HP 635n - JetDirect IPv6/IPsec Print Server Administrator's Manual page 109

Jetdirect print servers

Hide thumbs Also See for 635n - JetDirect IPv6/IPsec Print Server:

Administrator's manual (194 pages)

How to use manual (101 pages)

Manuallines (33 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

Table of Contents

The items on the IPsec/Firewall policy pages are described below.

Table 5-1

IPsec/Firewall Policy page

Item

Enable IPsec/Firewall

Enable Firewall

IPsec/Firewall Rules

Default Rule

ENWW

Description

Enter a check mark in the checkbox to enable your IPsec/Firewall policy. Clear this

checkbox to disable IPsec/Firewall operation.

An IPsec/Firewall policy consists of rules for processing IP packets. Up to ten rules may

be configured. Rules are in descending order of precedence (for example, Rule 1 is

higher in precedence than Rule 2).

Each rule is defined by the following fields:

●

An Enable checkbox indicates whether a configured rule is enabled or disabled

for the policy.

●

Address Template: Identifies the IP addresses for which the rule applies. You

may select among several predefined templates, or specify a custom template.

Click on a template entry to view or modify the template configuration.

●

Services Template: Identifies the services for which the rule applies. You may

select among several predefined templates, or specify a custom template. Click

on a template entry to view or modify the template configuration.

CAUTION:

If the All Services template for a rule is not specified, a

security risk may exist. Future networking applications that are deployed

after the IPsec Policy is in place may not be IPsec-protected unless the

All Services template is used.

For example, installing a third-party Chai service plug-in, or upgrading

firmware for the printer or print server, may result in a new service that is

not covered by the IPsec policy, Policies should be revisited whenever

firmware is updated or a new Chai applet is installed.

●

Action on Match: Identifies how to process the IP traffic that contains the

addresses and services specified.

For Firewall operation, the traffic will be allowed or dropped, depending on the

action specified by the rule.

For IPsec operation, the traffic may be allowed without IPsec protection, dropped,

or IPsec-protected using an IPsec template specified for the rule. Click on a

template entry to view or modify the template configuration.

When a Firewall or IPsec policy is enabled and rules are configured, a default rule

specifies whether to process IP packets that do not match the configured rules.

Select Drop (default) to discard traffic that is not covered by the configured rules.

Select Allow to allow traffic that is not covered by the configured rules. However,

allowing IP packets that do not match the configured rules is not secure.

For an example, see

Default Rule Example on page

100.

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

Troubleshooting

Related Products for HP 635n - JetDirect IPv6/IPsec Print Server

This manual is also suitable for:

Jetdirect en1700 - ipv4/ipv6 print server J7988g J7961g J7997g J7993e J8003e ... Show all

HP 635n - JetDirect IPv6/IPsec Print Server Administrator's Manual page 109

Hide quick links:

Troubleshooting

Related Manuals for HP 635n - JetDirect IPv6/IPsec Print Server

Related Products for HP 635n - JetDirect IPv6/IPsec Print Server

This manual is also suitable for:

Table of Contents