Architecture Flashcards
FHRP
First Hop Redundancy Protocol
HSRP
Hot Standby Router Protocol, which is a Cisco proprietary protocol “active” only one standby
VRRP
Vitual Router Redundancy Protocol. Open standard. “Master” can have more than one standby
GLBP
Gateway Load Balancing Protocol. CIsco Prop and up to 4 AVF
GLBP-AVF
Gateway Load Balancing Protocol-Active Virtual Forwarder; a router responsible for forwarding traffic associated with a specific virtual MAC addres
GLBP-AVG
Active Virtual Gateway
RPR
Route Processor Redundnacy, >2 min failover, traffic disrupted.
RPR+
Route Processor Redundnacy more stuff boots on secondary supervisor card(plus) >30 sec failorcer, traffic distrupted.
SSO
Staeful SwitchOver, >1sec failover L2 maintained L3 disrupted
SSO with NSF
Staeful SwitchOver with non-stop forwarding, milisecond failoverno disruption
SD-Access
Software Defined Access: focuses on simplifying and automating network operations for enterprise networks. It uses Cisco’s DNA Center to provide policy-based automation, segmentation, and assurance
DNA
Digital Network Architecture; provides a single pane of glass for network management, monitoring, and troubleshooting. It uses real-time analytics and telemetry to identify issues and optimize network performance
SDN
Softwre Defined Networking; a network architecture that centralizes network control, automates management, and enables programmability through software-based policies.
T/F DNA licensing is needed for Netflow
True
DNAC
Cisco Digital Network Architecture Center. It is a centralized management and automation platform for Cisco networks that allows for simplified deployment, policy enforcement, and network operations. DNAC provides end-to-end visibility, automation, and assurance across wired, wireless, and wide-area networks.
WHat are the four layes of DNA architecture?
Management, Controller, Network, Physical
DNAC Management Layer: Four primary DNAC workflows
Cisco DNA Design
Cisco DNA Policy
Cisco DNA Provision
Cisco DNA Assurance
DNAC Management Layer
used by administrators to manage the network
What are the two subsystems for the DNAC Controller Layer?
Cisco Network Control Platform (NCP)
Cisco Network Data Platform (NDP)
Cisco Network Control Platform (NCP)
focuses on automating and controlling the network
Cisco Network Data Platform (NDP)
specializes in collecting and analyzing data to provide visibility and optimization insights
Cisco Identity Services Engine (ISE)
a policy-based access control platform that secures networks by ensuring users and devices are authenticated, authorized, and compliant before accessing resources
VXLAN (important, Brian)
(OVERLAY) VIrtual Extensible LAN , enables scalable creation of virtual Layer 2 networks over an existing Layer 3 infrastructure. The new Cisco OTV technology. 24 bit 2^^24 =16,777,216
VRF (Important Brian)
(OVERLAY) Virtual Routing and Forwarding; allows multiple instances of a routing table to coexist on the same physical router or Layer 3 switch
NVGRE
(OVERLAY) Network Virtualization using Generic Routing Encapsulation; Similar to VXLAN, Allows virtual networks to extend across geographically dispersed data centers over an IP-based infrastructure.
OTV
(OVERLAY) Overlay Transprt virtualization; for extending L2 VLANS to a remote network. The old Cisco VXLAN technology.
mVPN
(OVERLAY) enables the delivery of multicast traffic across a Multiprotocol Label Switching (MPLS)-based Virtual Private Network (VPN)
An SD-Access fabric consists of four planes of operation:
Control plane
Data plane
Policy plane
Management plane
LISP
Locator/ID Seperation Protocol; An enterprise with multiple office locations may use LISP to ensure that devices maintain a consistent EID regardless of which office they connect from. If an employee moves from one office (with one RLOC) to another
VXLAN: what is a VEM
VIrtual Ethernet Module, each leaf router that runs VXLAN needs to run this
VXLAN; VTEP
VXLAN tunnel Endpoint
BUUM traffic
Braodcast, Unknown Unicast, Multicast
TrustSec: SGTs
Scalable Group Tags
TrustSec: SGACL’s
Scalable Group Access Control
HTDB
HAP Table Database. It is used in the implementation of Cisco’s High Availability Protocol (HAP)
SD-WAN; cEdge routers
Data plane; integrate Viptela software with Cisco IOS-XE
SD-WAN; vManage Network Management System (NMS)
Management plane - provides a single GUI to configure and manage the components of the SD-WAN architecture
SD-WAN; vBond orchestrator
Orchestration plane; authenticates Edge routers and vSmart controllers over a Datagram Transport Layer Security (DTLS) tunnel. needs a public IP.
SD-WAN; vSmart controller
Control plane; vBond orchestrator and Edge routers must maintain DTLS connections to at least one vSmart controller. vSmart controller uses OMP to distribute routing information
SD-WAN; vAnalytics
provides detailed information about the WAN infrastructure and WAN-based applications
SD-WAN; vEdge
Data Plane; the original Viptela platforms running Viptela software
SD-WAN; OMP
Overlay Management Protocol; acts as the core protocol for communication between the SD-WAN fabric’s edge devices and controllers, ensuring efficient route, policy, and service management
Which of the following layers are combined
in the Cisco two-tier Enterprise Campus
Architecture model?
A. access and core
B. core and distribution
C. distribution and access
D. core, distribution, and access
B & D
Which of the following statements is true
regarding VRRP?
A. VRRP is Cisco-proprietary.
B. VRRP provides load balancing between
gateways.
C. VRRP groups contain one active router
and one standby router.
D. VRRP gateways share a virtual IP
address and a virtual MAC address.
D
Which of the following technologies is the
basis of the Cisco SD-Access control plane?
A. LISP
B. VXLAN
C. Cisco TrustSec
D. Cisco DNA Center
A
