Manuals / HP / Computer Equipment / All in One Printer

HP ew2500 802.11b/g Print Server IPsec Security Associations SA table, Available Network Services

Models: ew2500 802.11b/g Print Server

1 206

Download 206 pages 49.02 Kb

Page 172

The heading of this section indicates the default rule for IPsec traffic (Def: Pass or Drop)

●Pass Allow all non-IPsec traffic.

●Drop Drop all non-IPsec traffic.

For each rule configured, the names of the IP address template, service template, and IPsec template that define the rule are displayed. For more information, see IPsec/Firewall configuration (V.40.xx) on page 105.

IPsec Security Associations (SA) table

The IPsec SA Table lists the security associations of cached IPsec sessions between two hosts. For active sessions, all detected security associations are listed in the table. If required, multiple pages print.

Table 8-19IPsec Security Associations

Message	Description

SA Pair number	An SA table entry pair number. Up to eight entries are displayed.

Protocol	Protocol used by the hosts: TCP, UDP, ICMP, IGMPv2

SRC	IP address of the host that initiates the IPsec traffic.

DST	IP address of the host that receives the IPsec traffic.

In	Number of IPsec packets received, transmitted, or dropped by the print server.
Out
Dropped

Available Network Services

This section lists the well-known ports of HP Jetdirect services being accessed. A remote port is associated with a remote client application. A local port identifies a service and port number on the HP Jetdirect print server. A port is either secure or not secure, depending on the IPsec policy configuration.

For example, for LPD printing enabled with an IPsec rule, a local TCP, secure, port 515 might be listed. Port 515 is a well-known port for LPD services. If the print server is connected to a remote application's port 25, it might list remote TCP, unsecure, port 25 of the client.

162 Chapter 8 HP Jetdirect configuration pages

Image 172

HP ew2500 802.11b/g Print Server manual IPsec Security Associations SA table, Available Network Services, Src, Dst

Contents

HP Jetdirect Print Servers Page HP Jetdirect Print Servers Copyright Hewlett-Packard Development Company, L.P Trademark CreditsTable of contents HP Embedded Web Server IPsec/Firewall configuration 105 DLC/LLC SnmpHP Jetdirect configuration pages 135 Security features 121Troubleshoot the HP Jetdirect print server 125 Appendix a LPD printing 163 Appendix B FTP printing 173Appendix D Open source licensing statements 188 Appendix C HP Jetdirect control panel menus 177Index 191 Introducing the HP Jetdirect print server Supported print serversSupported network protocols 2Supported network protocolsAuthentication EAP/802.1X port-based authenticationSecurity protocols Snmp IP and IPXWireless print server authentication IPsec/FirewallFirmware upgrades Firmware installation toolsSupplied manuals HP supportProduct registration Product accessibilityHP support by phone HP software solutions summary 1Software SolutionsHP Web Jetadmin see HP Web Jetadmin on Operating Environment Function RemarksOperating Environment Function HP Web Jetadmin HP Jetdirect Printer Installer for UnixSystem requirements Install HP Web Jetadmin software Configure and modify a device Remove HP Web Jetadmin softwareVerify HP Web Jetadmin installation and provide access Internet Printer Connection softwareMac OS network installation Novell-supplied softwareSoftware tools Windows XP/Server 2003 or 2008 integrated softwareUse Bonjour Mac OS X Open System Preferences, and then open Print & FaxVerify network configuration Test the configurationIPv6 configuration TCP/IP configurationIPv6 address introduction Link-local address IPv6 address configurationStateless addresses Stateful addresses Use DNSServer-based and manual TCP/IP configuration IPv4 IPv4 configurationTools and utilities Default IP address is not assigned Default IP address IPv4Default IP address is assigned Default IP on wireless and wired print servers Default IPv4 address configuration optionsDefault IPv4 parameter Dhcp requests enable/disableDefault IPv4 behavior TCP/IP configuration toolsAdvantages of using BOOTP/TFTP Use BOOTP/TFTP IPv4Configure the print server using BOOTP/TFTP on Unix Configure the Bootp server Systems using network information service NISBootptab file entries IPv4 1Tags supported in a BOOTP/DHCP boot file RFC Description OptionTftp configuration file entries IPv4 Example HP Jetdirect Tftp configuration file 2TFTP configuration file parametersGeneral TCP/IP Main TCP/IP Print Options Printing or 9100-config Ftp-printing or ftp-config,ftpIpp-printing or ipp-config,ipp Lpd-printing or lpd-config,lpdTCP/IP Other Settings TCP/IP Access ControlTCP/IP Raw Print Ports Slp-config Bonjour-configSyslog-facility Slp-keep-aliveIdle-timeout User-timeout or telnet-timeoutCold-reset Icmp-ts-configTelnet-config or telnet Default-ipDefault-ip-dhcp Snmp-configAuth-trap or authentication-trap Ipx-config or ipx/spxGet-cmnty-name or get-community-name Set-cmnty-name or set-community-nameOther Settings AppleTalkUpgrade Upgrade Tftp server IP Version Product Number FilenameUsb-mode Usb-speedUnix systems Use Dhcp IPv4Support Windows systems Windows Server 2003 and ServerDiscontinue Dhcp configuration Use Rarp IPv4 Laserjet1Use the arp and ping commands IPv4 Arp -s IP address LAN hardware address Ping IP addressUse Telnet IPv4 Create a Telnet connectionTypical Telnet session Route add Jetdirect IP Address system IP AddressTelnet command line interface default 3Telnet Commands and ParametersCommandDescription User Control Commands Telnet user interface optionsWireless 802.11 Main Auth-type Server-authSvr-auth-user Svr-auth-passWireless Diagnostics Ipsec-config Firewall-config 00a0f8387af7Host-name SpecifiedTftp Server Tftp FilenameHpnp/printer1.cfg Domain-name support.hp.comPrinting Ftp-printingIpp-printing Lpd-printingTCP/IP LPD Queues TCP/IP OtherTo 1440 Enable Syslog-svrBonjour Domain Name Ftp-downloadUser-timeout Ews-configGw-disable For more information, see HP Embedded Web Server V.40.xx onTCP/IP Diagnostics Snmp Traps Ipx-config Ipx-unitnameAddress Ipx-modeOther Upgrade Laa Xml-services-confWs-discovery-conf 1000t-ms-confNetwork-select Job-timeout Web JetAdmin URLWeb JetAdmin Name Menu Interface1Example Using the Menu Interface Use Telnet to remove an IP addressUse the printer control panel Use the HP Embedded Web ServerMove to another network IPv4 Page HP Embedded Web Server Supported HP Web Jetadmin version RequirementsView the HP Embedded Web Server Compatible Web browsersPage Operating notes HP Jetdirect Home tab1HP Jetdirect Home Page Items Networking tab Device tabsWireless Configuration sectionDiagnostics section 2Networking Menu Items3Wireless configuration parameters WEP Personal WEP Enterprise WPA Personal Restore DefaultsWPA Enterprise Summary tab TCP/IP Settings4TCP/IP Summary tab Network Identification tab 5TCP/IP Network Identification tabTCP/IPv4 tab 6TCP/IPv4 tabTCP/IPv6 tab 7TCP/IPv6 tabConfig Precedence tab 8TCP/IP Config Precedence tabAdvanced tab 9TCP/IP Advanced tabManual Settings Proxy Server PasswordDisable Default IPNetwork Settings 10IPX/SPX tab settings 11AppleTalk tab settings AppleTalk12SNMP tab settings Misc. Settings Other Settings13Miscellaneous Settings HP XML Services Certificate Mgmt ServiceWeb Services Print Link settingsFirmware Upgrade LPD Queues14LPD Queues tab settings Queue NamePrepend String Name Append String NameDefault Queue Name Queue TypeString Name ValueUSB Settings 15USB Settings tabSupport Info Refresh RateSecurity Settings Select LanguageStatus Wizard16Wizard Security Levels Security Level Description Basic SecurityRestore Defaults Security Level Description Enhanced SecurityRecommended Custom SecurityAuthorization Admin. AccountPrinter Password Synchronization CertificatesConfigure certificates 17Certificate configuration screensInstall Certificate Certificate Validity PeriodCertificate Information Import Certificate and Private KeyExamples Install Certificate or Install CA Certificate screensDomain Name myprinter.mydepartment.mycompany.com Access Control IP Address Mask DescriptionWeb Mgmt Mgmt. ProtocolsSnmp Enable Print Protocols Enable Print ServicesOther 18Other protocols802.1X Authentication Enable Device DiscoverySLP, might be disabled without notification Naming Resolution19802.1X configuration settings Assessment Other Links IPsec/Firewall configuration 1Firewall Policy 1IPsec/Firewall Policy Default Rule example All IPv4 Addresses All Jetdirect Print ServicesIPsec security associations SA HP Jetdirect IPsec/Firewall wizard2Limitations to rules, templates and services Limitations to rules, templates and servicesLimit Specify Address Template Create Address TemplateSpecify Service Template Create Service Template4Create Service Template 3Create Address TemplateManage Services Manage Custom Services5Manage Services 6Manage Custom ServicesSpecify Action Specify IPsec/Firewall TemplateCreate IPsec Template Identity Authentication7Create IPsec Template 8Identity Authentication KerberosCertificates Certificates on10Kerberos Settings Kerberos Settings9Kerberos IKEv1/IKEv2 Phase 2 / Quick Mode IPsec Protocols IKEv1/IKEv2 Phase 1 Authentication11IKEv1/IKEv2 Phase 1 Authentication 12IKEv1/IKEv2 Phase 2 / Quick Mode Settings IPsec Protocols Advanced IKE Settings13Advanced IKE Settings IPsec Protocols Manual Keys Manual Keys14IPsec Protocols Manual Keys 15Manual KeysConfigure Windows systems Rule SummarySecurity features 1Summary of HP Jetdirect security featuresAuthentication and Encryption HP Web Jetadmin IPv4 Password and ProfilesTelnet Control IPv4/IPv6 Snmp v1/v2c Set Community Name IP/IPXLimit access to security features 2Settings for Access ControlMedium Settings Level of Access ControlHigh Reset to factory defaults Troubleshoot the HP Jetdirect print serverDisable an HP Jetdirect embedded print server Example Cold reset using the service menuGeneral troubleshooting Troubleshooting chart assess the problemProcedure 1 Verify the printer is on and online Procedure 2 Print an HP Jetdirect configurationProcedure 3 Resolve printer display error messages Procedure 4 Resolve printer network communication problems Telnet IP address port Unable to communicate during initial setup Troubleshooting wireless print serversUnable to communicate after initial setup My configured channel does not match the configuration Symptoms Improving reception and performanceFirmware download failure Corrective actionsHP Jetdirect configuration HP Jetdirect configuration pagesStatus field error messages Configuration page format 1Configuration Page SectionsHP Jetdirect Configuration or General Information Section NameConfiguration page messages HP Jetdirect Configuration/General Information2HP Jetdirect Configuration/General Information MessageDescriptionUSB printer information Message Description4802.11 Wireless settings Wireless settingsUSB Speed Status/Error Messages Network Name SsidSignal Strength Access Point / BssidAuthentication Type SSL IssuerSecurity Settings Access List Secure Web ConfigurationSnmp Versions Snmp Set Cmty NameNetwork Statistics TCP/IP configuration informationTCP/IP protocol information IPv4 section IPv4 SectionDefault Gateway Config byBootp Server Rarp Server BOOTP/DHCP ServerIPv6 section IPX/SPX protocol informationIPv6 Section 10 IPX/SPX configuration information Novell/NetWare parameters11 Novell/NetWare configuration information 12 AppleTalk configuration informationAppleTalk protocol information CN=ljpserver.OU=support.OU=mycity.OU=mycompanyError messages 13 DLC/LLC configuration information14Error messages DLC/LLC protocol informationError Code and Message Description Network Reconfig Must Reboot DisconnectedConfiguration Error Not ConfiguredUnable to Login Unable to SET PasswordDisconnecting SPX TimeoutDirected to the print server Novram Error 4D CF ERR Access List4F Tftp Remote Error 3C NDS ERR Unresolved QueueTftp Local Error BAD BOOTP/DHCP ReplyBAD Bootp TAG Size BOOTP/RARP in ProgressHP Jetdirect Security 2HP Jetdirect Security 15General InformationCurrent IPsec status Local IP addresses IPsec Error LogIPsec Statistics IKE Stats IPsec Rules17IPsec statistics 18IKE StatisticsAvailable Network Services IPsec Security Associations SA table19IPsec Security Associations SRCLPD printing About LPDTable A-1LPD programs and protocols Program Name Purpose of ProgramRequirements for configuring LPD LPD setup overviewSet up IP parameters Set up print queuesConfigure print queues for BSD-based systems Print a test fileLPD on Unix systems Table A-2Supported queue typesUse SAM to configure print queues HP-UX systems Print a test file Examples myprinter or printer1Install TCP/IP software LPD on Windows Server 2003/2008 systemsAdd LPR compatible printer window Verify the configuration LPD on Windows XP systemsPrint from Windows clients Add Windows optional networking componentsCreate an LPR port for an installed printer Configure a network LPD printerAdd a new LPD printer Page FTP printing Print filesUse FTP printing FTP connectionsFTP login Data connectionCommands Table B-1User commands for HP Jetdirect FTP serverCommand Description End the FTP sessionExample FTP Session PORT1Graphical control panel menus HP Jetdirect control panel menusHP Jetdirect EIO Menu on Graphical Control Panel Table C-1HP Jetdirect EIO Menu on Graphical Control Panel IPv6 Settings Enable Primary DNSSecondary DNS AddressAppleTalk Enable Proxy ServerProxy Port Frame TypeReset Security Enable WipeLogin Security Keep Reset Assessment Disable IPsec or FirewallDiagnostics Embedded Tests LAN HW TestHttp Test Snmp TestTimeout ExecutePing Test Dest TypeRTT Average Ping in ProgressRefresh Link SpeedHP Jetdirect EIO Menu on Classic Control Panel Classic control panel EIO menusMenu Item Description Table C-2HP Jetdirect EIO Menu on Classic Control Panel Menu ItemCFG IPX/SPX WEBIpsec FirewallCode Verification PrintOpen source licensing statements GSOAPOpenSSL OpenSSL licenseOriginal SSLeay license Page Index TypeSee also Gateway Babble Port Select WEP Hewlett-Packard Development Company, L.P