Course Summary

After completing this course you will be able to:

• Describe the fundamental components and concepts of cloud computing, including deployment models, cloud services, and cloud providers, to provide learners with a comprehensive overview of the subject
• Describe the options available for establishing connectivity to public cloud services, including point-to-point IPsec VPN and various Cisco Catalyst SD-WAN Cloud OnRamp deployment options
• Explain the public cloud connectivity architecture similarities and differences between different cloud service providers and explore the available connectivity options to the public cloud from a Cisco Catalyst SD-WAN environment
• Describe private connectivity options to public cloud provider infrastructure
• Describe direct connections to different public cloud providers for private peering
• Describe connectivity solutions such as colocation, cloud exchange, and software-defined cloud interconnect providers for connecting to the public cloud infrastructure
• Describe the available options for connectivity to SaaS applications from a geographically distributed organization’s premises
• Explain the emergence of DIA to optimize cloud application performance and user experience
• Describe the essential business and technical prerequisites for achieving high availability, resiliency, and scalability within an enterprise cloud connectivity network solution
• Describe AWS, Azure, and GCP native security
• Describe PCI DSS, FedRAMP, and HIPAA compliance requirements and their role in public cloud integration
• Implement underlay (internet-based) connectivity to connect to the public cloud
• Configure overlay tunnels over public transport to a cloud-native gateway in AWS, Azure, and GCP and to a cloud-hosted Cisco IOS XE router
• Deploy a cloud-hosted Cisco IOS XE-based router instance and customize the cloud networking setup
• Configure OSPF and BGP routing for typical enterprise network
• Explore Cisco Umbrella SIG
• Introduce Cisco vManage Policy Architecture and centralized data policies
• Explain AAR policy components and implementation
• Understand Microsoft 365 Traffic categories and service areas
• Describe the AppQoE feature
• Describe DRE deployment considerations
• Describe how to diagnose and troubleshoot common issues for connectivity to public cloud environments using internet-based connectivity
• Introduce the BGP routing protocol used for establishing connectivity between on-premises and public cloud devices over different connection options
• Discuss BGP peering and connectivity issues with Microsoft Azure and explore various troubleshooting and test tools and techniques
• Discuss some common configuration, networking, and routing issues encountered on customer edge devices when connecting to Microsoft Azure ExpressRoute

This training covers the following:

• Public Cloud Fundamentals
• Cloud Computing
• Cloud Deployment Models
• Public Cloud Service Models
• Public Cloud Providers
• Internet-Based Connectivity to Public Cloud
• Public Internet
• VPN
• Cisco SD-WAN
• Cisco SD-WAN Cloud Connectivity
• Private Connectivity to Public Cloud
• Private Connectivity Overview
• Direct Connect and Private Peering
• Colocations, Cloud Exchange and Software-Defined Cloud Interconnect
• SaaS Connectivity
• Centralized Internet Gateway
• Direct Internet Access
• Cloud Security Providers (Umbrella)
• Dedicated Connectivity (Webex)
• Resilient and Scalable Public Cloud Connectivity
• Business and Technical Requirements
• High Availability and Resiliency
• Performance and Scalability
• Bandwidth (Dedicated and Shared)
• SLA and QoS
• Design Case Study Activity: Designing Enterprise Cloud Connectivity
• Cloud-Native Security Policies
• Public Cloud Security Overview
• East-West Traffic Control
• North-South Traffic Control
• Inter-Region Connectivity
• Amazon Web Servces (AWS) Native Security
• Microsoft Azure Native Security
• Google Cloud Platform (GCP) Native Security
• Regulatory Compliance Requirements
• Regulatory Compliance Requirements
• Internet-Based Public Cloud Connectivity
• Underlay Transport Network
• Overlay VPN Tunnels to a Cloud Gateway in AWS
• Overlay VPN Tunnels to a Cloud Gateway im Azure
• Overlay VPN Tunnels to a Cloud Gateway in GCP
• Overlay VPN Tunnels to a Cloud-Hosted Cisco IOS XE Router
• Overlay Routing Deployment
• Overlay Routing
• Configure OSPF
• Configure BGP
• Configure BGP in AWS
• Configure BGP in Azure Cloud
• Configure BGP in GCP
• Summary Configuration Example
• Cisco SD-WAN Internet-Based Cloud Connectivity
• Cloud OnRamp Functionality
• Cloud OnRamp for Multicloud
• Cisco SD-WAN Cloud Security
• Cisco vManage Security Policies
• Cisco Umbrella Cloud Security
• Cloud OnRamp for Saas
• SaaS Applications Challenges
• Client-Side SaaS Path Performance Statistics
• Cloud OnRamp for SaaS over SIG Tunnels
• Cloud OnRamp for SaaS and Microsoft 365
• Cisco SD-WAN Policies
• Policy Configuration Overview
• Data Policy Overview
• Centralized Data Policy
• Use case – Implementing Traffic Engineering
• AAR Overview
• AAR Components
• Implement AAR Policy for Cloud OnRamp for SaaS
• Configuring Traffic Category and Service Area for Specific Policies
• Enable Cloud OnRamp for SaaS for Specific • Applications at Specific Sites
• Application Quality of Experience
• Application Quality of Experience Overview
• TCP Optimization
• Data Redundancy Elimination
• Packet Duplication
• Forward Error Correction
• Internet-Based Public Cloud Connectivity Diagnostics
• Diagnose Underlay Transport Network
• Diagnose Overlay VPN Tunnel Connectivity to a Cloud Gateway
• Troubleshoot AWS VPN Gateways
• Troubleshoot Azure VPN Gateways
• Troubleshoot GCP VPN Gateways
• Overlay Routing Diagnostics
• Overlay Network Basics
• Open Shortest Path First
• Border Gateway Protocol (BGP)
• Overlay Routing in Cloud Environments
• Cisco SD-WAN Public Cloud Connectivity Diagnostics
• Troubleshoot Underlay Connectivity
• Troubleshoot Overlay Routing
• Troubleshoot Cisco SD-WAN Cloud OnRamp

Attendees should meet the following prerequisites: • Good understanding of enterprise routing • Good understanding of WAN networking • Good understanding of VPN technology • Good understanding of Cisco Catalyst SD-WAN • Good understanding of Public Cloud services. such as AWS, Microsoft Azure and Google Cloud Platform.

300-440 ENCC Designing and Implementing Cloud Connectivity Duration: 90 minutes Languages: English

Following your booking, a confirmation message will be sent to all participants, ensuring you're well-informed of your successful enrollment. Calendar placeholders will also be dispatched to assist you in scheduling your commitments around the course. Rest assured, all course materials and access to necessary labs or platforms will be provided no later than one week before the course begins, allowing you ample time to prepare and engage fully with the learning experience ahead.

Our comprehensive training package includes all the necessary materials and resources to facilitate a full learning experience. Enrollees will be provided with detailed course content, encompassing a wide array of topics to ensure a thorough understanding of the subject matter. Additionally, participants will receive a certificate of completion to recognize their dedication and hard work. It's important to note that while the course fee covers all training materials and experiences, the examination fee for certification is not included but can be purchased separately.

Questions About This Course?