Network, IPsec setting server apparatus, IPsec processing apparatus, and IPsec setting method used therefor
First Claim
1. A network comprising:
- IPsec processing apparatuses, which use an IPsec (Internet Protocol security protocol) for securing security on the Internet path in the case where different two centers communicate via the Internet; and
an IPsec setting server apparatus, which manages IPsec settings of said IPsec processing apparatuses, wherein said IPsec setting server apparatus includes means for collectively managing policies of said IPsec to be applied between first and second IPsec processing apparatuses.
3 Assignments
0 Petitions
Accused Products
Abstract
There is provided an IPsec setting server apparatus capable of preventing inconsistency of setting among communicating apparatuses. An IPsec processing section subjects a data communication packet received from an interface section to IPsec processing. An SPD is referred to from the IPsec processing section and records policies for applying the IPsec. An SAD is referred to from the IPsec processing section and records an SA necessary for subjecting an individual kind of communication to the IPsec processing. A request processing section receives a setting request message from the IPsec processing apparatus and returns a distribution message. IPsec policies necessary for determining a requested setting are stored in a distribution policy storage section. Information on respective kinds of SA communication requested to be set is stored in a management table.
-
Citations
32 Claims
-
1. A network comprising:
-
IPsec processing apparatuses, which use an IPsec (Internet Protocol security protocol) for securing security on the Internet path in the case where different two centers communicate via the Internet; and
an IPsec setting server apparatus, which manages IPsec settings of said IPsec processing apparatuses, wherein said IPsec setting server apparatus includes means for collectively managing policies of said IPsec to be applied between first and second IPsec processing apparatuses. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An IPsec setting server apparatus managing IPsec setting of IPsec processing apparatuses, which use an IPsec (Internet Protocol security protocol) for securing security on the Internet path in the case where different two centers communicate via the Internet,
wherein said IPsec setting server apparatus includes means for collectively managing policies of said IPsec to be applied among sad IPsec processing apparatuses.
-
15. An IPsec processing apparatus using an IPsec (Internet Protocol security protocol) on the Internet,
wherein said IPsec processing apparatus includes means for, upon receiving a packet to which said IPsec should be applied, judging whether or not to inquire a setting for said IPsec to be collectively managed in an IPsec setting server apparatus from said IPsec setting server apparatus.
-
21. An IPsec setting method for a network which comprises:
- IPsec processing apparatuses, which use an IPsec (Internet Protocol security protocol) for securing security on the Internet path in the case where different two centers communicate via the Internet; and
an IPsec setting server apparatus, which manages IPsec settings of said IPsec processing apparatuses,wherein said IPsec setting server apparatus includes a step of collectively managing policies of said IPsec to be applied among said IPsec processing apparatuses. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32)
- IPsec processing apparatuses, which use an IPsec (Internet Protocol security protocol) for securing security on the Internet path in the case where different two centers communicate via the Internet; and
Specification