4-9
Cisco TrustSec Configuration Guide
OL-22192-01
Chapter 4 Configuring SGT Exchange Protocol over TCP (SXP) and Layer 3 Transport
Configuring Cisco TrustSec Caching
This example shows how to configure a Cisco TrustSec ingress reflector:
Router# configure terminal
Router(config)# platform cts ingress
Router(config)# exit
Router# show platform cts
CTS Ingress mode enabled
Note Before disabling the Cisco TrustSec ingress reflector, you must remove power from the Cisco
TrustSec-incapable switching modules.
To configure the Cisco TrustSec egress reflector function, perform this task.
Detailed Steps for Catalyst 6500
This example shows how to configure a Cisco TrustSec egress reflector:
Router# configure terminal
Router(config)# platform cts egress
Router(config)# exit
Router# show platform cts
CTS Egress mode enabled
Note Before disabling the Cisco TrustSec egress reflector, you must remove power from the Cisco
TrustSec-incapable switching modules.
Configuring Cisco TrustSec Caching
Enabling Cisco TrustSec Caching
For quick recovery from brief outages, you can enable caching of authentication, authorization, and
policy information for Cisco TrustSec connections. Caching allows Cisco TrustSec devices to use
unexpired security information to restore links after an outage without requiring a full reauthentication
Step 3
Router(config)# exit
Exits configuration mode.
Step 4
Router# show platform cts
Displays Cisco TrustSec reflector mode (Ingress,
Egress, Pure, or No CTS).
Command Purpose
Command Purpose
Step 1
Router# configure terminal
Enters configuration mode.
Step 2
Router(config)# [no] platform cts egress
Activates the Cisco TrustSec egress reflector.
Step 3
Router(config)# exit
Exits configuration mode.
Step 4
Router# show platform cts
Displays Cisco TrustSec reflector mode (Ingress,
Egress, Pure, or No CTS).
To Next Page
Loading...
