We are happy to advise you!
1­-855­-778­-7246    Contact

SD-WAN Advanced Policy, Security, and Programmability (SDWSEC)

 

Course Overview

This course is hands-on training on Cisco SD-WAN advanced policy implementations, basic and advanced Cisco SD-WAN Security, basic security features that are available on both vEdge and cEdge routers like Zone Based Firewall, and advanced security features on cEdge router with the latest IOS-EX code that has advanced features like URL Filtering, IPS, Application Aware Firewall, AMP Integration and many other advanced features are covered as a part of this training. This course also provides hands-on training on Cisco SD-WAN Programmability features.

Course Objectives

Upon completing this course, you will be able to meet the following objectives:

  • Implement advanced SD-WAN Policies
  • Understand Cisco SD-WAN Security Features
  • Implement Zone Based Firewall on the WAN Edge
  • Implement Firewall and IPS Policies
  • Understand Cisco SD-WAN Programmability features
  • Script APIs to automate Cisco SD-WAN vManage configurations

Outline: SD-WAN Advanced Policy, Security, and Programmability (SDWSEC)

Module 1: SD-WAN Policy Deep Dive

  • Centralized Control Policy and Use Cases
    • Hub and Spoke Policy
    • Service Insertion Policy
    • Firewall Insertion Policy
    • Data Center Priority
  • App-Aware Routing
  • Security Policy and Use Cases
  • DIA / Internet Breakout Policy

Module 2: Introduction & Security Basics in the SDWAN Ecology

  • Introduction
  • SD-WAN Security Challenges
  • SD-WAN Threat Defense
  • Security Infrastructure
  • Device Identity & Security
  • Control Plane and Data Plan Security
  • Zone Based Firewalls
  • Deploying ZBF
  • Verifying ZBF

Module 3: SD-WAN Security Component

  • Building New Security Applications
  • Firewall DNS & IPS Packet Flows
  • Container Architecture
  • Security Container Deployment
  • Exploring the Security Dashboard

Module 4: Firewall and IPS Policies

  • Compliance: Firewall
  • Firewall Policy: Intra VRF Creation and Deployment
  • Firewall Policy: Inter VRF Creation and Deployment
  • Introduction to IPS
  • IPS: Policy Creation
  • IPS: Rule Verification

Module 5: SD-WAN Security – Guest Access

  • Introduction to URL Filtering
  • URL Filtering Example
  • URL Filtering Verification via CLI
  • Introduction to Cisco Umbrella
  • Integrating vManage and Umbrella
  • Umbrella Configuration and Verification

Module 6: SD-WAN Security – Direct Cloud Access

  • Introduction to Direct Cloud Access
  • Application Firewall
  • IPS
  • Advanced Malware Protection
  • DNS Security
  • Integrating – Direct Cloud Access
  • Verifying - Direct Cloud Access

Module 7: Direct Internet Access

  • Introduction to DIA
  • Application Firewall
  • IPS
  • Advanced Malware Protection
  • DNS Security
  • Integrating – Direct Internet Access
  • Verifying – Direct Internet Access

Module 8: Programmable API

  • SD-WAN Programmability Overview
    • API Overview
    • General use cases for API's
    • Examples of API's
  • Cisco Programming Basics
    • Overview
    • APIs 101
    • Python
    • Basics
    • Lists, Dictionaries, & Tuples
    • If-else statements
    • Loops
    • Functions
  • REST APIs
    • vManage REST APIs Overview
    • *API Template*
    • Using the vManage REST APIs
  • Cisco SD-WAN Introduction
    • High-level Cisco SD-WAN Deployment models and use cases
    • Application level SD-WAN solution
    • Cisco SDWAN high availability solution
    • Cisco SD-WAN Scalability
    • Cisco SD-WAN Solution Benefits
  • Alarms, Events and Audit Log API's
    • vManage Simple Query
    • Alarms, Audit Log, and Events APIs
    • Alarms
    • Audit Log
    • Events
  • Bulk vManage APIs
    • Overview of Bulk API Operations
    • State
    • Statistics
  • Monitoring vManage APIs
    • Application-Aware Routing
    • App Logs
    • ARP
    • BFD
    • BGP
    • Show all
  • Device and Configuration APIs for vManage APIs
    • Device Templates
    • vSmart Policy
    • Device Inventory APIs
    • Connected Devices
    • Controllers
    • vEdges
  • Software Maintenance vManage APIs
    • Activate Software
    • Delete Software
    • Reboot Device
    • Set Default Software
    • Upgrade Software
    • Show all
  • Troubleshooting vManage APIs
    • Dashboard
    • Device Dashboard
Online Training

Duration 5 days

Price
  • US$ 3,495
Classroom Training

Duration 5 days

Price
  • United States: US$ 3,495
 
Click on town name or "Online Training" to book Schedule
This is an Instructor-Led Classroom course
Instructor-led Online Training:   This is an Instructor-Led Online (ILO) course. These sessions are conducted via WebEx in a VoIP environment and require an Internet Connection and headset with microphone connected to your computer or laptop.
  *   This class is delivered by a partner.
United States

Currently there are no training dates scheduled for this course.  You can schedule a private, onsite training session or request a public date by emailing info@fastlaneus.com.