Configure the confidentiality offset to specify the number of unencrypted bytes that precede MACsec encryption. Valid values are 30 and 50. Configuring the offset to 30 enables an IPv4 header and TCP/UDP header to remain unencrypted, while configuring the offset to 50 enables an IPv6 header and TCP/UDP header to remain unencrypted.
confidentiality-offset <30 | 50>
default confidentiality-offset
no confidentiality-offset
The default is no confidentiality offset.
MKA Profile Configuration mode
This command does not apply to all hardware platforms. For more information about feature support, see VOSS Feature Support Matrix.