EasyManua.ls Logo

HPE FlexNetwork 5510 HI Series Macsec Configuration Guide

HPE FlexNetwork 5510 HI Series
27 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #13 background imageLoading...
Page #13 background image
11
Task Command
Display MKA policy information.
display mka
{
default-policy
|
policy
[
name
policy-name ] }
Display MKA statistics on ports.
display mka statistics
[
interface
interface-type
interface-number ]
Reset MKA sessions on ports.
reset mka session
[
interface
interface-type
interface-number ]
Clear MKA statistics on ports.
reset mka statistics
[
interface
interface-type
interface-number ]
MACsec configuration examples
Client-oriented MACsec configuration example
Network requirements
As shown in Figure 5, the host accesses the network through GigabitEthernet 1/0/1. The device
performs RADIUS-based 802.1X authentication for the host to control user access to the Internet.
To ensure secure communication between the host and device, perform the following tasks on the
device:
Enable MACsec desire, and configure MKA to negotiate SAKs for packet encryption.
Set the MACsec confidentiality offset to 30 bytes.
Enable MACsec replay protection, and set the replay protection window size to 100.
Set the MACsec validation mode to strict.
Figure 5 Network diagram
Configuration procedure
1. Configure the RADIUS server to provide authentication, authorization, and accounting services.
Add a user account for the host. (Details not shown.)
2. Configure IP addresses for the Ethernet ports. (Details not shown.)
3. Configure AAA:
# Enter system view.
<Device> system-view
# Configure the RADIUS scheme radius1.
[Device] radius scheme radius1

Table of Contents

Other manuals for HPE FlexNetwork 5510 HI Series

Preview: Configuration Guide
Configuration Guide572 pages
Preview: Fundamentals Configuration Guide
Fundamentals Configuration Guide209 pages
Preview: Security Configuration Guide
Security Configuration Guide551 pages
Preview: Layer 3 - Ip Routing Configuration Guide
Layer 3 - Ip Routing Configuration Guide486 pages
Preview: Network Management And Monitoring Configuration Guide
Network Management And Monitoring Configuration Guide331 pages
Preview: Acl And Qos Configuration Guide
Acl And Qos Configuration Guide114 pages
Preview: Mpls Configuration Guide
Mpls Configuration Guide505 pages
Preview: Openflow Configuration Guide
Openflow Configuration Guide39 pages
Question and Answer IconNeed help?

Do you have a question about the HPE FlexNetwork 5510 HI Series and is the answer not in the manual?

HPE FlexNetwork 5510 HI Series Specifications

General IconGeneral
ModelHPE FlexNetwork 5510 HI Series
CategorySwitch
Switch TypeManaged
FansRedundant fans
LayerLayer 3
IPv6 SupportYes
WarrantyLimited lifetime warranty
Power over Ethernet (PoE)Available on some models (PoE+)
MAC Address Table Size32, 000 entries
Routing ProtocolRIP, OSPF, BGP, IS-IS, Static Routing
ManagementCLI, Web, SNMP
Operating Temperature0°C to 45°C
Dimensions440 x 400 x 44 mm
Input Voltage100-240 VAC, 50/60 Hz
Memory and Processor1 GB RAM, 1 GHz CPU
Operating Humidity5% to 95% (non-condensing)
Security FeaturesACL, 802.1X, RADIUS, TACACS+, SSH, SSL

Related product manuals