CCNP

ccnpCCNP

Cisco Certified Network Professional (CCNP) validates knowledge and skills required to install, configure and troubleshoot converged local and wide area networks with 100 to 500 or more nodes. With a CCNP certification, a network professional demonstrates the knowledge and skills required to manage the routers and switches that form the network core, as well as edge applications that integrate voice, wireless, and security into the network. The CCNP curriculum includes building scalable Cisco networks, Cisco multilayer switched networks, securing converged wide area networks, and optimizing converged networks.

Prerequisites

Valid CCNA certification


EXAM TOPIC  (New CCNP COMING SOON… )

300-101 ROUTE
300-115 SWITCH
300-135 TSHOOT

Implementing Cisco IP Routing (300-101) 

Exam Description: Implementing Cisco IP Routing (ROUTE 300-101) is a 120-minute qualifying exam with 50‒60 questions for the Cisco CCNP and CCDP certifications. The ROUTE 300-101 exam certifies the routing knowledge and skills of successful candidates. They are certified in  using advanced IP addressing and routing in implementing scalable and highly secure Cisco routers that are connected to LANs, WANs, and IPv6.

The exam also covers the configuration of highly secure routing solutions to support branch offices and mobile workers.

The following topics are general guidelines for the content that is likely to be included on the exam. However, other related topics may also appear on any specific version of the exam. To better reflect the contents of the exam and for clarity, the following guidelines may change at any time without notice.

10% 1.0 Network Principles

1.1 Identify Cisco Express Forwarding concepts

1.1.a FIB

1.1.b Adjacency table

1.2 Explain general network challenges

1.2.a Unicast

1.2.b Out-of-order packets

1.2.c Asymmetric routing

1.3 Describe IP operations

1.3.a ICMP Unreachable and Redirects

1.3.b IPv4 and IPv6 fragmentation

1.3.c TTL

1.4 Explain TCP operations

1.4.a IPv4 and IPv6 (P)MTU

1.4.b MSS 1.4.c Latency

1.4.d Windowing

1.4.e Bandwidth-delay product

1.4.f Global synchronization

1.5 Describe UDP operations

1.5.a Starvation

1.5.b Latency

1.6 Recognize proposed changes to the network

1.6.a Changes to routing protocol parameters

1.6.b Migrate parts of the network to IPv6

1.6.c Routing protocol migration

10% 2.0 Layer 2 Technologies

2.1 Configure and verify PPP

2.1.a Authentication (PAP, CHAP)

2.1.b PPPoE (client side only)

2.2 Explain Frame Relay

2.2.a  Operations

2.2.b  Point-to-point

2.2.c Multipoint

40% 3.0 Layer 3 Technologies

3.1 Identify, configure, and verify IPv4 addressing and subnetting

3.1.a Address types (Unicast, broadcast, multicast, and VLSM)

3.1.b ARP

3.1.c DHCP relay and server

3.1.d DHCP protocol operations

3.2 Identify IPv6 addressing and subnetting

3.2.a Unicast

3.2.b EUI-64

3.2.c ND, RS/RA

3.2.d Autoconfig (SLAAC)

3.2.e DHCP relay and server

3.2.f DHCP protocol operations

3.3 Configure and verify static routing

3.4 Configure and verify default routing

3.5 Evaluate routing protocol types

3.5.a Distance vector

3.5.b Link state

3.5.c Path vector

3.6 Describe administrative distance

3.7 Troubleshoot passive interfaces

3.8 Configure and verify VRF lite

3.9 Configure and verify filtering with any protocol

3.10 Configure and verify redistribution between any routing protocols or routing sources

3.11 Configure and verify manual and autosummarization with any routing protocol

3.12 Configure and verify policy-based routing

3.13 Identify suboptimal  routing

3.14 Explain ROUTE maps

3.15 Configure and verify loop prevention mechanisms

3.15.a Route tagging and filtering

3.15.b Split-horizon

3.15.c Route poisoning

3.16 Configure and verify RIPv2

3.17 Describe RIPng

3.18 Describe EIGRP packet types

3.19 Configure and verify  EIGRP neighbor relationship and authentication

3.20 Configure and verify EIGRP stubs

3.21 Configure and verify EIGRP load balancing

3.21.a Equal cost

3.21.b Unequal cost

3.22 Describe and optimize EIGRP metrics

3.23 Configure and verify EIGRP for IPv6

3.24 Describe OSPF packet types

3.25 Configure and verify OSPF neighbor relationship and authentication

3.26 Configure and verify network types, area types, and router types

3.26.a Point-to-point, multipoint, broadcast, nonbroadcast

3.26.b LSA types, area type: backbone, normal, transit, stub, NSSA, totally stub

3.26.c Internal router, backbone router, ABR, ASBR

3.26.d Virtual link

3.27 Configure and verify OSPF path preference

3.28 Configure and verify OSPF operations

3.29 Configure and verify OSPF for IPv6

3.30 Describe, configure, and verify BGP peer relationships and authentication

3.30.a Peer group

3.30.b Active, passive

3.30.c States and timers

3.31 Configure and verify eBGP (IPv4 and IPv6 address families)

3.31.a eBGP

3.31.b 4-byte AS number

3.31.c Private AS

3.32 Explain BGP attributes and best-path selection

10% 4.0 VPN Technologies

4.1 Configure and verify GRE

4.2 Describe DMVPN (single hub)

4.3 Describe Easy Virtual Networking (EVN)

10% 5.0 Infrastructure Security

5.1 Describe IOS AAA using local database

5.2 Describe device security using IOS AAA with TACACS+ and RADIUS

5.2.a AAA with TACACS+ and RADIUS

5.2.b Local privilege authorization fallback

5.3 Configure and verify device access control

5.3.a Lines (VTY, AUX, console)

5.3.b Management plane protection

5.3.c Password encryption

5.4 Configure and verify router security features

5.4.a IPv4 access control lists (standard, extended, time-based)

5.4.b IPv6 traffic filter

5.4.c Unicast reverse path forwarding

20% 6.0 Infrastructure Services

6.1 Configure and verify device management

6.1.a  Console and VTY

6.1.b Telnet, HTTP, HTTPS, SSH, SCP

6.1.c (T)FTP

6.2 Configure and verify SNMP

6.2.a v2

6.2.b v3

6.3 Configure and verify logging

6.3.a Local logging, syslog, debugs, conditional debugs

6.3.b Timestamps

6.4 Configure and verify Network Time Protocol (NTP)

6.4.a NTP master, client, version 3, version 4

6.4.b NTP authentication

6.5 Configure and verify IPv4 and IPv6 DHCP

6.5.a DHCP client, IOS DHCP server, DHCP relay

6.5.b DHCP options (describe)

6.6 Configure and verify IPv4 Network Address Translation (NAT)

6.6.a Static NAT, dynamic NAT, PAT

6.7 Describe IPv6 NAT

6.7.a NAT64

6.7.b NPTv6

6.8 Describe SLA architecture

6.9 Configure and verify IP SLA

6.9.a ICMP

6.10 Configure and verify tracking objects

6.10.a Tracking objects

6.10.b Tracking different entities (for example, interfaces, IPSLA  results)

6.11 Configure and verify Cisco NetFlow

6.11.a NetFlow v5, v9

6.11.b Local retrieval

6.11.c Export (configuration only)

 


Implementing Cisco IP Switched Networks (300-115)  

Exam Description: Implementing Cisco IP Switched Networks (SWITCH 300-115) is a 120-minute qualifying exam with 45‒55 questions for the Cisco CCNP and CCDP certifications. The SWITCH 300-115 exam certifies the switching knowledge and skills of successful candidates. They are certified in planning, configuring, and verifying the implementation of complex enterprise switching solutions that use the Cisco Enterprise Campus Architecture.

The SWITCH exam also covers highly secure integration of VLANs and WLANs.

The following topics are general guidelines for the content that is likely to be included on the exam. However, other related topics may also appear on any specific version of the exam. To better reflect the contents of the exam and for clarity, the following guidelines may change at any time without notice.

65% 1.0 Layer 2 Technologies

1.1 Configure and verify switch administration

1.1.a SDM templates

1.1.b Managing MAC address table

1.1.c Troubleshoot Err-disable recovery

1.2 Configure and verify Layer 2 protocols

1.2.a CDP, LLDP

1.2.b UDLD

1.3 Configure and verify VLANs

1.3.a Access ports

1.3.b VLAN database

1.3.c Normal, extended VLAN, voice VLAN

1.4 Configure and verify trunking

1.4.a VTPv1, VTPv2, VTPv3, VTP pruning

1.4.b dot1Q

1.4.c Native VLAN

1.4.d Manual pruning

1.5 Configure and verify  EtherChannels

1.5.a LACP, PAgP, manual

1.5.b Layer 2, Layer 3 1.5.c Load balancing

1.5.d EtherChannel misconfiguration guard

1.6 Configure and verify spanning tree

1.6.a PVST+, RPVST+, MST

1.6.b Switch priority, port priority, path cost, STP timers

1.6.c PortFast, BPDUguard, BPDUfilter

1.6.d Loopguard and Rootguard

1.7 Configure and verify other LAN switching technologies

1.7.a SPAN, RSPAN

1.8 Describe chassis virtualization and aggregation technologies

1.8.a Stackwise

20% 2.0 Infrastructure Security

2.1  Configure and verify switch security features

2.1.a   DHCP snooping

2.1.b  IP Source Guard

2.1.c Dynamic ARP inspection

2.1.d Port security

2.1.e Private VLAN

2.1.f Storm control

2.2  Describe device security using Cisco IOS AAA with TACACS+ and RADIUS

2.2.a  AAA with TACACS+ and RADIUS

2.2.b Local privilege authorization fallback

15% 3.0 Infrastructure Services 3.1 Configure and verify first-hop redundancy protocols 

3.1.a HSRP

3.1.b VRRP

3.1.c GLBP

 


Troubleshooting and Maintaining Cisco IP Networks v2 (300-135) 

Exam Description: Troubleshooting and Maintaining Cisco IP Networks v2 (TSHOOT 300-135) is a 120minute qualifying exam with 15‒25 questions for the Cisco CCNP certification. The TSHOOT 300135 exam certifies that the successful candidate has the knowledge and skills necessary to:  Plan and perform regular maintenance on complex enterprise routed and switched networks Use technology-based practices and a systematic ITIL-compliant approach to perform network troubleshooting

The following topics are general guidelines for the content that is likely to be included on the exam. However, other related topics may also appear on any specific version of the exam. To better reflect the contents of the exam and for clarity, the following guidelines may change at any time without notice.

5% 1.0 Network Principles

1.1 Use Cisco IOS troubleshooting tools

1.1.a Debug, conditional debug

1.1.b Ping and trace route with extended options

1.2  Apply troubleshooting methodologies

1.2.a Diagnose the root cause of networking issues (analyze symptoms, identify and describe root cause)

1.2.b Design and implement valid solutions

1.2.c Verify and monitor resolution

40% 2.0 Layer 2 Technologies

2.1 Troubleshoot switch administration

2.1.a  SDM templates

2.1.b  Managing MAC address table

2.1.c Troubleshoot Err-disable recovery

2.2 Troubleshoot Layer 2 protocols

2.2.a  CDP, LLDP

2.2.b  UDLD

2.3 Troubleshoot VLANs

2.3.a  Access ports

2.3.b  VLAN database

2.3.c Normal, extended VLAN, voice VLAN

2.4 Troubleshoot trunking

2.4.a  VTPv1, VTPv2, VTPv3, VTP pruning

2.4.b  dot1Q

2.4.c Native VLAN

2.4.d Manual pruning

2.5 Troubleshoot EtherChannels

2.5.a  LACP, PAgP, manual

2.5.b  Layer 2, Layer 3

2.5.c Load balancing

2.5.d EtherChannel misconfiguration guard

2.6 Troubleshoot spanning tree

2.6.a  PVST+, RPVST +, MST

2.6.b  Switch priority, port priority, path cost, STP timers

2.6.c PortFast, BPDUguard, BPDUfilter

2.6.d Loopguard, Rootguard

2.7 Troubleshoot other LAN switching technologies

2.7.a  SPAN, RSPAN

2.8 Troubleshoot chassis virtualization and aggregation technologies

2.8.a  Stackwise

40% 3.0 Layer 3 Technologies

3.1  Troubleshoot IPv4 addressing and subnetting

3.1.a Address types (Unicast, broadcast, multicast, and VLSM)

3.1.b ARP

3.1.c DHCP relay and server

3.1.d DHCP protocol operations

3.2 Troubleshoot IPv6 addressing and subnetting

3.2.a Unicast

3.2.b EUI-64

3.2.c ND, RS/RA

3.2.d Autoconfig (SLAAC)

3.2.e DHCP relay and server

3.2.f DHCP protocol operations

3.3 Troubleshoot static routing

3.4 Troubleshoot default routing

3.5 Troubleshoot administrative distance

3.6 Troubleshoot passive interfaces

3.7 Troubleshoot VRF lite

3.8 Troubleshoot filtering with any protocol

3.9 Troubleshoot between any routing protocols or routing sources

3.10 Troubleshoot manual and auto-summarization with any routing protocol

3.11 Troubleshoot policy-based routing

3.12 Troubleshoot suboptimal routing

3.13 Troubleshoot loop prevention mechanisms

3.13.a Route tagging, filtering

3.13.b Split-horizon

3.13.c Route poisoning

3.14 Troubleshoot RIPv2

3.15 Troubleshoot EIGRP neighbor relationship and authentication

3.16 Troubleshoot loop free path selection

3.16.a RD, FD, FC, successor, feasible successor

3.17 Troubleshoot EIGPR operations

3.17.a Stuck in active

3.18 Troubleshoot EIGRP stubs

3.19 Troubleshoot EIGRP load balancing

3.19.a Equal cost

3.19.b Unequal cost

3.20 Troubleshoot EIGRP metrics

3.21 Troubleshoot EIGRP for IPv6

3.22 Troubleshoot OSPF neighbor relationship and authentication

3.23 Troubleshoot network types, area types, and router types

3.23.a Point-to-point, multipoint, broadcast, non-broadcast

3.23.b LSA types, area type: backbone, normal, transit, stub, NSSA, totally stub

3.23.c Internal router, backbone router, ABR, ASBR

3.23.d Virtual link

3.24 Troubleshoot OSPF path preference

3.25 Troubleshoot OSPF operations

3.26 Troubleshoot OSPF for IPv6

3.27 Troubleshoot BGP peer relationships and authentication

3.27.a Peer group

3.27.b Active, passive

3.27.c States and timers

3.28 Troubleshoot eBGP

3.28.a eBGP

3.28.b 4-byte AS number

3.28.c Private AS

5% 4.0 VPN Technologies

4.1 Troubleshoot GRE

5% 5.0 Infrastructure Security

5.1 Troubleshoot IOS AAA using local database

5.2 Troubleshoot device access control

5.2.a Lines (VTY, AUX, console)

5.2.b Management plane protection

5.2.c Password encryption

5.3 Troubleshoot router security features

5.3.a IPv4 access control lists (standard, extended, time-based)

5.3.b IPv6 traffic filter

5.3.c Unicast reverse path forwarding

5% 6.0 Infrastructure Services

6.1Troubleshoot device management

6.1.a  Console and VTY

6.1.b Telnet, HTTP, HTTPS, SSH, SCP

6.1.c (T)FTP

6.2 Troubleshoot SNMP

6.2.a v2

6.2.b v3

6.3 Troubleshoot logging

6.3.a Local logging, syslog, debugs, conditional debugs

6.3.b Timestamps

6.4 Troubleshoot Network Time Protocol(NTP)

6.4.a NTP master, client, version 3, version 4

6.4.b NTP authentication

6.5 Troubleshoot IPv4 and IPv6 DHCP

6.5.a DHCP client, IOS DHCP server, DHCP relay

6.5.b DHCP options (describe)

6.6 Troubleshoot IPv4 Network Address Translation (NAT)

6.6.a Static NAT, Dynamic NAT, PAT

6.7 Troubleshoot SLA architecture

6.8 Troubleshoot tracking objects

6.8.a Tracking objects

6.8.b Tracking different entities (for example, interfaces, IPSLA  results)


350-401 :- CISCO ENTERPRISE NETWORK CORE TECHNOLOGIES (ENCOR)

This exam tests your knowledge and skills related to implementing core enterprise network technologies, including:

Dual stack (IPv4 and IPv6) architecture
Virtualization
Infrastructure
Network assurance
Security
Automation

MODULE 1 -ARCHITECTURE
1. Explain the different design principles used in an enterprise network
 Enterprise network design such as Tier 2, Tier 3, and Fabric Capacity planning
 High availability techniques such as redundancy, FHRP, and SSO
2. Analyze design principles of a WLAN deployment
 Wireless deployment models (centralized, distributed, controller-less, controller based, cloud, remote branch)
 Location services in a WLAN design
3. Differentiate between on-premises and cloud infrastructure deployments
4. Explain the working principles of the Cisco SD-WAN solution
 SD-WAN control and data planes elements
 Traditional WAN and SD-WAN solutions
5.Explain the working principles of the Cisco SD-Access solution
 SD-Access control and data planes elements
 Traditional campus interoperating with SD-Access
6. Describe concepts of wired and wireless QoS
 QoS components
 QoS policy
7. Differentiate hardware and software switching mechanisms
Process and CEF
 MAC address table and TCAM
 FIB vs. RIB
MODULE- 2 VIRTUALIZATION
1. Describe device virtualization technologies
 Hypervisor type 1 and 2
 Virtual machine
 Virtual switching
2. Configure and verify data path virtualization technologies
 VRF
 GRE and IPsec tunneling
3.Describe network virtualization concepts
 LISP
 VXLAN
MODULE-3 INFRASTRUCTURE
1. Layer 2
 Troubleshoot static and dynamic 802.1q trunking protocols
 Troubleshoot static and dynamic EtherChannels
 Configure and verify common Spanning Tree Protocols (RSTP and MST)
2. Layer 3
 Compare routing concepts of EIGRP and OSPF (advanced distance vector vs. linked state, load balancing, path selection, path operations, metrics)
 Configure and verify simple OSPF environments, including multiple normal areas, summarization, and filtering (neighbor adjacency, point-to-point and broadcast network types, and passive interface)
 Configure and verify eBGP between directly connected neighbors (best path selection algorithm and neighbor relationships)
3. Wireless
 Describe Layer 1 concepts, such as RF power, RSSI, SNR, interference noise, band and channels, and wireless client devices capabilities
 Describe AP modes and antenna types
 Describe access point discovery and join process (discovery algorithms, WLC selection process)
 Describe the main principles and use cases for Layer 2 and Layer 3 roaming
 Troubleshoot WLAN configuration and wireless client connectivity issues
4.IP Services
 Describe Network Time Protocol (NTP)
 Configure and verify NAT/PAT
 Configure first hop redundancy protocols, such as HSRP and VRRP
 Describe multicast protocols, such as PIM and IGMP v2/v3
MODULE -4 NETWORK ASSURANCE
1.Diagnose network problems using tools such as debugs, conditional debugs,trace route, ping, SNMP, and syslog
2.Configure and verify device monitoring using syslog for remote logging
3.Configure and verify NetFlow and Flexible NetFlow
4.Configure and verify SPAN/RSPAN/ERSPAN
5.Configure and verify IPSLA
6. Describe Cisco DNA Center workflows to apply network configuration, monitoring, and management
7.Configure and verify NETCONF and RESTCONF
MODULE -5 SECURITY
1. Configure and verify device access control
 Lines and password protection
 Authentication and authorization using AAA
2.Configure and verify infrastructure security features
 ACLs
 CoPP
3.Describe REST API security
4.Configure and verify wireless security features
 EAP
 WebAuth
 PSK
5.Describe the components of network security design
 Threat defense
 Endpoint security
 Next-generation firewall
 TrustSec, MACsec
 Network access control with 802.1X, MAB, and WebAuth
MODULE -6 AUTOMATION
1.Interpret basic Python components and scripts
2.Construct valid JSON encoded file
3.Describe the high-level principles and benefits of a data modeling language, such as YANG
4.Describe APIs for Cisco DNA Center and vManage
5.Interpret REST API response codes and results in payload using Cisco DNA Center and RESTCONF
6.Construct EEM applet to automate configuration, troubleshooting, or data collection
7.Compare agent vs. agentless orchestration tools, such as Chef, Puppet, Ansible, and SaltStack

300-410 :- Implementing Cisco Enterprise Advanced Routing and Services (ENARSI)

This exam tests your knowledge of implementation and troubleshooting for advanced routing technologies and services, including:

Layer 3
VPN services
Infrastructure security
Infrastructure services
Infrastructure automation

MODULE 1-LAYER 3 TECHNOLOGIES
1.Troubleshoot administrative distance (all routing protocols)
2.Troubleshoot route map for any routing protocol (attributes, tagging, filtering)
3.Troubleshoot loop prevention mechanisms (filtering, tagging, split horizon, route poisoning)
4.Troubleshoot redistribution between any routing protocols or routing sources
5.Troubleshoot manual and auto-summarization with any routing protocol
6.Configure and verify policy-based routing
7. Configure and verify VRF-Lite
8. Describe Bidirectional Forwarding Detection
9.Troubleshoot EIGRP (classic and named mode)
 Address families (IPv4, IPv6)
 Neighbor relationship and authentication
 Loop-free path selections (RD, FD, FC, successor, feasible successor, stuck in active)
 Stubs
 Load balancing (equal and unequal cost)
 Metrics
10.Troubleshoot OSPF (v2/v3)
 Address families (IPv4, IPv6)
 Neighbor relationship and authentication
 Network types, area types, and router types
 Point-to-point, multipoint, broadcast, no broadcast
 Area type: backbone, normal, transit, stub, NSSA, totally stub
 Internal router, backbone router, ABR, ASBR
 Virtual link
 Path preference
11.Troubleshoot BGP (Internal and External)
 Address families (IPv4, IPv6)
 Neighbor relationship and authentication (next-hop, multichip, 4-byte AS, private AS, route refresh, synchronization, operation, peer group, states and timers)
 Path preference (attributes and best-path)
 Route reflector (excluding multiple route reflectors, confederations, dynamic peer [www.logiccalicut.com])
 Policies (inbound/outbound filtering, path manipulation)
MODULE 2-VPN TECHNOLOGIES
1.Describe MPLS operations (LSR, LDP, label switching, LSP)
2.Describe MPLS Layer 3 VPN
3.Configure and verify DMVPN (single hub)
GRE/mGRE
NHRP
IPsec
Dynamic neighbor
Spoke-to-spoke
MODULE 3-INFRASTRUCTURE SECURITY
1.Troubleshoot device security using IOS AAA (TACACS+, RADIUS, local database)
2.Troubleshoot router security features
IPv4 access control lists (standard, extended, time-based)
IPv6 traffic filter
Unicast reverse path forwarding (uRPF)
3.Troubleshoot control plane policing (CoPP) (Telnet, SSH, HTTP(S), SNMP, EIGRP, OSPF, BGP)
4.Describe IPv6 First Hop security features (RA guard, DHCP guard, binding table, ND inspection/snooping, source guard)
MODULE 4-INFRASTRUCTURE SERVICES
4.1 Troubleshoot device management
Console and VTY
Telnet, HTTP, HTTPS, SSH, SCP
(T)FTP
2.Troubleshoot SNMP (v2c, v3)
3.Troubleshoot network problems using logging (local, syslog, debugs, conditional debugs, timestamps)
4.Troubleshoot IPv4 and IPv6 DHCP (DHCP client, IOS DHCP server, DHCP relay, DHCP options)
5.Troubleshoot network performance issues using IP SLA (jitter, tracking objects, delay, connectivity)
6.Troubleshoot NetFlow (v5, v9, flexible NetFlow)
7.Troubleshoot network problems using Cisco DNA Center assurance (connectivity, monitoring, device health, network health)