ENCC — Designing and Implementing Cloud Connectivity
ENCC - Designing and Implementing Cloud Connectivity
Course Objectives
Describe the fundamental components and concepts of cloud computing, including deployment models, cloud services, and cloud providers, to provide learners with a comprehensive overview of the subject
Describe the options available for establishing connectivity to public cloud services, including point-to-point IPsec VPN and various Cisco Catalyst SD-WAN Cloud OnRamp deployment options
Explain the public cloud connectivity architecture similarities and differences between different cloud service providers and explore the available connectivity options to the public cloud from a Cisco Catalyst SD-WAN environment
Describe private connectivity options to public cloud provider infrastructure
Describe direct connections to different public cloud providers for private peering
Describe connectivity solutions such as colocation, cloud exchange, and software-defined cloud interconnect providers for connecting to the public cloud infrastructure
Describe the available options for connectivity to SaaS applications from a geographically distributed organization’s premises
Explain the emergence of DIA to optimize cloud application performance and user experience
Describe the essential business and technical prerequisites for achieving high availability, resiliency, and scalability within an enterprise cloud connectivity network solution
Describe AWS, Azure, and GCP native security
Describe PCI DSS, FedRAMP, and HIPAA compliance requirements and their role in public cloud integration
Implement underlay (internet-based) connectivity to connect to the public cloud
Configure overlay tunnels over public transport to a cloud-native gateway in AWS, Azure, and GCP and to a cloud-hosted Cisco IOS XE router
Deploy a cloud-hosted Cisco IOS XE-based router instance and customize the cloud networking setup
Configure OSPF and BGP routing for typical enterprise network
Explore Cisco Umbrella SIG
Introduce Cisco vManage Policy Architecture and centralized data policies
Explain AAR policy components and implementation
Understand Microsoft 365 Traffic categories and service areas
Describe the AppQoE feature
Describe DRE deployment considerations
Describe how to diagnose and troubleshoot common issues for connectivity to public cloud environments using internet-based connectivity
Introduce the BGP routing protocol used for establishing connectivity between on-premises and public cloud devices over different connection options
Discuss BGP peering and connectivity issues with Microsoft Azure and explore various troubleshooting and test tools and techniques
Discuss some common configuration, networking, and routing issues encountered on customer edge devices when connecting to Microsoft Azure ExpressRoute
Course Prerequisites
The knowledge and skills you are expected to have before attending this training are:
Basic understanding of enterprise routing
Basic understanding of WAN networking
Basic understanding of VPN technology
Basic understanding of Cisco Catalyst SD-WAN
Basic understanding of Public Cloud services
These skills can be found in the following Cisco Learning Offerings:
Implementing and Administering Cisco Solutions 2.0
Implementing and Operating Cisco Enterprise Network Core Technologies 1.3
Cisco SD-WAN Fundamentals 2.0
Implementing Cisco SD-WAN Security and Cloud Solutions 1.1
Course Outline
Public Cloud Fundamentals
Internet-Based Connectivity to Public Cloud
Private Connectivity to Public Cloud
SaaS Connectivity
Resilient and Scalable Public Cloud Connectivity
Cloud-Native Security Policies
Regulatory Compliance Requirements
Internet-Based Public Cloud Connectivity
Overlay Routing Deployment
Cisco SD-WAN Internet-Based Cloud Connectivity
Cisco SD-WAN Cloud Security
Cloud OnRamp for Saas
Cisco SD-WAN Policies
Application Quality of Experience
Internet-Based Public Cloud Connectivity Diagnostics
Overlay Routing Diagnostics
Cisco SD-WAN Public Cloud Connectivity Diagnostics
Lab Outline
Initial Lab Network Exploration
Implement IPsec Connectivity to Public Cloud Gateways
Implement IPsec Connectivity to Cloud-Hosted Cisco IOS-XE Routers
Implement Overlay Routing
Deploy Cloud OnRamp for Multicloud
Deploy Umbrella Cloud Security
Implement Cloud OnRamp for SaaS
Troubleshoot Underlay Connectivity
Troubleshoot Overlay Routing
Diagnose Cloud OnRamp for Multicloud