Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

MACSEC Manual Mode

What are the Details about Cisco MACSEC Manual ?

How often are the keys changed ?

What are the "Late pkts 9736" in the "show macsec interface" command output ?

Why are sometimes BPDUs not processed (Loopguard messages) ?

switch-005#show macsec interface gigabitEthernet 0/3

MACsec is enabled

  Replay protect : enabled

  Replay window : 0

  Include SCI : yes

  Cipher : GCM-AES-128

  Confidentiality Offset : 0

Capabilities

  Max. Rx SA : 16

  Max. Tx SA : 16

  Validate Frames : strict

  PN threshold notification support : Yes

  Ciphers supported : GCM-AES-128

Transmit Secure Channels

  SCI : 649EF32EFB830000

   Elapsed time : 7w0d

   Current AN: 0   Previous AN: 1

   SC Statistics

    Auth-only (0 / 0)

    Encrypt (659463794 / 0)

Receive Secure Channels

  SCI : 649EF33BE8050000

   Elapsed time : 7w0d

   Current AN: 0   Previous AN: 1

   SC Statistics

    Notvalid pkts 0      Invalid pkts 0

    Valid pkts 4319079381         Late pkts 9736

    Uncheck pkts 0       Delay pkts 0

  Port Statistics

   Ingress untag pkts  0        Ingress notag pkts 2073

   Ingress badtag pkts 0        Ingress unknownSCI pkts 0

   Ingress noSCI pkts 0         Unused pkts 0

   Notusing pkts 0              Decrypt bytes 6089662552764

   Ingress miss pkts 2073

Everyone's tags (6)
1196
Views
0
Helpful
0
Replies