02-11-2014 10:01 AM - edited 03-07-2019 06:08 PM
Hi,
We have 3 buildings in a campus. We occupy building 1 and 3. Building 2 belongs to someone else. However, building 2 switch connects both building 1 and 3. How do I create a point-to-point secure tunnel between the two 3560v2 layer 2 switches in building 1 and 3 thru the transit switch in building 2 in a layer 2 environment?
QinQ does not meet the requirement because we want to prevent man-in-the-middle access from the transit switch in Building 2.
Thanks!
Kevin
02-11-2014 01:03 PM
Can Cisco TrustSec Switch-to-Switch Link Security in Manual Mode be the solution?
02-11-2014 01:08 PM
Encryption of the uplink is the way to go but your 3560v2 switch does NOT support MACSec.
MACSec support starts with 3560X/3750X, 3650/3850.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide