ARCH思科网络服务架构设计考试主要内容
ARCH思科网络服务架构设计考试主要内容
300-320 ARCH思科网络服务架构设计考试,考试时间为75分钟,共有60-70道与思科CCDP认证相关的考题。300-320 ARCH考试测试考生是否具备最新的网络设计及技术知识,包括L2层及L3层企业架构,WAN技术,数据中心整合,网络安全及网络服务等知识点。
下面的`信息提供思科网络服务架构设计考试的大纲。然而,在具体的考试中还可能出现其他的相关题目。
1.0 Advanced Addressing and Routing Solutions for Enterprise Networks22%
1.1 Create structured addressing designs to facilitate summarization
1.1.a Hierarchy
1.1.b Efficiency
1.1.c Scalability
1.1.d NAT
1.2 Create stable, secure, and scalable routing designs for IS-IS
1.3 Create stable, secure, and scalable routing designs for EIGRP
1.4 Create stable, secure, and scalable routing designs for OSPF
1.5 Create stable, secure, and scalable routing designs for BGP
1.5.a Transit prevention
1.5.b Basic route filtering
1.5.c Authentication
1.5.d Communities
1.5.e Basic traffic engineering (load distribution, creating path symmetry)
1.5.f Route reflectors
1.6 Determine IPv6 migration strategies
1.6.a Overlay (tunneling)
1.6.b Native (dual-stacking)
1.6.c Boundaries (IPv4/IPv6 translations)
2.0 Advanced Enterprise Campus Networks20%
2.1 Design for high availability
2.1.a First Hop Redundancy Protocols
2.1.b Device virtualization
2.2 Design campus Layer 2 infrastructures
2.2.a STP scalability
2.2.b Fast convergence
2.2.c Loop-free technologies
2.3 Design multicampus Layer 3 infrastructures
2.3.a Convergence
2.3.b Load sharing
2.3.c Route summarization
2.3.d Route filtering
2.3.e VRFs
2.3.f Optimal topologies
2.4 Design a network to support network programmability
2.4.a Describe Application Centric Infrastructures (ACI)
2.4.b Select appropriate controller to meet requirements
2.4.c Identify and address key security issues with network programmability
3.0 WANs for Enterprise Networks17%
3.1 Compare and contrast WAN connectivity options
3.1.a Dynamic Multipoint VPN (DMVPN)
3.1.b Layer 2 VPN
3.1.c MPLS Layer 3 VPN
3.1.d IPsec
3.1.e Generic Routing Encapsulation (GRE)
3.1.f Private lines
3.2 Design site-to-site VPNs
3.2.a DMVPN
3.2.b Layer 2 VPN
3.2.c MPLS Layer 3 VPN
3.2.d IPSec
3.2.e Group Encrypted Transport VPN (GETVPN)
3.3 Design for a resilient WAN strategy
3.3.a Single-homed
3.3.b Multi-homed
3.3.c Backup connectivity
3.3.d Failover
3.4 Design Extranet connectivity
3.4.a VPN
3.4.b Private lines
3.4.c Multitenant segmentation
3.5 Design Internet edge connectivity
3.5.a DMZ
3.5.b NAT
3.5.c Proxy functionality
3.5.d Resiliency
3.5.e Basic traffic engineering techniques (outbound/inbound load distribution, active/failover, symmetric outbound traffic flows)
4.0 Enterprise Data Center Integration17%
4.1 Describe a modular and scalable data center network
4.1.a Top-of-rack
4.1.b End-of-row
4.1.c Multitenant environments
4.1.d Multitier topologies
4.2 Describe network virtualization technologies for the data center
4.2.a VPC
4.2.b VSS
4.2.c VDCs
4.2.d VRFs
4.2.e Multichassis EtherChannel
4.2.f VXLAN
4.2.g TRILL / Fabric Path
4.3 Describe high availability in a data center network
4.3.a VPC
4.3.b VSS
4.3.c Multichassis EtherChannel
4.4 Design data center interconnectivity
4.4.a OTV
4.4.b Private Line
4.4.c L2 vs. L3
4.4.d VPLS
4.4.e A-VPLS
4.5 Design data center and network integration
4.5.a Traffic flow
4.5.b Bandwidth
4.5.c Security
4.5.d Resiliency
5.0 Security Services13%
5.1 Design firewall and IPS solutions
5.1.a Modes of operation
5.1.b Clustering
5.1.c High availability techniques
5.1.d IPS functionality and placement
5.1.e Multiple contexts
5.2 Design network access control solutions
5.2.a 802.1x
5.2.b TrustSec
5.2.c EAP
5.2.d Authentication services
5.2.e RBAC
5.2.f Basic denial of service mitigation techniques
5.3 Design infrastructure protection
5.3.a Infra structure ACLs
5.3.b CoPP
5.3.c Layer 2 / Layer 3 security considerations
6.0 Network Services11%
6.1 Select appropriate QoS strategies to meet customer requirements
6.1.a DiffServ
6.1.b IntServ
6.2 Design end-to-end QoS policies
6.2.a Classification and marking
6.2.b Shaping
6.2.c Policing
6.2.d Queuing
6.3 Describe network management techniques
6.3.a In-band vs. out-of-band
6.3.b Segmented management networks
6.3.c Prioritizing network management traffic
6.4 Describe multicast routing concepts
6.4.a Source trees, shared trees
6.4.b RPF
6.4.c Rendezvous points
6.5 Design multicast services
6.5.a SSM
6.5.b PIM bidirectional
6.5.c MSDP
-
cisco交换机安全配置设定命令大全
思科交换机的安全怎么设置,下面yjbys为大家分交换机安全设置的配置命令,希望对同学们学习思科交换机有所帮助!一、交换机访问控制安全配置1、对交换机特权模式设置密码尽量采用加密和md5hash方式switch(config)#enablesecret5pass_string其中0SpecifiesanUNENCRY...
-
思科认证考试费用有多少
思科认证考试费用有多少?思科认证CCNA考试费用主要由两大块构成:1.考试费;2.资料费。下面为大家列举思科认证的考试费用详细信息,一起来看看吧!icon-3.pngCCNA考试,有两种方式,在VUE考试中心进行。方式一:考1个科目200-120CCNA考试费用:295$考试时间:90分钟考试语言:英...
-
cisco常用命令大全
为帮助大家更好通过思科认证。yjbys小编为大家分想的是思科认证基本命令,欢迎参考阅读!路由器的几个基本命令:Router>enable进入特权模式Router#disable从特权模式返回到用户模式Router#configureterminal进入到全局配置模式Router(config)#interfaceethernet1进...
-
思科认证CCIE协作笔试考试主要内容
CCIE协作笔试检验工程师部署协作系统和服务的能力,这可以提升用户效率,改善客户体验,提供无漏洞的`用户体验。下面是小编整理的考试大纲:ExamDescriptionTheCiscoCCIE®CollaborationWrittenExam(400-051)version1.0has90-110questionsandis2hoursinduration.Th...