Implementing Cisco Switched Networks (SWITCH v1.0)

Request a Quote for this class

About this Course

Implementing Cisco Switched Networks (SWITCH) v1.0 is a five-day instructor-led training course, designed to help students prepare to plan, configure, and verify the implementation of complex enterprise switching solutions for campus environments using the Cisco Enterprise Campus Architecture. These skills are validated in the Cisco CCNP Routing and Switching certification, a professional-level certification specializing in the routing and switching field. This course is a component of the Cisco CCNP Routing and Switching curriculum. This course is designed to give students a firm understanding of how to manage switches in an enterprise campus environment. This training class reinforces the instruction by providing students with hands-on labs

Audience Profile

The primary audience for this course is as follows:

  • A network professional who will need to correctly implement switch-based solutions given a network design using Cisco IOS services and features. The typical job roles for this type of professional are network engineers, network operations center (NOC) technical support personnel, or help desk technicians.

The secondary audience for this course is as follows:

  • Any individual involved in network operations and support.

Prerequisites

The knowledge and skills that a learner must have before attending this course include the following:

  • Knowledge and experience equivalent to having attended the Interconnecting Cisco Networking Devices Part 1 (ICND1) and Interconnecting Cisco Networking Devices Part 2 (ICND2) courses. This includes knowledge and experience of the following issues:
  • Network function, the functions of network components, the Open Systems Interconnection (OSI) reference model, and the ability to identify major network components
  • Use of the host-to-host packet delivery process to describe issues related to increasing traffic on an Ethernet LAN and identifying switched LAN technology solutions to Ethernet networking issues
  • The reasons for extending the reach of a LAN, and the methods that can be used to extend this reach, with a focus on RF wireless access
  • The reasons for connecting networks with routers, and how routed networks transmit data through the use of TCP/IP
  • The function of WANs and major WAN devices; configuration of PPP encapsulation, static and dynamic routing, and Port Address Translation (PAT) and Routing Information Protocol (RIP) routing
  • Use of the command-line interface (CLI) to discover neighbors on the network and manage router startup and configuration
  • How to configure and troubleshoot a small network
  • How to expand a small-sized, switched LAN to a medium-sized LAN with multiple switches, supporting VLANs, trunking, and spanning tree
  • Routing concepts as they apply to a medium-sized network and considerations when implementing routing on the network
  • Configuring, verifying, and troubleshooting Open Shortest Path First (OSPF)
  • Configuring, verifying, and troubleshooting Enhanced Interior Gateway Routing Protocol (EIGRP)
  • How to apply access control lists (ACLs) based on network requirements, and configure, verify, and troubleshoot ACLs on a medium-sized network
  • When to use Network Address Translation (NAT) or PAT on a medium-sized network and configure NAT or PAT on routers, and knowledge of IPv6 addressing and configuration IPv6 in a Cisco router
  • How to identify and implement the appropriate WAN technology based on network requirements

Course Outline

Module 1: Analyzing Campus Network Designs

Lesson 1: Enterprise Campus Architecture

Objectives:

  • Describe Cisco SONA
  • Evaluate the benefits of the enterprise campus architecture
  • Determine the function of the core layer
  • Evaluate the impact of traffic types on the network infrastructure

Lesson 2: Cisco Lifecycle Services and Network Implementation

Objectives:

  • Describe the PPDIOO life-cycle approach
  • Describe PPDIOO implementation planning

Lab 1-1: New Hire Test

Objectives:

  • Prepare basic configuration templates for your switches
  • Explore the remote lab device connections
  • Deploy configuration templates on your switches
  • Verify your configurations according to the verification plan you created

Lesson 3: Lab 1-1 Debrief

Objectives:

  • Review and verify your solution, as well as your findings and action log, against a set of checkpoints provided by the instructor.
  • Consolidate the lessons learned during the review discussions into a set of best practice methods and commands to aid you in future deployment procedures.

Module 2: Implementing VLANs in Campus Networks

Lesson 1: Applying Best Practices for VLAN Topologies

Objectives:

  • Describe the different VLAN segmentation models
  • Given an enterprise VLAN network design, describe the information needed to create an implementation plan, identify the choices that need to be made, and analyze the consequences of those choices
  • Given an enterprise VLAN network design that contains end-to-end VLANs and trunks, create an implementation and verification plan; then successfully execute that plan
  • Given an enterprise VLAN network design that contains VTP, create an implementation and verification plan; then successfully execute that plan

Lesson 2: Configuring Private VLANs

Objectives:

  • Describe PVLANs
  • Configure isolated PVLANs
  • Configure community PVLANs
  • Given an enterprise VLAN network design that contains PVLANs, create an implementation and verification plan; then successfully execute that plan
  • Configure PVLANs across multiple switches

Lesson 3: Configuring Link Aggregation with EtherChannel

Objectives:

  • Understand the benefits of EtherChannel
  • Compare the PAgP and the LACP
  • Given an enterprise VLAN network design that contains Layer 2 EtherChannel links, create an implementation and verification plan; then successfully execute that plan
  • Given an enterprise VLAN network design that contains load balancing among the ports included in an EtherChannel, create an implementation and verification plan; then successfully execute that plan

Lab 2-1: Design and Implement VLANs, Trunks, and EtherChannel

Objectives:

  • Plan a segmented Layer 2 network implementation
  • Create a Layer 2 implementation and verification plan
  • Implement a full Layer 2 solution including VLANs, trunks, pruning, VTP, and EtherChannel

Lesson 4: Lab 2-1 Debrief

Objectives:

  • Discuss lab results

Lab 2-2: Troubleshoot Common VLAN Configuration and Security Issues

Objectives:

  • Diagnose and resolve Layer 2 connectivity problems
  • Diagnose and resolve VLAN and EtherChannel-related problems
  • Document troubleshooting progress, configuration changes, and problem resolution

Lesson 5: Lab 2-2 Debrief

Objectives:

  • Discuss lab results

Lab 2-3: Configure Private VLANs

Objectives:

  • Plan a segmented private VLAN implementation
  • Create a private VLAN implementation and verification plan
  • Implement private VLANs

Lesson 6: Lab 2-3 Debrief

Objectives:

  • Discuss lab results

Module 3: Implementing Spanning Tree

Lesson 1: Spanning Tree Protocol Enhancements

Objectives:

  • Describe the various STP standards
  • Describe STP operations
  • Implement and configure PVRST+
  • Understand RSTP port roles
  • Verify RSTP configurations
  • Describe MSTP
  • Implement and configure MSTP

Lesson 2: Describing STP Stability Mechanisms

Objectives:

  • Protect the operation of STP
  • Configure BPDUGuard
  • Configure BPDUFilter
  • Configure RootGuard
  • Configure LoopGuard
  • Configure UDLD to detect and shut down unidirectional links
  • Optimize STP operations by using the right combination of STP stability features

Lab 3-1: Implement Multiple Spanning Tree

Objectives:

  • Design a spanning tree
  • Create a spanning tree implementation plan
  • Implement a spanning tree according to an implementation plan.
  • Create a spanning tree verification plan
  • Verify the spanning tree according to the verification plan

Lesson 3: Lab 3-1 Debrief

Objectives:

  • Discuss lab results

Lab 3-2: Implement PVSRT+

Objectives:

  • Design a migration plan to PVRST+
  • Create a PVRST+ implementation plan
  • Implement PVRST+ according to implementation plan
  • Create a PVRST+ verification plan
  • Verify the PVRST+ spanning tree according to the verification plan

Lesson 4: Lab 3-2 Debrief

Objectives:

  • Discuss lab results

Lab 3-3: Troubleshoot Spanning Tree Issues

Objectives:

  • Develop a work plan to troubleshoot configuration and security issues in the STP
  • Isolate the causes of the problems
  • Correct all of the identified spanning tree issues
  • Document and report the troubleshooting findings and recommendations

Lesson 5: Lab 3-2 Debrief

Objectives:

  • Discuss lab results

Module 4: Implementing Inter-VLAN Routing

Lesson 1: Describing Routing Between VLANs

Objectives:

  • Configure both a switch and router to accommodate inter-VLAN packet transfer using an external router
  • Describe a Layer 3 SVI
  • Understand commands that are used to configure an SVI
  • Describe a routed port on a multilayer switch
  • Understand commands that are used to configure a routed port on a multilayer switch
  • Configure Layer 3 EtherChannel links
  • Configure inter-VLAN routing on a multilayer switch
  • Configure DHCP services on a Layer 3 switch

Lesson 2: Deploying Multilayer Switching with Cisco Express Forwarding

Objectives:

  • Understand the process of multilayer switching, and how it differs when you are performing Layer 2 versus Layer 3 switching
  • Understand the packet and frame header rewriting that is performed by a multilayer switch
  • Explain Layer 3 switch processing
  • Describe the various switching methods that are available on a Cisco switch
  • Describe and configure Cisco Express Forwarding on a Cisco switch

Lab 4-1: Implement Inter-VLAN Routing

Objectives:

  • Design a Layer 3 network
  • Create an implementation requirements list
  • Create a step-by-step implementation and verification plan
  • Implement and verify inter-VLAN routing and routing protocols

Lesson 3: Lab 4-1 Debrief

Objectives:

  • Discuss lab results

Lab 4-2 Troubleshoot Inter-VLAN Routing

Objectives:

  • Develop a work plan to troubleshoot configuration and inter-VLAN routing issues
  • Isolate the causes of the problems
  • Correct all of the identified routing issues
  • Test the corrections made
  • Document and report the troubleshooting findings and recommendations

Lesson 4: Lab 4-2 Debrief

Objectives:

  • Discuss lab results

Module 5: Implementing a Highly Available Network

Lesson 1: Understanding High Availability

Objectives:

  • Evaluate the uses, requirements, benefits, and performance expectations of high availability in a given enterprise network design
  • Describe resiliency for high availability
  • Design the network for optimal redundancy

Lesson 2: Implementing High Availability

Objectives:

  • Implement high availability at the switch levelUse Cisco StackWise technology on access switches
  • Evaluate the impact of too little redundancy
  • Assess the impact of uplink failure

Lesson 3: Implementing Network Monitoring

Objectives:

  • Implement network monitoringConfigure IP SLA technology

Lab 5-1: Implement High Availability in a Network Design

Objectives:

  • Design a high availability solution consisting of a syslog, SNMP reporting, and an IP SLA solution
  • Create an implementation requirements list
  • Create a step-by-step implementation and verification plan
  • Implement and verify your solution

Lesson 4: Lab 5-1 Debrief

Objectives:

  • Discuss lab results

Module 6: Implementing Layer 3 High Availability

Lesson 1: Configuring Layer 3 Redundancy with HSRP

Objectives:

  • Describe routing issuesIdentify the router redundancy process
  • Configure HSRP operations
  • Describe and fine-tune HSRP Troubleshoot HSRP

Lesson 2: Configuring Layer 3 Redundancy with VRRP and GLBP

Objectives:

  • Describe VRRPIdentify the VRRP operations process
  • Configure VRRP
  • Describe GLBP
  • Identify the GLBP operations process
  • Configure GLBP

Lab 6-1: Implement and Tune HSRP

Objectives:

  • Design an HSRP solution
  • Create an implementation requirements list
  • Create a step-by-step implementation and verification plan
  • Implement and verify your solution

Lesson 3: Lab 6-1 Debrief

Objectives:

  • Discuss lab results

Lab 6-2: Implement VRRP

Objectives:

  • Design a VRRP solution
  • Create an implementation requirements list
  • Create a step-by-step implementation and verification plan
  • Implement and verify your solution

Lesson 4: Lab 6-2 Debrief

Objectives:

  • Discuss lab results

Module 7: Minimizing Service Loss and Data Theft in a Campus Network

Lesson 1: Understanding Switch Security Issues

Objectives:

  • Describe switch and Layer 2 security as a subset of an overall network security plan
  • Describe how a rogue device gains unauthorized access to a network
  • Categorize switch attack types and list mitigation options
  • Describe how a MAC flooding attack works to overflow a CAM Campus Backbone Layer table
  • Describe how port security is used to block input from devices based on Layer 2 restrictions
  • Describe the procedure for configuring port security on a switch
  • Describe the methods that can be used for authentication using AAA
  • Describe port-based authentication using 802.1X

Lesson 2: Protecting Against VLAN Attacks

Objectives:

  • Describe how VLAN hopping occurs and why it is a security vulnerability
  • Explain the procedure for configuring a switch to mitigate VLAN hopping attacks
  • Describe VACLs and their purpose as part of VLAN security
  • Explain the procedure for configuring VACLs

Lesson 3: Protecting Against Spoofing Attacks

Objectives:

  • Identify DHCP spoofing attacks
  • Prevent attacks using DHCP snooping
  • Configure DHCP snooping
  • Describe ARP poisoning
  • Protect against ARP spoofing attacks with DAI

Lesson 4: Securing Network Services

Objectives:

  • Identify Cisco Discovery Protocol and LLDP vulnerabilities
  • Identify Telnet protocol vulnerabilities
  • Configure SSH
  • Configure vty ACLs
  • Configure Cisco IOS secure HTTP server
  • Understand switch security considerations

Lab 7-1: Secure Network Switches to Mitigate Security Attacks

Objectives:

  • Perform a baseline assessment of network switch security settings
  • Identify possible threats, points of attack, and vulnerability points in the network
  • Write an implementation plan to implement security measures on network switches
  • Write a plan to test and verify security threat mitigation measures for VLANs
  • Configure port security and other switch security features
  • Configure a VACL
  • Verify the correct implementation of security measures
  • Document the switch and VLAN security plan, settings, operations, and maintenance

Lesson 5: Lab 7-1 Debrief

Objectives

  • Discuss lab results

Module 8: Accommodating Voice and Video in Campus Networks

Lesson 1: Planning for Support of Voice in a Campus Network

Objectives:

  • Discuss the components of a VoIP network and the components of IP telephony
  • Compare the uniform bandwidth consumption of voice traffic to the intermittent bandwidth consumption of data traffic
  • Compare video bandwidth consumption to voice and data bandwidth consumption based on video application types
  • Identify a solution for latency, jitter, bandwidth, packet loss, reliability, and security for voice and video traffic integration into a data network

Lesson 2: Integrating and Verifying VoIP in a Campus Infrastructure

Objectives:

  • Plan for VoIP requirements
  • Describe Voice VLANs
  • Configure and Verify Voice VLANs
  • Plan PoE requirements and configure PoE
  • Provide additional services required by VoIP devices
  • Create a Test Plan for VoIP integration

Lesson 3: Working with Specialists to Accommodate Voice and Video on Campus Switches

Objectives:

  • Describe high availability applied to VoIP or video traffic
  • Build an integrated voice/video/data campus network
  • Explain the need for QoS for VoIP and video integration
  • Configure basic QoS for voice and video VLANs

Lab 8-1: Plan Implementation and Verification of VoIP in a Campus Network

Objectives:

  • Gather information regarding the implementation of VoIP
  • Prepare an implementation requirements list for VoIP readiness
  • Prepare an implementation and verification plan
  • Implement and verify the VoIP readiness plan

Lesson 4: Lab 8-1 Debrief

Objectives:

  • Discuss lab results

Module 9: Integrating Wireless LANs into a Campus Network

Lesson 1: Comparing WLANs with Campus Networks

Objectives:

  • Describe WLANs
  • Compare wired and wireless LAN
  • Describe main wireless LAN topologies
  • Describe the settings specific to WLANs, such as SSIDs, and WLAN-to-VLAN mapping

Lesson 2: Assessing the Impact of WLANs on Campus Networks

Objectives:

  • Describe WLAN implementations
  • Compare WLAN solutions
  • Assess traffic flow in an autonomous AP configuration and its impact on the campus LAN
  • Assess traffic flow in an controller-based configuration and its impact on the campus LAN

Lesson 3: Preparing the Campus Infrastructure for WLANs

Objectives:

  • Decide on the best placement for APs and controllers
  • Configure switches for WLAN devices
  • Gather WLAN requirements
  • Plan WLAN integration
  • Create a test plan

Lab 9-1: Integrate Wireless in the Campus

Objectives:

  • Identify the requirements for implementing wireless structure in a network
  • Prepare an implementation plan for wireless integration
  • Prepare the switched network for integration of wireless equipment
  • Verify that the switched network was properly provisioned

Lesson 4: Lab 9-1 Debrief

Objectives:

  • Discuss lab results

Lab Outline

  • Lab 1-1: New Hire Test

  • Lab 2-1: Design and Implement VLANs, Trunks, and EtherChannel

  • Lab 2-2: Troubleshoot Common VLAN Configuration and Security Issues

  • Lab 2-3: Configure Private VLANs

  • Lab 3-1: Implement Multiple Spanning Tree

  • Lab 3-2: Implement PVSRT+

  • Lab 3-3: Troubleshoot Spanning Tree Issues

  • Lab 4-1: Implement Inter-VLAN Routing

  • Lab 4-2 Troubleshoot Inter-VLAN Routing

  • Lab 5-1: Implement High Availability in a Network Design

  • Lab 6-1: Implement and Tune HSRP

  • Lab 6-2: Implement VRRP

  • Lab 7-1: Secure Network Switches to Mitigate Security Attacks

  • Lab 8-1: Plan Implementation and Verification of VoIP in a Campus Network

  • Lab 9-1: Integrate Wireless in the Campus