ACI for Service Providers

Session Detail:    Virtual 5 Day

ACI for Service Providers (SPACI) is a 5-day course that provides ACI use cases for Service Provider environments including policy-driven configurations and design details, multi-tenant internal and external network integration and migration, routing protocol exploration, security implications, and disaster recovery solutions. Students will perform various scenario-driven configurations and testing in lab exercises using hand-on labs. Students will learn how to simplify complex routing deployments and reduce the time and cost required to provision customer networking needs while maintaining both ACI and non-ACI networks. Students will learn to support site redundancy including disaster recovery solutions both at the customer site and public cloud provider levels while maintaining the integrity of customer data and hardening of sensitive information.

About this Course

ACI for Service Providers (SPACI) is a 5-day course that provides ACI use cases for Service Provider environments including policy-driven configurations and design details, multi-tenant internal and external network integration and migration, routing protocol exploration, security implications, and disaster recovery solutions. Students will perform various scenario-driven configurations and testing in lab exercises using hand-on labs. Students will learn how to simplify complex routing deployments and reduce the time and cost required to provision customer networking needs while maintaining both ACI and non-ACI networks. Students will learn to support site redundancy including disaster recovery solutions both at the customer site and public cloud provider levels while maintaining the integrity of customer data and hardening of sensitive information.

Audience Profile

Primary audience for this course is :

  • Service Providers deploying Cisco ACI

At Course Completion

After you complete this course students will be able to:

  • Deploy Multi-tenant Configurations
  • Configure ACI for Advanced OSPF
  • Configure ACI for BGP internal environments
  • Configure BGP for External reachability
  • Configure ACI for Disaster Recovery
  • Understand Service Graph Insertion
  • Design Service Graphs
  • Deploy ACI Securely

Prerequisites

Before attending this course, students should have the following:

  • Familiarity with Cisco UCS and ACICourse

Session Outline

Class Outline

Module 1: ACI Fundamentals

  • Review ACI concepts and principles
  • Policy and the ACI policy model in particular
  • Differentiate between the policy and the network
  • Define application logic through policy
  • Provider and consumer relationships
  • Understand how to automate infrastructure through policy
  • Review policy instantiation
  • Spine/leaf single-site topology
  • ACI management networks
  • Extended VXLAN
  • Unicast forwarding
  • Multicast forwarding
  • Distributed Layer 3 gateway
  • ACI as a gateway
  • Flowlet dynamic load-balancing

Module 2: Endpoint Groups (EPG) Usage and Design

  • Current Network Definition of Applications
  • ACI Endpoint Groups
  • Mapping traditional network constructs to the ACI fabric
  • Utilizing the ACI fabric for stateless network abstraction

Module 3: ACI Layer 3 Connection to an Outside Network

  • Border Leaves
  • Route Distribution within the ACI Fabric
  • OSPF Routing Protocol Peering between ACI and the External Router
  • IBGP Routing Protocol Peering between the ACI and External Router
  • Forwarding and Policy Model with ACI Layer 3 Outside Connection
  • ACI Layer 2 Connection to the Outside Network
  • Remote VXLAN Tunnel Endpoint (VTEP)

Module 4: Border Gateway Protocol (BGP) for External Network Reachability

  • BGP Network Topology
  • Fabric Setup for External Network Peering
  • iBGP Peering Options with an External Network
  • WAN Router Sample Configuration
  • ACI BGP Sample Configuration for ISP1
  • Bridge Domain
  • External Routed Network
  • Route Profile
  • ACI BGP Sample Configuration for ISP2
  • BGP Configuration and Statistic Validation

Module 5: Disaster Recovery Design

  • Naming Conventions, IP Addresses, and VLANs
  • Design Requirements
  • Disaster Recovery Topology and Service Flows
  • Service Architecture Design
  • Traffic Flow
  • Services Integration
  • Virtual Machine Networking
  • Management Network in Cisco ACI

Module 6: Service Insertion

  • Introduction
  • Cisco ACI Modeling of Service Insertion
  • Configuration Steps

Module 7: Service Graph Design

  • Introduction
  • When to Use the Service Graph
  • Service Graphs, Functions, and Rendering
  • Layer 4 Through Layer 7 Parameters
  • Management Model
  • Workflow
  • Device Package
  • Physical and Virtual Domains
  • Topology Choices
  • Cisco ACI Modeling of Service Insertion
  • Configuring vPC Connectivity at the Concrete Device Level
  • L4-L7 Parameters at the Concrete Device Level
  • Deployment with the Service Graph Template
  • Troubleshooting

Module 8: Cisco ACI Security

  • Host Virtualization-Based Software Overlay Issues
  • Cisco ACI Whitelist-Based Policy Model Supports Zero-Trust Security Architecture
  • Cisco ACI Policy Supports Workload Mobility
  • Centralized Policy Lifecycle Management and Layer 4 Through 7 Service Automation
  • Open and Extensible Policy Framework Supports Defense in Depth
  • Secure Multitenancy and Built-in Stateless Layer 4 Firewall
  • Automated Policy Compliance
  • Deep Visibility and Accelerated Threat Detection and Mitigation Detailed Course Overview

Labs

  • Lab 1: Initial Tenant Configuration
  • Lab 2: Configure EPG for Shared Services (DNS)
  • Lab 3: Configure OSPF for various situations
  • Lab 4: Configure BGP for various situations
  • Lab 5: Configure a Tenant DMZ
  • Lab 6: Configure Complex Service Graph
  • Lab 7: Deploy Multi-Tenancy Security

Need to train your team?

All of our sessions can be customized to meet your team’s specific need. Build the perfect program by picking and choosing topics from any of the courses in our catalog. A personalized private session gives you the ultimate flexibility and helps maximize your team’s valuable time!

Requesting Team Training
DateTimeTypePriceAdd To Cart

ACI for Service Providers

5 Day
Virtual

$4,795.00

Chat with a Coach

Chat with a Coach

Have a more immediate need? Why spend the next hour searching online for answers when you can spend just 15 minutes with one of our experts and get accurate and personalized answers to all of your questions. 

$9.99 | 15 Minutes

Book Now