[c-nsp] Mac Security

Ian Henderson ianh at ianh.net.au
Sun Oct 20 21:51:13 EDT 2013

On 20/10/2013, at 10:39 PM, naresh reddy <nareshbtech at yahoo.com> wrote:

> is it possible to use macsec taffic for a non supported switch

Yep, MacSec just looks like another protocol on top of Ethernet. I had it running in the lab between two 4500s with an EoMPLS VC between them. Keep MTU in mind.

4507R+E/Sup7E[ce1] --> 7606/Sup32[pe1] --MPLS--> 7606/Sup32[pe2] --> 4507R+E/Sup7E[ce2]

interface GigabitEthernet1/1
 description EoMPLS to ce2
 no switchport
 ip address
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip ospf network point-to-point
 ip ospf dead-interval minimal hello-multiplier 5
 ip ospf 1 area 0
 cts manual 
  no propagate sgt
  sap pmk 00000000000000000000000000000000000000000000000000000000DEADBEEF mode-list gcm-encrypt   

More information about the cisco-nsp mailing list