nanog mailing list archives

Re: MACsec SFP

From: Randy Bush <randy () psg com>
Date: Wed, 25 Jun 2014 14:23:08 +0900

i have always been fond of rfc 4808 and not the unnecessarily complex
alternatives such as tcp-ao.

sure... but to do this you have to be able to program the keys from
the platform the SFP is plugged into.. .not via the sfp itself
(outside the chassis)


i was advocating the general method, prepping key roll, not the
particular use in md5 tcp

randy

Current thread:

Re: MACsec SFP, (continued)
- - - Re: MACsec SFP Christopher Morrow (Jun 24)
    - Re: MACsec SFP Saku Ytti (Jun 24)
    - Re: MACsec SFP Christopher Morrow (Jun 24)
    - Re: MACsec SFP Eric Flanery (eric) (Jun 24)
    - Re: MACsec SFP Pieter Hulshoff (Jun 25)
    - Re: MACsec SFP Eric Flanery (eric) (Jun 25)
    - Re: MACsec SFP Saku Ytti (Jun 25)
    - Re: MACsec SFP Tim Durack (Jun 25)
    - Re: MACsec SFP Randy Bush (Jun 24)
    - Re: MACsec SFP Christopher Morrow (Jun 24)
    - Re: MACsec SFP Randy Bush (Jun 24)
    - Re: MACsec SFP Pieter Hulshoff (Jun 24)
    - Re: MACsec SFP Aris Lambrianidis (Jun 24)
    - Re: MACsec SFP Pieter Hulshoff (Jun 24)
    - Re: MACsec SFP John Schiel (Jun 25)
    - Re: MACsec SFP Christopher Morrow (Jun 25)
    - Re: MACsec SFP Pieter Hulshoff (Jun 25)
    - Re: MACsec SFP Christopher Morrow (Jun 25)
    - Re: MACsec SFP Tim Durack (Jun 25)
    - RE: MACsec SFP Michael O Holstein (Jun 25)
    - Re: MACsec SFP Pieter Hulshoff (Jun 25)

(Thread continues...)