3Com 3CR990-FX-97 manual Creating a Security Policy, Encryption Type Level Description

Page 42

4Using Windows Ofﬂoad Features

The following table shows the available levels of encryption:

Encryption	Encryption
Type	Level	Description

AH	Medium	Authentication only

ESP	High	Authentication and encryption

Custom	Varies	Provides encryption and an extra authentication that includes the
		IP header.
		Custom allows you to select options for both AH and ESP, such as
		MD%/SHA-1 and DES/3DES. And you can select the rate at which
		new keys are negotiated.
		Microsoft uses IKE key exchange to renew keys every x seconds or y
		bytes. However, this practice is computationally very high in
		overhead. Some users may set these values low and have frequent
		key updates. Users more concerned with performance will set these
		values higher.
		For more information, refer to the Microsoft documentation about
		creating IPSec flows.

Creating a Security Policy

The process you use to create and enable a security policy depends on your network environment requirements. The following is an example of one approach to creating a security policy.

NOTE: You must complete all of the sequences in this section to establish and enable a security policy for transmitting and receiving encrypted data over the network.

Deﬁning the Console This sequence establishes the Console and deﬁnes its parameters.

To deﬁne the Console:

1In the Windows taskbar, click Start, Programs, Accessories, and then Command Prompt.

2At the DOS prompt, enter:

MMC

The Console1 screen appears.

3In the menu, click Console and then Add/Remove Snap-in.The Add/Remove Snap-in screen appears.

4Click Add.

The Add Standalone Snap-in screen appears.

5Select IP Security Policy Management, and then click Add.

The Select which computer this Snap-in will manage screen appears.

6Enable the Local computer option.

7Click Finish, Close, and then OK.

34

Image 42

Contents User Guide 3CR990-FX-97United States Government Legend Contents Contents Installing NetWare Drivers Troubleshooting the NICConﬁguring the NIC EtherCD Content and Navigation Running NIC DiagnosticsInstalling the 3Com DMI Agent Installing a 3Com NIC While Installing the NOSIndex Regulatory Compliance Information Page About This Guide ConventionsIcon Information That About This Guide Convention DescriptionData Encryption IntroductionOnboard 3XP Processor Product Name/Description Model Number3CR990-FX-97 NIC Features Supported NIC Feature DescriptionIntroduction Remote Wake-Up and Multiple NIC Installations Ofﬂoad Features3CR990-FX-97 NIC Features Remote Wake-UpIntegrated Boot ROM with Managed PC Boot Agent MBA Desktop Management Interface DMIFlow Control Features Remote ControlHot Plug NIC Installation Keep-AliveOfﬂine Diagnostics Link NegotiationInstallation Overview Safety PrecautionsInstalling and Connecting the NIC Installation RequirementsInstalling Multiple NICs Upgrading Windows 95 to WindowsCreating Installation Diskettes Installing From DisketteMaking a DOS-Bootable Diskette Upgrading Windows 98 to Windows MeProduct Registration Click Register Product, and then Register OnlineConnector Cable Maximum Network Segment Preparing the NIC and the ComputerPreparing the NIC and the Computer Installing and Connecting the NIC Understanding the LEDs Description Flashing Steady OffInstalling Software Software Installation Requirements Getting HelpClick Downloads Installing NIC Drivers and Diagnostics For Windows Installing the Network Driver Using the EtherCDBefore Installing the Network Driver Installing the DriverWindows Installing the Network Driver Using the EtherCDVerifying the Driver Installation Click Device ManagerWindows NT Click Have DiskInstalling the Network Driver Using the EtherCD Windows Me Windows Windows Installing the Network Driver Using the EtherCD Installing the 3Com NIC Diagnostics Program Starting the 3Com NIC Diagnostics Program Starting the 3Com NIC Diagnostics ProgramInstalling Multiple NICs Updating the Network Driver and NIC SoftwareWindows XP, Windows 2000, Windows Me, Windows 98 Installing Multiple NICs Installing NIC Drivers and Diagnostics For Windows Using Windows Ofﬂoad Features Enabling OfﬂoadsClick Conﬁgure Conﬁguring IPSec Ofﬂoads Using Windows Ofﬂoad FeaturesValue Offload Function Enabled Conﬁguring Ofﬂoads for a Group of Different NICsConﬁguring IPSec for Windows Ofﬂoading Encryption ProcessingAuto-Selecting Basic or Strong Encryption Processing Conﬁguring IPSec OfﬂoadsCreating a Security Policy Select IP Security Policy Management, and then click AddEncryption Type Level Description Clear the Activate the default response rule check box Left pane, click IP Security Policies on Local MachineUsing Windows Ofﬂoad Features Downloading the High Encryption Pack for Windows Select Un-assignPage Using the Latest Support Packs Installing NetWare DriversInstalling and Conﬁguring the NetWare Driver NetWare Version Required Support PackObtaining NetWare Loadable Modules NetWare Driver Installation RequirementsInstalling NetWare Drivers Netware Packet Receive BuffersSlot Numbers for Multiple NICs Installing the NetWare DriverInstalling and Conﬁguring the NetWare Driver Obtaining Slot NumbersInstalling the NetWare Driver Using Inetcfg For NetWare 5.x orVerifying the PCI Slot Number Verifying the Installation and Conﬁguration From the Available Options menu, select LAN/WAN DriversChanging NetWare Driver Conﬁguration Parameters Changing NetWare Driver Conﬁguration ParametersPage Conﬁguring the NIC Default NIC SettingsOption Description Settings MbpsOption Description Conﬁguration MethodsConﬁguring the NIC Method Description RequirementsChanging General NIC Conﬁguration Settings Using the 3Com NIC Diagnostics ProgramChanging General NIC Conﬁguration Settings Using the 3Com DOS Conﬁguration Program Booting From the Network Conﬁguring the Managed PC Boot Agent MBAEnabling or Disabling the Boot ROM Setting Conﬁguring the Managed PC Boot Agent MBABBS BIOS-Compatible PCs Non-BBS BIOS-Compatible PCsDisabling the 3Com Logo Disabling the 3Com LogoPage Troubleshooting the NIC Viewing the NIC LEDs in the Diagnostics ProgramInterpreting the NIC LEDs Accessing the 3Com Knowledgebase Accessing 3Com Support DatabasesTroubleshooting Problems with the LEDs Accessing the 3Com NIC Help SystemCleaning Up a Broken Installation Troubleshooting the NIC InstallationProblems/Error Messages Troubleshooting the NIC InstallationTroubleshooting the Network Connection Tip DescriptionRemoving the Network Driver Troubleshooting Remote Wake-UpTroubleshooting Remote Wake-Up Double-clickNetwork AdaptersWindows 95, 98, and Me Running NIC Diagnostics Running the 3Com DOS Diagnostics Program Running the NIC Diagnostics TestsRunning NIC Diagnostics Running the NIC Diagnostics Tests Running the Network TestTab Description Running the NIC Test Viewing the NIC LEDs in the 3Com Diagnostics ProgramViewing Network Statistics Click Perform NIC TestUsing the 3Com Icon in the Windows System Tray Using the 3Com Icon in the Windows System TrayRemoving the 3Com NIC Diagnostics Program Enabling the IconPage Network Interface 3CR990-FX-97 NIC SpeciﬁcationsHardware EnvironmentSpeciﬁcations and Cabling Requirements Network cable connector TransceiverCabling Requirements SpeedInstalling the 3Com DMI Agent About the 3Com DMI AgentSystem Requirements Installing the 3Com DMI AgentInstalling the 3Com DMI Agent Client PC RequirementsClick Install 3Com DMI Agent Now Page EtherCD Content and Navigation Links DescriptionEnabling Auto Insert EtherCD Content and NavigationRoot Subdirectories List Subdirectory ContainsText Files List Text Files ListFile Name File Description Page Installation Instructions Windows Fresh InstallationNetWare Fresh Installation RequirementsInstalling a 3Com NIC While Installing the NOS \nwserverTechnical Support Online Technical Services3Com Knowledgebase Web Services World Wide Web SiteReturning Products for Repair Support from Your Network SupplierSupport from 3Com Technical SupportIndex NumericsIndex MediaselectVerbose Index Regulatory Compliance Information FCC Class B StatementRegulatory Compliance Information ModelDescription