summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rwxr-xr-xsrc/conf_mode/interfaces-macsec.py6
1 files changed, 5 insertions, 1 deletions
diff --git a/src/conf_mode/interfaces-macsec.py b/src/conf_mode/interfaces-macsec.py
index 874fd6d62..867df3eb6 100755
--- a/src/conf_mode/interfaces-macsec.py
+++ b/src/conf_mode/interfaces-macsec.py
@@ -29,7 +29,7 @@ from vyos import ConfigError
default_config_data = {
'address': [],
'address_remove': [],
- 'cipher': 'gcm-aes-128',
+ 'cipher': '',
'deleted': False,
'description': '',
'disable': False,
@@ -111,6 +111,10 @@ def verify(macsec):
raise ConfigError((
f'Physical source interface must be set for MACsec "{macsec["intf"]}"'))
+ if not macsec['cipher']:
+ raise ConfigError((
+ f'Cipher suite is mandatory for MACsec "{macsec["intf"]}"'))
+
if macsec['vrf']:
if macsec['vrf'] not in interfaces():
raise ConfigError(f'VRF "{macsec["vrf"]}" does not exist')
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-01 08:31:01 +0000