[c-nsp] MACSec Stages

[Alex K.]

I'll second that.

Proper documentation, *not* simply configuration guides, available on Cisco
website - is a MUST. Not something you can possibly avoid doing until
___________  (fill in reason to your liking).

I hope it goes without saying.


On the other hand, *it is *worth mentioning, that my current evel of
understanding IPSec I've got exactly from "Cisco Press" book on the subject
and I still remember and really appreciate, the depth which the subject was
covered. I still remember and appreciate the explained debug outputs, both
successful and unsuccessful. Worth noting that even today, many years after
I red it, I still prefer running debugs on Cisco gear, even if I run into
issues with other vendors. Mainly thanks to the authors. Hence - yes, if
there will be a book on the subject, I'll probably buy it, since I involved
with many MacSec projects and it's still counting.

*But*, "Cisco Press" book comes in no way, to replace *products*
documentation available on Cisco website. A book may and should cover more
in depth material, alongside theoretical/design stuff but it's a long shot.
In the meantime, I second the quick - not that in depth material - on Cisco
website.

Thank you very much for sharing your thoughts.

Alex.

בתאריך יום ו׳, 20 באפר' 2018, 9:47, מאת James Bensley ‏<jwbensley at gmail.com
>:

> On 20 April 2018 at 06:55, Graham Bartlett (grbartle)
> <grbartle at cisco.com> wrote:
> > Hi
> >
> > A few of us in Cisco were thinking of writing a CiscoPress book on
> MACsec, which would include details of the inner workings, including
> protocol flows and how the various key material is derived etc.
> >
> > If this was available would there be interest in this ?
> >
> > The reason I ask is, I spent a lot of time and effort developing a book
> on IPsec VPNs and it’s got a very narrow audience. I would imagine that
> there’s even less interest in MACsec. But if we could produce something
> that meets your needs and there is interest we could reconsider.
> >
> > cheers
>
> Hi Graham,
>
> Thanks for responding to the list. I'd be interested in a more
> in-depth resource but being honest/open, I probably would read a whole
> book on MACsec (MACsec isn't our bread and butter, but we do use it).
> Do you know the Juniper Day One guides? Something like that would be
> great, circa 100 pages. I guess you could class 100 pages as a small
> book, but I had assumed you meant longer :)
>
> Cheers,
> James.
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>