iWAN to SDWAN DC & Branch Migration — Day01/02 — Master Class — expert
CCNA Wireless – For Beginners
Cisco Internet of Things IoT Technologies & Solutions New Tech
Cisco SDWAN Viptela Qos Interview Prep
L2 Loop troubleshooting and basic packet capture
Cisco IOS XRv 9000 Installation Basic Operations & vRR Configuration
ABC of Firepower Threat Defense Basic Lab Guide All
The goal of this Course is to give a deployment engineer the skills necessary to successfully install and configure Cisco’s latest version of Next Generation Firewall (NGFW). You will deploy Firepower Management Center (FMC) and Firepower Threat Defense (FTD) devices in a realistic network topology. Once the devices have a basic configuration you will learn how to use some of the new features and benefits of the integrated Firewall (FW) and Intrusion Prevention System (IPS).
Though this course is geared to teach the basics of FTD, throughout this lab there are questions and roadblocks to help you learn what should/shouldn’t (or can/can’t) be done. When approaching this lab come with your thinking caps on and engaged. In this lab, Example Corp’s bid to update their edge security devices has been awarded to your company! This is a complete ripand-replace of their existing edge security devices. There are 3 sites involved: HQ, Remote1, and Remote2. Example Corp wants each site to have basic Internet connectivity that is centrally controlled (as much as possible), and that the traffic coming into and out of their sites is secured all the way through layer 7.
They also have plans to interconnect the sites with a Site-to-Site VPN. This Course includes the following Scenarios: Scenario 1. Installing the Firepower Management Center Scenario 2. Installing the FTD at the HQ Site Scenario 3. Common Configurations for Example Corp Networks Scenario 4. Installing the FTD at the Remote1 Site Using Static IP for Mgmt Scenario 5.
Installing the FTD at the Remote2 Site Using DHCP IP for Mgmt Scenario 6. Configuring URL Filtering Scenario 7. SSL Policy Configuration Scenario 8. Malware and File Detection Configuration Scenario 9. Intrusion Policy Scenario 10. Configure Platform Settings Scenario 11. Example Corp VPN Setup Scenario 12. FMC and FTD Maintenance Scenario 13. FMC and FTD Data Monitoring Scenario 14. Introduction to API Programming the FMC.
VMware NSX-T 2.4
VMware NSX-T 3.0 is the latest generation of VMware’s network virtualization product series. NSX-T is the successor to the NSX-V product. NSX-T supports third-party Hypervisors and next generation overlay encapsulation protocols such as Generic Network Virtualization Encapsulation (Geneve). NSX-T acts as a network Hypervisor that allows software abstraction of various network services that include logical switch (segments), logical routers (Tier-0 or Tier-1 Gateway), logical firewalls, logical load balancers, and logical VPNs. NSX Manager—Integrated management component of NSX-T, provides the functionality of controller, manager, and policy. It is installed as a virtual appliance in the vCenter server environment.
ESXi (Transport Node)—Servers and edge nodes that have NSX-T prepared in the NSX-T data center. N-VDS—NSX-managed Virtual Distributed Switch (N-VDS), derived from VMware vSphere Distributed Switch (VDS), de-couples the data plane from the compute manager (vCenter). It is a software abstraction layer present between servers and physical network for network connectivity.
It can be created on both host and edge transport nodes and can co-exist with VMware Standard Switch (VSS) and VDS. Segments—Formerly known as logical switch in NSX-V, similar to VLANs, reproduces switching functionality in NSX-T environment to provide network connections between attached VMs. NSX Edge—Provides gateway and security services to the virtual network. It enables east-west traffic between the VMs on the same host in different subnets without accessing the physical network.
It also enables north-south traffic for VMs to access the public networks. Service Router—Instantiated on the NSX Edge node and provides gateway functionality and services such as NAT, load balancing, and so on. Distributed Router—Runs as a kernel module and is embedded in all transport nodes to provide basic routing capabilities such as east-west routing and local routing inside hypervisor. NSX Tier-1 Gateway—Provides east-west connectivity. NSX Tier-0 Gateway—Provides north-south connectivity. It supports static routing, BGP dynamic routing, and equal-cost multi-path (ECMP) routing. It is required for traffic flow between logical and physical networks.
ASR Training – IOS-XR – OSPF Configuration