This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Encrypt a point to point connection?

Encrypt a point to point connection?

Stephen_Stormon
Contributor

‎09-28-2020 07:11 PM

We have a point to point connection running between two x460 switches running 16.2.5.4-patch1-12.  We are going through a FISMA readiness audit and are being told that we need to encrypt that P2P connection between those devices.  Is that possible natively or do we need to purchase different equipment and/or newer version of XOS or do we need a 3rd party solution to make that happen?

0 Kudos
6 REPLIES 6

Stephen_Stormon
Contributor

‎09-28-2020 08:00 PM

We also have a MPLS network connecting those two locations and two other sites.  Could the same method be used to secure communications between all 4 sites?  If so, would then create two connectivity associations with two different CAKs or do we need to use the same CAK for all associations?

0 Kudos

Miguel-Angel_RO
Valued Contributor II

‎09-28-2020 07:16 PM

Stephen,

MACSEC is an option.

Have a look here:

https://gtacknowledge.extremenetworks.com/articles/Q_A/Is-MACSec-802-1AE-feature-supported-in-EXOS

https://gtacknowledge.extremenetworks.com/articles/How_To/How-to-configure-the-LRM-MACsec-adapter-on...

To be checked:

  • OS version to be upgraded to 30.1 or higher 
  • MACsec feature pack license is required
  • HW version to be checked

Mig

0 Kudos
Top
GTM-P2G8KFN