PRISMAsync Print Server

This topic contains the following instructions:

PRISMAsync Print Server IPsec protocols

PRISMAsync Print Server can use IPsec to secure the host communication via the following protocols.

To use IPsec, the PRISMAsync Print Server Identity certificate must be valid for IPsec, and also HTTPS.

HTTPS can be used in case problems occur with the IPsec connection.

Go to: [Configuration] → [Security] .

[Security] tab
Go to the [Identity certificate] options.
Read the [Valid for IPsec] option to check if the certificate is valid for IPsec and HTTPS.

Certificate for IPsec

Go to: [Configuration] → [IPsec communication] .

[IPsec communication] tab
Click [Configure].
Click the [IPsec enabled] check box.
Use the [Minimum strength of encryption algorithm] option to define the minimum algorithm strength level.

[Minimum strength of encryption algorithm] option
- [Compatible with legacy algorithm techniques]
- [Compatible with common algorithm techniques]
- [Compatible with strong algorithm techniques]
Use the [Use of NAT-T] option when NAT-T (Network Address Translation Traversal) must be used.

[Use of NAT-T] option
- [Never]
- [When remote endpoint is behind NAT router]
- [When both local and remote endpoints are behind NAT router]
Use the exemption options to indicate what TCP/IP protocols are not secured by IPsec.

Exemption options
- [Exempt DHCP traffic from IPsec security]
- [Exempt ICMP traffic from IPsec security]
- [Exempt NDP traffic from IPsec security]
- [Exempt HTTPS traffic from IPsec security]
IMPORTANT
During the initial configuration of IPsec, you are advised to keep the possibility to connect via HTTPS in case IPsec is not able to set up a connection. Therefore, exempt HTTPS from IPsec security and ensure HTTPS is configured correctly.
Click [OK].
Define one or more IPsec rules.

NOTE
IPsec is active when at least one rule has been defined.