Solved: Re: Cisco 3850 to Cisco IE4000 Encryption - Cisco Community

1011

Views

0

Helpful

3

Replies

Researching ideas on how I can achieve switch to switch data encryption between the Cisco 3850x switch and a Cisco ie4000 switch?

Any recommendations?

Thanks,

Jeff

1 Accepted Solution

Accepted Solutions

I have somewhat of a solution now on this.. Cisco Trustsec.. Enabled this on IE4000 uplink ports to C3850.

cts manual

sap pmk 1234abcdef mode-list gcm-encrypt null no-encap

Links are up and encrypted...

View solution in original post

3 Replies 3

Cisco Cat 3850 you can do wth MACSEC

https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3850/software/release/37e/consolidated_guide/b_37e_consolidated_3850_cg/configuring_macsec_encryption.pdf

Not sure IE4000 have capabilities, since i have not used it before.

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

I have seen this but I don't think the IE4000 is completely compatable with MACsec. Even though the documentation says it is.. But i have only found that when creating the key for the IE4000, you can only use hmac-sha-256 and with the 3850 its aes-256-cmac. My understanding is thats not compatable.

Maybe its more to this than what I am seeing?

jeff

I have somewhat of a solution now on this.. Cisco Trustsec.. Enabled this on IE4000 uplink ports to C3850.

cts manual

sap pmk 1234abcdef mode-list gcm-encrypt null no-encap

Links are up and encrypted...

Learn, share, save

Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.

New here? Get started with these tips. How to use Community New member guide

Log in to Community

Review Cisco Networking products for a $25 gift card