SDAINT: Introduction to SD-Access and DNA Center

The two-day Introduction to SD-Access and DNA Center (SDAINT) course gives the learner a solid overview of Cisco’s latest features to automate common administrative tasks on security focused programmable network infrastructures. This course explains the concepts of a “Network Fabric” and the different node types that form it (Fabric Edge Nodes, Control Plane Nodes, Border Nodes). It describes the roles of LISP in the Control Plane and VXLAN in the Data Plane for SD-Access Solutions and how DNA Center uses them to automate security and network access.

DNA Center and SD-Access offer Cisco’s next-generation programmable digital network to help automate common network access security features and streamline the redundant, complex configuration required to allow different groups of users access to the network infrastructure. It allows network administrators to quickly allow differentiated access for end users on the network while allowing the network to react automatically to day zero and other types of attacks.

Upcoming Dates

Apply
Class Date Class Hours Location GTR Price  

What's Included

  • Official Cisco courseware
  • Remote lab access

Prerequisites

  • Knowledge level equivalent to CCNA
  • Basic knowledge of Software Defined Networks
  • Basic knowledge and experience with Cisco IOS, IOS XE and CLI

Course Objectives

After completing this course, you should be able to:

  • Know and understand Cisco’s SD-Access concepts, features, benefits, terminology and the way this approach innovates common administrative tasks on today’s networks.
  • Differentiate and explain each of the building blocks of SD-Access Solution
  • Explain the concept of “Fabric” and the different node types that conform it (Fabric Edge Nodes, Control Plane Nodes, Border Nodes)
  • Describe the role of LISP in Control Plane and VXLAN in Data Plane for SD-Access Solution
  • Understand the role of DNA Center as solution orchestrator and Intelligent GUI
  • Be familiar with workflow approach in DNA Center and its 4 Steps: Design, Policy, Provision and Assurance

Course Outline

Module 1: Introduction to Cisco’s Software Defined Access (SD-Access)

  • Lesson 1: SD-Access Overview
  • Lesson 2: SD-Access Benefits
  • Lesson 3: SD-Access Key Concepts
  • Lesson 4: SD-Access Main Components
    • Campus Fabric
      • Wired
      • Wireless
    • Nodes
      • Edge
      • Border
      • Control Plane
    • DNA Controller
    • ISE (Policy)
    • NDP (Analytics and Assurance)

Module 2: SD-Access Campus Fabric

  • Lesson 1: The concept of Fabric
  • Lesson 2: Node types
  • Lesson 3: Fabric Edge Nodes
  • Lesson 4: Control Plane Nodes
  • Lesson 5: Border Nodes
  • Lesson 6: LISP as protocol for Control Plane
  • Lesson 7: VXLAN as protocol for Data Plane
  • Lesson 8: Concept of Virtual Network
  • Lesson 9: Fabric-enabled WLAN
    • Fabric Enabled WLC
    • Fabric Enabled AP’s

Module 3: DNA Center and Workflow for SD-Access

  • Lesson 1: Introduction to DNA Center
  • Lesson 2: Workflow for SD-Access in DNA Center
    • Design Step overview
    • Policy Step overview
    • Provision Step overview
    • Assurance Step overview
  • Lesson 3: Integration with Cisco ISE for Policy Enforcement
  • Lesson 4: Integration with Cisco NDP for Analytics and Assurance
  • Lesson 5: Relationship with APIC-EM controller

Module 4: DNA Center Workflow First Step - Design

  • Lesson 1: Creating Enterprise and Sites Hierarchy
  • Lesson 2: Discuss and Demonstrate General Network Settings
  • Lesson 3: Loading maps into the GUI
  • Lesson 4: IP Address Administration
  • Lesson 5: Administering Software Images
  • Lesson 6: Network Device Profiles

Module 5: DNA Center Workflow Second Step - Policy

  • Lesson 1: 2-level Hierarchy
    • Macro Level: Virtual Network (VN)
    • Micro Level: Scalable Group (SG)
  • Lesson 2: Policy Types
    • Access Policy
    • Access Control Policy
    • Traffic Copy Policy
  • Lesson 3: ISE Integration with DNA Center
  • Lesson 4: Cross Domain Policies

Module 6: DNA Center Workflow Third Step - Provision

  • Lesson 1: Devices Onboarding
    • Discovering Devices
    • Assigning Devices to a site
    • Provisioning device with profiles
  • Lesson 2: Fabric Domains
    • Understanding Fabric Domains
    • Using Default LAN Fabric Domain
    • Creating Additional Fabric Domains
  • Lesson 3: Adding Nodes
    • Adding Fabric Edge Nodes
    • Adding Control Plane Nodes
    • Adding Border Nodes

Module 7: DNA Center Workflow Fourth Step – Assurance

  • Lesson 1: Introduction to Analytics
  • Lesson 2: NDP Fundamentals
  • Lesson 3: Overview of DNA Assurance
  • Lesson 4: Components of DNA Assurance
  • Lesson 5: DNA Center Assurance Dashboard

Module 8: Implementing WLAN in SD-Access Solution

  • Lesson 1: WLAN Integration Strategies in SD-Access Fabric
    • CUWN Wireless Over The Top (OTT)
    • SD-Access Wireless (Fabric enabled WLC and AP)
  • Lesson 2: SD-Access Wireless Architecture
    • Control Plane: LISP and WLC
    • Data Plane: VXLAN
    • Policy Plane and Segmentation: VN and SGT
  • Lesson 3: Sample Design for SD-Access Wireless

Module 9: Campus Fabric External Connectivity for SD-Access

  • Lesson 1: Enterprise Sample Topology for SD-Access
  • Lesson 2: Role of Border Nodes
  • Lesson 3: Types of Border Nodes
    • Border
    • Default Border
  • Lesson 4: Single Border vs. Multiple Border Designs
  • Lesson 5: Collocated Border and Control Plane Nodes
  • Lesson 6: Distributed (separated) Border and Control Plane Nodes

Labs

  • Lab 1: Connecting and getting familiar with DNA Center GUI
  • Lab 2: Performing SD-Access Design Step in DNA Center
  • Lab 3: Performing SD-Access Policy Step in DNA Center
  • Lab 4: Performing SD-Access Provision Step in DNA Center
  • Lab 5: Performing SD-Access Assurance Step in DNA Center
  • Lab 6: Integrating WLAN services through SD-Wireless architecture (optional)
  • Lab 7: Achieving External Connectivity to remote locations through Border Node