12-07-2014 05:56 AM
Hi All,
i've configured Q-in-Q between 2 sites successfully but what i'm searching for is security over it.
as the data will be sent in clear text over the provider mpls network so we need to secure it.
the configuration from my side
interface GigabitEthernet1/0/16
description ***TO_CORE_MAIN_1/13/17 ***
switchport access vlan 527
switchport mode dot1q-tunnel
no cdp enable
end
12-26-2014 08:02 AM
Hello.
What about MACsec or L2TPv3 with encryption?
12-29-2014 11:30 AM
Will macsec work properly when transit through another L2 processing devices i've doubt on that. I think there are L2 encryption appliances . Or add another layer of tunneling to provide the security.
12-30-2014 01:09 AM
Hi,
thnx for your reply.
could you please clarify "another layer of tunneling"
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: