How to create macsec (IEEE 802.1AE) interface with static keys on three hosts to comunicate with each other with no switch support

Solution Verified - Updated -

Issue

How to get three hosts on the same L2 segment communicating with each other over encrypted macsec interface. No switch support is required, no dynamic keys distribution and regeneration is required as well.

Environment

  • rhel-7
  • rhel-8
  • more than two hosts on the same L2 segment

Host H1

NIC: ens3
MAC: 52:54:00:74:d8:cd

Host H2

NIC: ens4
MAC: 52:54:00:0c:ca:4f

Host H3

NIC: ens4
MAC: 52:54:00:47:c6:3d

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content