Configuring MACsec replay protection
The MACsec replay protection feature allows a MACsec port to accept a number of out-of-order or repeated inbound frames. The configured replay protection window size is effective only when MACsec replay protection is enabled.
To configure MACsec replay protection:
Step | Command | Remarks |
|---|---|---|
1. Enter system view. | system-view | N/A |
2. Enter interface view. | interface interface-type interface-number | N/A |
3. Enable MACsec replay protection. | macsec replay-protection enable | By default, MACsec replay protection is enabled on the port. |
4. Set the MACsec replay protection window size. | macsec replay-protection window-size size-value | The default setting is 0, and frames are accepted only in the correct order. |