Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
283
Views
0
Helpful
0
Replies

Nexus 9000 Macsec troubleshooting

tpahuja
Level 1
Level 1

‎02-21-2023 12:02 PM

Folks,

            I am trying to configure Macsec key rotation on a nexus 93180 and AWS dx. When i configure one key pair cak/ckn the connection is secured. When I add additional key in nexus for key rotation (AWS side has both the keys), the key rotation is not working after the second key is added with a newer start time. One connection goes in init state and the other connection goes in rekeying state.

Has anyone does this before. If so can you share the config template please.

key chain abc123 macsec
key abc123
key-octet-string 7 ****** cryptographic-algorithm AES_256_CMAC
send-lifetime 15:47:00 Feb 21 2023 duration 600
key abc456
key-octet-string 7 ****** cryptographic-algorithm AES_256_CMAC
send-lifetime 15:52:00 Feb 21 2023 infinite

 

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents