EncartaLabs

Cisco SD-WAN - Advanced Policy, Security, and Programmability (SDWSEC)

( Duration: 5 Days )

This SD-WAN Advanced Policy, Security, and Programmability (SDWSEC) training course provides skills on Cisco SD-WAN Security, basic security features that are available on both vEdge and cEdge routers like Zone Based Firewall, and advanced security features on cEdge router with the latest IOS-EX code that has advanced features like URL Filtering, IPS, Application Aware Firewall, AMP Integration and many other advanced features.

By attending SD-WAN Advanced Policy, Security, and Programmability (SDWSEC) workshop, delegates will learn to:

  • Implement advanced SD-WAN Policies
  • Understand Cisco SD-WAN Security Features
  • Implement Zone Based Firewall on the WAN Edge
  • Implement Firewall and IPS Policies
  • Understand Cisco SD-WAN Programmability features
  • Script APIs to automate Cisco SD-WAN vManage configurations

COURSE AGENDA

1

SD-WAN Policy Deep Dive

  • Centralized Control Policy and Use Cases
    • Hub and Spoke Policy
    • Service Insertion Policy
    • Firewall Insertion Policy
    • Data Center Priority
  • App-Aware Routing
  • Security Policy and Use Cases
  • DIA / Internet Breakout Policy
2

Introduction & Security Basics in the SDWAN Ecology

  • Introduction
  • SD-WAN Security Challenges
  • SD-WAN Threat Defense
  • Security Infrastructure
  • Device Identity & Security
  • Control Plane and Data Plan Security
  • Zone Based Firewalls
  • Deploying ZBF
  • Verifying ZBF
3

SD-WAN Security Component

  • Building New Security Applications
  • Firewall DNS & IPS Packet Flows
  • Container Architecture
  • Security Container Deployment
  • Exploring the Security Dashboard
4

Firewall and IPS Policies

  • Compliance: Firewall
  • Firewall Policy: Intra VRF Creation and Deployment
  • Firewall Policy: Inter VRF Creation and Deployment
  • Introduction to IPS
  • IPS: Policy Creation
  • IPS: Rule Verification
5

SD-WAN Security – Guest Access

  • Introduction to URL Filtering
  • URL Filtering Example
  • URL Filtering Verification via CLI
  • Introduction to Cisco Umbrella
  • Integrating vManage and Umbrella
  • Umbrella Configuration and Verification
6

SD-WAN Security – Direct Cloud Access

  • Introduction to Direct Cloud Access
  • Application Firewall
  • IPS
  • Advanced Malware Protection
  • DNS Security
  • Integrating – Direct Cloud Access
  • Verifying - Direct Cloud Access
7

Direct Internet Access

  • Introduction to DIA
  • Application Firewall
  • IPS
  • Advanced Malware Protection
  • DNS Security
  • Integrating – Direct Internet Access
  • Verifying – Direct Internet Access
8

Programmable API

  • SD-WAN Programmability Overview
    • API Overview
    • General use cases for API's
    • Examples of API's
  • Cisco Programming Basics
    • Overview
    • APIs 101
    • Python
    • Basics
    • Lists, Dictionaries, & Tuples
    • If-else statements
    • Loops
    • Functions
  • REST APIs
    • vManage REST APIs Overview
    • *API Template*
    • Using the vManage REST APIs
  • Cisco SD-WAN Introduction
    • High-level Cisco SD-WAN Deployment models and use cases
    • Application level SD-WAN solution
    • Cisco SDWAN high availability solution
    • Cisco SD-WAN Scalability
    • Cisco SD-WAN Solution Benefits
  • Alarms, Events and Audit Log API's
    • vManage Simple Query
    • Alarms, Audit Log, and Events APIs
    • Alarms
    • Audit Log
    • Events
  • Bulk vManage APIs
    • Overview of Bulk API Operations
    • State
    • Statistics
  • Monitoring vManage APIs
    • Application-Aware Routing
    • App Logs
    • ARP
    • BFD
    • BGP
    • Show all
  • Device and Configuration APIs for vManage APIs
    • Device Templates
    • vSmart Policy
    • Device Inventory APIs
    • Connected Devices
    • Controllers
    • vEdges
  • Software Maintenance vManage APIs
    • Activate Software
    • Delete Software
    • Reboot Device
    • Set Default Software
    • Upgrade Software
    • Show all
  • Troubleshooting vManage APIs
    • Dashboard
    • Device Dashboard

Encarta Labs Advantage

  • One Stop Corporate Training Solution Providers for over 4,000 Modules on a variety of subjects
  • All courses are delivered by Industry Veterans
  • Get jumpstarted from newbie to production ready in a matter of few days
  • Trained more than 50,000 Corporate executives across the Globe
  • All our trainings are conducted in workshop mode with more focus on hands-on sessions

View our other course offerings by visiting http://encartalabs.com/course-catalogue-all.php

Contact us for delivering this course as a public/open-house workshop/online training for a group of 10+ candidates.

Top