DESGN v3.0 - Designing for Cisco Internetwork Solutions

Networking/Server/Operating Systems
  LearnITAnytime Online Subscription (1 Year Subscription - $195.00)
  IT Online Library (1 Year Subscription - $1595.00)
  Private Mentoring 3 Hours ($225)
If quantity is more than 1, Please add all Attendees' Names /Voucher #/ Learning Credit below separated with a comma. If not specified, we will contact you prior to the class start date. Special Instructions

Designing for Cisco Internetwork Solutions (DESGN) v3.0 course presents a structured and modular approach to designing networks that are scalable, resilient, and have well-defined failure domains. The course discusses routing and switching design of Campus and Enterprise networks in detail. Data center, wireless networking, and real-time traffic infrastructure are introduced and their effects on the core network are discussed from the design perspective.


After completing this course the student should be able to:

  • Describe and apply network design methodologies
  • Describe and apply network design concepts of modularity and hierarchy
  • Design a resilient and scalable Campus network
  • Design a resilient and scalable connectivity between parts of your Enterprise network
  • Design connectivity to the Internet and internal routing for your network
  • Integrate collaboration and wireless infrastructure into your core network
  • Create scalable IPv4 and IPv6 addressing
  • Describe what are software defined networks and describe example solutions


The knowledge and skills that a learner must have before attending this course are as follows:

  • Operate LANs with multiple switches, configure VLANs, trunking, spanning tree, DHCP, and port aggregation within Campus network
  • Configure and troubleshoot IPv4 and IPv6 routing within a Enterprise network (static, EIGRP, multi-area OSPF, and RIPng)
  • Implement enterprise Internet connectivity (static routes and basic BGP)
  • Implement route redistribution using filtering mechanisms
  • Implement path control using policy based routing and IP SLA
  • Implement First Hop redundancy in IPv4 and IPv6 environments
  • Configure devices for SNMP, Syslog, and NetFlow access
  • Secure campus network according to recommended practices

Who Should Attend

The target audience for the DESGN course consists of individuals seeking the Cisco Certified Design Associate (CCDA) certification and those individuals targeting towards the CCDP (Cisco Certified Design Professional) certification. The course is also targeted at pre-sales and post-sales network engineers involved in the Enterprise network design, planning and implementation. (The post-sales network engineers involved in the implementation will be involved in providing feedback to the pre-sales network engineers and correct possible design flaws).


Module 1: Design Methodologies

    Lesson 1: Design Life Cycle
    • Business-Driven Network
    • Plan, Build, Manage
    • Plan Phase
    • Build Phase
    • Manage Phase
    • Project Deliverables
    • Summary

    Lesson 2: Characterizing Existing Network

    • Why Is Good Characterization Necessary?
    • Steps of Gathering Information
    • Auditing the Existing Network
    • Using Tools to Characterize Existing Network
    • Case Study: Using SNMP to Gather Information
    • Case Study: Using NetFlow to Gather Information
    • Case Study: Using CDP or LLDP to Gather Information
    • Document the Existing Network
    • Summary

    Lesson 3: Top-Down Approach

    • Top-Down vs. Bottom-Up
    • Benefits and Drawbacks of Top-Down Approach
    • Case Study: Top-Down Approach Design
    • Pilots and Prototypes
    • Summary

    Lesson 4: Module Summary
    Lesson 5: Module Self-Check


Module 2: Network Design Objectives


    Lesson 1: Building a Modular Network
    • Network Convergence
    • Why Would You Modularize?
    • How to Modularize?
    • Where Should You Hide Information?
    • Amount of Information Hiding
    • Modularity and Fault Domains
    • How Scalability Can Be Achieved Through Modular Design
    • How Resiliency Is Achieved Through Modular Design
    • Case Study: Modular Network Design
    • Typical Enterprise Network Modules
    • Summary

    Lesson 2: Applying Modularity: Hierarchy in a Network

    • Hub-and-Spoke Design
    • Three-Layer Hierarchy
    • Access Layer
    • Distribution Layer
    • Core Layer
    • Two-Layer Hierarchy
    • Multilayer Hierarchy
    • Summary

    Lesson 3: Applying Modularity: Virtualization Overview

    • What Is Virtualization?
    • Reasons for Virtualization
    • Types of Virtualization
    • Consequences of Virtualization
    • Summary

    Lesson 4: Module Summary

    • References

    Lesson 5: Module Self-Check


Module 3: Campus Network Design


    Lesson 1: Layer 2/Layer 3 Demarcation
    • End-to-End vs. Local VLANs
    • Traditional Layer 2 Access Layer
    • Updated Layer 2 Access Layer
    • Layer 3 Access Layer
    • Routed or Switched Access Layer?
    • Hybrid Access Layer
    • Case Study: Common Access-Distribution Interconnection Designs
    • Small and Medium Campus Design Options
    • Summary

    Lesson 2: Layer 2 Design Considerations

    • VLAN and Trunk Considerations
    • VTP Considerations
    • STP Considerations
    • STP Root Bridge Placement
    • Alignment of STP with FHRP
    • Consistent STP Metrics
    • Cisco STP Toolkit
    • STP Stability Mechanism Recommendations
    • Problem with Unidirectional Links
    • Comparing Loop Guard with UDLD
    • UDLD Recommended Practices
    • Need for MST
    • MST Recommended Practices
    • Summary

    Lesson 3: High Availability Considerations

    • Managing Bandwidth and Oversubscription
    • Port Aggregation Considerations
    • VSS Considerations
    • Stacking Considerations
    • First Hop Redundancy
    • HSRP/VRRP Subsecond Failover
    • HSRP/VRRP Preempt Delay
    • HSRP/VRRP Load Sharing
    • HSRP/VRRP Tracking
    • Case for GLBP
    • Case Against GLBP
    • Summary

    Lesson 4: Layer 3 Design Considerations

    • Building Triangles
    • Redundant Links
    • Routing Convergence
    • Limit Peering Across the Access Layer
    • Summarize at Distribution Layer
    • Summary

    Lesson 5: Traffic and Interconnections

    • Network Requirements of Applications
    • Client-Server Traffic Considerations
    • Intrabuilding Structure Considerations
    • Interbuilding Structure Considerations
    • Transmission Media Considerations
    • Case Study: Transmission Media
    • Summary

    Lesson 6: Module Summary

    • References

    Lesson 7: Module Self-Check


Module 4: Enterprise Network Design


    Lesson 1: Designing a Secure Network
    • Key Threats in Campus
    • Security Goals
    • Securing the Perimeter
    • Introduction to Firewalls
    • Flavors of Firewalls
    • Firewall Recommended Practices
    • IPS/IDS Fundamentals
    • IPS/IDS Recommended Practices
    • Network Access Control
    • Security Implications of Client Access Methods
    • Summary

    Lesson 2: Edge Connectivity Design

    • Edge Overview
    • DMZ Overview
    • DMZ Segmentation
    • DMZ Service Placing
    • Internet Connectivity
    • Internet Edge with High Availability
    • VPN Design
    • Site-to-Site VPN Use Cases
    • Overview of Remote Access Flavors
    • Security Services Design
    • Edge Device Selection
    • NAT Placement
    • Summary

    Lesson 3: WAN Design

    • WAN Topologies
    • How Should I Connect Remote Sites?
    • WAN Considerations
    • Provider-Managed VPNs: Layer 2 vs. Layer 3
    • MPLS Overview
    • Layer 3 VPN: MPLS/VPN
    • Layer 3 VPN: MPLS/VPN Considerations
    • Layer 2 VPN: VPWS
    • Layer 2 VPN: VPWS Considerations
    • Layer 2 VPN: VPLS
    • Layer 2 VPN: VPLS Considerations
    • Provider-Managed VPNs: Making Choices
    • Introducing Enterprise-Managed VPNs
    • Deploying Enterprise-Managed VPN over Provider-Managed VPN
    • IPsec Overview
    • Enterprise-Managed VPN: IPsec Tunnel Mode
    • Enterprise-Managed VPNs: GRE over IPsec
    • Enterprise-Managed VPNs: DMVPN
    • Enterprise-Managed VPNs: IPsec VTI
    • Enterprise-Managed VPNs: GETVPN
    • Enterprise-Managed VPNs: Making Choices
    • Summary

    Lesson 4: Branch Design

    • Branch Putting Pressure on the WAN
    • Common Branch Connectivity Options
    • Branch Redundancy Options
    • Single-Carrier WANs vs. Dual-Carrier WANs
    • Single-Carrier MPLS/VPN Site Types
    • Dual-Carrier MPLS/VPN WAN
    • Hybrid WAN: Layer 3 Provider VPN and IPSec VPN
    • Hybrid WAN: Layer 2 Provider VPN and IPSec VPN
    • Branch Internet AccessCentralized or Local?
    • Remote-Site LAN: Flat Layer 2
    • Remote-Site LAN: Collapsed Core
    • Summary

    Lesson 5: Connecting to the Data Center

    • Data Center Architecture
    • Data Center Ethernet Infrastructure
    • Data Center Storage Integration
    • Data Center Reference Architecture
    • Server Virtualization and Virtual Switch
    • Resilient Data Center Core Options
    • Data Center Security
    • Need to Connect Data Centers
    • Data Center Interconnect Options
    • Extending Layer 2 Between Data Centers
    • Supporting Server Scalability
    • Application-Level Load Balancing
    • Network-Level Load Balancing
    • Summary

    Lesson 6: Module Summary

    • References

    Lesson 7: Module Self-Check


Module 5: Design of Internal Routing and Connecting to the Internet


    Lesson 1: Routing Protocol Considerations
    • Interior and Exterior Routing Protocols
    • Route Summarization
    • Originating Default Routes
    • Route Redistribution
    • Avoiding Transit Traffic
    • Defensive Filtering
    • Use Cases for Passive Interfaces
    • Routing Protocol Fast Convergence
    • Coexistence of IPv4 and IPv6 IGP Routing
    • Routing Protocol Authentication
    • Summary

    Lesson 2: Expanding EIGRP Design

    • Case Study: Single-Homed Site
    • Case Study: Dual-Homed Site
    • Case Study: Geographic Dispersion of HQ
    • Case Study: Stub Feature
    • Case Study: Summarizing Towards the Core
    • Summary

    Lesson 3: Expanding OSPF Design

    • Case Study: OSPF Areas
    • Review of OSPF LSAs
    • Case Study: OSPF Summarization
    • Case Study: OSPF Path Selection
    • Case Study: OSPF Stubby Areas
    • Summary

    Lesson 4: Introducing IS-IS

    • Introducing IS-IS
    • IS-IS Areas
    • Inter-Router Communication
    • CLNS Addressing
    • IS-IS Metric
    • IS-IS Load Balancing
    • IS-IS Authentication
    • Basic IS-IS Configuration
    • IS-IS for IPv6
    • Summary

    Lesson 5: Expanding IS-IS Design

    • Area and Scaling
    • IS-IS Hub-and-Spoke Scaling
    • Case Study: IS-IS Hub-and-Spoke
    • Summary

    Lesson 6: Using BGP to Connect to the Internet

    • Case Study: Single and Dual-Homing
    • Case Study: Multihoming
    • Implications of Running Full BGP Routing Table
    • Running a Partial Internet Table
    • BGP Route Selection Process
    • Influencing Outbound and Inbound Routing
    • Influencing Outbound Routing: Weight Attribute
    • Influencing Outbound Routing: Local Preference
    • Influencing Inbound Routing: Setting MED Outbound
    • Influencing Inbound Routing: Setting Communities Outbound
    • Influencing Inbound and Outbound Routing: Prepending AS Path
    • Case Study: Avoiding Loops When Forwarding to the Internet
    • Route Dampening
    • Coexistence of BGP for IPv4 and IPv6
    • Summary

    Lesson 7: Module Summary

    • References

    Lesson 8: Module Self-Check


Module 6: Expanding the Existing Network


    Lesson 1: Understanding Quality of Service
    • Traffic Characteristics
    • Need for QoS
    • QoS Mechanisms Overview
    • Trust Boundary
    • QoS Mechanisms Classification and Marking
    • Classification Tools
    • QoS Mechanisms Policing, Shaping, and Re-Marking
    • Tools for Managing Congestion
    • Tools for Congestion Avoidance
    • QoS Deployment Principles
    • Recommended Practice QoS Design Principles
    • Design Strategies
    • Summary

    Lesson 2: Supporting Wireless Access

    • Introduction to Wireless LAN Networks
    • Autonomous WLAN Architecture
    • Centralized WLAN Architecture
    • Speciality WLAN Architecture: Wireless Bridge
    • Cloud-Enabled WLAN Architecture
    • LAN Bandwidth Considerations
    • Trunk and VLAN Configuration
    • WLAN and PoE
    • WLAN and End-to-End QoS
    • Supporting Wireless Security
    • Summary

    Lesson 3: Integrating Collaboration

    • Collaboration Overview
    • Collaboration Building Blocks
    • Supporting IP Telephony
    • Voice VLAN
    • Protocols of IP Telephony
    • Collaboration Traffic
    • Traffic Patterns
    • Assuring Good User Experience
    • Summary

    Lesson 4: Module Summary

    • References

    Lesson 5: Module Self-Check


Module 7: IP Addressing Design


    Lesson 1: Concepts of Good IP Addressing
    • IP Addressing Goals
    • Planning IP Addressing
    • Planning Addressing for the Future
    • Route Summarization with IPv4
    • Route Summarization with IPv6
    • Public and Private Addressing
    • Avoiding Re-Addressing
    • Summary

    Lesson 2: Creating an Addressing Plan for IPv4

    • Planning the IP Addressing Hierarchy
    • Creating an Addressing Plan
    • Case Study: IPv4 Address Space
    • Case Study: Resolving Overlapping Address Ranges
    • Allocating More IP Addresses
    • Voice Overlay Subnets
    • Need for Loopbacks
    • Summary

    Lesson 3: IPv6 Addressing

    • Benefits and Challenges of IPv6 Addressing
    • Structure of an IPv6 Address
    • IPv6 for an Enterprise
    • IPv6 Address Allocation: Linked IPv4 Into IPv6
    • IPv6 Address Allocation: Per Location/Type
    • Case Study: Location-Based Subnetting
    • Case Study: Type-Based Subnetting
    • IPv6 Address Allocation: Per VLAN
    • IPv4 and IPv6 Coexistence
    • Summary

    Lesson 4: Supporting IP Addressing

    • IP Address Management
    • IPv4 Address Assignment Recommended Practices
    • IPv6 Address Assignment Recommended Practices
    • DNS Recommended Practices
    • Case Study: DHCP and DNS Servers in a Network
    • Summary

    Lesson 5: Module Summary

    • References

    Lesson 6: Module Self-Check


Module 8: Introduction to Software Defined Networks


    Lesson 1: SDN Overview
    • SDN Definition
    • Need for SDN
    • Path to Network Programmability
    • SDN Flavors
    • SDN Framework
    • SDN Controllers
    • Southbound APIs
    • Northbound APIs
    • OpenFlow
    • OpenDaylight
    • Cisco ACI
    • Summary

    Lesson 2: Module Self-Check

Written Labs Outline

Challenge 1: Ask the Right Questions

  • Ask Design Questions About Customer's Design Requests

Challenge 2: Design Branch's LAN

  • Create High-Level Design for Branch LAN
  • Determine Needed Configuration Changes
  • Create A Draft BOM

Challenge 3: Design Branchs Connections to the HQ

  • Selecting Router for the Branch Office
  • Design Single-MPLS/VPN Connection to Branch
  • Design Dual-MPLS/VPN Connection to Branch
  • Design Primary MPLS/VPN and Secondary VPN over Internet

Challenge 4: Design Branchs Routing

  • Improve Scalability of Existing OSPF Design
  • Design Routing for Local Internet Connectivity for New Branch
  • Best Path Optimization

Challenge 5: Design Support for Wireless and Collaboration

  • Verify That the Infrastructure Supports Collaboration and Wireless Designs
  • Help to Design QoS Policy for WAN Links

Challenge 6: Design IPv4 Addressing Plan

  • Re-design Branch 1 IPv4 Address Space
  • Re-design Branch 2 IPv4 Address Space
  • Design Branch 3 IPv4 Address Space

Challenge 7: Design IPv6 Addressing Plan

  • Design a General IPv6 Addressing for Customers Network