MACsec (802.1AE) is NOT limited to point-to-point connections.
However, many vendors have partial implementations which do have such
limitations. Juniper devices' support varies greatly by hardware platform
and software versions.
On Thu, Nov 5, 2020 at 8:06 AM Richard McGovern via juniper-nsp <
j
--- Begin Message ---
MACSEC is pt-to-pt so is your plan to run MACSEC from Point A to EX4300 and
then connect same EX4300 to Point B - two different and independent MACSEC
connections?
If you want pass-through of one session you will need to create some sort of
tunnel between EX port A to port
Hi all,
I'm having trouble getting a simple dynamic subscriber service to work.
The use case:
* Most customers have an unfiltered connection
* But a subset of customers wants a simple firewall filter applied
Shouldn't be too hard, but I can't get it to work.
Here is what I have done so far:
Hi Baldur,
Indeed, you are persistent in asking for that issue ;-). The idea is to use
the RFC1925 6a) - "It is always possible to add another level of
indirection."
krasi@test# show interfaces ps201 unit 60
demux-source inet;
vlan-tags outer 2301 inner 1711;
family inet {
unnumbered-address
--- Begin Message ---
Hi,
following only the required configuration of
https://www.juniper.net/documentation/en_US/junos/topics/task/configuration/macsec-configuring-mx-series.html
for
# Configuring MACsec Using Static Connectivity Association Key (CAK) Mode
works fine for two switches, but with
5 matches
Mail list logo
