200-310 DESGN思科互联网络解决方案考试要点
200-310 DESGN思科互联网络解决方案考试,考试时间为75分钟,共有55-65道与思科CCDA®认证相关的考题。通过200-310 DESGN考试需要具备思科企业网络架构网络设计的基础知识。获得CCDA认证的'专业人士能够设计包括涉及为SMB或基础企业园区及分支网络提供LAN/WAN技术的可路由、可交换网络架构及服务。
下面的信息提供了思科互联网络解决方案考试的大纲。然而,在具体的考试中还可能出现其他的相关题目。
1.0 Design Methodologies15%
1.1 Describe the Cisco Design lifecycle – PBM (plan, build, manage)
1.2 Describe the information required to characterize an existing network as part of the planning for a design change
1.3 Describe the use cases and benefits of network characterization tools (SNMP, NBAR, NetFlow)
1.4 Compare and contrast the top-down and bottom-up design approaches
2.0 Design Objectives20%
2.1 Describe the importance and application of modularity in a network
2.2 Describe the importance and application of hierarchy in a network
2.3 Describe the importance and application of scalability in a network
2.4 Describe the importance and application of resiliency in a network
2.5 Describe the importance and application of concept of fault domains in a network
3.0 Addressing and Routing Protocols in an Existing Network20%
3.1 Describe the concept of scalable addressing
3.1.a Hierarchy
3.1.b Summarization
3.1.c Efficiency
3.2 Design an effective IP addressing scheme
3.2.a Subnetting
3.2.b Summarization
3.2.c Scalability
3.2.d NAT
3.3 Identify routing protocol scalability considerations
3.3.a Number of peers
3.3.b Convergence requirements
3.3.c Summarization boundaries and techniques
3.3.d Number of routing entries
3.3.e Impact of routing table of performance
3.3.f Size of the flooding domain
3.3.g Topology
3.4 Design a routing protocol expansion
3.4.a IGP protocols (EIGRP, OSPF, ISIS)
3.4.b BGP (eBGP peering, iBGP peering
4.0 Enterprise Network Design20%
4.1 Design a basic campus
4.1.a Layer 2/Layer 3 demarcation
4.1.b Spanning tree
4.1.c Ether channels
4.1.d First Hop Redundancy Protocols (FHRP)
4.1.e Chassis virtualization
4.2 Design a basic enterprise network
4.2.a Layer 3 protocols and redistribution
4.2.b WAN connectivity
4.2.b(i) Topologies (hub and spoke, spoke to spoke, point to point, full/partial mesh)
4.2.b(ii) Connectivity methods (DMVPN, get VPN, MPLS Layer 3 VPN, Layer 2 VPN, static IPsec, GRE,VTI)
4.2.b(iii) Resiliency (SLAs, backup links, QoS)
4.2.c Connections to the data center
4.2.d Edge connectivity
4.2.d(i) Internet connectivity
4.2.d(ii) ACLs and firewall placements
4.2.d(iii) NAT placement
4.3 Design a basic branch network
4.3.a Redundancy
4.3.a(i) Connectivity
4.3.a(ii) Hardware
4.3.a(iii) Service provider
4.3.b Link capacity
4.3.b(i) Bandwidth
4.3.b(ii) Delay
5.0 Considerations for Expanding an Existing Network25%
5.1 Describe design considerations for wireless network architectures
5.1.a Physical and virtual controllers
5.1.b Centralized and decentralized designs
5.2 Identify integration considerations and requirements for controller-based wireless networks
5.2.a Traffic flows
5.2.b Bandwidth consumption
5.2.c AP and controller connectivity
5.2.d QoS
5.3 Describe security controls integration considerations
5.3.a Traffic filtering and inspection
5.3.b Firewall and IPS placement and functionality
5.4 Identify traffic flow implications as a result of security controls
5.4.a Client access methods
5.4.b Network access control
5.5 Identify high-level considerations for collaboration (voice, streaming video, interactive video) applications
5.5.a QoS (shaping vs. policing, trust boundaries, jitter, delay, loss)
5.5.b Capacity
5.5.c Convergence time
5.5.d Service placement
5.6 Describe the concepts of virtualization within a network design
5.7 Identify network elements that can be virtualized
5.7.a Physical elements (chassis, VSS, VDC, contexts)
5.7.b Logical elements (routing elements, tunneling, VRFs, VLANs)
5.8 Describe the concepts of network programmability within a network design
5.8.a APIs
5.8.b Controllers
5.8.c Application Centric Infrastructure (ACI)
5.9 Describe data center components
5.9.a Server load balancing basics
5.9.b Blocking vs. non-blocking Layer 2
5.9.c Layer 2 extension
-
cisco交换机安全配置设定命令大全
思科交换机的安全怎么设置,下面yjbys为大家分交换机安全设置的配置命令,希望对同学们学习思科交换机有所帮助!一、交换机访问控制安全配置1、对交换机特权模式设置密码尽量采用加密和md5hash方式switch(config)#enablesecret5pass_string其中0SpecifiesanUNENCRY...
-
实施思科安全访问解决方案(SISAS)考试要点
实施思科安全访问解决方案(SISAS)主要检验考生作为网络安全工程师是否能够使用802.1X和TrustSec来掌握安全访问的组件和架构。该考试涵盖思科身份服务引擎(ISE)架构、整体网络威胁缓解的解决方案和组件以及终点控制解决方案。同时考试考察使用ISE的posture和pr...
-
思科认证实施Cisco IP路由考试概述
实施CiscoIP路由(ROUTE300-101)是获得思科CCNP和CCDP认证需要通过的一项考试。考试时间为120分钟,包括50-60道考题。ROUTE300-101考试证明通过的考生具备网络路由的知识和相关技能。他们有能力使用先进的IP寻址技术和路由技术实施可扩展的`、高安全性的思科路由...
-
思科认证词汇汇总
对于初学者来说,思科认证不少专业英文术语难以理解,导致学员学习进度维难。CISCO系列认证的原版教材,专业词汇出现频率积高,考生只要熟悉本文,相信学习起来一定事半功倍。10BaseT-----原始IEEE802.3标准的一部分,1OBaseT是1OMb/s基带以太网规范,它使用两对双绞电缆(3...