Chapter 1 Introduction to Cisco Software-Defined Wide Area Networking (SD-WAN)
High-Level Design Considerations
Introduction to Cisco Software-Defined WAN (SD-WAN)
Use Cases Demanding Changes in the WAN
Bandwidth Aggregation and Application Load-Balancing
Protecting Critical Applications with SLAs
Fully Managed Network Solution
Building an ROI to Identify Cost Savings
Chapter 2 Cisco SD-WAN Components
Chapter 3 Control Plane and Data Plane Operations
OMP Route Redistribution and Loop Prevention
Data Plane Encryption with Pairwise
Chapter 4 Onboarding and Provisioning
Developing and Deploying Templates
Manual Bootstrapping of a WAN Edge
Automatic Provisioning with PNP or ZTP
Chapter 5 Introduction to Cisco SD-WAN Policies
Purpose of Cisco SD-WAN Policies
Types of Cisco SD-WAN Policies
Centralized Policies That Affect the Control Plane
Centralized Policies That Affect the Data Plane
Cisco SD-WAN Policy Construction
Cisco SD-WAN Policy Administration, Activation, and Enforcement
Activating a Centralized Policy
Packet Forwarding Order of Operations
Chapter 6 Centralized Control Policies
Centralized Control Policy Overview
Use Case 1: Isolating Remote Branches from Each Other
Use Case 2: Enabling Branch-to-Branch Communication Through Data Centers
Enabling Branch-to-Branch Communication with Summarization
Enabling Branch-to-Branch Communication with TLOC Lists
Use Case 3: Traffic Engineering at Sites with Multiple Routers
Setting TLOC Preference with Centralized Policy
Setting TLOC Preference with Device Templates
Use Case 4: Preferring Regional Data Centers for Internet Access
Use Case 5: Regional Mesh Networks
Use Case 6: Enforcing Security Perimeters with Service Insertion
Use Case 7: Isolating Guest Users from the Corporate WAN
Use Case 8: Creating Different Network Topologies per Segment
Use Case 9: Creating Extranets and Access to Shared Services
Chapter 7 Centralized Data Policies
Centralized Data Policy Overview
Centralized Data Policy Use Cases
Use Case 10: Direct Internet Access for Guest Users
Use Case 11: Direct Cloud Access for Trusted Applications
Use Case 12: Application-Based Traffic Engineering
Use Case 13: Protecting Corporate Users with a Cloud-Delivered Firewall
Use Case 14: Protecting Applications from Packet Loss
Forward Error Correction for Audio and Video
Packet Duplication for Credit Card Transactions
Chapter 8 Application-Aware Routing Policies
The Business Imperative for Application-Aware Routing
The Mechanics of an App-Route Policy
Constructing an App-Route Policy
Mapping Traffic Flows to a Transport Tunnel
Packet Forwarding with Application-Aware Routing Policies
Traditional Lookup in the Routing Table
Introduction to Localized Policies
Step 1: Assign Traffic to Forwarding Classes
Step 2: Map Forwarding Classes to Hardware Queues
Step 3: Configure the Scheduling Parameters for Each Queue
Step 4: Map All of the Schedulers Together into a Single QoS Map
Step 5: Configure the Interface with the QoS Map
Chapter 10 Cisco SD-WAN Security
Cisco SD-WAN Security: Why and What
Application-Aware Enterprise Firewall
Intrusion Detection and Prevention
Advanced Malware Protection and Threat Grid
vManage Authentication and Authorization
Local Authentication with Role-Based Access Control (RBAC)
Remote Authentication with Role-Based Access Control (RBAC)
Chapter 11 Cisco SD-WAN Cloud onRamp
Service Chaining for a Single Service Node
Service Chaining for Multiple Service Nodes
Service Chaining and the Public Cloud
Redundancy and High Availability
Service Chain Design Best Practices
Chapter 12 Cisco SD-WAN Design and Migration
Cisco SD-WAN Design Methodology
Cisco SD-WAN Migration Preparation
Cisco SD-WAN Data Center Design
Complete CE Replacement—Single Cisco SD-WAN Edge
Complete CE Replacement—Dual Cisco SD-WAN Edge
Integration with Existing CE Router
Integration with a Branch Firewall
Integration with Voice Services
Cisco SD-WAN Overlay and Underlay Integration
Full Overlay and Underlay Integration
Chapter 13 Provisioning Cisco SD-WAN Controllers in a Private Cloud
SD-WAN Controller Functionality Recap
Step 1: Deploy vManage Virtual Appliance on VMware ESXi
or KVM
Step 2: Bootstrap and Configure vManage Controller
Step 3/4: Set Organization Name and vBond Address in vManage;
Install Root CA Certificate
Step 5: Generate, Sign, and Install Certificate onto vManage Controller