Yesterday I tried to configure CTS between two pairs of N9K 93180YC-FX with SEC-Licenses, but there is no that kind of feature at all. So my question is, what am I supposed to configure as encryption mechanism between pairs of switches in different geographical regions? MACsec should be the protocol between switch and endpoint, TrustSec is the one between switches. I've done it many times using TrustSec on Catalyst devices, but right now I'm a little confused what to do.
Please share with me some configuration guide, regarding how to encrypt traffic between 2 switches :)
Thanks in advance,
Solved! Go to Solution.
Yeah, based on this exact same document and this particular line:
"Beginning with Cisco Nexus Release 9.2(1), MACsec is supported on Cisco Nexus 93180YC-FX"
I upgraded the NX-OS to the most recent version- 9.3.3, but still the only option regarding Layer 2 encryption is MACsec.
I've contacted our local Cisco representatives and they confirmed that I should configure "MKA policy" and hope everything will will work smoothly.
Thanks for your kind answer and wish you a successful week.