vyos/vyos-documentation
1
0
Fork 0
mirror of https://github.com/vyos/vyos-documentation.git synced 2025-10-26 08:41:46 +01:00
Code Issues Packages Projects Releases Wiki Activity

macsec: add replay protection

Browse Source
This commit is contained in:
Christian Poessinger 2020-05-22 11:09:16 +02:00
parent da30b6ab90
commit 40ec6b742a
1 changed files with 12 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
docs/interfaces/macsec.rst
View File

@ -55,6 +55,18 @@ individual peers.
The peer with lower priority will become the key server and start The peer with lower priority will become the key server and start
distributing SAKs. distributing SAKs.
Replay protection
-----------------
.. cfgcmd:: set interfaces macsec <interface> security replay-window <window>
IEEE 802.1X/MACsec replay protection window. This determines a window in which
replay is tolerated, to allow receipt of frames that have been misordered by
the network.
- ``0``: No replay window, strict check
- ``1-4294967295``: Number of packets that could be misordered
Operation Operation
========= =========