Course objectives
After completing this course, students will be able to:
- Analyze Advanced Packet Flow: Understand exactly how traffic moves between leaf switches and how endpoints are learned in complex scenarios.
- Implement Advanced Policy: Master Transit Routing, VRF Route Leaking, and Shared Services across different Tenants.
- Deploy Multi-Pod & Multi-Site: Build and manage fabrics that span multiple locations using the Nexus Dashboard Orchestrator (NDO).
- Master Service Insertion: Use Service Graphs with Policy-Based Redirect (PBR) to steer traffic through firewalls and load balancers.
- Optimize Endpoints: Use the Rogue Endpoint Feature to mitigate MAC/IP flapping and protect fabric stability.
Course outlines
- Domain 1: Advanced Packet Forwarding
- Endpoint Learning: Deep dive into local vs. remote endpoint learning and bounce entries.
- Protection Mechanisms: Mitigating Rogue Endpoints and Loop Protection.
- NIC Teaming: Advanced host connectivity and hashing.
- Domain 2: Advanced Policy & Tenant Configuration
- Transit Routing: Configuring L3Out-to-L3Out routing (AS-transit).
- Shared Services: Using the common tenant and VRF route leaking for centralized firewalls or DNS.
- Advanced Contracts: Using vzAny, Contract Preferred Groups, and pcTag architecture.
- Domain 3: Traditional Network Integration
- Migration Strategies: Moving from legacy switched networks to ACI.
- L2 Integration: Connecting STP/MST domains to the ACI fabric.
- Domain 4: Layer 4–7 Service Integration (PBR)
- Service Graph PBR: Understanding the end-to-end packet flow.
- Tracking Options: Using IP SLA or Health Checks to ensure the service node (Firewall) is alive.
- Domain 5: Multi-Pod & Multi-Site Deployment
- Multi-Pod: Configuring the Inter-Pod Network (IPN) and Spine-to-Spine communication.
- Multi-Site: Deploying the Nexus Dashboard Orchestrator (NDO) and stretching EPGs across geographically distant sites.