cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2919
Views
5
Helpful
5
Replies

Using IPsec encryption on switch links

andy_4578
Level 1
Level 1

Hi,

Is it possible to set up switch links to use ipsec encryption? i.e....

3750-------------------2960  with the trunk using AES 256 encryption

I couldnt find any examples on the web or even any attempting it.

2 Accepted Solutions

Accepted Solutions

With older switches, it is not possible, but if you are using the newer switches i.e. 3560X or 3750X you can use Macsec

Have a look at this link for more info:

http://www.cisco.com/en/US/docs/switches/lan/catalyst3750x_3560x/software/release/15.0_1_se/configuration/guide/swmacsec.html

HTH

View solution in original post

All the switches will be new as they havent been purchased yet

Ok, but make sure to talk to your sales and SE guys before purchasing, because not all feature sets i.e. Lan Base support it.

HTH

View solution in original post

5 Replies 5

Abzal
Level 7
Level 7

Hi Andy,

Please refer this link, with the same problem

https://supportforums.cisco.com/thread/263171

Hope it will help.

Best regards,
Abzal

So is there any thing that could be done to secure LAN traffic on the switches? (This is for MOD so the LAN needs to be highly secure)

With older switches, it is not possible, but if you are using the newer switches i.e. 3560X or 3750X you can use Macsec

Have a look at this link for more info:

http://www.cisco.com/en/US/docs/switches/lan/catalyst3750x_3560x/software/release/15.0_1_se/configuration/guide/swmacsec.html

HTH

Yes that might be perfect. So that would prevent MAC spoofing of 3rd party contractors evesdropping on traffic?

All the switches will be new as they havent been purchased yet

All the switches will be new as they havent been purchased yet

Ok, but make sure to talk to your sales and SE guys before purchasing, because not all feature sets i.e. Lan Base support it.

HTH

Review Cisco Networking for a $25 gift card