Welcome to Skilled Inspirational Academy (sianets.

com)
Topic :: Cisco Viptela SDWAN Training
Instructor :: Hemu Sir
Mobile No :: +919019232915/9817187997

Basic to Advance SDWAN + SDWAN Troubleshooting

We have designed this content in such a way. So, it can full fill the current
industry requirements. This content brings the pure production environment. It
has SDWAN Components, SDWAN Security, Templates, Policies, Monitoring,
SDWAN Design, SDWAN Migration, SDWAN Management, SDWAN
troubleshooting and Monitoring.

Prerequisite : CCNA Level Knowledge

1. Introduction to Wide Area Networking (WAN)
1. What is Wide Area Networking
2. Evolution of Wide Area Network (WAN) solutions
3. Limitations of Traditional WAN Implementations
4. Introduction to Data Center and Service Provider Implementation
Scenarios

2. Introduction to Software-Defined Networking (SDN)

1. SDN for DC
2. SDN for WAN
3. SDN for Lan Network
3. Introduction to SD-WAN
1. Before SD-WAN
2. Overview of SD-WAN
3. Advantages of SD-WAN
4. Concept of SD-WAN Underlay and Overlay

4. Architecture of SD-WAN
1. Control Plane, Data Plane, Management Plane of Router/Networking
2. SDWAN Components
3. Controllers (vManage, vBond, vSmart)
4. Transport (MPLS, Internet, Cellular etc)

5. SDWAN Controllers and WAN Edge Deployment

1. WAN Edge Deployment options
2. Automated Deployments
3. PnP and ZTP
4. Manual Deployment
5. Bootstrap
6. WAN Edge Authorized List
7. WAN edge deployment behind a Firewall
8. SDWAN Controller Deployment options
9. Public and Private Cloud
10. Cisco Hosted Cloud

7. Types of Planes in SD-WAN

1. Management Plane (vManage)
 2. Orchestrator Plane (vBond)
3. Control plane (vSmart)
4. Data plane (vEdge & cEdge
5. Wan Edges (vEdges, cEdges)
6. Function of vManage
7. Function of vSmart
8. Function of vBond
9. Function of vEdge & cEdge

8. Cisco SDWAN Control Plane

1. Function of TLS / DTLS
2. Control Connection
3. OMP (Overlay Management Protocol) Overview
4. OMP Routes
5. BFD
6. Controller & Wan Edges Hosting Option and Platform

9. Cisco SDWAN Data Plane

1. What is TLOC (system-ip, color, encp )
2. What is TLOC Color and Carrier
3. ECMP Mechanism

10. Types of VPN in SD-WAN

1. Management VPN (VPN 512)
2. Transport VPN (VPN 0)
3. SERVICE VPN (VPN 1-511 & 513-65535)
11. Cisco SD-WAN Security and Certificates
1. Network Security in SDWAN
2. What is Trust ?
3. What is CIA ?
4. What is Encryption ?
5. What is Hashing ?
6. What is Authentication ?
7. What is PKI (Public Key Infrastructure) ?
8. What is Certificate Authority Server and Digital Certificate ?
9. Root Certificate and Intermediate Root Certificate
10. Identity Certificate (End Client Certificate)
11. Certificate Signing Request
12. Verification of Identity Certificate by Root Certificate
13. Certificate Chain
14. Controllers Identity
15. Automated certificate deployment using Cisco PKI
16. Automated certificate deployment using 3rd-party CA
17. Manual Cisco PKI certificate signing
18. Enterprise Root Certificate Authority (CA)
19. Manual third-party certificate signing through Symantec/DigiCert
20. Controller Whitelisting
12. Describe SD-WAN Terminology
1. System-IP
2. Organization Name
3. Site-id
4. Virtual Chassis no./Serial no. & Token no.

13. Templates
1. Feature Templates
2. Device Templates

14. Polices
1. Policy Basics
2. SD-WAN Policy Framework
3. Centralized Control & Data Policies
4. Localized Control & Data Policies

15. Centralized Control Policies

1. What is a Centralized Control Policy?
2. Inbound vs Outbound Control Policy
3. LAB 1 - Hub-and-Spoke - Restricting spoke-to-spoke tunnels
4. LAB 2 - Hub-and-Spoke - Allowing hub-to-spoke routing
5. LAB 3 - Hub-and-Spoke - Enabling spoke-to-spoke communication
6. LAB 4 - Traffic Engineering - TLOC Preference
 7. LAB 5 - Traffic Engineering - End-to-End Path Tracking
8. LAB 6 - VPN Membership Policy - Isolating guest users
9. LAB 7 - Service Chaining
10. LAB 8 - Route Leaking
11. LAB 9 - Per VPN topologies
12. LAB 10 - Dynamic On-demand Tunnels

16. Centralized Data Policies

1. What is a Centralized Data Policy?
2. LAB 1 - Direct Internet Access (DIA) - Internet access to guest users
3. LAB 2 - VPN-wide Access Control Lists
4. LAB 3 - NAT DIA Tracker
5. LAB 4 - Allowing DIA to trusted application only
6. LAB 5 - Application pinning
7. LAB 6 - Forward Error Correction (FEC)
8. LAB 7 - Packet Duplication

17. Application-Aware Routing Policies

1. Application-Aware Routing (App-route) Policy
2. AAR alongside Data Policy
3. Configuring Application-Aware Routing (AAR) Policies
18. Localized Policies
1. What is a Localized Policy?
2. LAB 1 - Manipulating site-local BGP routing
3. LAB 2 - Implicit Access Control List (ACL)
4. LAB 3 - Explicit Access Control List (ACL)
5. LAB 4 - Traffic Policing
6. LAB 5 - Cisco SD-WAN QoS
7. LAB 6 - Mirror data traffic for analysis

19. cEdge Onboarding

1. VPN-0, VPN1, VPN512
2. VPN-INT
3. External Routing (OSPF , DEFAULT )
4. Internal Routing (EIGRP )
5. Configuring vEdges Behind NAT
6. Implementation of VRRP in Viptela Devices
7. Configure TLOC Extension for Site Redundancy
8. Cisco SD WAN - URL Filtering
9. Cisco SDWAN - IPS configuration
10. Viptela (Cisco SD WAN) App Firewall
11. ZONE BASED FIREWALL
12. Viptela (Cisco SD WAN) upgrade
13. CLI Device Templates
14. Software upgradation
 15. VPN Membership

20. Localized Policy (QoS)

1. QOS & Its needs
2. Classification and Marking
3. Policing & Shaping
4. CoS, ToS, DSCP
5. Types of Queues
6. QOS Implementation Methods-Best-effort-Intserv-Diffserv
7. Configure localized policy & Device Templets for Voice, web & rest of traffic.
7.1 Class map
7.2 Ipv4 acl policy
7.3 QoS Map

21. Configuring High Availability / Clustering in SD-WAN

1. Controllers Redundancy
2. Understanding vBond Orchestrator Redundancy
3. Understanding vManage Server Redundancy
4. Understanding vSmart Controller Redundancy
5. Controller Groups
6. vSmart Controller Affinity
7. Understanding vEdge Device Redundancy
22. Implementing SD-WAN Security using Enterprise Firewall
1. Security Overview
2. Configure Security Parameters
3. Implementing Enterprise Firewall with Application Awareness
4. Configure Geo-location-based Firewall Rules
5. Implementing Intrusion Prevention System (IPS)
6. Implementing URL Filtering
7. SSL/TLS Proxy for Decryption of TLS Traffic
8. Configuring Single Sign On

SDWAN Troubleshooting Topics

1. vManage Architecture and Troubleshooting
2. vBond/vSmart Troubleshooting
3. vEdge Architecture and Troubleshooting
4. cEdge Architecture and Troubleshooting
5. Control Plane Troubleshooting
6. Data Plane Troubleshooting
7. IPSec Connection Troubleshooting
8. BFD Troubleshooting
9. Security Policies Troubleshooting
10. Packet Capture in Routers using Monitor Command
11. Packet Capture in Controllers using TCPDUMP
12. vManage inbuild Troubleshooting Utilities
Devices Used in Lab
1. vManage
2. vSmart
3. vBond
4. Viptela vEdge
5. Cisco cEdge
6. ASAv/PaloAlto Firewall
7. Windows Machine
8. Linux Container
9. WAN Transports

Describe, configure & troubleshoot SD-WAN (GUI, CLI)

01. SD-WAN Lab Introduction
02. vManage initial config & Transport connectivity
03. vSMART & vBOND initial config
04. vEDGE & cEDGE Initial Config
05. CA Server Configuration—RootCert
06. Installation of RootCert in vMANAGE Manually
07. Generating CSR and Installing ID-Cert in vMANAGE
08. Registering vBOND in vMANAGE--Generating CSR and Installing ID-Cert in vBOND
09. Registering vSMART in vMANAGE--Generating CSR and Installing ID-Cert in vSMART
10. WAN EDGE Registration Process (.viptelaSerial File )
11. Installing RootCert in vEDGE
12. Installing RootCert in cEDGE
13. Activate vChassis no & token no in WAN Edges Devices.
14. Templates & its Use
1. Configure Feature Template—SYSTEM
2. Configure Feature Template—BANNER
15. Configure Feature Templates for BR-vEdge
VPN-0, VPN1, VPN512
VPN-INT
External Routing (OSPF, DEFAULT)
Internal Routing (OSPF)
16. Configure Device Template for vEdge-Sites (Transport VPN)
17. Editing Device Template for vEDGE-Sites (SERVICE_VPN)
18. OMP Route Advertisement, Redistribution & verification of TLOC
19. Verification of ECMP-Traffic Flow Simulation
20. Configure Feature Templates for HQ-vEdge
VPN-0, VPN1, VPN512
VPN-INT
External Routing (BGP)
Internal Routing (OSPF)
21. Configure Device Templates for HQ-vEdge
22. Configure Device Template—cEDGE
23. Describe SDWAN Policy Components
24. Configure Feature Templates for vSMART
VPN-0, VPN512
VPN-INT
25. Configure Device Template—Vsmart
Centralized Policy
26. Configure Traffic Policy (AAR)
Protocol & Port based
 Application based
27. Configure Topology Policy--TLOC Preference (primary & backup)
28. Topology Policy--Route Filtering
29. Configure Hub & Spoke Topology using TLOC for DATA Traffic.
30. Implementation of NAT(Direct Internet Access --local breakout)
31. High Availability of vSMART
32. Route leaking between VPN's in Viptela (Cisco SD WAN)
33. Zero Touch Provisioning with Viptela vEdges

We have launched our application Where you will get all

videos of our courses.
You can download in your mobile phone using below link.
Android Users: https://on-app.in/app/home?orgCode=vncph
iPhone Users:
https://apps.apple.com/in/app/classplus/id1324522260
Org Code: VNCPH
Web browser:
Go to in https://web.classplusapp.com/login
Enter the organisation code:: VNCPH
Website: https://sianets.com
LinkedIn :: https://www.linkedin.com/in/hemu-palo-alto-
trainer-bb609695/
Link-01 YouTube ::
https://www.youtube.com/channel/UCxO1jT0VQCK1GQpa8Si
DL2Q
Link-02 YouTube ::
https://www.youtube.com/channel/UC02BKZX3Uq07UItYZT-
hBkw
Join our WhatsApp group for more details and updates.
https://chat.whatsapp.com/GPqqW1KarJQ6fUt2wJPmcN