Course Overview

The Aruba Central 2-day course covers the campus cloud-based management system that lets you centrally manage and monitor wired and wireless networks. This course covers the Aruba Central management service and includes options for onboarding devices by managing Aruba Instant Access Points and Aruba switches both as a standalone customer or as an Managed Service Provider (MSP). Participants will view the advanced analytic services and connectivity health of devices and clients, providing insights into Wi-Fi analytics for smart business decisions. Participants will learn how to simplify visitor access management with a fully secure and scalable guest access solution including guest cloud services. This course also provides students the knowledge, skills and practical experience required to set up, configure and manage a network as a service offering. Through lecture and hands-on labs, students will discover the comprehensive alert management, device connectivity, network health and user account activity with Aruba Central. 

Course Objectives

After you successfully complete this course, expect to be able to:

• Use Aruba Central and its features 
• Understand the differences between MSP and Central account 
• Customize an MSP account 
• Create customers, groups and assign devices with Central 
• Be familiar with Onboarding devices into Central 
• Be able to describe different methods of Onboarding 
• Understand the purpose and uses for Groups, Labels and Sites 
• Filter information using Groups, Labels and Sites
• Describe the importance of Guest Access 
• Configures switches via Central 
• Be familiar with VRF and heatmaps and know your network topology 
• Be able to plan a new network and know how to use network monitoring and troubleshooting 
• View your network health and troubleshoot client issues 
• Maintain network security 
• Customize alerts according to your needs 
• Be familiar with your network applications 
• Identify non Wi-Fi issues 
• Be aware of the users passing by or entering your establishment 
• Be familiar with the UC dashboard 
• Use the UCC dashboard to monitor UCC quality
• Be familiar with Central’s administrative tasks 
• Know how to add admin users and new certificates
• Know how to upgrade the network and create reports 
• Configure IAP clusters 

Course Content

• Central Introduction
• Managed Service Provider
• Central Onboarding
• Central Groups, Sites & Labels
• IAP & Switch Configuration
• Visual RF (VRF) & Topology
• Troubleshooting with Central
• Application Presence: Analytic UCC
• Administration and Maintenance

Course Overview

This hands-on course prepares you with the knowledge and experience required to install and use the AirWave Wireless Management Suite: AirWave Management Platform (AMP), RAPIDS, Visual RF, network health diagnostics, client troubleshooting, alerts and reporting. In this course, you learn about AirWave’s capabilities in troubleshooting network health and client status via the various stages of association and authentication, as well as redundancy and master consoles for large networks.

Course Objectives

After you successfully complete this course, expect to be able to:

• Install AWMS 8.2.10
• Demonstrate adding devices on the network to the Airwave Management Server
• Understand Visual RF heatmaps and location information
• Demonstrate how to troubleshoot wireless network issues using Airwave
• Understand how to use RAPIDS to identify and locate rogues
• Demonstrate how to manage and administer an Airwave Management Suite and configure Devices using AWMS

Course Content

Introduction to AWMS

• Airwave Platform
• Features and Benefits of AMP RAPIDS and Visual RF
• Airwave products
• Basic operations using AWMS

Installing AWMS

• Installing AMP
• Hardware requirements
• Cent OS and AWMS software
• Basic configuration steps
• Upgrade AWMS software
• Licensing AWMS
• AWMS documentation

Adding Device to AWMS

• Installing AMP
• Hardware requirements
• Cent OS and AWMS software
• Basic configuration steps
• Upgrade AWMS software
• Licensing AWMS
• AWMS documentation

IAP Organization and Groups

• Overview of IAP
• Airwave integration
• Golden configuration
• IAP Organization options
• IAP Whitelist

Wired Device Monitoring

• Wired monitoring and management
• Vendor switch monitoring
• Monitoring ports, PoE, VLAN details, connected devices and hardware
• Running cable tests
• Troubleshooting

Using Visual RF and Visual RF Plan

• Navigation
• Setup
• Heat-maps and location information
• Import floorplan graphics
• Plan deployments
• Provision APs
• Manage Visual RF performance

Network Health

• Searching for users and Diagnostics tab
• Client issues
• Network issues
• AP issues
• Switch/Controller issues
• General Issues

Troubleshooting Clients and Wireless Networks

• Why use RAPIDS
• Threat Detection Methods
• Rules
• Classifications
• IDS Events Report
• New Rogue Devices Report
• Visualization
• PCI Compliance
• WMS Offload

Rogue Detection and Using RAPIDS

• Why use RAPIDS
• Threat Detection Methods
• Rules
• Classifications
• IDS Events Report
• New Rogue Devices Report
• Visualization
• PCI Compliance
• WMS Offload

Managing Administrative Access, Alerts, Triggers and Reporting

• Configure role-based administrative use access to the AMP system
• Triggers
• Alerts
• Define and generate reports

Scalability and Redundancy

• VM Redundancy
• Failover for Redundancy
• Master Console for large deployments
• Multiple AMP Server deployments
• Large Deployment example

System Administration

• AMP Maintenance
• Device Maintenance

Air Wave Aruba Groups

• How AWMS configures devices
• Using groups to control policies
• Creating and controlling groups
• Basic Group Design
• Configuration Audits

IAP Template Configuration

• Fetching a Template
• Template Variables
• Templates Configuration

IAP GUI Configuration

• Golden configuration
• GUI mode
• GUI configuration
•  

Course Overview

This Introduction to Nexus Dashboard training covers data center assurance and telemetry, then dives into Nexus Dashboard architecture, configuration and installation and deployment scenarios for Cisco ACI.

Virtual Learning

This interactive training can be taken from any location, your office or home and is delivered by a trainer. This training does not have any delegates in the class with the instructor, since all delegates are virtually connected. Virtual delegates do not travel to this course, Global Knowledge will send you all the information needed before the start of the course and you can test the logins.

Course Objectives

Upon completing this course, the learner will be able to meet these overall objectives:

• Understand, Articulate, and Operationalize Nexus Dashboard Use Cases and Benefits
• Operate and Configure Nexus Dashboard
• Install and Operate Nexus Dashboard Apps
• Configure Nexus Insights, Orchestrator, and Fabric Controller
• Explore Fabric Telemetry with Nexus Insights
• Explore Nexus Dashboard and Nexus Insights APIs

Course Content

Module 1: Nexus Dashboard for ACI Overview

• Introduction to Cisco ACI Data Center Assurance and Telemetry
• Introduction to Nexus Dashboard Architecture
• Nexus Dashboard Federation/SPOG
• Nexus Dashboard Installation, Configuration and Deployment

Module 2: Nexus Dashboard Insights for ACI

• Introduction to Nexus Dashboard Insights
• GUI Overview
• Insight Site Groups
• Insight Compliance
• Insight Explorer
• Insight Resource Browser/Bug Advisory
• Anomalies/Protocols Statistics/Alerts/One Click Remediation
• Flow Telemetry
• Delta Analysis
• Firmware Update Analysis
• Pre-change Analysis
• Licensing

Module 3: Nexus Dashboard Orchestrator for ACI

• Overview
• Use Cases
• Nexus Dashboard Orchestrator Platform Support
• Multi-Cloud-Only Deployments
• Nexus Dashboard Orchestrator with ACI Multi-Site

Module 4: Nexus Dashboard Integrations

• Nexus Dashboard API
• Splunk Integration
• AppDynamics (AppD) Integration
• ServiceNow Integration

Lab Outline:

Labs are designed to assure learners a whole practical experience, through the following practical activities:

• Discovery Lab 0: Accessing the NterOne Lab Devices
• Discovery Lab 1: Validate ACI Integration with Nexus Dashboard
• Discovery Lab 2: Nexus Dashboard Admin Console
• Discovery Lab 3: Nexus Dashboard Insights Administration
• Discovery Lab 4: Nexus Dashboard Insights Compliance on an ACI Tenant
• Discovery Lab 5: Nexus Dashboard Insights Explorer Feature on an ACI Tenant
• Discovery Lab 6: Nexus Dashboard Insights, Anomalies, and Pre-Change Analysis
• Discovery Lab 7: Nexus Dashboard Orchestrator Integration with ACI
• Discovery Lab 8: Nexus Dashboard Orchestrator ACI Multi-Site Configuration
• Discover Lab 9: Nexus Dashboard Challenge

Course Overview

In this two-day course, Introduction to Cisco Secure Workload Firewall Operations and Administration, (CSWOPS) will familiarize you and help you understand how The Cisco Secure Workload Firewall Analytics™ platform enables efficient data center operations by providing pervasive visibility, behavior-based application insight and migration to a zero-trust model.

Course Objectives

Upon completing this course, the learner will be able to understand how Cisco Secure Workload Firewall Analytics™:

• Enables pervasive visibility of traffic across datacenter infrastructure
• Uses long term data retention for forensics and analysis
• Creates communication and dependencies for all applications within the datacenter
• Empowers companies to get to a whitelist policy model
• Identifies behavior deviation in real time
• Performs forensics operations

Course Content

Module 1: Cisco Secure Workload Firewall Overview

• Defining and Positioning Cisco Cisco Secure Workload Firewall Analytics
• Telemetry
• Platform
• Intent-Based Policy
• Machine Learning
• Network Performance Monitoring and other Use Cases

Module 2: Cisco Secure Workload Firewall Components

• Architecture
• Data Collection
• Sensors and Agents
• Flow Collectors
• Analytics Engine
• Open Access

Module 3: Operational Concepts

• Scopes
• Tenants
• RBAC
• Annotations

Module 4: Cisco Secure Workload Firewall Setup and Deployment Models

• On Premise Options
• SaaS
• Cisco Secure Workload Firewall-V
• Installation Procedure
• Creating Scopes, Roles, and Users
• Deploy Hardware Sensors
• Deploy NetFlow Sensors
• Deploy ERSPAN Sensors

Module 5: Software Agents

• Software Agents Overview
• Software Agents Features
• Software Agents Configuration

Module 6: Application Dependency Mapping

• Why ADM?
• Cisco Secure Workload Firewall Application Insight
• ADM Process
• ADM Run Results

Module 7: Cisco Secure Workload Firewall Analytics Policy Enforcement Overview

Module 8: Cisco Secure Workload Firewall Flow Search

• Results Filtered by Scope
• Searching with Conjunctions
• Flow Explore Integrated
• User Annotations

Module 9: Cisco Secure Workload Firewall Policy Analysis

• Enable Policy Analysis
• Live Policy Analysis
• Backdated Policy Experiments
• Quick Policy Analysis

Module 10: Cisco Secure Workload Firewall Apps and API

• App Store
• User Apps
• Visualize Data Sources
• Bring your own Data
• OpenAPI

Module 11: Cisco Secure Workload Firewall Ecosystem

• Platform Integrations
  • ADCs
  • FW Management Tools
  • Phantom
  • InfoBlox
  • ServiceNow
  • Splunk
  • Turbonomic
  • Veeam
• Corvil and Extra Hop

Lab Outline:

Labs are designed to assure learners a whole practical experience, through the following practical activities:

• Lab 1: Exploring the GUI
• Lab 2: Software Agent Installation
• Lab 3: Application Dependency Mapping with Agents
• Lab 4: Enforcement
• Lab 5: Flow Search
• Lab 6: Advanced ADM Run
• Lab 7: Policy Analysis

Course Overview

The Implementing Cisco Catalyst 9000 Series Switches (ENC9K) course provides you with insight into Cisco Catalyst 9000 Series Switches and their solution components, architecture, capabilities, positioning, and implementation. Learn how to manage the switches using CLI, Cisco DNA Center, and the IOS-XE GUI. Additionally, you will be introduced to security, cloud, automation, and other important features of Cisco Catalyst 9000 Series switches.

Course Objectives

After completing this course you should be able to:

• Review the Cisco Catalyst 9000 Series Switches identify the switches’ features and examine the functionalities purpose-built for Cisco DNA and the SD-Access solution.
• Position the different Cisco Catalyst 9000 Series Switch model types in the network, and map older Cisco Catalyst switches to the 9000 family for migration.
• Identify the role and value of Cisco Silicon One in a campus environment.
• Examine management capabilities of the Cisco Catalyst 9000 Series Switches.
• Describe the scalability and performance features supported by the Cisco Catalyst 9000 Series Switches.
• Describe the Cisco Catalyst 9000 Series Switch support for security, Quality of Service (QoS), and Internet of Things (IoT) convergence features.
• Describe automation features, Application Programming Interface (API), Infrastructure as Code, and automation tools supported on Cisco Catalyst 9000 Series switches.
• Describe the new QoS, IoT, and BGP EVPN Features on Cisco Catalyst 9000 Series Switches.
• Describe the maintenance features on Cisco Catalyst 9000 Series switches.
• Explore the SD-Access solution fundamentals, deployment models for the Cisco Catalyst 9000 Series Switch, and the use of Cisco DNA Center to manage infrastructure devices.
• Automate Day 0 device onboarding with Cisco DNA Center LAN Automation and Network PnP.
• Describe how to manage and host applications on Cisco Catalyst 9000 Series switches using Cisco DNA Center.
• Explore a modern approach to cloud-managed networking for Cisco Catalyst 9000 Series switches and wireless access points that uses the Meraki Dashboard and analytics.
• Describe the Cisco Catalyst 9200 Series Switch architecture, model types, port types, uplink modules, components including power supplies, and other switch features and capabilities.
• Describe the Cisco Catalyst 9300 Series Switch architecture, model types, port types, uplink modules, and components, including power supplies and stacking cables.
• Describe the Cisco Catalyst 9400 Series Switches, different modular chassis, supervisor and line card options, architectural components, uplink, and power redundancy, and Multigigabit ports
• Describe the Cisco Catalyst 9500 Series Switches, model types, switch components, RFID support, architecture, and switch profiles.
• Describe the Cisco Catalyst 9600 Series Switch architecture, supervisor and line card options, and high availability features.

Course Content

Introducing Cisco Catalyst 9000 Series Switches

• Introducing Cisco Catalyst 9000 Platforms
• Introducing Cisco UDAP ASIC 2.0 and 3.0
• Cisco UDAP 2.0 and 3.0 Core Architecture
• Packet Walk with ASIC
• Cisco Open IOS XE
• Role of Cisco Catalyst 9000 Series Switches in Cisco DNA Architecture
• Meraki Management for Catalyst 9000 Series
• Cisco Catalyst 9000 Series Licensing

Positioning Cisco Catalyst 9000 Switches

• Positioning Cisco Catalyst 9200 Switches
• Positioning Cisco Catalyst 9300 Switches
• Positioning Cisco Catalyst 9400 Switches
• Positioning Cisco Catalyst 9500 Switches
• Positioning Cisco Catalyst 9600 Switches
• Migrating from the Cisco Catalyst 2960-X/XR to Cisco Catalyst 9200
• Migrating from the Cisco Catalyst 3850 to Cisco Catalyst 9300
• Migrating from the Cisco Catalyst 4500E to the Cisco Catalyst 9400
• Migrating from the Cisco Catalyst 4500X, 6840X and 6880 to Catalyst 9500
• Migrating from the Cisco Catalyst 6500 and 6800 to Cisco Catalyst 9600

Cisco Catalyst Silicon One Architecture

• Campus Network Architecture Principles
• Cisco Catalyst 9000 Products
• Cisco Silicon One Family Architecture
• Campus Features on Silicon One Q200
• Catalyst 9000 IPv4 and IPv6 Protocols

Exploring Cisco Catalyst 9000 Series Switches Management Capabilities

• Cisco IOS XE Software CLI
• Onboard Cisco IOS XE Software Web User Interface GUI
• Simple Network Management Protocol
• Network Programmability Features
• ThousandEyes Enterprise Agent
• Intent-Based Networking with Cisco DNA Center
• Cisco Prime Infrastructure
• Cisco Prime Infrastructure with Cisco DNA Center
• Cisco DNA Center Platform Extensibility

Scale and Performance Features on Cisco Catalyst 9000 Series Switches

• Cisco StackWise Virtual Topology in N-Tier Network Topology
• Bandwidth Per Stack
• Uplinks
• Multigigabit Technology
• Flexible NetFlow
• Forwarding TCAM Resources, Flexible Lookup Tables Shared Across Cores, FlexTables
• Cisco Catalyst 9500 Series Flexible ASIC Templates
• Hierarchical VPLS with MPLS Access
• Routed Pseudowire IRB for IPv4 Unicast
• VRF Aware NAT
• Loop Detection Guard
• VLAN Load Balancing for FlexiLink+

Security Features on Cisco Catalyst 9000 Series Switches

• Group-Based policy and Cisco TrustSec SGT for Wired and Wireless
• Hardware Encryption
• LAN MACsec
• Encrypted Traffic Analytics
• Switched Integrated Security Features
• Cloud Security Integration
• Extend Security to Infrastructure with Trustworthy Systems
• Cisco Zero Trust

Automation Features on Cisco Catalyst 9000 Series Switches

• Automation Features on Cisco Catalyst 9000 Series Switches Overview
• API
• Infrastructure as Code Overview
• Automation Tools Supported on Cisco Catalyst 9000 Series Switches

QoS, IoT and BGP EVPN Features on Cisco Catalyst 9000 Series Switches

• QoS Features and Packet Walk
• IoT Convergance Features on Cisco Catalyst 9000 Series Switches
• BGP EVPN Overview

Maintenance Features on Cisco Catayst 9000 Series Switches

• Open IOS XE Patchability and Software Management
• Software Upgrades, Backup and Restore
• Graceful Insertion and Removal
• New Licensing Packaging Structure

Cisco SD-Access Solution in Cisco Catalyst 9000 Series Switches

• Cisco SD-Access Solutions Overview
• Cisco SD-Access Components and Roles
• Cisco SD-Access in Cisco DNA Center 
• Role of the Cisco Catalyst 9000 Series in the Cisco SD-Access Solution
• Deploying Cisco Catalyst 9000 Series in SD-Access Fabric

Application Hosting on Cisco Catalyst 9000 Series Switches

• Open IOS XE Containers and Hosted Applications
• ThousandEyes for Cisco Catalyst 9000 Series Switches
• SD-Access Extension Overview
• Cisco AI Endpoint Analytics Overview

Cloud Management for Catalyst 9000 Series Using Meraki Dashboard

• Introduction to Cloud Management
• Meraki Management for Catalyst 9000 Series
• Implementation Aspects of Monitoring and Conversion
• Work with the Meraki API
• Features, Integrations and Troubleshooting Details
• Troubleshoot Activity: Cloud Management Troubleshooting

 Automating Network Changes with Cisco DNA Center

• Exploring Cisco DNA Center Design Workflow
• Cisco DNA Center and Cisco ISE Integration
• Automating Device Onboarding with Cisco Network Plug and Play

Introducing Cisco Catalyst 9200 Series Switches ( Self-Study)

• Cisco Catalyst 9200 Product Overview
• Cisco Catalyst 9200 Series Architecture
• Fabric Edge Node for SD-Access
• MACsec-128 Link Encryption
• Cisco Catalyst 9200 Series Front Panel
• Cisco Catalyst 9200 Series Rear Panel
• Cisco Catalyst 9200 Series Switch Models
• Cisco Catalyst 9200 Switch Uplink Modules
• Cisco Catalyst 9200 Series Switches Power Supplies, Stacking and Stack Cables.
• Cisco Catalyst 9200 Series Switches Features and Capabilities

Introducing Cisco Catalyst 9300 Series Switches ( Self-Study)

• Cisco Catalyst 9300 Product Overview
• Switch Models
• Cisco Catalyst 9300 Switch Uplink Models
• Cisco Catalyst 9300 Series Switches, Power Supplies, Stacking and Stack Cables
• Enhanced Storage Options on Cisco Catalyst 9300
• Cisco Catalyst 9300 Port Layouts
• Multigigabit Ports

Introducing Cisco Catalyst 9400 Series Switches ( Self-Study)

• Cisco Catalyst 9400 Product Overview
• Cisco Catalyst 9400 4-slot Modular Switch Chassis
• Cisco Catalyst 9400 7-Slot Modular Switch Chassis
• Cisco Catalyst 9400 10-Slot Modular Switch Chassis
• Cisco Catalyst 9400 Supervisor and Line Cards
• Power Supplies
• Cisco Catalyst 9400 High Availability Features
• Cisco Catalyst 9400 Architecture
• Cisco Catalyst 9400 Supervisor Uplinks and Uplink Redundancy
• Cisco Catalyst 9400 Power Redundancy Modes
• Cisco Catalyst 9400 Multigigabit Ports

Introducing Cisco Catalyst 9500 Series Switches ( Self-Study)

• Cisco Catalyst 9500 Product Overview
• Cisco Catalyst 9500-32C Series Switch
• Cisco Catalyst 9500-32QC Series Switch
• Cisco Catalyst 9500-48Y4C Series Switch
• Cisco Catalyst 9500-24Y4C Series Switch
• Cisco Catalyst 9500-24Q Series Switch
• Cisco Catalyst 9500-12Q Series Switch
• Cisco Catalyst 9500-40X Series Switch
• Cisco Catalyst 9500-16X Series Switch
• Cisco Catalyst 9500 Redundant Platinum Rated Power Supply
• Cisco Catalyst 9500 Modular Fans
• Cisco Catalyst 9500 Series Switch RFID
• Cisco Catalyst 9500-32C Series Architecture
• Cisco Catalyst 9500-32QC Series Architecture
• Cisco Catalyst 9500-48Y4C Series Architecture
• Cisco Catalyst 9500-24Y4C Series Architecture
• Cisco Catalyst 9500-24Q Series 40G Architecture
• Cisco Catalyst 9500-12Q Series 40G Architecture
• Cisco Catalyst 9500-40X Series10G Architecture
• Cisco Catalyst 9500-16X Series Architecture

Introducing Cisco Catalyst 9600 Series Switches ( Self-Study)

• Cisco Catalyst 9600 Product Overview
• Cisco Catalyst 9600 Series Switch Architecture
• Cisco Catalyst 9600 Supervisor and Line Cards
• Cisco Catalyst 9600 Power Supplies
• Cisco Catalyst 9600 High Availability Features

 Labs

• Configure and Troubleshoot Network Issues using WebGUI
• Application Hosting on Cisco Catalyst 9000 Series Switches Using the CLI
• Configure a Switch Stack Using Cisco Catalyst 9300 Series Switches
• Enable and Verify Switch-to-Switch MACSec
• Enable and Verify Encrypted Traffic Analytics
• Explore Switch Management Automation and Programmability
• Network Automation using Ansible Playbooks and Terraform Scripts on the Cisco IOS XE
• Configure Perpetual PoE and Fast PoE on a Cisco Catalyst 9000 Series Switch
• Configure Packet Capture on a Cisco Catalyst 9300 Series Switch
• Perform GIR on a Cisco Catalyst 9000 Series Switch
• Application Hosting on Cisco Catalyst 9300 Using Cisco DNA Center
• Integrate Cisco DNA Center and Cisco ISE
• Provision Underlay Networks with Cisco DNA Center LAN Automation

Course Overview

This Meraki SD-WAN training is targeted to engineers and technical personnel involved in deploying, implementing, operating and optimizing Meraki SD-WAN solution, both in enterprise and Service Provider environments. This training is specially designed for implementing Meraki SD-WAN in integration with the complete feature set of Cisco Umbrella including DNS Security, Cloud Based Firewall and Secure Internet Gateway. The course walks you through how each integration works and how to design and implement it step-by-step.

Course Content

Module 1: Introduction to Meraki SD-WAN and Meraki Key Concepts

• Meraki Centralized Dashboard
• Meraki key concepts
  • Meraki Concentrator Modes
  • VPN Topology
  • Split Tunnel and Full Tunnel
  • Hub and Spoke and VPN Mesh
• Meraki Connection Monitor
• Data Center Redundancy (DC-DC Failover)
• Warm Spare for VPN Concentrators
• Deployment Models:
  • Deploying vMX in the Public and Private Cloud

Module 2: Meraki SD-WAN Deployment Models

• Introduction
• Data Center Deployment
• MX Deployment Considerations
• MX Deployment Considerations
  • Upstream DC Switching Considerations
  • Routing Considerations
  • Firewall Considerations
• Branch Deployment
  • AutoVPN at the Branch
  • Hub and Spoke VPN Deployment
  • Hub Priorities and Design considerations
• Meraki Centralized Policies
  • DIA traffic steering using Smart Path
  • Implementing QoS from the dashboard
  • Configuring arbitrary topologies

Module 3: Meraki SD-WAN Security

• Exploring the SD-WAN and Security Dashboard
• Site-to-site VPN Deep Dive
• Client VPN Technologies
• Access control and Splash Page
• NAT and Port Forwarding
• Firewall and Traffic Shaping
• Content Filtering and Threat Protection
• Meraki and Cisco Umbrella Integration

Module 4: Designing and Implementing DNS Security

• Pre-requisite check before integrating Umbrella with Meraki SD-WAN
  • Making sure you have the correct licensing
  • Platform support check
  • Internet Connectivity check
• Walking through the Umbrella Dashboard
  • Dashboard Overview
  • DNS Policy GUI Overview
  • Firewall Policy GUI Overview
  • Web Policy GUI Overview
  • Umbrella AD/SAML Integration Overview (optional)
• Integrating Cisco Umbrella for DNS Security
  • Umbrella API Integration
• Configuring the DNS Encryption Policy
  • Excluding the local domains
  • Configuring the Security Policy in Meraki
  • Implementing the policy at the DIA Sites

Module 5: Meraki MX and Cisco Umbrella SIG IPSEC Tunnels

• Cisco Umbrella SIG Overview
• Phase 1: IPSEC plus Cloud Security
• Licensing requirement for Phase1
• Meraki MX IPSEC integration with Cisco Umbrella
• Enhanced DNS protection with Selective Proxy
• Security Policy: URL Inspection, HTTPS Inspection, Cloud Delivered Firewall, Granular Content Filtering, Non-Web Traffic Security
• Phase 2: SIG Integration with Meraki SD-WAN
• Verification
  • Checking the logs on Umbrella Dashboard

Module 6: Troubleshooting Umbrella Integration

• Troubleshooting DNS Security
  • API Integration not working
  • DNS for local domain failing
  • No redirection to Cisco Umbrella for external domains
• Troubleshooting SIG and Firewall
• Making sure the IPSec Tunnels to Umbrella are operational
• Troubleshooting the policies for redirection
• Reviewing logs in Umbrella
• Checking Alarms and Notifications
  • Checking Alarms on Meraki Dashboard
  • Checking Alarms on Cisco Umbrella
• Leveraging Meraki Insights for
  • Network Visibility
  • Traffic Analytics using DPI
  • Faster Resolution

Course Overview

In this workshop you will learn why we are implementing Assurance, what it looks like and key features. We will also discuss the Cisco DNA Center appliance and workflow and tasks associated with an implementation.

Virtual Learning

This interactive training can be taken from any location, your office or home and is delivered by a trainer. This training does not have any delegates in the class with the instructor, since all delegates are virtually connected. Virtual delegates do not travel to this course, Global Knowledge will send you all the information needed before the start of the course and you can test the logins

Course Content

Day 1:

Module 1: Introduction to Cisco DNA Center Assurance

• Introduction to DNA Center
• System Architecture
• Key Features and Use Cases
• Introduction to Cisco ISE and DNAC-ISE integration

Module 2: Design

• Network design options
• Sites
• Creating Enterprise and Sites Hierarchy
• Configuring General Network Settings
• Loading maps into the GUI
• IP Address Management
• Software Image Management – Lab on Day 5
• Network Device Profiles
• AAA
• SNMP
• Syslog
• IP address pools
• Creating Enterprise and Guest SSIDs – Lab on Day 2
  • Creating the wireless RF Profile
  • Cresting the Guest Portal for the Guest SSIDs
  • Network profiles – Lab on Day 2
  • Authentication templates

Module 3: Discovery and Provision

• Device Discovery and Protocols
• Devices Onboarding
  • Assigning Devices to a site
  • Provisioning device with profiles

Day 2:

Module 3: Discovery and Provision

• Plug and Play
• Templates
• Templates for Day-0
• Templates for Day-N operations

Day 3:

Module 4: Monitoring Device, Client, and Application Health

• DNAC Telemetry
• Monitoring Network Device Health and Performance
• Monitoring Wired and Wireless Client Health and Performance
• Monitoring Application Health and Performance

Module 5: Application Visibility and DNAC Integration with Umbrella

• Monitoring Application Visibility in DNA Center
• Umbrella Introduction
• DNA Center Umbrella Integration and Use Cases

Module 6: Troubleshooting Issues, Observing Insights and Trends

• Detect Issues, Insights, and Trends in the Network
• DNA Center Integration with other tools for Monitoring and Management

Day 4:

Module 7: Troubleshooting using Cisco DNA Center Assurance Tools

• DNAC Assurance Troubleshooting Tools
• Using Sensor Tests
• Using Intelligent Capture
• Spectrum Analysis

Module 8: DNAC and Thousand Eyes

• Introduction to ThousandEyes
• ThousandEyes Use Cases
• DNA Center and ThousandEyes Integration

Day 5:

Module 9: AI Analytics and Machine Learning in DNA Center

• Overview of AI Analytics and ML (Machine Learning)
• DNA Center AI and ML Use Cases

Module 10: DNA Center Maintenance

• DNA Center Reports
• DNA Center Backup and Restore

Lab Outline:

Labs are designed to assure learners a whole practical experience, through the following practical activities:

• Lab 1: Navigate the Cisco DNA Center GUI
• Lab 2: Integrate Cisco ISE with Cisco DNA Center –Instructor Demo
• Lab 3: Design the Network Hierarchy and Configure Network Settings
• Lab 4: Discover Wired Manually in the Inventory, Assign to Site, and Provision
• Lab 5: Discover Wired Device using Plug and Play(PnP) using Template Editor
• Lab 6: Discover and Provision C9800 WLC, Configure Wireless SSIDs and Network Profiles
• Lab 7: Configure C9800 WLC using Template Editor
• Lab 8: Configure Cisco DNA Center Assurance Telemetry Profiles and Apply to Devices
• Lab 9: Generate and Monitor Application Traffic on DNAC for Clients
• Lab 10 : Application Visibility and Generate Client Traffic to Monitor Top Applications on DNAC
• Lab 11: DNAC Umbrella Integration for DNS or SIG(Secure Internet Gateway)
• Lab 12: Assurance Dashboards – Health, Issues and Wi-Fi 6 on DNAC
• Lab 13: Intelligent Packet Capture and Spectrum Analysis
• Lab 14: 1800s AP as Sensor – Instructor Demo
• Lab 15: Application Visibility With ThousandEyes and DNAC
• Lab 16: AI Endpoint Analytics on DNAC
• Lab 17: Reporting on Cisco DNAC
• Lab 18: IOS-XE Device Upgrade / Downgrade using SWIM via DNAC
• Lab 19: DNAC Configuration Backup on External Server – Instructor Demo

Course Overview

The class is divided into four broad segments. Firstly the class reviews the concepts, principles and terminology behind the TCP/IP protocol. Secondly the class covers the implementation of TCP/IP under z/OS, the required parameters, its close relationship with VTAM/SNA and interaction with application subsystems. Thirdly the Operator Commands required for monitoring and controlling the Network environment will be discussed. The fourth and final segment covers the tools and procedures required for problem resolution.

Virtual Learning

This interactive training can be taken from any location, your office or home and is delivered by a trainer. This training does not have any delegates in the class with the instructor, since all delegates are virtually connected. Virtual delegates do not travel to this course, Global Knowledge will send you all the information needed before the start of the course and you can test the logins.

Course Objectives

This course provides students with a comprehensive grounding in the philosophy, capabilities, structure, commands and interactions of SNA and TCP/IP with other hardware and software components found and implemented within the z/OS environment.

Students will leave the class competent and confident to analyze, diagnose and resolve network problems encountered within that environment. This course contains hands-on labs.

Course Content

TCP/IP Concepts and Principles

• Background and evolution of the TCP/IP architecture
• TCP/IP over WANs and LANs
• ETHERNET
• MAC address
• Breaking down the IP address structure (including subnet masking) ?
• Special and reserved IP addresses
• Classful and Classless addresses
• Unicast, Multicast and Broadcast addresses
• Network numbering and Broadcast numbers
• Sockets – Internet Protocol
• Routing and default gateway

TCP/IP and VTAM/SNA Interatction Under z/OS

• VTAM/SNA Concepts
• Why we still use parts of VTAM/SNA in 21st century
• SNA/APPN and HPO
• Open System Adaptor (OSA)
• The IP stack under z/OS
• TCP/IP and VTAM/SNA interdependencies
• Telnet and Telnet 3270
• SNA traffic over IP
• Enterprise Extenders
• Required VTAMLST and IP PROFILE parameters
• The TCP/IP start-up procedure
• VTAM Startup – VTAM Parameters
• Interaction with application subsystems
• Describe the Syslog function in the UNIX environment and how to configure the /etc/syslog.conf file
• Modify the Translate Tables used for connection to hosts that use American Standard Code for Information Interchange (ASCII) character coding

Operating and Controlling TCP/IP and VTAM Under z/OS

• Use z/OS commands to control TCP/IP resources and debug simple network problems
• Use z/OS commands to control VTAM
• START Command
• STOP Command for each server with outstanding calls to TCP/IP
• STOP Command for each connected server that does not have outstanding calls
• DISPLAY Command ??? relevant options related to the TCP/IP address space
• MODIFY Command ??? relevant options related to the TCP/IP address space
• VARY Command ??? relevant options related to the TCP/IP address space
• TSO Command options
• UNIX Command options
• Activate and analyze trace data to identify the probable source of network problems

Tools and Procedures For Problem Resolution

• Type of problem, ABEND, hang or loop?
• VTAM, TCP/IP or other component ??? identify the root cause?
• Z/OS I/O problem?
• Shortage of z/OS Common Storage?
• Performance problem?
• Document the problem
• Problem analysis tools, procedures and techniques
• Develop reliable diagnostic techniques for solving SNA and TCP/IP problems
• Tools and methods for failure capture and discovery
• Operator commands for problem determination
• Common failures and faults: case studies
• Understanding logical connections between servers and clients
• Internal communication between TCP/IP tasks
• Activating and analyzing traces using z/OS system tools

Course Overview

This course gives network engineers an opportunity to plan for and implement networks utilizing HPE Comware devices. Participants will work HPE IRF, IMC, ACLs, QoS, OSPF, BGP, and Multicast technologies. This course covers basic and advanced topics; learner will experience both theory and hands on real hardware through lab exercises over five days. 

The learner will configure and monitor Comware devices using open standard technologies. You will work with Layer 2 technologies, such as Multiple Instance Spanning Tree (MSTP) and Link Aggregation (Trunks). You will also learn about Layer 3 technologies, such as static routes, Open Shortest Path First (OSPF) with Multi-Area implementations, and Border Gateway Protocol (BGP), along with Multicast solutions leveraging Protocol independent Multicast (PIM) both dense and spare modes. 

Course Objectives

At the conclusion of this course, you should be able to:

 • Protect devices with local and remote authentication using telnet, SSH, web, and SNMP access 

• Navigate the HPE Comware CLI and manage the flash file system 

• Uphttps://education.hpe.com/ww/en/training/docs/cds/h8d09s.pdfgrade the Comware switch operating system • Configure VLANs on HPE Comware switches 

• Configure a Comware switch for DHCP server and DHCP relay 

• Configure multiple spanning tree and apply STP security features • Differentiate between static and dynamic Link Aggregation 

• Configure and troubleshoot Link Aggregation on HPE switches 

• Implement and deploy HPE IRF with MAD technologies to protect your network

 • Configuring and managing HPE Comware devices with HPE IMC 

• Configure, design, and deploy Access Control Lists (ACLs)

 • Configure, design, and deploy Open Shortest Path First (OSPF), in multi-area, and work with external routes

 • Configure, design, and deploy Border Gateway Protocol (BGP) 

• Configure, design, and deploy Quality of Service (QoS)

• Configure, design, and deploy Multicast (Protocol Independent Multicast Dense Mode and Spare mode) along with IGMP technologies

Course Content

H8D09s

Course Overview

This Specialist-level course is targeted for storage/cloud infrastructure administrators requiring in depth knowledge and practical lab work with EMC VNX Unified Storage systems. This training covers all the key elements of VNX Block, File, and Unified deployments. It covers integrating VNX block access for open systems hosts (Linux, Windows and VMware ESXi) through FC, iSCSI and, FCoE, and VNX file level access for Windows and Linux user/application environments via NFS and CIFS. Lastly, the course also covers configuration of local replications solutions for VNX systems.

Course Objectives

Upon successful completion of this course, participants should be able to:

• Configuring Unisphere security and notifications
• Provision and manage VNX block-level storage
• Configure and manage VNX storage features such as LUN migration and expansion, FAST VP, FAST Cache, and deduplication
• Configure and manage VNX Block local replication solutions–SnapView, VNX  Snapshots, SnapSure
• Configure VNX File storage services for Linux/Unix/ESXi environments via NFS, and Windows environments via CIFS
• Manage and monitor file systems, Virtual Data Movers, and Usermapper
• Configure and manage VNX File local replication solutions with VNX SnapSure

Course Content

The content of this course are designed to support the course objectives.

Introduction to VNX Management

Unisphere Security and Basic Management

• Unisphere GUI and CLI Interface
• Unisphere Security Features
• Notifications and Event Monitoring
• Unisphere Storage Domains

Storage System Configuration

• SP Networking and Cache Settings

Host Integration to Block Storage

• Storage Networking Topologies and Requirements
• Storage Networking with Fibre Channel and iSCSI
• Host Registration and Storage Architecture
• Configure Storage

Managing Block Host Connectivity

• Data Path Management
• Managing Block Host Connectivity
• VNX and VMware API Integration

Advanced Storage Features

• LUN Migration and LUN Expansion
• FAST VP and FAST Cache
• Block Space Efficiency Features
• Data-At-Rest Encryption (D@RE)

Local Replication for Block

• SnapView Snapshots and SnapView Clones
• Managing VNX Snapshots

VNX File Configuration

• Introduction to VNX File
• Basic IP Networking Configuration for VNX File
• Virtual Data Movers
• Configuration of VNX File Systems – NFS and CIFS

VNX File Content and Space Efficiency Features

• File System Quotas
• File Level Retention and File Deduplication
• Thin LUN File System

Networking Features

• Networking Features Overview and Configuration
• Complex Examples and Considerations

VNX SnapSure

• Writable Checkpoints
• Configuring SnapSure
• Planning SnapSure and Managing Checkpoints

Data Mover Failover

• Data Mover Failover Operations
  Testing Data Mover Failover and Failback