Cisco SDN Flashcards

1
Q

Four Workflows of DNA

A
  1. Design
  2. Policy
  3. Provision
  4. Assurance
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Two Models of Underlay

A
  1. Manual Underlay - configured and managed manually via CLI or API rather than thru Cisco DNA
  2. Automated Underlay - Configured and managed by Cisco DNA Center LAN Automation Feature
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

3 Basic Planes of Operation in SD-Access fabric

A
  1. Control Plane - based on Locator/ID Separation Protocol (LISP)
  2. Data Plane - based on VXLAN
  3. Policy Plane - based on Cisco TrustSec
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

5 Basic Role in the fabric overlay

A
  1. Control Plane node - contains the settings to provide endpoint-to-location (EID-to-RLOC) mapping system for the fabric overlay
  2. Fabric border node - this fabric device connects external Layer 3 network to the SDA fabric
  3. Fabric Edge node - conneced wired endpoints to the SDA fabric
  4. Fabric WLAN controller - connect wireless and AP to the SDA Fabric
  5. Intermediate Nodes - these are intermediate routers or extended switches that do not provide any SDA fabric roles other than underlay services
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Provide onboarding and mobility services for wired users and devices (including AP and WLC) connected to the fabric

A

Fabric Edge Nodes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

is a LISP map server/resolver (MS/MR) with enhanced functions for SD-Acccess such as fabric wireless and SGT mapping

A

Fabric Control Plane node

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

are LISP proxy tunnel routers (PxTRs) that connect external Layer 3 network to the SD-Access fabric and translate reachability and policy information, such as VRF and SGT information

A

Fabric Border nodes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

3 Types of border nodes

A
  1. Internal border - connects only to the known areas of the org
  2. Default border - connects only to unknown areas outside org
  3. Interna+Default border - connects transits areas as well known areas of the company
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

connects APs and wireless endpoints to the SD-Acces fabric

A

Fabric Wireless Controller (WLC)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

SD-Access fabric concepts

A
  1. Virual Network (VN) - provide virtualization at device level using VRF
  2. Host Pool - group of endpoints assigned to an IP Pool subnet in the SDA-Access fabric
  3. Scalable group - group of endpoints with similar policies
  4. Anycast gateway - provides a pervasive L3 default gateway where the same SVI is provisione on every edge node
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Provides all of the management subsystem for the management layer and this is all provided by Cisco DNA centre and CISCO ISE

A

Controller layer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

3 Main Controller subsystems

A
  1. Cisco Network Control Platform (NCP) - directly integrated into Cisco DNA that provides all the underlay and fabric automation and orchestration. uses NETCONF/YANG
  2. Cisco Network Data Platform (NDP) - is a data collection and analytics and assurance subystem that is integrated directly into Cisco DNA Centre. (Netflow - SPAN)
  3. Cisco Identity Services Engine (ISE) provide all the identity and policy services for the physical layer and network layer
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

the user interface/user experience (UI/UX) layer where all the information from the other layers is presented to the user in the form of a centralized management

A

Management layer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Cisco SD-WAN solution 4 main components

A

vManage Network Management System (NMS) - single pane of glass (GUI) for managing the SD-WAN solutions

vSmart Controller - brain of the solutions

vBond Orchestrator - authenticates and orchestrates connectivity between SD-WAN routers and vSmart controllers

vAnalytics - optional analytics and assurance service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

SD-WAN routers options available

A

vEdge - original viptela platforms running Viptela software

cEdge - Viptela software integratred with Cisco IOS-XE. supported on CSR, ISR

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Two types of hypervisor

A
  1. Type 1 - hypervisor runs directly on the system hardware
  2. Type 2 - hypervisor requires a host OS
15
Q

Is an isolated environment where containerized applications run

A

container

16
Q

is a software based layer 2 switch that operates like a physical Ethernet switch

A

vSwitch

17
Q

Is a architectural framework created by the European Telecomnunications Standards Institute (ESTI) that defines standards to decouple network functions from proprietary hardware-based appliances and have them run in soft-ware on standard x86 servers

A

Network Functions Virtualization (NFV)

18
Q

Allows VNFs to have direct access to Physical PCI devices which appear and behave as if they were physically attached to VNF

A

PCI Passthrough

19
Q

is an enhancement to PCI passthrough that allows multiple VNFs to share the same pNIC.

A

SR-IOV

20
Q

Cisco solution based on the ETSI NFV architectural framework. reduces operational complexity of enterprise branch environments by running the required networking functions as network virtual functions (VNF) on standard x86 hosts.

A

Cisco Enterprise Network Functions Virtualization (ENFV)

21
Q

Cisco ENFV Solution Architecture 4 Components

A
  1. Management and Orchestration (MANO)
  2. VNFs
  3. Network Functions Virtualization Infrastructure software (NFVIS) - operating system the provides virtualisation capabilities
  4. Hardware resource
22
Q

API - often used to communicate from a network controller to its management software

A

Northbound API

23
Q

If a network operators makes a change to a switch configuration management software of the controller, those changes are pushed down to the individuals via this API

A

Southbound API

24
Q

This API use HTTP methods to gather and manipulate data

A

Representation State Transfer (REST) APIs

25
Q

HTTP Function and uses cases

A
  1. GET - request data
  2. POST - submit data
  3. PUT - replaces data (updating)
  4. Patch - appends data (adding)
  5. Delete
26
Q

CRUD Functions

A

Create
Read
Update
Delete

27
Q

HTTP Status codes

A

200 - OK
201 - Created
400 - Bad Request
401 - Unauthorised
403 - Forbidden
404 - Not Found

28
Q

Cisco IOS Tool that allows engineer to build software applet that can automate many tasks.

A

Embedded Event Manager (EEM)

29
Q

Robust configuration management and automation tool.

A

Puppet

30
Q

Open source configuration management tool that is designed to automate configurations and operations of a network and server environment

A

Chef

31
Q

Another configuration management tool. build in python

A

SaltStack

32
Q

Automation tool that is capable of automating cloud provisioning, deployment of applications, and configuration management. Agentless tool and opensource

A

Ansible

33
Q

Allows you to leverage the power of Puppet without having to install a puppet master or puppet agents on devices and nodes. Connect using SSH or WinRM

A

Puppet Bolt

34
Q

Saltstatck offer this option that allow user to run Salt Commands without having to install a minion on the remote device or node

A

Salt SSH

35
Q

IETF standard protocol that uses YANG Data models to communicate with various devices on the network. Runs vers SSH,TLS
RFC 4741 and 6241

A

NETCONF

36
Q

NETCONF Operations

A

<get>
<get-config>
<edit-config>
<copy-config>
<delete-config>
</delete-config></copy-config></edit-config></get-config></get>

37
Q

RFC 8040, used programmatically interface with data defined in YANG models while also using the datastore concept defined in NETCONF.

A

RESTCONF