Using Web Based Management	429
Use the Store Print Log to Network's Error Detection Setting	431
Use Store Print Log to Network with Secure Function Lock 3.0	432
Mobile/Web Connect	433
Print with Google Cloud Print™	434
Print with Mopria™	435
Print from a Mobile Device	436
ControlCenter	437
ControlCenter4 (Windows)	438
Change the Operation Mode in ControlCenter4 (Windows)	439
Scan Using ControlCenter4 Home Mode (Windows)	441
Scan Using ControlCenter4 Advanced Mode (Windows)	442
Set Up This Machine Using ControlCenter4 (Windows)	443
Create a Custom Tab Using ControlCenter4 Advanced Mode (Windows)	445
Troubleshooting	447
Error and Maintenance Messages	448
Transfer Your Faxes or Fax Journal Report	454
Transfer Faxes to Another Fax Machine	455
Transfer Faxes to Your Computer	456
Transfer the Fax Journal Report to Another Fax Machine	457
Document Jams	458
Document is Jammed in the Top of the ADF Unit	459
Document is Jammed under the Document Cover	460
Remove Small Scraps of Paper Jammed in the ADF	461
Paper Jams	462
Paper is Jammed in the MP tray	463
Paper is Jammed in the Paper Tray	464
Paper is Jammed in the Back of the Machine	466
Paper is Jammed inside the Machine	468
Paper is Jammed in the 2-sided Tray	470
Printing Problems	473
Improve the Print Quality	475
Telephone and Fax Problems	480
Set Dial Tone Detection	484
Set Telephone Line Compatibility for Interference and VoIP Systems	485
Network Problems	486
Error Messages	487
Where Can I Find My Machine's Network Settings?	489
I Cannot Complete the Wireless Network Setup Configuration	490
My Machine Cannot Print, Scan, or PC-FAX Receive over the Network	492
I Want to Check that My Network Devices are Working Correctly	494
Other Problems	495
Check the Machine Information	497
Reset Your Machine	498
Reset Functions Overview	499
Routine Maintenance	500
Replace Supplies	501
Replace the Toner Cartridge	503
Replace the Imaging Unit	506
Reset the Drum Counter	509
Clean the Machine	510
Clean the Scanner	512
Clean the Touchscreen LCD	513
Clean the Corona Wire	514
Clean the Imaging Unit	516
Clean the Paper Pick-up Rollers	520
Check the Remaining Life of Parts	522
Replace Periodic Maintenance Parts	523
Machine Settings	524
Change Machine Settings from the Control Panel	525
In the Event of Power Failure (Memory Storage)	526
General Settings	527
Adjust the Machine's Volume	528
Change for Daylight Saving Time Automatically	529
Set Sleep Mode Countdown	530
About Deep Sleep Mode	531
Set Auto Power Off Mode	532
Set the Date and Time	533
Set the Time Zone	534
Adjust the LCD Backlight Brightness	535
Change How Long the LCD Backlight Stays On	536
Set Your Station ID	537
Set Tone or Pulse Dialing Mode	538
Reduce Toner Consumption	539
Add a Prefix to Every Fax Number	540
Prevent Dialing a Wrong Number (Dial Restriction)	541
Reduce Printing Noise	542
Change the Language on the LCD	543
Save Your Favorite Settings as a Shortcut	544
Add Shortcuts	545
Change or Delete Shortcuts	546
Print Reports	547
Reports	548
Print a Report	549
Settings and Features Tables	550
Settings Tables	551
Features Tables	560
Change Machine Settings from Your Computer	567
Change Machine Settings Using Web Based Management	568
What is Web Based Management?	569
Access Web Based Management	571
Set a Login Password for Web Based Management	572
Change the Machine Settings Using Remote Setup	573
Remote Setup (Windows)	574
Set Up This Machine from Your Computer (Windows)	575
Set Up This Machine Using ControlCenter4 (Windows)	577
Set Up Your Machine's Address Book Using ControlCenter4 (Windows)	579
Appendix	580
Specifications	581
How to Enter Text on Your Machine	587
Glossary	588
A	588
Active Directory Authentication	595
Ad-Hoc Mode	595
Address Book	595
Address Book List	595
ADF (Automatic Document Feeder)	595
AES	595
APIPA	595
APOP	595
ARP	595
Authentication	595
Auto Reduction	596
Automatic Fax Transmission	596
Automatic Redial	596
Backup Print	596
Beeper Volume	596
BOOTP	597
Broadcasting	597
CA	597
CA Certificate	597
Caller ID	597
Cancel Job	597
Certificate	597
Channels	597
CIFS	597
CNG Tones	598
Coding Method	598
Communication Error (or Comm. Error)	598
Compatibility Group	598
Contrast	598
CSR	598
Custom Raw Port	598
Delayed Fax	598
Density	598
DHCP	598
Digital Signature	599
Distinctive Ring	599
DNS Client	599
DNS Server	599
Dual Access	599
Easy Receive	599
ECM (Error Correction Mode)	599
Encryption	599
Extension Telephone	600
External Telephone	600
F/T Ring Time	600
Fax Forwarding	600
Fax Journal	600
Fax Receive Code (Fax/Tel Mode Only)	600
Fax Storage	601
Fax Tones	601
Fax/Tel	601
Fine Resolution	601
FTP	601
Gateway	601
Gray Scale	601
Group Number	601
HTTP (Web Server)	601
HTTPS	601
IEEE 802.1x	602
Infrastructure Mode	602
Internet Fax	602
IP Address	602
IPP	602
IPPS	602

Match case Limit results 1 per page

Use Prefixed Template

Select

Custom

IKEv1 High Security

IKEv1 Medium Security

. The setting items are different depending

on the selected template.

The default template differs depending on whether you chose

Main

Aggressive

for

Negotiation Mode

on the

IPsec

configuration screen.

Internet Key Exchange (IKE)

IKE is a communication protocol that is used to exchange encryption keys in order to carry out encrypted

communication using IPsec. To carry out encrypted communication for that time only, the encryption algorithm

that is necessary for IPsec is determined and the encryption keys are shared. For IKE, the encryption keys are

exchanged using the Diffie-Hellman key exchange method, and encrypted communication that is limited to

IKE is carried out.

If you selected

Custom

Use Prefixed Template

, select

IKEv1

Authentication Type

Configure the IKE authentication and encryption.

•

Diffie-Hellman Group

This key exchange method allows secret keys to be securely exchanged over an unprotected network.

The Diffie-Hellman key exchange method uses a discrete logarithm problem, not the secret key, to send

and receive open information that was generated using a random number and the secret key.

Select

Group1

Group2

Group5

, or

Group14

•

Encryption

Select

DES

3DES

AES-CBC 128

, or

AES-CBC 256

•

Hash

Select

MD5

SHA1

SHA256

SHA384

SHA512

•

SA Lifetime

Specify the IKE SA lifetime.

Type the time (seconds) and number of kilobytes (KByte).

Encapsulating Security

•

Protocol

Select

ESP

AH+ESP

ESP is a protocol for carrying out encrypted communication using IPsec. ESP encrypts the payload

(communicated contents) and adds additional information. The IP packet is comprised of the header

and the encrypted payload, which follows the header. In addition to the encrypted data, the IP packet

also includes information regarding the encryption method and encryption key, the authentication data,

and so on.

AH is part of the IPsec protocol that authenticates the sender and prevents manipulation (ensures the

completeness) of the data. In the IP packet, the data is inserted immediately after the header. In

addition, the packets include hash values, which are calculated using an equation from the

communicated contents, secret key, and so on, in order to prevent the falsification of the sender and

manipulation of the data. Unlike ESP, the communicated contents are not encrypted, and the data is

sent and received as plain text.

•

Encryption

Select

DES

3DES

AES-CBC 128

, or

AES-CBC 256

. The encryption can be selected only when

ESP

is selected in

Protocol

•

Hash

Select

None

MD5

SHA1

SHA256

SHA384

, or

SHA512

When

AH+ESP

is selected in

Protocol

, select each protocol for

Hash(ESP)

and

Hash(AH)

•

SA Lifetime

Specify the IPsec SA lifetime.

402