Only enable communication with a small group of endpoints

Use case

I want to achieve that the printer is only able to establish connections with computers that I define. Take this situation:

• IPsec is not configured.

• An IPsec rule is used to block connections by default.

• An IPsec rule is used to enable connections with the DNS and DHCP servers.

• An IPsec rule is used to enable connections with the a group of computers.

There are several rules needed to configure this scenario. The base is the rule that blocks all connections by default. The other rules configure the connection with DNS, DHCP, and the print servers.

IPsec rules

Create a rule that blocks all connections by default

Add IPsec rule

1. Click [Configuration]  → [IPsec communication]  → [Add] .

2. Enter a name in the [Name of rule] field.

3. Select [Rule applies to all endpoints].

4. Select [Block connections].

5. Click [OK].

Create a rule that enables DHCP and DNS connections to bypass IPsec

Add IPsec rule

1. Click [Configuration]  → [IPsec communication]  → [Add] .

2. Enter a name in the [Name of rule] field.

3. Select [Rule applies to specified IP addresses].

4. In the [Endpoint IP address] text field, enter:DNS,DHCP.

5. Select [Bypass IPsec].

6. Click [OK].

Create a rule that enables connections with a group of computers to bypass IPsec

Add IPsec rule

1. Click [Configuration]  → [IPsec communication]  → [Add] .

2. Enter a name in the [Name of rule] field.

3. Select [Rule applies to specified IP addresses].

4. Enter the hostnames or IP addresses of the computers in the [Endpoint IP address] text field.

5. Select [Bypass IPsec].

6. Click [OK].

More information

• Learn about IPsec

• Configure IPsec

• Create an IPsec rule