02-07-2022 01:31 AM
I want to config macsec between two 9300L, but when i started to config i noticed:
they don't have this command
9300_stack#show run interface gig 1/0/1
interface GigabitEthernet1/0/1
description MACSEC_manual_3850-2-gi1/0/1
switchport access vlan 10
switchport mode trunk
cts manual
no propagate sgt
sap pmk AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA mode-list gcm-encrypt
Switch Ports Model SW Version SW Image Mode ------ ----- ----- ---------- ---------- ---- * 1 29 C9300L-24P-4X 16.12.3a CAT9K_IOSXE INSTALL
Solved! Go to Solution.
02-07-2022 02:41 AM
it was a bug, i've updated to 16.12.04 and it's help
02-07-2022 01:36 AM
>....they don't have this command
I don't understand, could you post config command as tried (exactly) , including returned error.
M.
02-07-2022 01:43 AM - edited 02-07-2022 01:47 AM
it doesn't sap
switch(config)#int te 1/1/4
switch(config-if)#ct
switch(config-if)#cts ma
switch(config-if)#cts manual
switch(config-if-cts-manual)#?
CTS manual configuration commands:
default Set a command to its defaults
encrypt Pause frame encryption configuration for manual mode
exit Exit from CTS manual sub mode
no Negate a command or set its defaults
propagate CTS SGT Propagation configuration for manual mode
switch(config-if-cts-manual)#sap ?
% Unrecognized command
switch(config-if-cts-manual)#sap ?
% Unrecognized command
switch(config-if-cts-manual)#sap
^
% Invalid input detected at '^' marker.
02-07-2022 02:41 AM
it was a bug, i've updated to 16.12.04 and it's help
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: