[j-nsp] MX204 MACsec
Richard McGovern
rmcgovern at juniper.net
Wed Nov 27 11:25:07 EST 2019
Oh, I am sure the commands are there in the CLI as Juniper generally does not "hide' non-affecting functions from the CLI, on a per product basis. If actually used you 'might' get a "unsupported on this platform" message, when you try to commit. For sure if used, these commands will do nothing. I am like 99.9% sure of that.
If possible maybe you could config and then perform a commit check to see what results you get? I do not have a MX204 handy to try this.
Thanks and regards, Rich
Richard McGovern
Sr Sales Engineer, Juniper Networks
978-618-3342
I’d rather be lucky than good, as I know I am not good
I don’t make the news, I just report it
On 11/27/19, 11:17 AM, "Aaron Gould" <aaron1 at gvtc.com> wrote:
I don't know much about this, but, for what it's worth, I do see this on one
of my MX204's...
me at site2-204-3# set security macsec connectivity-association test ?
Possible completions:
<[Enter]> Execute this command
+ apply-groups Groups from which to inherit configuration data
+ apply-groups-except Don't inherit configuration data from these groups
cipher-suite Cipher suite to be used for encryption
> exclude-protocol Configure protocols to exclude from MAC Security
include-sci Include secure channel identifier in MAC Security PDU
> mka Configure MAC Security Key Agreement protocol
properties
no-encryption Disable encryption
offset Confidentiality offset
> pre-shared-key Configure pre-shared connectivity association key
pre-shared-key-chain Pre-shared key chain name for connectivity
association
> replay-protect Configure replay protection
> secure-channel Configure secure channel properties
security-mode Connectivity association mode
| Pipe through a command
[edit]
me at site2-204-3# exit
Exiting configuration mode
me at site2-204-3> show system information
Model: mx204
Family: junos
Junos: 18.4R1-S3.1
Hostname: site2-204-3
me at site2-204-3>
-Aaron
More information about the juniper-nsp
mailing list