Internetwork Expert » Khóa Học CCIE Routing & Switching

Thời gian khóa học: 150 giờ
Điều kiện tiên quyết:

Hoàn thành chương trình học CCNP Routing & Switching hoặc tương đương

Giới thiệu
Nội dung khóa học
Lịch trình học
  • Chứng chỉ CCIE Routing & Switching của Cisco được xem là chứng chỉ cao nhất trong chuyên ngành định tuyến và chuyển mạch của hệ thống mạng IP. Chứng chỉ này khẳng định sự am hiểu sâu sắc nhất về hoạt động của các giao thức, phương thức triển khai, áp dụng các công nghệ trong một hệ thống mạng rộng lớn.
  • Chứng chỉ CCIE R&S được chấp nhận rộng rãi trên toàn thế giới và là một trong những chứng chỉ phổ biến nhất trong ngành công nghiệp mạng máy tính. Các kỹ sư mạng máy tính khi có chứng chỉ CCIE R&S được công nhận ở mức độ chuyên gia về kỹ năng vận hành thiết bị và giải pháp của Cisco.
  • Để đạt được chứng chỉ CCIE, các thí sinh cần vượt qua được 2 bài thi là CCIE Written và CCIE Lab. Với CCIE Written thí sinh sẽ được làm bài thi trắc nghiệm để đánh giá khả năng am hiểu về công nghệ và các giao thức. Bài thi thứ hai đánh giá khả năng áp dụng kiến thức chuyên môn vào thực tế bằng cách cấu hình trên các thiết bị thực được thiết kế như một mô hình thực tế của một hệ thống mạng doanh nghiệp liên kết toàn cầu.
  • Chương trình học CCIE Written và Lab Lite tại WAREN ngoài việc mang đến cho học viên những kiến thức chuyên sâu về định tuyến và chuyển mạch qua các bài giảng lý thuyết, học viên cũng sẽ trực tiếp làm các bài lab với cấp độ CCIE Lab được giảng viên biên soạn dựa vào giáo trình của trung tâm đào tạo CCIE danh tiếng như INTERNETWORK EXPERT (INE), đây là bước quan trọng trên con đường chinh phục chứng chỉ CCIE Lab.

Layer 2 Technologies

LAN switching technologies

  • Implement and troubleshoot switch administration
    • Managing MAC address table
    • errdisable recovery
    • L2 MTU
  • Implement and troubleshoot layer 2 protocols
    • CDP, LLDP
    • UDLD
  • Implement and troubleshoot VLAN
    • Access ports
    • VLAN database
    • Normal, extended VLAN, voice VLAN
  • Implement and troubleshoot trunking
    • VTPv1, VTPv2, VTPv3, VTP pruning
    • dot1Q
    • Native VLAN
    • Manual pruning
  • Implement and troubleshoot EtherChannel
    • LACP, PAgP, manual
    • Layer 2, layer 3
    • Load-balancing
    • Etherchannel misconfiguration guard
  • Implement and troubleshoot spanning-tree
  • PVST+/RPVST+/MST
  • Switch priority, port priority, path cost, STP timers
  • port fast, BPDUguard, BPDUfilter
  • loopguard, rootguard
  • Implement and troubleshoot other LAN switching technologies:
  • SPAN, RSPAN, ERSPAN
  • Describe chassis virtualization and aggregation technologies"
    • Multichassis
    • VSS concepts
    • Alternative to STP
    • Stackwise
    • Excluding specific platform implementation
  • Describe spanning-tree concepts
    • Compatibility between MST and RSTP
    • STP dispute, STP bridge assurance

Layer 2 multicast

  • Implement and troubleshoot IGMP
    • IGMPv1, IGMPv2, IGMPv3
    • IGMP snooping
    • IGMP querier
    • IGMP filter
    • IGMP proxy
  • Explain MLD
  • Explain PIM snooping

Layer 2 WAN circuit technologies

  • Implement and troubleshoot HDLC
  • Implement and troubleshoot PPP
    • Authentication [PAP, CHAP]
    • PPPoE
  • Describe WAN rate-based ethernet circuits:
  • Metro and WAN Ethernet topologies
  • Use of rate-limited WAN ethernet services

Layer 3 Technologies

Addressing technologies:

  • Identify, implement and troubleshoot IPv4 addressing and subnetting
    • Address types, VLSM
    • ARP
  • Identify, implement and troubleshoot IPv6 addressing and subnetting
    • Unicast, multicast
    • EUI-64
    • ND, RS/RA
    • Autoconfig/SLAAC, temporary addresses [RFC4941]
    • Global prefix configuration feature
    • DHCP protocol operations
    • SLAAC/DHCPv6 interaction
    • Stateful, stateless DHCPv6
    • DHCPv6 prefix delegation

Layer 3 multicast:

  • Troubleshoot reverse path forwarding
    • RPF failure
    • RPF failure with tunnel interface
  • Implement and troubleshoot IPv4 protocol independent multicast
    • PIM dense mode, sparse mode, sparse-dense mode
    • RP, auto-RP, BSR
    • BiDirectional PIM
    • Source-specific multicast
    • Group to RP mapping
    • Multicast boundary
  • Implement and troubleshoot multicast source discovery protocol
    • Intra-domain MSDP [anycast RP]
    • SA filter
  • Describe IPv6 multicast
    • IPv6 multicast addresses
    • PIMv6

Fundamental routing concepts:

  • Implement and troubleshoot static routing
  • Implement and troubleshoot default routing
  • Compare routing protocol types
    • Distance vector
    • Link state
    • Path vector
  • Implement, optimize and troubleshoot administrative distance
  • Implement and troubleshoot passive interface
  • Implement and troubleshoot VRF lite
  • Implement, optimize and troubleshoot filtering with any routing protocol
  • Implement, optimize and troubleshoot redistribution between any routing protocol
  • Implement, optimize and troubleshoot manual and auto summarization with any routing protocol
  • Implement, optimize and troubleshoot policy-based routing
  • Identify and troubleshoot sub-optimal routing
  • Implement and troubleshoot bidirectional forwarding detection
  • Implement and troubleshoot loop prevention mechanisms
    • Route tagging, filtering
    • Split horizon
    • Route poisoning
  • Implement and troubleshoot routing protocol authentication
    • MD5
    • Key-chain
    • EIGRP HMAC SHA2-256bit
    • OSPFv2 SHA1-196bit
    • OSPFv3 IPsec authentication

RIP [v2 and v6]

  • Implement and troubleshoot RIPv2
  • Describe RIPv6 [RIPng]

EIGRP [for IPv4 and IPv6]

  • Describe packet types
    • Packet types [hello, query, update, and such]
    • Route types [internal, external]
  • Implement and troubleshoot neighbor relationship
    • Multicast, unicast EIGRP peering
    • OTP point-to-point peering
    • OTP route-reflector peering
    • OTP multiple service providers scenario
  • Implement and troubleshoot loop free path selection
    • RD, FD, FC, successor, feasible successor
    • Classic metric
    • Wide metric
  • Implement and troubleshoot operations
    • General operations
    • Topology table, update, query, active, passive
    • Stuck in active
    • Graceful shutdown
  • Implement and troubleshoot EIGRP stub
    • Stub
    • Leak-map
  • Implement and troubleshoot load-balancing
    • equal-cost
    • unequal-cost
    • add-path
  • Implement EIGRP [multi-address] named mode
    • Types of families
    • IPv4 address-family
    • IPv6 address-family
  • Implement, troubleshoot and optimize EIGRP convergence and scalability
    • Describe fast convergence requirements
    • Control query boundaries
    • IP FRR/fast reroute [single hop]
    • Summary leak-map
    • Summary metric

OSPF [v2 and v3]

  • Describe packet types
    • LSA types [1, 2, 3, 4, 5, 7, 9]
    • Route types [N1, N2, E1, E2]
  • Implement and troubleshoot neighbor relationship
  • Implement and troubleshoot OSPFv3 address-family support
    • IPv4 address-family
    • IPv6 address-family
  • Implement and troubleshoot network types, area types and router types
    • Point-to-point, multipoint, broadcast, non-broadcast
    • LSA types, area type: backbone, normal, transit, stub, NSSA, totally stub
    • Internal router, ABR, ASBR
    • Virtual link
  • Implement and troubleshoot path preference
  • Implement and troubleshoot operations
    • General operations
    • Graceful shutdown
    • GTSM [Generic TTL Security Mechanism]
  • Implement, troubleshoot and optimize OSPF convergence and scalability
    • Metrics
    • LSA throttling, SPF tuning, fast hello
    • LSA propagation control [area types, ISPF]
    • IP FRR/fast reroute [single hop]
    • LFA/loop-free alternative [multi hop]
    • OSPFv3 prefix suppression

BGP

  • Describe, implement and troubleshoot peer relationships
    • Peer-group, template
    • Active, passive
    • States, timers
    • Dynamic neighbors
  • Implement and troubleshoot IBGP and EBGP
    • EBGP, IBGP
    • 4 bytes AS number
    • Private AS
  • Explain attributes and best-path selection
  • Implement, optimize and troubleshoot routing policies
    • Attribute manipulation
    • Conditional advertisement
    • Outbound route filtering
    • Communities, extended communities
    • Multi-homing
  • Implement and troubleshoot scalability
    • Route-reflector, cluster
    • Confederations
    • Aggregation, AS set
  • Implement and troubleshoot multiproctocol BGP
    • IPv4, IPv6, VPN address-family
  • Implement and troubleshoot AS path manipulations
    • Local AS, allow AS in, remove private AS
    • Prepend
    • Regexp
  • Implement and troubleshoot other features
    • Multipath
    • BGP synchronization
    • Soft reconfiguration, route refresh
  • Describe BGP fast convergence features
    • Prefix independent convergence
    • Add-path
    • Next-hop address tracking

ISIS [for IPv4 and IPv6]

  • Describe basic ISIS network
    • Single area, single topology
  • Describe neighbor relationship
  • Describe network types, levels and router types
    • NSAP addressing
    • Point-to-point, broadcast
  • Describe operations
  • Describe optimization features
    • Metrics, wide metric

VPN Technologies

Tunneling

  • Implement and troubleshoot MPLS operations
    • Label stack, LSR, LSP
    • LDP
    • MPLS ping, MPLS traceroute
  • Implement and troubleshoot basic MPLS L3VPN
    • L3VPN, CE, PE, P
    • Extranet [route leaking]
  • Implement and troubleshoot encapsulation
    • GRE
    • Dynamic GRE
    • LISP encapsulation principles supporting EIGRP OTP
  • Implement and troubleshoot DMVPN [single hub]
    • NHRP
    • DMVPN with IPsec using preshared key
    • QoS profile
    • Pre-classify
  • Describe IPv6 tunneling techniques
    • 6in4, 6to4
    • ISATAP
    • 6RD
    • 6PE/6VPE
  • Describe basic layer 2 VPN —wireline
    • L2TPv3 general principals
    • ATOM general principals
  • Describe basic L2VPN — LAN services
    • MPLS-VPLS general principals
    • OTV general principals

Encryption

  • Implement and troubleshoot IPsec with preshared key
    • IPv4 site to IPv4 site
    • IPv6 in IPv4 tunnels
    • Virtual tunneling Interface [VTI]
  • Describe GET VPN

Infrastructure Security

Device security

  • Implement and troubleshoot IOS AAA using local database
  • Implement and troubleshoot device access control
    • Lines [VTY, AUX, console]
    • SNMP
    • Management plane protection
    • Password encryption
  • Implement and troubleshoot control plane policing
  • Describe device security using IOS AAA with TACACS+ and RADIUS
    • AAA with TACACS+ and RADIUS
    • Local privilege authorization fallback

Network security

  • Implement and troubleshoot switch security features
    • VACL, PACL
    • Stormcontrol
    • DHCP snooping
    • IP source-guard
    • Dynamic ARP inspection
    • port-security
    • Private VLAN
  • Implement and troubleshoot router security features
    • IPv4 access control lists [standard, extended, time-based]
    • IPv6 traffic filter
    • Unicast reverse path forwarding
  • Implement and troubleshoot IPv6 first hop security
    • RA guard
    • DHCP guard
    • Binding table
    • Device tracking
    • ND inspection/snooping
    • Source guard
    • PACL
  • Describe 802.1x
    • 802.1x, EAP, RADIUS
    • MAC authentication bypass

Infrastructure Services

System management

  • Implement and troubleshoot device management
    • Console and VTY
    • telnet, HTTP, HTTPS, SSH, SCP
    •  [T]FTP
  • Implement and troubleshoot SNMP
    • v2c, v3
  • Implement and troubleshoot logging
    • Local logging, syslog, debug, conditional debug
    • Timestamp

Quality of service

  • Implement and troubleshoot end-to-end QoS
    • CoS and DSCP mapping
  • Implement, optimize and troubleshoot QoS using MQC
    • Classification
    • Network based application recognition [NBAR]
    • Marking using IP precedence, DSCP, CoS, ECN
    • Policing, shaping
    • Congestion management [queuing]
    • Congestion avoidance [WRED]
  • Describe layer 2 QoS
    • Queuing, scheduling
    • Classification, marking

Network services

  • Implement and troubleshoot first-hop redundancy protocols
    • HSRP, GLBP, VRRP
    • Redundancy using IPv6 RS/RA
  • Implement and troubleshoot network time protocol
    • NTP master, client, version 3, version 4
    • NTP Authentication
  • Implement and troubleshoot IPv4 and IPv6 DHCP
    • DHCP client, IOS DHCP server, DHCP relay
    • DHCP options
    • DHCP protocol operations
    • SLAAC/DHCPv6 interaction
    • Stateful, stateless DHCPv6
    • DHCPv6 prefix delegation
  • Implement and troubleshoot IPv4 network address translation
    • Static NAT, dynamic NAT, policy-based NAT, PAT
    • NAT ALG
  • Describe IPv6 network address translation
    • NAT64
    • NPTv6

Network optimization

  • Implement and troubleshoot IP SLA
    • ICMP, UDP, Jitter, VoIP
  • Implement and troubleshoot tracking object
    • Tracking object, tracking list
    • Tracking different entities [e.g. interfaces, routes, IPSLA, and such]
  • Implement and troubleshoot netflow
    • Netflow v5, v9
    • Local retrieval
    • Export [configuration only]
  • Implement and troubleshoot embedded event manager
    • EEM policy using applet
  • Identify performance routing [PfR]
    • Basic load balancing
    • Voice optimization

Evolving Technologies

Cloud

  • Compare and contrast Cloud deployment models
    • Infrastructure, platform, and software services [XaaS]
    • Performance and reliability
    • Security and privacy
    • Scalability and interoperability
  • Describe Cloud implementations and operations
    • Automation and orchestration
    • Workload mobility
    • Troubleshooting and management
    • OpenStack components

Network programmability [SDN]

  • Describe functional elements of network programmability [SDN] and how they interact
    • Controllers
    • APIs
    • Scripting
    • Agents
    • Northbound vs. Southbound protocols
  • Describe aspects of virtualization and automation in network environments
    • DevOps methodologies, tools and workflows
    • Network/application function virtualization [NFV, AFV]
    • Service function chaining
    • Performance, availability, and scaling considerations

Internet of Things

  • Describe architectural framework and deployment considerations for Internet of Things [IoT]
    • Performance, reliability and scalability
    • Mobility
    • Security and privacy
    • Standards and compliance
    • Migration
    • Environmental impacts on the network
Chương trình đào tạo