Cisco Software-Defined Access

Book description

The definitive Cisco SD-Access resource, from the architects who train Ciscos own engineers and partners

This comprehensive book guides you through all aspects of planning, implementing, and operating Cisco Software-Defined Access (SD-Access). Through practical use cases, youll learn how to use intent-based networking, Cisco ISE, and Cisco DNA Center to improve any campus networks security and simplify its management.

Drawing on their unsurpassed experience architecting solutions and training technical professionals inside and outside Cisco, the authors explain when and where to leverage Cisco SD-Access instead of a traditional legacy design. They illuminate the fundamental building blocks of a modern campus fabric architecture, show how to design a software-defined campus that delivers the most value in your environment, and introduce best practices for administration, support, and troubleshooting.

Case studies show how to use Cisco SD-Access to address secure segmentation, plug and play, software image management (SWIM), host mobility, and more. The authors also present full chapters on advanced Cisco SD-Access and Cisco DNA Center topics, plus detailed coverage of Cisco DNA monitoring and analytics.

* Learn how Cisco SD-Access addresses key drivers for network change, including automation and security

* Explore how Cisco DNA Center improves network planning, deployment, evolution, and agility

* Master Cisco SD-Access essentials: design, components, best practices, and fabric construction

* Integrate Cisco DNA Center and Cisco ISE, and smoothly onboard diverse endpoints

* Efficiently operate Cisco SD-Access and troubleshoot common fabric problems, step by step

* Master advanced topics, including multicast flows, Layer 2 flooding, and the integration of IoT devices

* Extend campus network policies to WANs and data center networks

* Choose the right deployment options for Cisco DNA Center in your environment

* Master Cisco DNA Assurance analytics and tests for optimizing the health of clients, network devices, and applications

Table of contents

  1. Cover Page
  2. About This eBook
  3. Title Page
  4. Copyright Page
  5. About the Authors
  6. About the Technical Reviewers
  7. Dedications
  8. Acknowledgments
  9. Contents at a Glance
  10. Reader Services
  11. Contents
  12. Icons Used in This Book
  13. Command Syntax Conventions
  14. Introduction
  15. Chapter 1. Today’s Networks and the Drivers for Change
    1. Networks of Today
    2. Common Business and IT Trends
    3. Common Desired Benefits
    4. High-Level Design Considerations
    5. Cisco Digital Network Architecture
    6. Past Solutions to Today’s Problems
    7. Introduction to Multidomain
    8. Summary
  16. Chapter 2. Introduction to Cisco Software-Defined Access
    1. Challenges with Today’s Networks
    2. Software-Defined Networking
    3. Cisco Software-Defined Access
    4. Network Access Control
    5. Introduction to Cisco Identity Services Engine
    6. Cisco ISE Design Considerations
    7. Segmentation with Cisco TrustSec
    8. Summary
  17. Chapter 3. Introduction to Cisco DNA Center
    1. Network Planning and Deployment Trends
    2. History of Automation Tools
    3. Cisco DNA Center Overview
    4. Design and Visualization of the Network
    5. Network Discovery and Inventory
    6. Device Configuration and Provisioning
    7. Summary
  18. Chapter 4. Cisco Software-Defined Access Fundamentals
    1. Network Topologies
    2. Cisco Software-Defined Access Underlay
    3. Wireless LAN Controllers and Access Points in Cisco Software-Defined Access
    4. Shared Services
    5. Transit Networks
    6. Fabric Creation
    7. Fabric Device Roles
    8. Host Onboarding
    9. Summary
    10. References in This Chapter
  19. Chapter 5. Cisco Identity Services Engine with Cisco DNA Center
    1. Policy Management in Cisco DNA Center with Cisco ISE
    2. Group-Based Access Control
    3. Segmentation with Third-Party RADIUS Server
    4. Secure Host Onboarding in Enterprise Networks
    5. 802.1X Phased Deployment
    6. Host Onboarding with Cisco DNA Center
    7. Security in Cisco Software-Defined Access Network
    8. Policy Set Overview in Cisco ISE
    9. Segmentation Policy Construction in Cisco SD-Access
    10. Segmentation Outside the Fabric
    11. Summary
    12. References in This Chapter
  20. Chapter 6. Cisco Software-Defined Access Operation and Troubleshooting
    1. Cisco SD-Access Under the Covers
    2. Host Operation and Packet Flow in Cisco SD-Access
    3. Cisco SD-Access Troubleshooting
    4. Authentication/Policy Troubleshooting
    5. Summary
    6. References in This Chapter
  21. Chapter 7. Advanced Cisco Software-Defined Access Topics
    1. Cisco Software-Defined Access Extension to IoT
    2. Multicast in Cisco SD-Access
    3. Multicast Flows in Cisco SD-Access
    4. Layer 2 Flooding in Cisco SD-Access
    5. Layer 2 Border in Cisco SD-Access
    6. Cisco SD-Access for Distributed Campus Deployments
    7. Cisco SD-Access Design Considerations
    8. Cisco SD-Access Policy Extension to Cisco ACI
    9. Summary
    10. References in This Chapter
  22. Chapter 8. Advanced Cisco DNA Center
    1. Cisco DNA Center Architecture and Connectivity
    2. Software Image Management
    3. Cisco DNA Center Templates
    4. Plug and Play
    5. Cisco DNA Center Tools
    6. Summary
    7. References in This Chapter
  23. Chapter 9. Cisco DNA Assurance
    1. Assurance Benefits
    2. Cisco DNA Assurance Architecture
    3. Cisco DNA Assurance Tools
    4. Summary
    5. References in This Chapter
  24. Glossary
  25. Index
  26. Code Snippets

Product information

  • Title: Cisco Software-Defined Access
  • Author(s): Srilatha Vemula, Jason Gooley, Roddie Hasan
  • Release date: August 2020
  • Publisher(s): Cisco Press
  • ISBN: 9780136448341