CCNP - SWITCH - Implementing Cisco IP Switched Networks v1.0
Description
Implementing Cisco Switched Networks (SWITCH) v1.0
is a five-day instructor-led training course, designed to help students
prepare to plan, configure, and verify the implementation of complex
enterprise switching solutions for campus environments using the Cisco
Enterprise Campus Architecture. These skills are validated in the Cisco
CCNP® Routing and Switching certification, a professional-level
certification specializing in the routing and switching field. This
course is a component of the Cisco CCNP Routing and Switching
curriculum. This course is designed to give students a firm
understanding of how to manage switches in an enterprise campus
environment. This training class reinforces the instruction by
providing students with hands-on labs.
Objectives
Upon completing this course, the student will be able to meet these overall objectives:
Analyze campus network designs
Implement VLANs in a network campus
Implement spanning tree
Implement inter-VLAN routing in a campus network
Implement a highly available network
Implement high-availability technologies and techniques using multilayer switches in a campus environment
Implement security features in a switched network
Integrate WLANs into a campus network
Accommodate voice and video in campus networks
Prerequisites
The knowledge and skills that a learner must have before attending this course include the following:
Knowledge and experience equivalent to having attended the
Interconnecting Cisco Networking Devices Part 1 (ICND1) and
Interconnecting Cisco Networking Devices Part 2 (ICND2) courses. This
includes knowledge and experience of the following issues:
Network function, the functions of network components, the Open
Systems Interconnection (OSI) reference model, and the ability to
identify major network components
Use of the host-to-host packet delivery process to describe
issues related to increasing traffic on an Ethernet LAN and identifying
switched LAN technology solutions to Ethernet networking issues
The reasons for extending the reach of a LAN, and the methods
that can be used to extend this reach, with a focus on RF wireless
access
The reasons for connecting networks with routers, and how routed networks transmit data through the use of TCP/IP
The function of WANs and major WAN devices; configuration of
PPP encapsulation, static and dynamic routing, and Port Address
Translation (PAT) and Routing Information Protocol (RIP) routing
Use of the command-line interface (CLI) to discover neighbors on the network and manage router startup and configuration
How to configure and troubleshoot a small network
How to expand a small-sized, switched LAN to a medium-sized
LAN with multiple switches, supporting VLANs, trunking, and spanning
tree
Routing concepts as they apply to a medium-sized network and considerations when implementing routing on the network
Configuring, verifying, and troubleshooting Open Shortest Path First (OSPF)
Configuring, verifying, and troubleshooting Enhanced Interior Gateway Routing Protocol (EIGRP)
How to apply access control lists (ACLs) based on network
requirements, and configure, verify, and troubleshoot ACLs on a
medium-sized network
When to use Network Address Translation (NAT) or PAT on a
medium-sized network and configure NAT or PAT on routers, and knowledge
of IPv6 addressing and configuration IPv6 in a Cisco router
How to identify and implement the appropriate WAN technology based on network requirements
Who Should Attend
The primary audience for this course is as follows:
A network professional who will need to correctly implement
switch-based solutions given a network design using Cisco IOS services
and features. The typical job roles for this type of professional are
network engineers, network operations center (NOC) technical support
personnel, or help desk technicians.
The secondary audience for this course is as follows:
Any individual involved in network operations and support.
Course Outline
Module 1: Analyzing Campus Network Designs
Lesson 1: Enterprise Campus Architecture
Objectives:
Describe Cisco SONA
Evaluate the benefits of the enterprise campus architecture
Determine the function of the core layer
Evaluate the impact of traffic types on the network infrastructure
Lesson 2: Cisco Lifecycle Services and Network Implementation
Objectives:
Describe the PPDIOO life-cycle approach
Describe PPDIOO implementation planning
Lab 1-1: New Hire Test
Objectives:
Prepare basic configuration templates for your switches
Explore the remote lab device connections
Deploy configuration templates on your switches
Verify your configurations according to the verification plan you created
Lesson 3: Lab 1-1 Debrief
Objectives:
Review and verify your solution, as well as your findings and
action log, against a set of checkpoints provided by the instructor.
Consolidate the lessons learned during the review discussions
into a set of best practice methods and commands to aid you in future
deployment procedures.
Module 2: Implementing VLANs in Campus Networks
Lesson 1: Applying Best Practices for VLAN Topologies
Objectives:
Describe the different VLAN segmentation models
Given an enterprise VLAN network design, describe the
information needed to create an implementation plan, identify the
choices that need to be made, and analyze the consequences of those
choices
Given an enterprise VLAN network design that contains
end-to-end VLANs and trunks, create an implementation and verification
plan; then successfully execute that plan
Given an enterprise VLAN network design that contains VTP,
create an implementation and verification plan; then successfully
execute that plan
Lesson 2: Configuring Private VLANs
Objectives:
Describe PVLANs
Configure isolated PVLANs
Configure community PVLANs
Given an enterprise VLAN network design that contains PVLANs,
create an implementation and verification plan; then successfully
execute that plan
Configure PVLANs across multiple switches
Lesson 3: Configuring Link Aggregation with EtherChannel
Objectives:
Understand the benefits of EtherChannel
Compare the PAgP and the LACP
Given an enterprise VLAN network design that contains Layer 2
EtherChannel links, create an implementation and verification plan;
then successfully execute that plan
Given an enterprise VLAN network design that contains load
balancing among the ports included in an EtherChannel, create an
implementation and verification plan; then successfully execute that
plan
Lab 2-1: Design and Implement VLANs, Trunks, and EtherChannel
Objectives:
Plan a segmented Layer 2 network implementation
Create a Layer 2 implementation and verification plan
Implement a full Layer 2 solution including VLANs, trunks, pruning, VTP, and EtherChannel
Lesson 4: Lab 2-1 Debrief
Objectives:
Discuss lab results
Lab 2-2: Troubleshoot Common VLAN Configuration and Security Issues
Objectives:
Diagnose and resolve Layer 2 connectivity problems
Diagnose and resolve VLAN and EtherChannel-related problems
Document troubleshooting progress, configuration changes, and problem resolution
Lesson 5: Lab 2-2 Debrief
Objectives:
Discuss lab results
Lab 2-3: Configure Private VLANs
Objectives:
Plan a segmented private VLAN implementation
Create a private VLAN implementation and verification plan
Implement private VLANs
Lesson 6: Lab 2-3 Debrief
Objectives:
Discuss lab results
Module 3: Implementing Spanning Tree
Lesson 1: Spanning Tree Protocol Enhancements
Objectives:
Describe the various STP standards
Describe STP operations
Implement and configure PVRST+
Understand RSTP port roles
Verify RSTP configurations
Describe MSTP
Implement and configure MSTP
Lesson 2: Describing STP Stability Mechanisms
Objectives:
Protect the operation of STP
Configure BPDUGuard
Configure BPDUFilter
Configure RootGuard
Configure LoopGuard
Configure UDLD to detect and shut down unidirectional links
Optimize STP operations by using the right combination of STP stability features
Lab 3-1: Implement Multiple Spanning Tree
Objectives:
Design a spanning tree
Create a spanning tree implementation plan
Implement a spanning tree according to an implementation plan.
Create a spanning tree verification plan
Verify the spanning tree according to the verification plan
Lesson 3: Lab 3-1 Debrief
Objectives:
Discuss lab results
Lab 3-2: Implement PVSRT+
Objectives:
Design a migration plan to PVRST+
Create a PVRST+ implementation plan
Implement PVRST+ according to implementation plan
Create a PVRST+ verification plan
Verify the PVRST+ spanning tree according to the verification plan
Lesson 4: Lab 3-2 Debrief
Objectives:
Discuss lab results
Lab 3-3: Troubleshoot Spanning Tree Issues
Objectives:
Develop a work plan to troubleshoot configuration and security issues in the STP
Isolate the causes of the problems
Correct all of the identified spanning tree issues
Document and report the troubleshooting findings and recommendations
Lesson 5: Lab 3-2 Debrief
Objectives:
Discuss lab results
Module 4: Implementing Inter-VLAN Routing
Lesson 1: Describing Routing Between VLANs
Objectives:
Configure both a switch and router to accommodate inter-VLAN packet transfer using an external router
Describe a Layer 3 SVI
Understand commands that are used to configure an SVI
Describe a routed port on a multilayer switch
Understand commands that are used to configure a routed port on a multilayer switch
Configure Layer 3 EtherChannel links
Configure inter-VLAN routing on a multilayer switch
Configure DHCP services on a Layer 3 switch
Lesson 2: Deploying Multilayer Switching with Cisco Express Forwarding
Objectives:
Understand the process of multilayer switching, and how it differs when you are performing Layer 2 versus Layer 3 switching
Understand the packet and frame header rewriting that is performed by a multilayer switch
Explain Layer 3 switch processing
Describe the various switching methods that are available on a Cisco switch
Describe and configure Cisco Express Forwarding on a Cisco switch
Lab 4-1: Implement Inter-VLAN Routing
Objectives:
Design a Layer 3 network
Create an implementation requirements list
Create a step-by-step implementation and verification plan
Implement and verify inter-VLAN routing and routing protocols
Lesson 3: Lab 4-1 Debrief
Objectives:
Discuss lab results
Lab 4-2 Troubleshoot Inter-VLAN Routing
Objectives:
Develop a work plan to troubleshoot configuration and inter-VLAN routing issues
Isolate the causes of the problems
Correct all of the identified routing issues
Test the corrections made
Document and report the troubleshooting findings and recommendations
Lesson 4: Lab 4-2 Debrief
Objectives:
Discuss lab results
Module 5: Implementing a Highly Available Network
Lesson 1: Understanding High Availability
Objectives:
Evaluate the uses, requirements, benefits, and performance
expectations of high availability in a given enterprise network design
Describe resiliency for high availability
Design the network for optimal redundancy
Lesson 2: Implementing High Availability
Objectives:
Implement high availability at the switch levelUse Cisco StackWise technology on access switches
Evaluate the impact of too little redundancy
Assess the impact of uplink failure
Lesson 3: Implementing Network Monitoring
Objectives:
Implement network monitoringConfigure IP SLA technology
Lab 5-1: Implement High Availability in a Network Design
Objectives:
Design a high availability solution consisting of a syslog, SNMP reporting, and an IP SLA solution
Create an implementation requirements list
Create a step-by-step implementation and verification plan
Implement and verify your solution
Lesson 4: Lab 5-1 Debrief
Objectives:
Discuss lab results
Module 6: Implementing Layer 3 High Availability
Lesson 1: Configuring Layer 3 Redundancy with HSRP
Objectives:
Describe routing issuesIdentify the router redundancy process
Configure HSRP operations
Describe and fine-tune HSRP Troubleshoot HSRP
Lesson 2: Configuring Layer 3 Redundancy with VRRP and GLBP
Objectives:
Describe VRRPIdentify the VRRP operations process
Configure VRRP
Describe GLBP
Identify the GLBP operations process
Configure GLBP
Lab 6-1: Implement and Tune HSRP
Objectives:
Design an HSRP solution
Create an implementation requirements list
Create a step-by-step implementation and verification plan
Implement and verify your solution
Lesson 3: Lab 6-1 Debrief
Objectives:
Discuss lab results
Lab 6-2: Implement VRRP
Objectives:
Design a VRRP solution
Create an implementation requirements list
Create a step-by-step implementation and verification plan
Implement and verify your solution
Lesson 4: Lab 6-2 Debrief
Objectives:
Discuss lab results
Module 7: Minimizing Service Loss and Data Theft in a Campus Network
Lesson 1: Understanding Switch Security Issues
Objectives:
Describe switch and Layer 2 security as a subset of an overall network security plan
Describe how a rogue device gains unauthorized access to a network
Categorize switch attack types and list mitigation options
Describe how a MAC flooding attack works to overflow a CAM Campus Backbone Layer table
Describe how port security is used to block input from devices based on Layer 2 restrictions
Describe the procedure for configuring port security on a switch
Describe the methods that can be used for authentication using AAA
Describe port-based authentication using 802.1X
Lesson 2: Protecting Against VLAN Attacks
Objectives:
Describe how VLAN hopping occurs and why it is a security vulnerability
Explain the procedure for configuring a switch to mitigate VLAN hopping attacks
Describe VACLs and their purpose as part of VLAN security
Explain the procedure for configuring VACLs
Lesson 3: Protecting Against Spoofing Attacks
Objectives:
Identify DHCP spoofing attacks
Prevent attacks using DHCP snooping
Configure DHCP snooping
Describe ARP poisoning
Protect against ARP spoofing attacks with DAI
Lesson 4: Securing Network Services
Objectives:
Identify Cisco Discovery Protocol and LLDP vulnerabilities
Identify Telnet protocol vulnerabilities
Configure SSH
Configure vty ACLs
Configure Cisco IOS secure HTTP server
Understand switch security considerations
Lab 7-1: Secure Network Switches to Mitigate Security Attacks
Objectives:
Perform a baseline assessment of network switch security settings
Identify possible threats, points of attack, and vulnerability points in the network
Write an implementation plan to implement security measures on network switches
Write a plan to test and verify security threat mitigation measures for VLANs
Configure port security and other switch security features
Configure a VACL
Verify the correct implementation of security measures
Document the switch and VLAN security plan, settings, operations, and maintenance
Lesson 5: Lab 7-1 Debrief
Objectives
Discuss lab results
Module 8: Accommodating Voice and Video in Campus Networks
Lesson 1: Planning for Support of Voice in a Campus Network
Objectives:
Discuss the components of a VoIP network and the components of IP telephony
Compare the uniform bandwidth consumption of voice traffic to the intermittent bandwidth consumption of data traffic
Compare video bandwidth consumption to voice and data bandwidth consumption based on video application types
Identify a solution for latency, jitter, bandwidth, packet
loss, reliability, and security for voice and video traffic integration
into a data network
Lesson 2: Integrating and Verifying VoIP in a Campus Infrastructure
Objectives:
Plan for VoIP requirements
Describe Voice VLANs
Configure and Verify Voice VLANs
Plan PoE requirements and configure PoE
Provide additional services required by VoIP devices
Create a Test Plan for VoIP integration
Lesson 3: Working with Specialists to Accommodate Voice and Video on Campus Switches
Objectives:
Describe high availability applied to VoIP or video traffic
Build an integrated voice/video/data campus network
Explain the need for QoS for VoIP and video integration
Configure basic QoS for voice and video VLANs
Lab 8-1: Plan Implementation and Verification of VoIP in a Campus Network
Objectives:
Gather information regarding the implementation of VoIP
Prepare an implementation requirements list for VoIP readiness
Prepare an implementation and verification plan
Implement and verify the VoIP readiness plan
Lesson 4: Lab 8-1 Debrief
Objectives:
Discuss lab results
Module 9: Integrating Wireless LANs into a Campus Network
Lesson 1: Comparing WLANs with Campus Networks
Objectives:
Describe WLANs
Compare wired and wireless LAN
Describe main wireless LAN topologies
Describe the settings specific to WLANs, such as SSIDs, and WLAN-to-VLAN mapping
Lesson 2: Assessing the Impact of WLANs on Campus Networks
Objectives:
Describe WLAN implementations
Compare WLAN solutions
Assess traffic flow in an autonomous AP configuration and its impact on the campus LAN
Assess traffic flow in an controller-based configuration and its impact on the campus LAN
Lesson 3: Preparing the Campus Infrastructure for WLANs
Objectives:
Decide on the best placement for APs and controllers
Configure switches for WLAN devices
Gather WLAN requirements
Plan WLAN integration
Create a test plan
Lab 9-1: Integrate Wireless in the Campus
Ojectives:
Identify the requirements for implementing wireless structure in a network
Prepare an implementation plan for wireless integration
Prepare the switched network for integration of wireless equipment
Verify that the switched network was properly provisioned
