US 11,870,762 B2
MACsec key exchange attribute reflection for transparent provider backbone bridge forwarding over public ethernet provider backbones
Craig Thomas Hill, Sterling, VA (US); Aaron Christopher Warner, Odessa, FL (US); Michael William Bessette, Reston, VA (US); and Chennakesava Reddy Gaddam, Karnataka (IN)
Assigned to CISCO TECHNOLOGY, INC., San Jose, CA (US)
Filed by Cisco Technology Inc., San Jose, CA (US)
Filed on Jul. 7, 2021, as Appl. No. 17/368,902.
Prior Publication US 2023/0008699 A1, Jan. 12, 2023
Int. Cl. H04L 29/06 (2006.01); H04L 9/40 (2022.01); H04L 12/46 (2006.01)
CPC H04L 63/061 (2013.01) [H04L 12/462 (2013.01); H04L 63/0464 (2013.01); H04L 63/162 (2013.01)] 17 Claims
OG exemplary drawing
 
1. A system, comprising:
one or more processors;
one or more computer-readable non-transitory storage media comprising instructions that, when executed by the one or more processors, cause one or more components of the system to perform operations comprising:
receiving, at a first provider backbone bridge (PBB) device, an Ethernet frame from a first edge router, the Ethernet frame configured for transmission to a second edge router via a Media Access Control security (MACsec) connection and comprising an Ether-type field;
performing, by the first PBB device, a lookup of the Ether-type field of the Ethernet frame to determine a match with one or more pre-defined values;
determining, by the first PBB device, that the Ether-type field of the Ethernet frame matches the one or more pre-defined values;
rewriting, by the first PBB device, the Ether-type field of the Ethernet frame to an open value, the open value operable to allow the Ethernet frame to be transmitted to a next hop device;
transmitting, by the first PBB device, the rewritten Ethernet frame to the next hop device; and
performing, by the next hop device, a lookup of the Ether-type field of the rewritten Ethernet frame to determine a next action.