Manuals / HP / Computer Equipment / All in One Printer

HP ew2500 802.11b/g Print Server IKE Stats, IPsec Rules, 17IPsec statistics, 18IKE Statistics

Models: ew2500 802.11b/g Print Server

1 206

Download 206 pages 49.02 Kb

Page 171

Table 8-17IPsec statistics

Message	Description

Fragmentation Errors	Number of fragmented packets that cannot be reassembled.

ESP MAC Errors	Number of encapsulating security payload (ESP) MAC errors. MAC is used to verify
	that the received message is the same as the one sent.

AH MAC Errors	Number of authentication header (AH) MAC errors. MAC is used to verify that the
	message received is the same as the one sent.

Replay Errors	Number of replay attacks, where unauthorized packets are resent.

Drop Rule	Number of dropped packets based on the IPsec rule (set to drop all non-IPsec traffic).
	Client notification of dropped packets is not provided.

Reject Rule	Number of rejected IPsec packets. Client notification of rejected packets is provided
	through ICMP error messages.

No Rule	Number of received packets for which an IPsec policy rule is not configured.

Generic Drops	Number of dropped packets that are not counted by other statistics.

ESP (Rx/Tx):	Total number of ESP packets received (Rx) and transmitted (Tx) by the print server.

AH (Rx/Tx)	Total number of AH packets received (Rx) and transmitted (Tx) by the print server.

Total (Rx/Tx)	Total number of all packets received (Rx) and transmitted (Tx) by the print server.

IKE Stats

Internet key exchange (IKE) statistics for the print server are described in the following table.

Table 8-18IKE Statistics

Message	Description

Phase 1 Failures	Number of authentication failures that occur when the print server is establishing a
	connection over IPsec. These result in connection failures.

Quick Mode Failures	Number of post-authentication failures that occur during IPsec protocol configuration,
	which result in connection failures.

Rekeys	Number of times keys were regenerated. For example, this can occur after a key
	lifetime setting is exceeded and then regenerated.

IKE Connections OK (1/Q)	Number of successful IPsec connections for both Phase 1 and Quick Mode attempts,
	separated by a slash (Phase 1 count / Quick Mode count).

IPsec Rules

This section of the Security page identifies the IPsec policy of the print server. The IPsec policy consists of rules that control the security of the traffic received and transmitted by the print server. Rules are configured with an IPsec configuration wizard, which is accessed from the HP Embedded Web Server. You can configure up to ten rules.

HP Jetdirect Security page 161

Image 171

HP ew2500 802.11b/g Print Server manual IKE Stats, IPsec Rules, 17IPsec statistics, 18IKE Statistics

Contents

HP Jetdirect Print Servers Page HP Jetdirect Print Servers Trademark Credits Copyright Hewlett-Packard Development Company, L.PTable of contents HP Embedded Web Server DLC/LLC Snmp IPsec/Firewall configuration 105Security features 121 HP Jetdirect configuration pages 135Troubleshoot the HP Jetdirect print server 125 Appendix B FTP printing 173 Appendix a LPD printing 163Appendix C HP Jetdirect control panel menus 177 Appendix D Open source licensing statements 188Index 191 Supported print servers Introducing the HP Jetdirect print server2Supported network protocols Supported network protocolsSnmp IP and IPX AuthenticationEAP/802.1X port-based authentication Security protocolsIPsec/Firewall Wireless print server authenticationHP support Firmware upgradesFirmware installation tools Supplied manualsProduct accessibility Product registrationHP support by phone Operating Environment Function Remarks HP software solutions summary1Software Solutions HP Web Jetadmin see HP Web Jetadmin onOperating Environment Function HP Jetdirect Printer Installer for Unix HP Web JetadminSystem requirements Install HP Web Jetadmin software Internet Printer Connection software Configure and modify a deviceRemove HP Web Jetadmin software Verify HP Web Jetadmin installation and provide accessWindows XP/Server 2003 or 2008 integrated software Mac OS network installationNovell-supplied software Software toolsOpen System Preferences, and then open Print & Fax Use Bonjour Mac OS XTest the configuration Verify network configurationTCP/IP configuration IPv6 configurationIPv6 address introduction IPv6 address configuration Link-local addressStateless addresses Use DNS Stateful addressesIPv4 configuration Server-based and manual TCP/IP configuration IPv4Tools and utilities Default IP address IPv4 Default IP address is not assignedDefault IP address is assigned Dhcp requests enable/disable Default IP on wireless and wired print serversDefault IPv4 address configuration options Default IPv4 parameterTCP/IP configuration tools Default IPv4 behaviorUse BOOTP/TFTP IPv4 Advantages of using BOOTP/TFTPConfigure the print server using BOOTP/TFTP on Unix Systems using network information service NIS Configure the Bootp serverBootptab file entries IPv4 RFC Description Option 1Tags supported in a BOOTP/DHCP boot fileTftp configuration file entries IPv4 2TFTP configuration file parameters Example HP Jetdirect Tftp configuration fileGeneral TCP/IP Main TCP/IP Print Options Lpd-printing or lpd-config,lpd Printing or 9100-configFtp-printing or ftp-config,ftp Ipp-printing or ipp-config,ippTCP/IP Access Control TCP/IP Other SettingsTCP/IP Raw Print Ports Slp-keep-alive Slp-configBonjour-config Syslog-facilityIcmp-ts-config Idle-timeoutUser-timeout or telnet-timeout Cold-resetSnmp-config Telnet-config or telnetDefault-ip Default-ip-dhcpSet-cmnty-name or set-community-name Auth-trap or authentication-trapIpx-config or ipx/spx Get-cmnty-name or get-community-nameAppleTalk Other SettingsUsb-speed UpgradeUpgrade Tftp server IP Version Product Number Filename Usb-modeUse Dhcp IPv4 Unix systemsSupport Windows Server 2003 and Server Windows systemsDiscontinue Dhcp configuration Laserjet1 Use Rarp IPv4Arp -s IP address LAN hardware address Ping IP address Use the arp and ping commands IPv4Create a Telnet connection Use Telnet IPv4Route add Jetdirect IP Address system IP Address Typical Telnet sessionTelnet user interface options Telnet command line interface default3Telnet Commands and Parameters CommandDescription User Control CommandsWireless 802.11 Main Svr-auth-pass Auth-typeServer-auth Svr-auth-userWireless Diagnostics Specified Ipsec-config Firewall-config00a0f8387af7 Host-nameDomain-name support.hp.com Tftp ServerTftp Filename Hpnp/printer1.cfgLpd-printing PrintingFtp-printing Ipp-printingTCP/IP Other TCP/IP LPD QueuesSyslog-svr To 1440 EnableFtp-download Bonjour Domain NameFor more information, see HP Embedded Web Server V.40.xx on User-timeoutEws-config Gw-disableTCP/IP Diagnostics Snmp Traps Ipx-mode Ipx-configIpx-unitname AddressOther 1000t-ms-conf Upgrade LaaXml-services-conf Ws-discovery-confNetwork-select Menu Interface Job-timeoutWeb JetAdmin URL Web JetAdmin NameUse Telnet to remove an IP address 1Example Using the Menu InterfaceUse the HP Embedded Web Server Use the printer control panelMove to another network IPv4 Page HP Embedded Web Server Compatible Web browsers Supported HP Web Jetadmin versionRequirements View the HP Embedded Web ServerPage HP Jetdirect Home tab Operating notes1HP Jetdirect Home Page Items Device tabs Networking tab2Networking Menu Items WirelessConfiguration section Diagnostics section3Wireless configuration parameters WEP Personal WEP Enterprise Restore Defaults WPA PersonalWPA Enterprise TCP/IP Settings Summary tab4TCP/IP Summary tab 5TCP/IP Network Identification tab Network Identification tab6TCP/IPv4 tab TCP/IPv4 tab7TCP/IPv6 tab TCP/IPv6 tab8TCP/IP Config Precedence tab Config Precedence tab9TCP/IP Advanced tab Advanced tabDefault IP Manual SettingsProxy Server Password DisableNetwork Settings 10IPX/SPX tab settings AppleTalk 11AppleTalk tab settings12SNMP tab settings Other Settings Misc. Settings13Miscellaneous Settings Link settings HP XML ServicesCertificate Mgmt Service Web Services PrintLPD Queues Firmware UpgradeAppend String Name 14LPD Queues tab settingsQueue Name Prepend String NameValue Default Queue NameQueue Type String NameRefresh Rate USB Settings15USB Settings tab Support InfoWizard Security SettingsSelect Language StatusSecurity Level Description Basic Security 16Wizard Security LevelsCustom Security Restore DefaultsSecurity Level Description Enhanced Security RecommendedCertificates AuthorizationAdmin. Account Printer Password Synchronization17Certificate configuration screens Configure certificatesImport Certificate and Private Key Install CertificateCertificate Validity Period Certificate InformationInstall Certificate or Install CA Certificate screens ExamplesDomain Name myprinter.mydepartment.mycompany.com IP Address Mask Description Access ControlMgmt. Protocols Web MgmtSnmp 18Other protocols Enable Print ProtocolsEnable Print Services OtherNaming Resolution 802.1X AuthenticationEnable Device Discovery SLP, might be disabled without notification19802.1X configuration settings Assessment Other Links IPsec/Firewall configuration 1Firewall Policy 1IPsec/Firewall Policy HP Jetdirect IPsec/Firewall wizard Default Rule exampleAll IPv4 Addresses All Jetdirect Print Services IPsec security associations SALimitations to rules, templates and services 2Limitations to rules, templates and servicesLimit Create Address Template Specify Address Template3Create Address Template Specify Service TemplateCreate Service Template 4Create Service Template6Manage Custom Services Manage ServicesManage Custom Services 5Manage ServicesSpecify IPsec/Firewall Template Specify ActionIdentity Authentication Create IPsec Template7Create IPsec Template Certificates on 8Identity AuthenticationKerberos CertificatesKerberos Settings 10Kerberos Settings9Kerberos IKEv1/IKEv2 Phase 1 Authentication IKEv1/IKEv2 Phase 2 / Quick Mode IPsec Protocols11IKEv1/IKEv2 Phase 1 Authentication Advanced IKE Settings 12IKEv1/IKEv2 Phase 2 / Quick Mode Settings IPsec Protocols13Advanced IKE Settings 15Manual Keys IPsec Protocols Manual KeysManual Keys 14IPsec Protocols Manual KeysRule Summary Configure Windows systems1Summary of HP Jetdirect security features Security featuresIPv4/IPv6 Snmp v1/v2c Set Community Name IP/IPX Authentication and EncryptionHP Web Jetadmin IPv4 Password and Profiles Telnet Control2Settings for Access Control Limit access to security featuresSettings Level of Access Control MediumHigh Troubleshoot the HP Jetdirect print server Reset to factory defaultsExample Cold reset using the service menu Disable an HP Jetdirect embedded print serverTroubleshooting chart assess the problem General troubleshootingProcedure 2 Print an HP Jetdirect configuration Procedure 1 Verify the printer is on and onlineProcedure 3 Resolve printer display error messages Procedure 4 Resolve printer network communication problems Telnet IP address port Troubleshooting wireless print servers Unable to communicate during initial setupUnable to communicate after initial setup My configured channel does not match the configuration Corrective actions SymptomsImproving reception and performance Firmware download failureHP Jetdirect configuration pages HP Jetdirect configurationStatus field error messages Section Name Configuration page format1Configuration Page Sections HP Jetdirect Configuration or General InformationMessageDescription Configuration page messagesHP Jetdirect Configuration/General Information 2HP Jetdirect Configuration/General InformationMessage Description USB printer informationWireless settings 4802.11 Wireless settingsUSB Speed Network Name Ssid Status/Error MessagesSSL Issuer Signal StrengthAccess Point / Bssid Authentication TypeSecurity Settings Snmp Set Cmty Name Access ListSecure Web Configuration Snmp VersionsTCP/IP configuration information Network StatisticsTCP/IP protocol information IPv4 Section IPv4 sectionRarp Server BOOTP/DHCP Server Default GatewayConfig by Bootp ServerIPX/SPX protocol information IPv6 sectionIPv6 Section Novell/NetWare parameters 10 IPX/SPX configuration informationCN=ljpserver.OU=support.OU=mycity.OU=mycompany 11 Novell/NetWare configuration information12 AppleTalk configuration information AppleTalk protocol informationDLC/LLC protocol information Error messages13 DLC/LLC configuration information 14Error messagesError Code and Message Description Not Configured Network Reconfig MustReboot Disconnected Configuration ErrorTimeout Unable to LoginUnable to SET Password Disconnecting SPXDirected to the print server 3C NDS ERR Unresolved Queue Novram Error4D CF ERR Access List 4F Tftp Remote ErrorBOOTP/RARP in Progress Tftp Local ErrorBAD BOOTP/DHCP Reply BAD Bootp TAG SizeHP Jetdirect Security 15General Information 2HP Jetdirect SecurityCurrent IPsec status IPsec Error Log Local IP addressesIPsec Statistics 18IKE Statistics IKE StatsIPsec Rules 17IPsec statisticsSRC Available Network ServicesIPsec Security Associations SA table 19IPsec Security AssociationsProgram Name Purpose of Program LPD printingAbout LPD Table A-1LPD programs and protocolsSet up print queues Requirements for configuring LPDLPD setup overview Set up IP parametersTable A-2Supported queue types Configure print queues for BSD-based systemsPrint a test file LPD on Unix systemsUse SAM to configure print queues HP-UX systems Examples myprinter or printer1 Print a test fileLPD on Windows Server 2003/2008 systems Install TCP/IP softwareAdd LPR compatible printer window Add Windows optional networking components Verify the configurationLPD on Windows XP systems Print from Windows clientsConfigure a network LPD printer Create an LPR port for an installed printerAdd a new LPD printer Page FTP connections FTP printingPrint files Use FTP printingData connection FTP loginEnd the FTP session CommandsTable B-1User commands for HP Jetdirect FTP server Command DescriptionPORT1 Example FTP SessionHP Jetdirect control panel menus Graphical control panel menusHP Jetdirect EIO Menu on Graphical Control Panel Table C-1HP Jetdirect EIO Menu on Graphical Control Panel Address IPv6 Settings EnablePrimary DNS Secondary DNSFrame Type AppleTalk EnableProxy Server Proxy PortIPsec or Firewall Reset SecurityEnable Wipe Login Security Keep Reset Assessment DisableSnmp Test Diagnostics Embedded TestsLAN HW Test Http TestDest Type TimeoutExecute Ping TestLink Speed RTT AveragePing in Progress RefreshClassic control panel EIO menus HP Jetdirect EIO Menu on Classic Control PanelMenu Item Description WEB Table C-2HP Jetdirect EIO Menu on Classic Control PanelMenu Item CFG IPX/SPXPrint IpsecFirewall Code VerificationOpenSSL license Open source licensing statementsGSOAP OpenSSLOriginal SSLeay license Page Type IndexSee also Gateway Babble Port Select WEP Hewlett-Packard Development Company, L.P