Chapter 4
Configuring SGT Exchange Protocol over TCP (SXP) and Layer 3 Transport
Command
Step 3
Router(config)# exit
Step 4
Router# show platform cts
This example shows how to configure a Cisco TrustSec ingress reflector:
Router# configure terminal
Router(config)# platform cts ingress
Router(config)# exit
Router# show platform cts
CTS Ingress mode enabled
Before disabling the Cisco TrustSec ingress reflector, you must remove power from the Cisco
Note
TrustSec-incapable switching modules.
To configure the Cisco TrustSec egress reflector function, perform this task.
Detailed Steps for Catalyst 6500
Command
Step 1
Router# configure terminal
Step 2
Router(config)# [no] platform cts egress
Step 3
Router(config)# exit
Step 4
Router# show platform cts
This example shows how to configure a Cisco TrustSec egress reflector:
Router# configure terminal
Router(config)# platform cts egress
Router(config)# exit
Router# show platform cts
CTS Egress mode enabled
Before disabling the Cisco TrustSec egress reflector, you must remove power from the Cisco
Note
TrustSec-incapable switching modules.
Configuring Cisco TrustSec Caching
Enabling Cisco TrustSec Caching
For quick recovery from brief outages, you can enable caching of authentication, authorization, and
policy information for Cisco TrustSec connections. Caching allows Cisco TrustSec devices to use
unexpired security information to restore links after an outage without requiring a full reauthentication
OL-22192-01
Configuring Cisco TrustSec Caching
Purpose
Exits configuration mode.
Displays Cisco TrustSec reflector mode (Ingress,
Egress, Pure, or No CTS).
Purpose
Enters configuration mode.
Activates the Cisco TrustSec egress reflector.
Exits configuration mode.
Displays Cisco TrustSec reflector mode (Ingress,
Egress, Pure, or No CTS).
Cisco TrustSec Configuration Guide
4-9