CCNP Enterprise

Upon completing this course, students will be able to meet these objectives:

• Illustrate the hierarchical network design model and architecture using the access, distribution, and core layers.
• Compare and contrast the various hardware and software switching mechanisms and operation, while defining the TCAM and CAM, along with process switching, fast switching, and Cisco Express Forwarding concepts.
• Troubleshoot layer 2 connectivity using VLANs, trunking.
• Implementation of redundant switched networks using spanning tree protocol.
• Troubleshooting link aggregation using Etherchannel.
• Describe the features, metrics, and path selection concepts of EIGRP.
• Implementation and optimization of OSPFv2 and OSPFv3, including adjacencies, packet types, and areas, summarization and route filtering for IPv4 and IPv6.
• Implementing EBGP interdomain routing, path selection and single and dual-homed networking.
• Implementing network redundacy using protocols like HSRP and VRRP.
• Implementing internet connectivity within Enterprise using static and dynamic NAT.
• Describe the virtualization technology of servers, switches, and the various network devices and components.

CCNP Core (ENCOR 350-401)

1.0 Architecture

1.1 Explain the different design principles used in an enterprise network
1.1.a. Enterprise network design such as Tier 2, Tier 3, and Fabric Capacity planning
1.1.b High availability techniques such as redundancy, FHRP, and SSO
1.2 Analyze design principles of a WLAN deployment
1.2.a Wireless deployment models (centralized, distributed, controller-less, controller based,
c cloud, remote branch)
1.2.b Location services in a WLAN design
1.3 Differentiate between on-premises and cloud infrastructure deployments
1.4 Explain the working principles of the Cisco SD-WAN solution
1.4.a SD-WAN control and data planes elements
1.4.b Traditional WAN and SD-WAN solutions
1.5 Explain the working principles of the Cisco SD-Access solution
1.5.a SD-Access control and data planes elements
1.5.b Traditional campus interoperating with SD-Access
1.6 Describe concepts of wired and wireless QoS
1.6.a QoS components
1.6.b QoS policy
1.7 Differentiate hardware and software switching mechanisms
1.7.a Process and CEF
1.7.b MAC address table and TCAM
1.7.c FIB vs. RIB

2.0 Virtualization

2.1 Describe device virtualization technologies
2.1.a Hypervisor type 1 and 2

2.1.b Virtual machine
2.1.c Virtual switching
2.2 Configure and verify data path virtualization technologies
2.2.a VRF
2.2.b GRE and IPsec tunneling
2.3 Describe network virtualization concepts
2.3.a LISP
2.3.b VXLAN

3.0 Infrastructure

3.1 Layer 2
3.1.a Troubleshoot static and dynamic 802.1q trunking protocols
3.1.b Troubleshoot static and dynamic Ether Channels.
3.1.c Configure and verify common Spanning Tree Protocols (RSTP and MST)

3.2 Layer 3
3.2.a Compare routing concepts of EIGRP and OSPF (advanced distance vector vs.
linked state, load balancing, path selection, path operations, metrics)
3.2.b Configure and verify simple OSPF environments, including multiple normal
areas, summarization, and filtering (neighbor adjacency, point-to-point and
broadcast network types, and passive interface)
3.2.c Configure and verify eBGP between directly connected neighbors (best path
selection algorithm and neighbor relationships)

3.3 Wireless
3.3.a Describe Layer 1 concepts, such as RF power, RSSI, SNR, interference noise,
band and channels, and wireless client devices capabilities
3.3.b Describe AP modes and antenna types
3.3.c Describe access point discovery and join process (discovery algorithms, WLC
selection process)
3.3.d Describe the main principles and use cases for Layer 2 and Layer 3 roaming
3.3.e Troubleshoot WLAN configuration and wireless client connectivity issues

3.4 IP Services
3.4.a Describe Network Time Protocol (NTP)
3.4.b Configure and verify NAT/PAT
3.4.c Configure first hop redundancy protocols, such as HSRP and VRRP
3.4.d Describe multicast protocols, such as PIM and IGMP v2/v3

4.0 Network Assurance

4.1 Diagnose network problems using tools such as debugs, conditional debugs, trace route,
ping, SNMP, and syslog
4.2 Configure and verify device monitoring using syslog for remote logging
4.3 Configure and verify NetFlow and Flexible NetFlow
4.4 Configure and verify SPAN/RSPAN/ERSPAN
4.5 Configure and verify IPSLA
4.6 Describe Cisco DNA Center workflows to apply network configuration, monitoring, and
m management.
4.7 Configure and verify NETCONF and RESTCONF

5.0 Security
5.1 Configure and verify device access control
5.1.a Lines and password protection
5.1.b Authentication and authorization using AAA

5.2 Configure and verify infrastructure security features
5.2.a ACLs
5.2.b CoPP
5.3 Describe REST API security
5.4 Configure and verify wireless security features
5.4.a EAP
5.4.b WebAuth
5.4.c PSK
5.5 Describe the components of network security design
5.5.a Threat defense
5.5.b Endpoint security
5.5.c Next-generation firewall
5.5.d TrustSec, MACsec
5.5.e Network access control with 802.1X, MAB, and WebAuth

6.0 Automation
6.1 Interpret basic Python components and scripts
6.2 Construct valid JSON encoded file
6.3 Describe the high-level principles and benefits of a data modeling language, such as
YANG
6.4 Describe APIs for Cisco DNA Center and vManage
6.5 Interpret REST API response codes and results in payload using Cisco DNA Center and
RESTCONF RESTCONF.
6.6 Construct EEM applet to automate configuration, troubleshooting, or data collection
6.7 Compare agent vs. agentless orchestration tools, such as Chef, Puppet, Ansible, and
Salt Stack

Course Outline

Cisco CCNP Enterprise Advanced Routing (ENARSI 300-410)

Introduction

Module 1: Layer 3 Routing
 Lesson 1: Enhanced Interior Gateway Routing Protocol (EIGRP)
o Learning Objectives
o Introducing Enhanced Interior Gateway Routing Protocol (EIGRP)
o EIGRP Configuration
o Lab: Configuring EIGRP
o Lab: Configuring the Passive EIGRP Interface
o EIGRP Authentication
o EIGRP Path Calculation and Metrics
o EIGRP Timers and Convergence
o EIGRP Route Summarization
o EIGRP Stub and Stub Site
o Lab: Configuring the EIGRP Stub Router
o EIGRP WAN Considerations
o EIGRP Route Manipulations
o Lab: Configuring EIGRP Route Filtering
o EIGRP Over VRF-Lite
o Troubleshooting EIGRP
o Lab: Troubleshooting EIGRP
o Command Review
o Lesson 1: Flashcards
o Lesson 1: Quiz
 Lesson 2: Enhanced Interior Gateway Routing Protocol for IPv6 (EIGRPv6)
o Learning Objectives
o EIGRPv6 Fundamentals
o EIGRPv6 Configuration
o Lab: Configuring EIGRPv6
o Troubleshooting EIGRPv6
o Command Review
o Lesson 2: Flashcards
o Lesson 2: Quiz
 Lesson 3: Open Shortest Path First (OSPF)
o Learning Objectives
o Open Short Path First (OSPF) Fundamentals
o Lab: Configuring OSPF
o OSPF Authentication
o OSPF Network Types
o Lab: Configuring the OSPF Loopback Network
o OSPF LSAs
o Lab: Showing the LSA Types 1 to 5 and the Type 7
o OSPF Route Summarization
o OSPF Stubby Areas
o Virtual Links
o Lab: Configuring OSPF Virtual Links
o OSPF Path Selection
o OSPF VRF-Lite
o OSPF Troubleshooting
o Lab: Troubleshooting OSPFv2 Routes
o Command Review
o Lesson 3: Flashcards
o Lesson 3: Quiz
 Lesson 4: Open Shortest Path First Version 3 (OSPFv3)
o Learning Objectives
o OSPFv3 Fundamentals
o OSPFv3 Configuration
o Lab: Configuring OSPFv3
o Command Review
o Lesson 4: Flashcards
o Lesson 4: Quiz
 Lesson 5: Border Gateway Protocol (BGP)
o Learning Objectives
o BGP Fundamentals
o BGP Communication
o BGP Session Configuration
o Prefix Advertisement
o Lab: Configuring BGP
o EBGP and IBGP Route Advertisement Behaviors
o BGP Route Filtering
o Lab: Configuring the BGP Distribute List
o Lab: Configuring the BGP Prefix List Filter
o BGP Scalability Optimizations - Route Reflectors and Update Source
o BGP Scalability Optimizations - Confederations and Peer Groups
o BGP Communities
o BGP Best Path Selection
o Lab: Configuring the BGP Weight Manipulation
o Lab: Configuring the BGP AS_Path
o Multiprotocol BGP for IPv6
o Multiprotocol BGP for IPv6 over IPv4 Session
o Lab: Configuring and viewing IPv6 BGP
o VRF-Lite for BGP
o Troubleshooting BGP
o Lab: Troubleshooting BGP Routes
o Command Review
o Lesson 5: Flashcards
o Lesson 5: Quiz
 Lesson 6: Route Manipulation and Advanced Routing Concepts
o Learning Objectives
o Access Control Lists (ACLs)
o Prefix Lists
o Regular Expressions (RegEx)
o Route Maps
o Modifying Routing Protocols AD and Troubleshooting
o Lab: Configuring EIGRP AD Manipulation
o Lab: Configuring the OSPF Customized AD
o Lab: Configuring IPv6 Static Routes
o Configure and Verify Policy-Based Routing
o Lab: Configuring Local PBR
o Describe Bidirectional Forwarding Detection
o Command Review
o Lesson 6: Flashcards
o Lesson 6: Quiz
 Lesson 7: Route Redistribution
o Learning Objectives
o Route Redistribution Fundamentals
o Route Redistribution Configuration for EIGRP
o Lab: Configuring EIGRP Redistribution
o Route Redistribution Configuration for OSPF
o Lab: Configuring OSPF Redistribution
o Route Redistribution Configuration for BGP
o Lab: Configuring BGP Redistribution
o Selective Route Redistribution
o Problems with Redistribution
o Preventing Issues With Route Redistribution
o IPv6 Route Redistribution
o Command Review
o Lesson 7: Flashcasrd
o Lesson 7: Quiz

Module 2: VPN Technologies

 Lesson 8: Multiprotocol Label Switching (MPLS)
o Learning Objectives
o Multiprotocol Label Switching (MPLS) Fundamentals
o MPLS Layer 3 Virtual Private Network (L3VPN)
o Lab: Configuring VRF-lite and Verfifying the Connection
o MPLS LSP Demonstration
o MPLS L3VPN Demonstration
o Command Review
o Lesson 8: Flashcards
o Lesson 8: Quiz
 Lesson 9: Dynamic Multipoint VPN (DMVPN)
o Learning Objectives
o Introducing DMVPN
o DMVPN Phase 1 Configuration
o Lab: Configuring and Viewing DMVPN Phase 1
o DMVPN Phase 3 Configuration
o DMVPN IPsec Tunnel Protection
o Command Review
o Lesson 9: Flashcards
o Lesson 9: Quiz

Module 3: Infrastructure Security

 Lesson 10: Infrastructure Security
o Learning Objectives
o Router Security Features
o Troubleshooting Router Security Features
o Troubleshooting Local AAA on a Router
o Troubleshooting Radius on a Router
o Troubleshooting TACACS+ on a Router
o IPv4 Access Control Lists (Standard, Extended, Time-Based)
o IPv4 Standard Access Control Lists
o IPv4 Extended Access Control Lists
o Lab: Troubleshooting IPv4 ACLs
o IPv4 Reflexive Access Control Lists
o IPv4 Time-based Access Control Lists
o IPv6 Traffic Filter
o Lab: Troubleshooting IPv6 ACLs
o Unicast Reverse Path Forwarding (uRPF)
o Troubleshooting Control Plane Policing (CoPP) (Telnet, SSH, HTTP(S), SNMP, EIGRP,
OSPF, BGP)
o Lab: Configuring Class Map for CoPP
o IPv6 First Hop Security Features
o Command Review
o Lesson 10: Flashcards
o Lesson 10: Quiz

Module 4: Infrastructure Services

 Lesson 11: Infrastructure Services
o Learning Objectives
o Troubleshooting Device Management
o Console and VTY, Telnet, SSH
o Lab: Preparing SSH in a Router
o HTTP(S), SCP, TFTP
o Troubleshooting SNMP
o Lab: Configuring SNMPv3
o Lab: Configuring SNMPv2c
o Troubleshooting Network Problems Using Logging
o DHCP Fundamentals
o Troubleshooting DHCP IPv4
o Troubleshooting DHCPv6
o Lab: Configuring and Verifying DHCPv6 on a Router
o Lab: Enabling and Verifying SLAAC on a Router
o Troubleshooting Network Performance Issues Using IP SLA
o IP SLA Object Tracking
o Troubleshooting NetFlow (v5, v9)
o Lab: Configuring NetFlow
o Flexible Netflow
o Monitoring DNA Center Assurance Dashboard
o Monitoring DNA Center Assurance Network Health
o Monitoring DNA Center Assurance Client Health
o Monitoring DNA Center Assurance Application Health
o Command Review
o Lesson 11: Flashcards
o Lesson 11: Quiz