CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide

This document was uploaded by one of our users. The uploader already confirmed that they had the permission to publish it. If you are author/publisher or own the copyright of this documents, please report to us by using this DMCA report form.

Simply click on the Download Book button.

Yes, Book downloads on Ebookily are 100% Free.

Sometimes the book is free on Amazon As well, so go ahead and hit "Search on Amazon"

CCNP Enterprise Core ENCOR 300-401 Official Cert Guide is a comprehensive self-study tool for preparing for the new ENCOR exam. Complete coverage of all exam topics as posted on the exam topic blueprint ensures students will arrive at a thorough understanding of what they need to master to succeed on the exam. The book follows a logical organization of the ENCOR exam objectives. Material is presented in a concise manner, focusing on increasing readers' retention and recall of exam topics. Readers will organize their exam preparation through the use of the consistent features in these chapters.

Author(s): Brad Edgeworth, Ramiro Garza Rios, David Hucaby, Jason Gooley
Edition: 1
Publisher: Cisco Press
Year: 2019

Language: English
Pages: 1073

Cover
Title Page
Copyright Page
About the Authors
About the Technical Reviewers
Dedication
Acknowledgments
Contents
Introduction
Part I: Forwarding
Chapter 1 Packet Forwarding
“Do I Know This Already?” Quiz
Foundation Topics
Network Device Communication
Layer 2 Forwarding
Collision Domains
Virtual LANs
Access Ports
Trunk Ports
Layer 2 Diagnostic Commands
Layer 3 Forwarding
Local Network Forwarding
Packet Routing
IP Address Assignment
Verification of IP Addresses
Forwarding Architectures
Process Switching
Cisco Express Forwarding
Ternary Content Addressable Memory
Centralized Forwarding
Distributed Forwarding
Software CEF
Hardware CEF
Stateful Switchover
SDM Templates
Exam Preparation Tasks
Part II: Layer
Chapter 2 Spanning Tree Protocol
“Do I Know This Already?” Quiz
Foundation Topics
Spanning Tree Protocol Fundamentals
IEEE 802.1D STP
802.1D Port States
802.1D Port Types
STP Key Terminology
Spanning Tree Path Cost
Building the STP Topology
Root Bridge Election
Locating Root Ports
Locating Blocked Designated Switch Ports
Verification of VLANS on Trunk Links
STP Topology Changes
Converging with Direct Link Failures
Indirect Failures
Rapid Spanning Tree Protocol
RSTP (802.1W) Port States
RSTP (802.1W) Port Roles
RSTP (802.1W) Port Types
Building the RSTP Topology
Exam Preparation Tasks
Chapter 3 Advanced STP Tuning
“Do I Know This Already?” Quiz
Foundation Topics
STP Topology Tuning
Root Bridge Placement
Modifying STP Root Port and Blocked Switch Port Locations
Modifying STP Port Priority
Additional STP Protection Mechanisms
Root Guard
STP Portfast
BPDU Guard
BPDU Filter
Problems with Unidirectional Links
STP Loop Guard
Unidirectional Link Detection
Exam Preparation Tasks
Chapter 4 Multiple Spanning Tree Protocol
“Do I Know This Already?” Quiz
Foundation Topics
Multiple Spanning Tree Protocol
MST Instances (MSTIs)
MST Configuration
MST Verification
MST Tuning
Common MST Misconfigurations
VLAN Assignment to the IST
Trunk Link Pruning
MST Region Boundary
MST Region as the Root Bridge
MST Region Not a Root Bridge for Any VLAN
Exam Preparation Tasks
Chapter 5 VLAN Trunks and EtherChannel Bundles
“Do I Know This Already?” Quiz
Foundation Topics
VLAN Trunking Protocol
VTP Communication
VTP Configuration
VTP Verification
Dynamic Trunking Protocol
EtherChannel Bundle
Dynamic Link Aggregation Protocols
PAgP Port Modes
LACP Port Modes
EtherChannel Configuration
Verifying Port-Channel Status
Viewing EtherChannel Neighbors
LACP
PAgP
Verifying EtherChannel Packets
LACP
PAgP
Advanced LACP Configuration Options
LACP Fast
Minimum Number of Port-Channel Member Interfaces
Maximum Number of Port-Channel Member Interfaces
LACP System Priority
LACP Interface Priority
Troubleshooting EtherChannel Bundles
Load Balancing Traffic with EtherChannel Bundles
Exam Preparation Tasks
Part III: Routing
Chapter 6 IP Routing Essentials
“Do I Know This Already?” Quiz
Foundation Topics
Routing Protocol Overview
Distance Vector Algorithms
Enhanced Distance Vector Algorithms
Link-State Algorithms
Path Vector Algorithm
Path Selection
Prefix Length
Administrative Distance
Metrics
Equal Cost Multipathing
Unequal-Cost Load Balancing
Static Routing
Static Route Types
Directly Attached Static Routes
Recursive Static Routes
Fully Specified Static Routes
Floating Static Routing
Static Null Routes
IPv6 Static Routes
Virtual Routing and Forwarding
Exam Preparation Tasks
Chapter 7 EIGRP
“Do I Know This Already?” Quiz
Foundation Topics
EIGRP Fundamentals
Autonomous Systems
EIGRP Terminology
Topology Table
EIGRP Neighbors
Path Metric Calculation
Wide Metrics
Metric Backward Compatibility
Load Balancing
Failure Detection and Timers
Convergence
Route Summarization
Exam Preparation Tasks
Chapter 8 OSPF
“Do I Know This Already?” Quiz
Foundation Topics
OSPF Fundamentals
Inter-Router Communication
OSPF Hello Packets
Router ID
Neighbors
Designated Router and Backup Designated Router
OSPF Configuration
OSPF Network Statement
Interface-Specific Configuration
Statically Setting the Router ID
Passive Interfaces
Requirements for Neighbor Adjacency
Sample Topology and Configuration
Confirmation of Interfaces
Verification of OSPF Neighbor Adjacencies
Verification of OSPF Routes
Default Route Advertisement
Common OSPF Optimizations
Link Costs
Failure Detection
Hello Timer
Dead Interval Timer
Verifying OSPF Timers
DR Placement
Designated Router Elections
DR and BDR Placement
OSPF Network Types
Broadcast
Point-to-Point Networks
Loopback Networks
Exam Preparation Tasks
Chapter 9 Advanced OSPF
“Do I Know This Already?” Quiz
Foundation Topics
Areas
Area ID
OSPF Route Types
Link-State Announcements
LSA Sequences
LSA Age and Flooding
LSA Types
LSA Type 1: Router Link
LSA Type 2: Network Link
LSA Type 3: Summary Link
Discontiguous Networks
OSPF Path Selection
Intra-Area Routes
Interarea Routes
Equal-Cost Multipathing
Summarization of Routes
Summarization Fundamentals
Interarea Summarization
Summarization Metrics
Configuration of Interarea Summarization
Route Filtering
Filtering with Summarization
Area Filtering
Local OSPF Filtering
Exam Preparation Tasks
Chapter 10 OSPFv3
“Do I Know This Already?” Quiz
Foundation Topics
OSPFv3 Fundamentals
OSPFv3 Link-State Advertisement
OSPFv3 Communication
OSPFv3 Configuration
OSPFv3 Verification
Passive Interface
Summarization
Network Type
IPv4 Support in OSPFv3
Exam Preparation Tasks
Chapter 11 BGP
“Do I Know This Already?” Quiz
Foundation Topics
BGP Fundamentals
Autonomous System Numbers
Path Attributes
Loop Prevention
Address Families
Inter-Router Communication
BGP Session Types
BGP Messages
BGP Neighbor States
Idle
Connect
Active
OpenSent
OpenConfirm
Established
Basic BGP Configuration
Verification of BGP Sessions
Prefix Advertisement
Receiving and Viewing Routes
BGP Route Advertisements from Indirect Sources
Route Summarization
Aggregate Address
Atomic Aggregate
Route Aggregation with AS_SET
Multiprotocol BGP for IPv6
IPv6 Configuration
IPv6 Summarization
Exam Preparation Tasks
Chapter 12 Advanced BGP
“Do I Know This Already?” Quiz
Foundation Topics
BGP Multihoming
Resiliency in Service Providers
Internet Transit Routing
Branch Transit Routing
Conditional Matching
Access Control Lists
Standard ACLs
Extended ACLs
Prefix Matching
Prefix Lists
IPv6 Prefix Lists
Regular Expressions (regex)
Route Maps
Conditional Matching
Multiple Conditional Match Conditions
Complex Matching
Optional Actions
The continue Keyword
BGP Route Filtering and Manipulation
Distribute List Filtering
Prefix List Filtering
AS Path ACL Filtering
Route Maps
Clearing BGP Connections
BGP Communities
Well-Known Communities
Enabling BGP Community Support
Conditionally Matching BGP Communities
Setting Private BGP Communities
Understanding BGP Path Selection
Routing Path Selection Using Longest Match
BGP Best Path Overview
Weight
Local Preference
Locally Originated via Network or Aggregate Advertisement
Accumulated Interior Gateway Protocol
Shortest AS Path
Origin Type
Multi-Exit Discriminator
eBGP over iBGP
Lowest IGP Metric
Prefer the Oldest eBGP Path
Router ID
Minimum Cluster List Length
Lowest Neighbor Address
Exam Preparation Tasks
Chapter 13 Multicast
“Do I Know This Already?” Quiz
Foundation Topics
Multicast Fundamentals
Multicast Addressing
Layer 2 Multicast Addresses
Internet Group Management Protocol
IGMPv2
IGMPv3
IGMP Snooping
Protocol Independent Multicast
PIM Distribution Trees
Source Trees
Shared Trees
PIM Terminology
PIM Dense Mode
PIM Sparse Mode
PIM Shared and Source Path Trees
Shared Tree Join
Source Registration
PIM SPT Switchover
Designated Routers
Reverse Path Forwarding
PIM Forwarder
Rendezvous Points
Static RP
Auto-RP
Candidate RPs
RP Mapping Agents
PIM Bootstrap Router
Candidate RPs
Exam Preparation Tasks
Part IV: Services
Chapter 14 QoS
“Do I Know This Already?” Quiz
Foundation Topics
The Need for QoS
Lack of Bandwidth
Latency and Jitter
Propagation Delay
Serialization Delay
Processing Delay
Delay Variation
Packet Loss
QoS Models
Classification and Marking
Classification
Layer 7 Classification
Marking
Layer 2 Marking
Layer 3 Marking
DSCP Per-Hop Behaviors
Class Selector (CS) PHB
Default Forwarding (DF) PHB
Assured Forwarding (AF) PHB
Expedited Forwarding (EF) PHB
Scavenger Class
Trust Boundary
A Practical Example: Wireless QoS
Policing and Shaping
Placing Policers and Shapers in the Network
Markdown
Token Bucket Algorithms
Types of Policers
Single-Rate Two-Color Markers/Policers
Single-Rate Three-Color Markers/Policers (srTCM)
Two-Rate Three-Color Markers/Policers (trTCM)
Congestion Management and Avoidance
Congestion Management
Congestion-Avoidance Tools
Exam Preparation Tasks
Chapter 15 IP Services
“Do I Know This Already?” Quiz
Foundation Topics
Time Synchronization
Network Time Protocol
NTP Configuration
Stratum Preference
NTP Peers
First-Hop Redundancy Protocol
Object Tracking
Hot Standby Router Protocol
Virtual Router Redundancy Protocol
Legacy VRRP Configuration
Hierarchical VRRP Configuration
Global Load Balancing Protocol
Network Address Translation
NAT Topology
Static NAT
Inside Static NAT
Outside Static NAT
Pooled NAT
Port Address Translation
Exam Preparation Tasks
Part V: Overlay
Chapter 16 Overlay Tunnels
“Do I Know This Already?” Quiz
Foundation Topics
Generic Routing Encapsulation (GRE) Tunnels
GRE Tunnel Configuration
GRE Configuration Example
Problems with Overlay Networks: Recursive Routing
IPsec Fundamentals
Authentication Header
Encapsulating Security Payload
Transform Sets
Internet Key Exchange
IKEv1
IKEv2
IPsec VPNs
Cisco Dynamic Multipoint VPN (DMVPN)
Cisco Group Encrypted Transport VPN (GET VPN)
Cisco FlexVPN
Remote VPN Access
Site-to-Site IPsec Configuration
Site-to-Site GRE over IPsec
Site-to-Site VTI over IPsec
Cisco Location/ID Separation Protocol (LISP)
LISP Architecture and Protocols
LISP Routing Architecture
LISP Control Plane
LISP Data Plane
LISP Operation
Map Registration and Notification
Map Request and Reply
LISP Data Path
Proxy ITR (PITR)
Virtual Extensible Local Area Network (VXLAN)
Exam Preparation Tasks
Part VI: Wireless
Chapter 17 Wireless Signals and Modulation
“Do I Know This Already?” Quiz
Foundation Topics
Understanding Basic Wireless Theory
Understanding Frequency
Understanding Phase
Measuring Wavelength
Understanding RF Power and dB
Important dB Laws to Remember
Comparing Power Against a Reference: dBm
Measuring Power Changes Along the Signal Path
Free Space Path Loss
Understanding Power Levels at the Receiver
Carrying Data Over an RF Signal
Maintaining AP–Client Compatibility
Using Multiple Radios to Scale Performance
Spatial Multiplexing
Transmit Beamforming
Maximal-Ratio Combining
Maximizing the AP–Client Throughput
Exam Preparation Tasks
Chapter 18 Wireless Infrastructure
“Do I Know This Already?” Quiz
Foundation Topics
Wireless LAN Topologies
Autonomous Topology
Lightweight AP Topologies
Pairing Lightweight APs and WLCs
AP States
Discovering a WLC
Selecting a WLC
Maintaining WLC Availability
Cisco AP Modes
Leveraging Antennas for Wireless Coverage
Radiation Patterns
Gain
Beamwidth
Polarization
Omnidirectional Antennas
Directional Antennas
Exam Preparation Tasks
Chapter 19 Understanding Wireless Roaming and Location Services
“Do I Know This Already?” Quiz
Foundation Topics
Roaming Overview
Roaming Between Autonomous APs
Intracontroller Roaming
Roaming Between Centralized Controllers
Layer 2 Roaming
Layer 3 Roaming
Scaling Mobility with Mobility Groups
Locating Devices in a Wireless Network
Exam Preparation Tasks
Chapter 20 Authenticating Wireless Clients
“Do I Know This Already?” Quiz
Foundation Topics
Open Authentication
Authenticating with Pre-Shared Key
Authenticating with EAP
Configuring EAP-Based Authentication with External RADIUS Servers
Configuring EAP-Based Authentication with Local EAP
Verifying EAP-Based Authentication Configuration
Authenticating with WebAuth
Exam Preparation Tasks
Chapter 21 Troubleshooting Wireless Connectivity
“Do I Know This Already?” Quiz
Foundation Topics
Troubleshooting Client Connectivity from the WLC
Checking the Client’s Connection Status
Checking the Client’s Association and Signal Status
Checking the Client’s Mobility State
Checking the Client’s Wireless Policies
Testing a Wireless Client
Troubleshooting Connectivity Problems at the AP
Exam Preparation Tasks
Part VII: Architecture
Chapter 22 Enterprise Network Architecture
“Do I Know This Already?” Quiz
Foundation Topics
Hierarchical LAN Design Model
Access Layer
Distribution Layer
Core Layer
Enterprise Network Architecture Options
Two-Tier Design (Collapsed Core)
Three-Tier Design
Layer 2 Access Layer (STP Based)
Layer 3 Access Layer (Routed Access)
Simplified Campus Design
Software-Defined Access (SD-Access) Design
Exam Preparation Tasks
Chapter 23 Fabric Technologies
“Do I Know This Already?” Quiz
Foundation Topics
Software-Defined Access (SD-Access)
What Is SD-Access?
SD-Access Architecture
Physical Layer
Network Layer
Underlay Network
Overlay Network (SD-Access Fabric)
SD-Access Fabric Roles and Components
Fabric Control Plane Node
SD-Access Fabric Concepts
Controller Layer
Management Layer
Cisco DNA Design Workflow
Cisco DNA Policy Workflow
Cisco DNA Provision Workflow
Cisco DNA Assurance Workflow
Software-Defined WAN (SD-WAN)
Cisco SD-WAN Architecture
vManage NMS
vSmart Controller
Cisco SD-WAN Routers (vEdge and cEdge)
vBond Orchestrator
vAnalytics
Cisco SD-WAN Cloud OnRamp
Cloud OnRamp for SaaS
Cloud OnRamp for IaaS
Exam Preparation Tasks
Chapter 24 Network Assurance
Do I Know This Already?
Foundation Topics
Network Diagnostic Tools
ping
traceroute
Debugging
Conditional Debugging
Simple Network Management Protocol (SNMP)
syslog
NetFlow and Flexible NetFlow
Switched Port Analyzer (SPAN) Technologies
Local SPAN
Specifying the Source Ports
Specifying the Destination Ports
Local SPAN Configuration Examples
Remote SPAN (RSPAN)
Encapsulated Remote SPAN (ERSPAN)
Specifying the Source Ports
Specifying the Destination
IP SLA
Cisco DNA Center Assurance
Exam Preparation Tasks
Part VIII: Security
Chapter 25 Secure Network Access Control
“Do I Know This Already?” Quiz
Foundation Topics
Network Security Design for Threat Defense
Next-Generation Endpoint Security
Cisco Talos
Cisco Threat Grid
Cisco Advanced Malware Protection (AMP)
Cisco AnyConnect
Cisco Umbrella
Cisco Web Security Appliance (WSA)
Before an Attack
During an Attack
After an Attack
Cisco Email Security Appliance (ESA)
Next-Generation Intrusion Prevention System (NGIPS)
Next-Generation Firewall (NGFW)
Cisco Firepower Management Center (FMC)
Cisco Stealthwatch
Cisco Stealthwatch Enterprise
Cisco Stealthwatch Cloud
Cisco Identity Services Engine (ISE)
Network Access Control (NAC)
802.1x
EAP Methods
EAP Chaining
MAC Authentication Bypass (MAB)
Web Authentication (WebAuth)
Local Web Authentication
Central Web Authentication with Cisco ISE
Enhanced Flexible Authentication (FlexAuth)
Cisco Identity-Based Networking Services (IBNS) 2.0
Cisco TrustSec
Ingress Classification
Propagation
Egress Enforcement
MACsec
Downlink MACsec
Uplink MACsec
Exam Preparation Tasks
Chapter 26 Network Device Access Control and Infrastructure Security
“Do I Know This Already?” Quiz
Foundation Topics
Access Control Lists (ACLs)
Numbered Standard ACLs
Numbered Extended ACLs
Named ACLs
Port ACLs (PACLs) and VLAN ACLs (VACLs)
PACLs
VACLs
PACL, VACL, and RACL Interaction
Terminal Lines and Password Protection
Password Types
Password Encryption
Username and Password Authentication
Configuring Line Local Password Authentication
Verifying Line Local Password Authentication
Configuring Line Local Username and Password Authentication
Verifying Line Local Username and Password Authentication
Privilege Levels and Role-Based Access Control (RBAC)
Verifying Privilege Levels
Controlling Access to vty Lines with ACLs
Verifying Access to vty Lines with ACLs
Controlling Access to vty Lines Using Transport Input
Verifying Access to vty Lines Using Transport Input
Enabling SSH vty Access
Auxiliary Port
EXEC Timeout
Absolute Timeout
Authentication, Authorization, and Accounting (AAA)
TACACS+
RADIUS
Configuring AAA for Network Device Access Control
Verifying AAA Configuration
Zone-Based Firewall (ZBFW)
The Self Zone
The Default Zone
ZBFW Configuration
Verifying ZBFW
Control Plane Policing (CoPP)
Configuring ACLs for CoPP
Configuring Class Maps for CoPP
Configuring the Policy Map for CoPP
Applying the CoPP Policy Map
Verifying the CoPP Policy
Device Hardening
Exam Preparation Tasks
Part IX: SDN
Chapter 27 Virtualization
“Do I Know This Already?” Quiz
Foundation Topics
Server Virtualization
Virtual Machines
Containers
Virtual Switching
Network Functions Virtualization
NFV Infrastructure
Virtual Network Functions
Virtualized Infrastructure Manager
Element Managers
Management and Orchestration
Operations Support System (OSS)/Business Support System (BSS)
VNF Performance
OVS-DPDK
PCI Passthrough
SR-IOV
Cisco Enterprise Network Functions Virtualization (ENFV)
Cisco ENFV Solution Architecture
Exam Preparation Tasks
Chapter 28 Foundational Network Programmability Concepts
“Do I Know This Already?” Quiz
Foundation Topics
Command-Line Interface
Application Programming Interface
Northbound API
Southbound API
Representational State Transfer (REST) APIs
API Tools and Resources
Introduction to Postman
Data Formats (XML and JSON)
Cisco DNA Center APIs
Cisco vManage APIs
Data Models and Supporting Protocols
YANG Data Models
NETCONF
RESTCONF
Cisco DevNet
Discover
Technologies
Community
Support
Events
GitHub
Basic Python Components and Scripts
Exam Preparation Tasks
Chapter 29 Introduction to Automation Tools
“Do I Know This Already?” Quiz
Foundation Topics
Embedded Event Manager
EEM Applets
EEM and Tcl Scripts
EEM Summary
Agent-Based Automation Tools
Puppet
Chef
SaltStack (Agent and Server Mode)
Agentless Automation Tools
Ansible
Puppet Bolt
SaltStack SSH (Server-Only Mode)
Comparing Tools
Exam Preparation Tasks
Chapter 30 Final Preparation
Getting Ready
Tools for Final Preparation
Pearson Test Prep Practice Test Software and Questions on the Website
Accessing the Pearson Test Prep Software Online
Accessing the Pearson Test Prep Software Offline
Customizing Your Exams
Updating Your Exams
Premium Edition
Chapter-Ending Review Tools
Suggested Plan for Final Review/Study
Summary
Glossary
A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T
U
V
W–X
Y
Z
Appendix A: Answers to the “Do I Know This Already?” Questions
Appendix B: CCNP Enterprise Core ENCOR 350-401 Official Cert Guide Exam Updates
Index
A
B
C
D
E
F
G
H
I
J-K
L
M
N
O
P
Q
R
S
T
U
V
W
X
Y
Z