CCNP And CCIE Enterprise Core ENCOR 350-401 Exam Cram PDF Free Download

1y ago

23 Views

1 Downloads

2.33 MB

125 Pages

Report/dmca

Download PDF

Transcription

CCNP and CCIEEnterprise Core ENCOR 350-401Special OffersENHANCE YOUR EXAM PREPARATIONSave 70% on Complete Video CourseThe CCNP and CCIE Enterprise Core ENCOR 350-401 Complete Video Course,Complete Video Course, available for both streaming and download, providesyou with hours of expert-level instruction mapped directly to exam objectives.Put your knowledge to the test with full practice exams powered by the PearsonTest Prep practice test software, module quizzes, and more.Save 80% on Premium Edition eBook andPractice TestThe CCNP and CCIE Enterprise Core ENCOR 350-401 Exam Cram PremiumEdition eBook and Practice Test provides three eBook files (PDF, EPUB, andMOBI/Kindle) to read on your preferred device and an enhanced edition of thePearson Test Prep practice test software. You will also receive two additionalpractice exams with links for every question mapped to the PDF eBook.Pearson Test Prep online system requirements:Browsers: Browsers: Chrome version 73 and above, Safari version 12 and above, MicrosoftEdge 44 and above.Devices: Desktop and laptop computers, tablets running Android v8.0 and above or iPadOSv13 and above, smartphones running Android v8.0 and above or iOS v13 and above with aminimum screen size of 4.7". Internet access required.Pearson Test Prep offline system requirements:Windows 10, Windows 8.1; Microsoft .NET Framework 4.5 Client; Pentium-class 1 GHz processor(or equivalent); 512 MB RAM; 650 MB disk space plus 50 MB for each downloaded practice exam;access to the Internet to register and download exam databasesSee card insert in the back of the bookfor your Pearson Test Prep activation code and special offers.

CCNP and CCIEEnterprise CoreENCOR 350-401Exam CramDonald BachaA01 Bacha FM pi-pxxxviii.indd 105/02/22 9:55 AM

CCNP and CCIE Enterprise Core ENCOR 350-401 Exam CramCopyright 2022 by Pearson Education, Inc.All rights reserved. This publication is protected by copyright, and permission must be obtained from the publisher prior to any prohibited reproduction, storage in a retrieval system, or transmission in any form or by anymeans, electronic, mechanical, photocopying, recording, or likewise. Forinformation regarding permissions, request forms, and the appropriatecontacts within the Pearson Education Global Rights & PermissionsDepartment, please visit www.pearson.com/permissions.No patent liability is assumed with respect to the use of the information contained herein. Although every precaution has been taken in the preparationof this book, the publisher and author assume no responsibility for errors oromissions. Nor is any liability assumed for damages resulting from the use ofthe information contained herein.ISBN-13: 978-0-13-689193-2ISBN-10: 0-13-689193-4Library of Congress Control Number: 2021924388ScoutAutomatedPrintCodeTrademarksAll terms mentioned in this book that are known to be trademarks or servicemarks have been appropriately capitalized. Pearson IT Certification cannotattest to the accuracy of this information. Use of a term in this book shouldnot be regarded as affecting the validity of any trademark or service mark.Warning and DisclaimerEvery effort has been made to make this book as complete and as accurateas possible, but no warranty or fitness is implied. The information providedis on an “as is” basis. The author and the publisher shall have neither liabilitynor responsibility to any person or entity with respect to any loss or damages arising from the information contained in this book.Special SalesFor information about buying this title in bulk quantities, or for special salesopportunities (which may include electronic versions; custom cover designs;and content particular to your business, training goals, marketing focus,or branding interests), please contact our corporate sales department atcorpsales@pearsoned.com or (800) 382-3419.For government sales inquiries, please contactgovernmentsales@pearsoned.com.For questions about sales outside the U.S., please contactintlcs@pearson.com.A01 Bacha FM pi-pxxxviii.indd 2Editor-in-ChiefMark TaubDirector,ITP ProductManagementBrett BartowExecutiveAcquisitionsEditorJames ManlyDevelopmentEditorEllie BruManaging EditorSandra SchroederProject EditorMandie FrankCopy EditorKitty WilsonIndexerErika MillenProofreaderGill EditorialServicesTechnical EditorRaymond LacostePublishingCoordinatorCindy TeetersDesignerChuti PrasertsithCompositorcodeMantra05/02/22 9:55 AM

Pearson’s Commitment to Diversity, Equity,and InclusionPearson is dedicated to creating bias-free content that reflects the diversity ofall learners. We embrace the many dimensions of diversity, including but notlimited to race, ethnicity, gender, socioeconomic status, ability, age, sexual orientation, and religious or political beliefs.Education is a powerful force for equity and change in our world. It has thepotential to deliver opportunities that improve lives and enable economicmobility. As we work with authors to create content for every product and service, we acknowledge our responsibility to demonstrate inclusivity and incorporate diverse scholarship so that everyone can achieve their potential throughlearning. As the world’s leading learning company, we have a duty to help drivechange and live up to our purpose to help more people create a better life forthemselves and to create a better world.Our ambition is to purposefully contribute to a world where Everyone has an equitable and lifelong opportunity to succeed throughlearning Our educational products and services are inclusive and represent the richdiversity of learners Our educational content accurately reflects the histories and experiencesof the learners we serve Our educational content prompts deeper discussions with learners andmotivates them to expand their own learning (and worldview)While we work hard to present unbiased content, we want to hear from youabout any concerns or needs with this Pearson product so that we caninvestigate and address them.Please contact us with concerns about any potential bias athttps://www.pearson.com/report-bias.html.A01 Bacha FM pi-pxxxviii.indd 305/02/22 9:55 AM

Figure CreditFigure 5-1; Figure 5-2Courtesy of Cisco Systems, Inc.Figure 5-3; Figure 5-4Figure 5-5Figure 5-6 Screenshot of Monitor Section for a CiscoWLC Cisco Systems, IncFigure 5-7Courtesy of Cisco Systems, Inc.Figure 9-1; Figure 9-2;Courtesy of Cisco Systems, Inc.Figure 9-3; Figure 9-4;Figure 9-5; Figure 9-6;Figure 9-7; Figure 9-8;Figure 9-9; Figure 9-10;Figure 9-11; Figure 9-12;Figure 9-13Figure 15-2; Figure 15-3;Courtesy of Cisco Systems, Inc.Figure 15-4Figure 20-6Courtesy of Cisco Systems, Inc.Figure 22-3 Screenshot of The Cisco vManage MainDashboard Cisco Systems, IncFigure 23-1 Screenshot of Cisco DNA Center CiscoSystems, IncFigure 24-2 Screenshot of Cisco WLC QoS profiles Cisco Systems, IncFigure 26-2; Figure 26-3 2022 VMware, IncFigure 26-5a; Figure 26-5bCourtesy of Cisco Systems, Inc.Figure 26-5cFigure 31-2; Figure 31-3;Courtesy of Cisco Systems, Inc.Figure 31-4A01 Bacha FM pi-pxxxviii.indd 405/02/22 9:55 AM

Contents at a GlanceIntroductionxxiiiPart I: InfrastructureCHAPTER 1Understanding Layer 21CHAPTER 2Understanding Layer 3: IGPs59CHAPTER 3Understanding Layer 3: BGP103CHAPTER 4IP Services123CHAPTER 5Enterprise Wireless167Part II: SecurityCHAPTER 6Device Access Control193CHAPTER 7Infrastructure Security219CHAPTER 8Securing REST APIs239CHAPTER 9Wireless Security247CHAPTER 10Network Security Design265CHAPTER 11Network Access Control287Part III: AutomationCHAPTER 12Anatomy of Python299CHAPTER 13Building JSON Files315CHAPTER 14YANG Data Modeling325CHAPTER 15DNA Center and vManage APIs333CHAPTER 16Interpreting REST API Codes345CHAPTER 17EEM Applets351CHAPTER 18Configuration Management and Orchestration363Part IV: ArchitectureCHAPTER 19Enterprise Network Design Principles379CHAPTER 20Wireless LAN Deployments409CHAPTER 21On-Premises vs. Cloud Infrastructure433CHAPTER 22SD-WAN451A01 Bacha FM pi-pxxxviii.indd 505/02/22 9:55 AM

viCCNP and CCIE Enterprise Core ENCOR 350-401 Exam CramCHAPTER 23SD-Access467CHAPTER 24QoS487CHAPTER 25Switching505Part V: VirtualizationCHAPTER 26Basic Virtualization525CHAPTER 27VRF Instances, GRE, and IPsec545CHAPTER 28Extending the Network Virtually573Part VI: Network AssuranceCHAPTER 29Troubleshooting587CHAPTER 30Monitoring613CHAPTER 31IP SLA and DNA Center641CHAPTER 32NETCONF and RESTCONF661GlossaryIndexA01 Bacha FM pi-pxxxviii.indd 667369505/02/22 9:55 AM

Table of ContentsIntroduction. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxiiiPart I: InfrastructureCHAPTER 1Understanding Layer 2. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1VLANs Overview. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .VLAN Assignment. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .802.1Q Trunking. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .Dynamic Trunking Protocol (DTP). . . . . . . . . . . . . . . . . .VLAN Trunking Protocol (VTP). . . . . . . . . . . . . . . . . . . .Inter-VLAN Routing. . . . . . . . . . . . . . . . . . . . . . . . . . . .Spanning Tree Protocol Overview. . . . . . . . . . . . . . . . . . . . . . .Root Bridge, Root Port, and Designated Port Elections. . . .Rapid Spanning Tree Protocol (RSTP). . . . . . . . . . . . . . . .Spanning Tree Protocol Tuning and Protection Mechanisms.Switch Priorities Overview. . . . . . . . . . . . . . . . . . . . . . . .Multiple Spanning Tree Protocol (MST). . . . . . . . . . . . . . .EtherChannels. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .Review Questions. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .Answers to Review Questions. . . . . . . . . . . . . . . . . . . . . .Further Reading. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3. 4. 7. 9. . . . 11. . . . 16. . . . 19. . . . 20. . . . 25. . . . 28. . . . 28. . . . 40. . . . 47. . . . 57. . . . 58. . . . 58. . . . 58CHAPTER 2Understanding Layer 3: IGPs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59IP Routing Essentials. . . . . . . . . . . . . . . . . . . . . . . . .Routing Algorithms. . . . . . . . . . . . . . . . . . . . . .Path Selection. . . . . . . . . . . . . . . . . . . . . . . . . .Static Routing. . . . . . . . . . . . . . . . . . . . . . . . . .Enhanced Interior Gateway Routing Protocol (EIGRP).Neighbor Table. . . . . . . . . . . . . . . . . . . . . . . . .Topology Table. . . . . . . . . . . . . . . . . . . . . . . . .Routing Tables. . . . . . . . . . . . . . . . . . . . . . . . .EIGRP Authentication. . . . . . . . . . . . . . . . . . . .EIGRP Named Mode. . . . . . . . . . . . . . . . . . . . .Route Summarization. . . . . . . . . . . . . . . . . . . . .A01 Bacha FM pi-pxxxviii.indd 7.606162656870727576767805/02/22 9:55 AM

viiiCCNP and CCIE Enterprise Core ENCOR 350-401 Exam CramOpen Shortest Path First (OSPF). . . . . .OSPF Cost. . . . . . . . . . . . . . . . .OSPF Authentication. . . . . . . . . .OSPF Areas. . . . . . . . . . . . . . . .Neighbors and Adjacencies. . . . . .OSPF Packet Types. . . . . . . . . . .Basic OSPF Configuration. . . . . .Router ID (RID). . . . . . . . . . . . .Passive Interfaces. . . . . . . . . . . . .Default Route Advertisements. . . .OSPF Optimizations. . . . . . . . . .Link-State Advertisements (LSAs).OSPF Path Selection. . . . . . . . . .Route Summarization. . . . . . . . . .OSPFv3. . . . . . . . . . . . . . . . . . .Review Questions. . . . . . . . . . . . . . . . .Answers to Review Questions. . . .Further Reading. . . . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . . . .808182838587879191919292939595100101101101CHAPTER 3Understanding Layer 3: BGP. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 103BGP Fundamentals. . . . . . . . . . . . .BGP Configuration and Verification. .Review Questions. . . . . . . . . . . . . . .Answers to Review Questions. .Further Reading. . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . .104112120120121121CHAPTER 4IP Services. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 123Network Time Protocol (NTP). . . . . . . . . . . . . . .Network Address Translation (NAT). . . . . . . . . . . .Static NAT. . . . . . . . . . . . . . . . . . . . . . . . .Dynamic NAT. . . . . . . . . . . . . . . . . . . . . . .Port Address Translation (PAT). . . . . . . . . . .First-Hop Redundancy Protocols (FHRPs). . . . . . .Virtual Router Redundancy Protocol (VRRP).Gateway Load Balancing Protocol (GLBP). . .Object Tracking with FHRPs. . . . . . . . . . . .A01 Bacha FM pi-pxxxviii.indd 8.12413413613713814314715015405/02/22 9:55 AM

ixContentsMulticast. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .Multicast Fundamentals. . . . . . . . . . . . . . . . .Multicast Group Addressing. . . . . . . . . . . . . .Internet Group Management Protocol (IGMP).Protocol Independent Multicast (PIM). . . . . . .Review Questions. . . . . . . . . . . . . . . . . . . . . . . . . .Answers to Review Questions. . . . . . . . . . . . .Further Reading. . . . . . . . . . . . . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . . . . . . . . . . . . .156156157157161165165166166CHAPTER 5Enterprise Wireless. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 167Wireless Basics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .Radio Frequency (RF). . . . . . . . . . . . . . . . . . . . .Free Space Path Loss. . . . . . . . . . . . . . . . . . . . . .Received Signal Strength Indicator (RSSI). . . . . . .Signal-to-Noise Ratio (SNR). . . . . . . . . . . . . . . . .IEEE Wireless Standards. . . . . . . . . . . . . . . . . . .Multiple Radios. . . . . . . . . . . . . . . . . . . . . . . . . .WLC and AP Operation and Pairing. . . . . . . . . . . . . . .AP and WLC Interaction. . . . . . . . . . . . . . . . . . .Wireless Roaming. . . . . . . . . . . . . . . . . . . . . . . . . . . .Troubleshooting WLAN Configuration and ClientConnectivity Issues. . . . . . . . . . . . . . . . . . . . . .Review Questions. . . . . . . . . . . . . . . . . . . . . . . . . . . . .Answers to Review Questions. . . . . . . . . . . . . . . .Further Reading. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . t II: SecurityCHAPTER 6Device Access Control. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 193Cisco IOS CLI Session Overview. . . . . . . . . . . . . . . . . . . . . . .Protection of Access to Cisco IOS EXEC Modes. . . . . . . .Secured Access with SSH. . . . . . . . . . . . . . . . . . . . . . . .Privilege Levels and Role-Based Access Control (RBAC). .Authentication, Authorization, and Accounting (AAA) Overview. .TACACS Overview. . . . . . . . . . . . . . . . . . . . . . . . . . .RADIUS Overview. . . . . . . . . . . . . . . . . . . . . . . . . . . .AAA Configuration for Network Devices. . . . . . . . . . . . .A01 Bacha FM pi-pxxxviii.indd 9.19419720320621021121121205/02/22 9:55 AM

xCCNP and CCIE Enterprise Core ENCOR 350-401 Exam CramReview Questions. . . . . . . . . . . . . .Answers to Review Questions.Further Reading. . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . .217217218218CHAPTER 7Infrastructure Security. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 219Access Control Lists (ACLs) Overview. . . . . . . . . . . .Types of ACLs. . . . . . . . . . . . . . . . . . . . . . . . .Port ACLs (PACLs) and VLAN ACLs (VACLs). .Control Plane Policing (CoPP). . . . . . . . . . . . . . . . .Review Questions. . . . . . . . . . . . . . . . . . . . . . . . . . .Answers to Review Questions. . . . . . . . . . . . . .Further Reading. . . . . . . . . . . . . . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .220224229233236236237237CHAPTER 8Securing REST APIs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 239REST API Security. . . . . . . . . . . .Review Questions. . . . . . . . . . . . . .Answers to Review Questions.Further Reading. . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . .240245245245245CHAPTER 9Wireless Security. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 247Wireless Authentication Overview. . . . . . . . . . . . . . . . . . . . .Open Authentication. . . . . . . . . . . . . . . . . . . . . . . . . .Pre-Shared Key (PSK) Authentication. . . . . . . . . . . . . .Extensible Authentication Protocol (EAP) Authentication.WebAuth. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .Review Questions. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .Answers to Review Questions. . . . . . . . . . . . . . . . . . . .Further Reading. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .248249251254257262262262263CHAPTER 10Network Security Design. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 265Threat Defense. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 266Network Security Components. . . . . . . . . . . . . . . . . . . . . . . . . 270A01 Bacha FM pi-pxxxviii.indd 1005/02/22 9:55 AM

xiContentsTrustSec, MACsec. . . . . . . . . . . . .TrustSec. . . . . . . . . . . . . . . .MACsec. . . . . . . . . . . . . . . .Review Questions. . . . . . . . . . . . . .Answers to Review Questions.Further Reading. . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . .279279281284284285285CHAPTER 11Network Access Control. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 287Cisco Identity Services Engine (ISE). . .Network Access Control (NAC). .Review Questions. . . . . . . . . . . . . . . .Answers to Review Questions. . .Further Reading. . . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . . .288290296296296297Part III: AutomationCHAPTER 12Anatomy of Python. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 299Interpreting Python Components and Scripts.Python Overview. . . . . . . . . . . . . . . . .Python Releases. . . . . . . . . . . . . . . . . .Setting Up Guest Shell. . . . . . . . . . . . .Using Python. . . . . . . . . . . . . . . . . . .Python Requirements. . . . . . . . . . . . . .Parsing Python Output to JSON. . . . . .Exception Handling. . . . . . . . . . . . . . .Review Questions. . . . . . . . . . . . . . . . . . . . .Answers to Review Questions. . . . . . . .Further Reading. . . . . . . . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . . . . . . . .300300301301302309310311313313314314CHAPTER 13Building JSON Files. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 315Data Formats (XML and JSON). . . . . . . .Extensible Markup Language (XML).JavaScript Object Notation (JSON). .XML and JSON Comparison. . . . . .A01 Bacha FM pi-pxxxviii.indd 11.31631731932105/02/22 9:55 AM

xiiCCNP and CCIE Enterprise Core ENCOR 350-401 Exam CramReview Questions. . . . . . . . . . . . . .Answers to Review Questions.Further Reading. . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . .323323324324CHAPTER 14YANG Data Modeling. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 325YANG Data Modeling. . . . . . . . . .Different YANG Models. . . . .Review Questions. . . . . . . . . . . . . .Answers to Review Questions.Further Reading. . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . .326327332332332332CHAPTER 15DNA Center and vManage APIs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 333APIs for Cisco DNA Center and vManage.DNA Center API Integrations. . . . . .vManage API Integrations. . . . . . . . .Review Questions. . . . . . . . . . . . . . . . . . .Answers to Review Questions. . . . . .Further Reading. . . . . . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . . . . . .334334338344344344344CHAPTER 16Interpreting REST API Codes. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 345Interpreting REST API Response Codes. .HTTP Status Codes. . . . . . . . . . .Review Questions. . . . . . . . . . . . . . . . . .Answers to Review Questions. . . . .Further Reading. . . . . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . . . . .346347349349349349CHAPTER 17EEM Applets. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 351Embedded Event Manager (EEM). .EEM Architecture. . . . . . . . .EEM Policies. . . . . . . . . . . .Review Questions. . . . . . . . . . . . . .Answers to Review Questions.A01 Bacha FM pi-pxxxviii.indd 12.35235435536236205/02/22 9:55 AM

xiiiContentsFurther Reading. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 362What’s Next?. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 362CHAPTER 18Configuration Management and Orchestration. . . . . . . . . . . . . . . . . . . . . 363Agent-Based Orchestration Tools. . . . . . . . . . . . . . .Puppet. . . . . . . . . . . . . . . . . . . . . . . . . . . . .Chef. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .SaltStack. . . . . . . . . . . . . . . . . . . . . . . . . . . .Agentless Orchestration Tools. . . . . . . . . . . . . . . . .Ansible. . . . . . . . . . . . . . . . . . . . . . . . . . . . .Bolt. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .Configuration Management and OrchestrationTools Comparison. . . . . . . . . . . . . . . . . . . .Review Questions. . . . . . . . . . . . . . . . . . . . . . . . . .Answers to Review Questions. . . . . . . . . . . . .Further Reading. . . . . . . . . . . . . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . . . . . . . . . . . . .365365367369372372375.376378378378378Part IV: ArchitectureCHAPTER 19Enterprise Network Design Principles. . . . . . . . . . . . . . . . . . . . . . . . . . . 379Hierarchical LAN Design Model. . . . . . . . . . . . . .Access Layer. . . . . . . . . . . . . . . . . . . . . . . .Distribution Layer. . . . . . . . . . . . . . . . . . . .Core Layer. . . . . . . . . . . . . . . . . . . . . . . . .Enterprise Network Architecture Options. . . .First-Hop Redundancy Protocols (FHRPs). . . . . . .Host Standby Router Protocol (HSRP). . . . . .Virtual Router Redundancy Protocol (VRRP).Gateway Load Balancing Protocol (GLBP). . .Hardware Redundancy Mechanisms. . . . . . . . . . . .Stateful Switchover (SSO). . . . . . . . . . . . . . .Nonstop Forwarding (NSF). . . . . . . . . . . . .Review Questions. . . . . . . . . . . . . . . . . . . . . . . . .Answers to Review Questions. . . . . . . . . . . .Further Reading. . . . . . . . . . . . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . . . . . . . . . . . .A01 Bacha FM pi-pxxxviii.indd 805/02/22 9:55 AM

xivCCNP and CCIE Enterprise Core ENCOR 350-401 Exam CramCHAPTER 20Wireless LAN Deployments. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 409Wireless Deployment Models. . . . . . . . . . . . . .Autonomous Wireless Deployments. . . . . .Centralized Wireless Deployments. . . . . . .Cisco FlexConnect Wireless Deployments.Cloud-Based Wireless Deployments. . . . . .Embedded Wireless Deployments. . . . . . .Wireless Location Services. . . . . . . . . . . . . . . .Review Questions. . . . . . . . . . . . . . . . . . . . . . .Answers to Review Questions. . . . . . . . . .Further Reading. . . . . . . . . . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . . . . . . . . . .410411412415418422427430431431431CHAPTER 21On-Premises vs. Cloud Infrastructure. . . . . . . . . . . . . . . . . . . . . . . . . . . . 433Cloud Infrastructure Basics. . . . . . . . .Cloud Services Models. . . . . . . . . . . .Infrastructure as a Service (IaaS).Platform as a Service (PaaS). . . .Software as a Service (SaaS). . . . .Anything as a Service (XaaS). . . .Cloud Deployment Models. . . . . . . . .On-Premises or Cloud Infrastructure. .Review Questions. . . . . . . . . . . . . . . .Answers to Review Questions. . .Further Reading. . . . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . . . .434438438440441442444447449449450450CHAPTER 22SD-WAN. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 451SD-WAN Overview. . . . . . . . . . . . . . . . . . .The Need for SD-WAN. . . . . . . . . . . .Secure Automated WAN. . . . . . . . . . . .Application Performance Optimization. .Secure Direct Internet Access (DIA). . . .Multicloud. . . . . . . . . . . . . . . . . . . . .SD-WAN Architecture Components. . . . . . .vSmart Controllers. . . . . . . . . . . . . . . .WAN Edge Routers. . . . . . . . . . . . . . .A01 Bacha FM pi-pxxxviii.indd 14.45245345445545645645945946005/02/22 9:55 AM

xvContentsvBond Orchestrators. . . . . . .vManage. . . . . . . . . . . . . . . .SD-WAN Considerations. . . .Review Questions. . . . . . . . . . . . . .Answers to Review Questions.Further Reading. . . . . . . . . . . . . . .What’s Next?. . . . . . . . . . . . . . . . .461461463465465466466CHAPTER 23SD-Access. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 467SD-Access Overview. . . . . . . . . . . . . . . . . . . . .SD-Access Architecture. . . . . . . . . . . . . . . . . . .SD-Access Operational Planes. . . . . . . . . . . . . .SD-Access Fabric Roles and Components. . .