Technical information

Network Security White Paper ver. G.1.2

Page 25 of 72

1-13-3 Visibility on the Network

To protect the products from being browsed by unauthorized parties, NetBIOS-NS and NetBIOS-DGM

services should be disabled using the mshell.

1-13-4 Recommended Precautions

Scenario 1

Standard Security: Use Point and Print only with digitally signed drivers.

Scenario 2

High Security: Disable SMB. Use only IPP (with ssl) to submit jobs.

1-14MDNS

1-14-1 Function Overview

MDNS (Multicast DNS) is a way of using familiar DNS programming interfaces, packet formats and

operating semantics, in a small network where no conventional DNS server has been installed.

The products only use MDNS for Bonjour. If Bonjour is not being used, this port can be closed.

1-14-2 Potential Threats and Recommended Precautions

Possibility of Unauthorized Parties Intercepting Device Information

This is a possibility. The products use MDNS to advertise services and device information. If this is a

concern, please close the port.

1-14-3 Recommended Precaution

If a strict security policy is to be maintained, the MDNS service can be disabled and the port for this

service can be completely closed using Web Image Monitor or the mshell. (If Bonjour is turned off, the

MDNS port is closed automatically.)

1-15 H323hostcall/SIP

1-15-1 Function Overview

H323/SIP services are used to provide VoIP (Voice over IP) for IP-Fax. The H.323 hostcall service is

compliant with ITU-T standards and uses TCP port 1720. The SIP service is compliant with RFC3261

and uses TCP/UDP port 5060.