Re: [j-nsp] MACsec over a service provider

Sure. But it depends on the exact circuit you have (on the exact equipment and settings your carrier uses). Since MACSec is true point-to-point protocol, carriers' equipment may interpret its' packets (say EAPOL), as destined for itself - instead of forwarding it thru the pseudo wire. As far as

Re: [j-nsp] Anyone uses Adaptive Load Balancing?

Hello Serge and thank you. Yes, there are indeed, not that many cases for ALB. That's why I turned to community. Thank you for sharing your experience. בתאריך 18 בנוב' 2017 1:41 AM,‏ "serge vautour" כתב: > Hello, > > We have been using it for a while. Works great. We

Re: [j-nsp] Anyone uses Adaptive Load Balancing?

Hello Giuliano and thank you. It would be MPLS traffic and Juniper facing Juniper. בתאריך 18 בנוב' 2017 1:08 AM,‏ "Giuliano C. Medalha" כתב: > Alex > > What type of traffic ? > > MX is very good for load balance because of TRIO chipset ... that is able > to strip down

Re: [j-nsp] MACsec over a service provider

In the end I discovered that CCC, l2circuit, etc. work fine for transporting regular MACsec, no need for "WAN MACsec" or special commands to forward dot1x frames. I also got this to work with 2 links at the same time between the same 2 switches. The problem I was having was related to using 1g

Re: [j-nsp] Anyone uses Adaptive Load Balancing?

Alex What type of traffic ? MX is very good for load balance because of TRIO chipset ... that is able to strip down the frames and the packets ... necessary for the hash of LAG circuits Is IP traffic or MPLS traffic ? Maybe on new boxes like mx10003 and mx204 you can create high capacity LAG

Re: [j-nsp] MACsec over a service provider

* As long as you have pure p2p links, you should be fine - Juniper gear meant. בתאריך 18 בנוב' 2017 1:20 AM,‏ "Alex K." כתב: > Yes, > > But unfortunately (as far as j-nsp is considered), using Ciscos' gear. > > Cisco has a special flavor of MACSec, intended to address that

[j-nsp] Anyone uses Adaptive Load Balancing?

Hello everyone, A customer of mine, is looking forward for a technology able to load balance a traffic across a LAG. The LAG in question comprised of Ethernet link and can grow from a few links (4) to say, 20 - as required bandwidth grows. The gear is MX boxes. Since I'm familiar with adaptive

Re: [j-nsp] MACsec over a service provider

Yes, But unfortunately (as far as j-nsp is considered), using Ciscos' gear. Cisco has a special flavor of MACSec, intended to address that issue exactly - they call it WAN MACSes. We was able to use across many different SP circuits. As long as you have pure p2p links (real or stimulated), you

Re: [j-nsp] MACsec over a service provider

I think juniper gear has some mics that supoort macsec ... for mx 17.3 JNP-MIC1-MACSEC https://www.juniper.net/documentation/en_US/junos/topics/concept/macsec-overview-mx-series.html Or you can use a DCI to do it ... together with your router ... but maybe in 100G interfaces only ... will

Re: [j-nsp] Anyone uses Adaptive Load Balancing?

Hello, We have been using it for a while. Works great. We have a few small links in a LAG bundle with a small number of fat flows over them. Without adaptive LAG the flows would sometimes hash on the same link. With adaptive LAG they are always split. I agree that there probably aren't many use