{"searchBar":{"inputPlaceholder":"Search by keyword or ask a question","searchBtn":"Search","error":"Please enter a keyword to search"}}
{}
{"support":{"yesButton":"Yes","noButton":"No","feedback":{"title":"What can we do to improve?"},"submitButton":"Submit","successMessage":"Thank you for your feedback","title":"Did this answer your question?","feedbackPercentLabel":"of people found this helpful","captcha":{"error":"Please check the box"}}}
Search FAQs

GP-Pro EX/ How to configure IPsec

Configuring IPsec
Configure IPsec on the operating system to encrypt communication data using IPsec.
Configuring IPsec on Windows
In Windows, go to the Windows Defender Firewall and configure IPsec.
Supported operating systems: Windows 10 or later
Note
・Before configuring IPsec, enable Windows Defender Firewall. Administrator rights are required to configure the firewall. For more information, refer to Windows help.

The procedure in Windows 10 is as follows.

  1. On the keyboard, press [Windows logo] + [R].
  2. Type "wf.msc" and click [OK].
  3. Right-click [Windows Defender Firewall with Advanced Security on Local Computer], and select [Properties].
  4. From the [IPsec Settings] tab, click [Customize].
  5. In the [Key exchange (Main Mode)] group, select the [Advanced] option and click [Customize].
  6. Click [Add].
  7. Select the following and click [OK].

Item

Value

Integrity algorithm

SHA-256

Encryption algorithm

AES-CBC 256

Key exchange algorithm

Diffie-Hellman Group 14

  1. Select the added item and move the item to the top of the list.
  2. Click [OK].
  3. From the [Data protection (Quick Mode)] field, select the [Advanced] option and click [Customize].
  4. Select the [Require encryption for all connection security rules that use these settings] check box, and move the following item to top of the [Data integrity and encryption algorithms] list.
    Note: If the applicable item is not in the list, click [Add] to add the item.

Item

Value

Protocol

ESP

Encryption algorithm

AES-CBC 256

Integrity algorithm

SHA-256

  1. Click [OK].
  2. Click [OK] to close the [Windows Defender Firewall with Advanced Security on Local Computer] dialog box.
  3. Select and right-click [Connection Security Rules], and click [New Rule].
  4. Select [Custom] and click [Next].
  5. For [Endpoint 1], select the [These IP addresses] option and add the IP address of the source terminal.
  6. For [Endpoint 2], select the [These IP addresses] option and add the IP address of the destination terminal.
  7. Click [Next].
  8. Select the [Require authentication for inbound and outbound connections] option and click [Next].
  9. Select the [Advanced] option and click [Customize].
  10. From the [First authentication] area, click [Add].
  11. Select the [Preshared key (not recommended)] option and type the preshared key.
  12. Click [OK].
  13. Click [Next].
  14. From [Protocol type], select [Any].
  15. Click [Next].
  16. Select the network profile required for the transfer operation, and click [Next].

Item

Value

Domain

ON

Private

ON

Public

ON

  1. Type the [Name], and click [Finish].
  2. Confirm the rule is added in [Connection Security Rules] and that [Yes] is displayed in the [Enabled] column.

Note: To stop using IPsec, from [Connection Security Rules], right-click the created rule and click [Disable Rule].

    Copyright (C)1996- 2025 Schneider Electric Japan Holdings Ltd. All Rights Reserved.