SD-WAN Architecture Day 1
01:08:23
SD-WAN – Software Defined WAN (Cisco)
Instructor
Saif Deshmukh
Instructor
Murtaza Ali
Course Overview
Module 1: Introduction to SD-WAN
- What is Software Defined Networking?
- Benefits of SD-WAN
Module 2: Catalyst SD-WAN architecture
- SD-WAN Architecture
- vBond or validator
- vBond design considerations
- vSmarts or Controllers
- vSmart design considerations
- vManage or manager
- vManage cluster design considerations
- vManage High Availability
Module 3: Bringing up the controller site
- Obtaining the images and verifying the license
- Uploading the topology Cisco Modeling Lab
- Brining up the Controllers and configure the CA.
- Bring up and configure the vManage
- Create and configure ROOT CA
- Onboarding the controllers
- vManager Cluster
- Controller Affinity and distributed deployments
- Validator high availability
Module 4: Bringing up the WAN Edge cEdge routers and Zero Touch Provisioning.
- cEdges vs vEdge
- cEdge autonomous and Controller mode
- Configure the cEdges in controller mode
- User Input Required for the ZTP Automatic Authentication Process
- Authentication between the vBond Orchestrator and WAN Edges
- Authentication between the Edge Routers and the vManage NMS
- Authentication between the vSmart Controller and the Edge Routers
Module 5: Overlay Management Protocol
- Troubleshooting NAT Issues for Control and Data connections
- BGP Information
- Multicast Information
- OMP Information
- OSPF Information
- PIM Information
- Symptom: Some or All Routes Missing from Edge Routing table
- Symptom: Data Traffic Using Suboptimal Path
- Symptom: Data Traffic Not Using All Transports
Module 6: Cisco SD-WAN Solution
- Overlay Management Protocol (OMP)
- Cisco SDWAN Circuit Aggregation Capabilities
- Secure Connectivity in Cisco SD-WAN
- Performance Tracking Mechanisms
- Application Discovery
- Dynamic Path Selection
- Performance Based Routing
- Direct Internet Access
- Cisco SD-WAN In-built Security features: App Aware FW, Talos IPS, URL Filtering, Umbrella Integration & Advanced Malware Protection
- Dynamic Cloud Access: Cloud On-Ramp for SaaS and IaaS (AWS, Azure & GPC)
Module: 7 Operations Best Practices
- Config: Test Configuration Changes Before Committing
- NAT: Secure Routers Acting as NATs
- Edge Routers: Connect to the Console Port
- vManage Operrational Commands
- SD WAN Devices: Site ID Naming Conventions
- SD WAN Devices: Using the System IP Address
- vManage NMS: Disaster Recovery
- Disaster Recovery – Cluster failover scenarios
- vManage Disaster Recovery Checklist
- How to configure Disaster Recovery
Module: 8 General Troubleshooting
- Check Application-Aware Routing Traffic
- Collect Device Data to Send to Customer Support
- Monitor Alarms and Events
- Monitor TCP Optimization
- Ping an SD WAN Device
- Run a Traceroute
- Simulate Flows
- Troubleshoot Cellular Interfaces
- Troubleshoot Device Bringup
- Use Syslog Messages
- Tunnel Health
Module: 9 Troubleshooting: Data Plane Issues
- BFD Session Information and Troubleshooting a BFD Session
- Cflowd Issues
- Data Policies
- DPI Issues
- Symptom: Site Cannot Reach Applications in Datacenter
- Symptom: vManage Showing Edge Router or Interface Down
- Symptom: Site-Wide Loss of Connectivity (Blackout)
- Symptom: Poor Application Performance (Brownout)
- Issue Severity Assessment
Module: 10 Network Operations
- Check Alarms and Events
- Check User Accounts and Permissions
- Deploy the SD WAN Overlay Network
- Determine the Status of Network Sites
- Control Connections
- Data Connections
- OMP Status
- Enabling Embedded Packet Captures and Packet Trace on Cisco cEdges
What You'll Learn?
- Gain expertise in Cisco SD-WAN (Viptela) architecture and components (vManage, vSmart, vBond, WAN Edge).
- Significantly reduce WAN operational costs by intelligently leveraging cheaper transport links (Broadband, LTE) alongside MPLS.
- Master Application-Aware Routing (AAR) to ensure critical applications (VoIP, SaaS) meet strict performance SLAs.
- Implement end-to-end network segmentation and integrated security services (Firewall, IPS, URL Filtering, Umbrella).
- Accelerate branch office deployment using Zero-Touch Provisioning (ZTP) and centralized template management.
- Learn to deploy Cloud OnRamp for seamless, optimized connectivity to major public clouds (AWS, Azure) and SaaS applications.
- Position yourself for career advancement in cloud networking and prepare for the Cisco ENSDWI (300-415) exam.
- Network Engineers and Administrators responsible for WAN infrastructure.
- Network Architects and Solutions Designers planning WAN transformation projects.
- Cloud and Security Professionals integrating on-premises networks with cloud services.
- Network Consultants involved in SD-WAN deployment and migration.
- Individuals seeking the CCNP Enterprise certification (ENSDWI specialist).
- A strong understanding of core routing protocols (OSPF, BGP) and enterprise WAN design.
- Familiarity with tunneling and security concepts, including IPsec and TLS/SSL.
- Basic knowledge of SDN concepts is helpful but the course will build on it.
- Experience with the Cisco IOS or IOS XE command line interface (CLI).
- Comprehensive video lectures covering the full vManage/Viptela platform.
- Extensive hands-on lab exercises using a simulated or cloud-based SD-WAN environment.
- Downloadable workbooks, configuration templates, and design guides.
- Access to real-time packet capture and troubleshooting examples.
- Quizzes and a final Capstone SD-WAN deployment project.