CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023)

Preview (31 of 1111 Pages)

100%

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 1 preview image

Loading page ...

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 2 preview image

Loading page ...

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 3 preview image

Loading page ...

CCNP and CCIE Data Center Core DCCOR 350-601Official Cert GuideCompanion Website and Pearson Test Prep Access CodeAccess interactive study tools on this book’s companion website, including practice test software,review exercises, Key Term flash card application, a study planner, and more!To access the companion website, simply follow these steps:1.Go to www.ciscopress.com/register.2.Enter the print book ISBN:9780138228088.3.Answer the security question to validate your purchase.4.Go to your account page.5.Click on theRegistered Productstab.6.Under the book listing, click on theAccess Bonus Contentlink.When you register your book, your Pearson Test Prep practice test access code will automaticallybe populated with the book listing under the Registered Products tab. You will need thiscode to access the practice test that comes with this book. You can redeem the code atPearsonTestPrep.com. Simply choose Pearson IT Certification as your product group and log intothe site with the same credentials you used to register your book. Click theActivate New Productbutton and enter the access code. More detailed instructions on how to redeem your access codefor both the online and desktop versions can be found on the companion website.If you have any issues accessing the companion website or obtaining your Pearson Test Preppractice test access code, you can contact our support team by going topearsonitp.echelp.org.

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 4 preview image

Loading page ...

This page intentionally left blank

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 5 preview image

Loading page ...

Cisco PressCCNP andCCIE DataCenter CoreDCCOR350-601OfficialCert GuideSecond EditionSOMIT MALOO, CCIE NO. 28603, CCDE NO. 20170002ISKREN NIKOLOV, CCIE NO. 20164, CCSI NO. 32481FIRAS AHMED, CCIE NO. 14967

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 6 preview image

Loading page ...

ivCCNP and CCIE Data Center Core DCCOR 350-601 Official Cert GuideCCNP and CCIE Data Center CoreDCCOR 350-601 Official Cert Guide,Second EditionSomit Maloo, Iskren Nikolov, Firas AhmedCopyright© 2024 Cisco Systems, Inc.Published by:Cisco PressHoboken, New JerseyAll rights reserved. No part of this book may be reproduced or transmitted in any form or by any means,electronic or mechanical, including photocopying, recording, or by any information storage and retrievalsystem, without written permission from the publisher, except for the inclusion of brief quotations in areview.$PrintCodeLibrary of Congress Control Number: 2023946984ISBN-13: 978-0-13-822808-8ISBN-10: 0-13-822808-6Warning and DisclaimerThis book discusses the content and skills needed to pass the 350-601 CCNP Data Center Corecertification exam, which is the prerequisite for CCNP as well as CCIE certification. Every effort has beenmade to make this book as complete and as accurate as possible, but no warranty or fitness is implied.The information is provided on an “as is” basis. The authors, Cisco Press, and Cisco Systems, Inc. shallhave neither liability nor responsibility to any person or entity with respect to any loss or damagesarising from the information contained in this book or from the use of the discs or programs that mayaccompany it.The opinions expressed in this book belong to the author and are not necessarily those ofCisco Systems, Inc.Trademark AcknowledgmentsAll terms mentioned in this book that are known to be trademarks or service marks have been appropriatelycapitalized. Cisco Press or Cisco Systems, Inc., cannot attest to the accuracy of this information. Use of aterm in this book should not be regarded as affecting the validity of any trademark or service mark.Special SalesFor information about buying this title in bulk quantities, or for special sales opportunities (whichmay include electronic versions; custom cover designs; and content particular to your business,training goals, marketing focus, or branding interests), please contact our corporate sales department atcorpsales@pearsoned.com or (800) 382-3419.For government sales inquiries, please contact governmentsales@pearsoned.com.For questions about sales outside the U.S., please contact intlcs@pearson.com.

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 7 preview image

Loading page ...

Feedback InformationAt Cisco Press, our goal is to create in-depth technical books of the highest quality and value. Each bookis crafted with care and precision, undergoing rigorous development that involves the unique expertise ofmembers from the professional technical community.Readers’ feedback is a natural continuation of this process. If you have any comments regarding how wecould improve the quality of this book, or otherwise alter it to better suit your needs, you can contact usthrough email at feedback@ciscopress.com. Please make sure to include the book title and ISBN in yourmessage.We greatly appreciate your assistance.Vice President, IT Professional:Mark TaubAlliances Managers, Cisco Press:Jaci Featherly;James RislerDirector, ITP Product Management:Brett BartowExecutive Editor:James ManlyManaging Editor:Sandra SchroederDevelopment Editor:Ellie BruSenior Project Editor:Tonya SimpsonCopy Editor:Chuck HutchinsonTechnical Editor:Donald S. BachaEditorial Assistant:Cindy TeetersCover Designer:Chuti PrasertsithComposition:codeMantraIndexer:Ken JohnsonProofreader:Charlotte Kughenv

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 8 preview image

Loading page ...

viCCNP and CCIE Data Center Core DCCOR 350-601 Official Cert GuidePearson’s Commitment to Diversity, Equity,and InclusionPearson is dedicated to creating bias-free content that reflects the diversity of all learners.We embrace the many dimensions of diversity, including but not limited to race, ethnic-ity, gender, socioeconomic status, ability, age, sexual orientation, and religious or politicalbeliefs.Education is a powerful force for equity and change in our world. It has the potential todeliver opportunities that improve lives and enable economic mobility. As we work withauthors to create content for every product and service, we acknowledge our responsibil-ity to demonstrate inclusivity and incorporate diverse scholarship so that everyone canachieve their potential through learning. As the world’s leading learning company, we havea duty to help drive change and live up to our purpose to help more people create abetter life for themselves and to create a better world.Our ambition is to purposefully contribute to a world where■Everyone has an equitable and lifelong opportunity to succeed through learning■Our educational products and services are inclusive and represent the rich diversityof learners■Our educational content accurately reflects the histories and experiences of thelearners we serve■Our educational content prompts deeper discussions with learners and motivatesthem to expand their own learning (and worldview)While we work hard to present unbiased content, we want to hear from you about anyconcerns or needs with this Pearson product so that we can investigate and address them.Please contact us with concerns about any potential bias at https://www.pearson.com/report-bias.html.

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 9 preview image

Loading page ...

viiAbout the AuthorsSomit Maloo, CCIE No. 28603, CCDE No. 20170002, is a content architect from the datacenter team in the Learning & Certifications’ organization. He holds a master’s degree intelecommunication networks and a bachelor’s degree in electronics and telecommunicationengineering. He is also a penta CCIE in routing and switching, service provider, wireless,security, and data center technologies. Somit holds various industry-leading certifications,including CCDE, PMP, RHCSA, and VMware VCIX6 in Data Center and Network Virtu-alization. Somit has extensive experience in designing and developing various data centercourses for the official Cisco curriculum. He started his career as a Cisco TAC engineer.Somit has more than 13 years of experience in the networking industry, working mostlywith data center networks. You can reach Somit on Twitter: @somitmaloo.Iskren Nikolov, CCIE No. 20164, CCSI No. 32481, MCT Alumni, content architect,engineer, and developer with the Cisco Learning & Certifications’ Data Center & Cloudteam. He is responsible for designing, developing, and reviewing Data Center OfficialLearning Cisco courses, including lab infrastructures and exercises. He holds a mas-ter’s degree in computer systems and management from the Technical University-Sofia,Bulgaria. Iskren has more than 26 years of experience in designing, implementing, andsupporting solutions based on the data center, security, storage, wide area networks,software-defined networks, cloud, hybrid, and multi-cloud technologies, including 11years of teaching, and developing Cisco Data Center & Cloud and Microsoft Azurecourses. The huge experience across technologies from multiple vendors such as CiscoSystems, VMware, Microsoft, and Barracuda, combined with the different perspectivesgained from the different roles in his work and experience with customers from differ-ent industries, allow Iskren to have a unique view of the current data center technologiesand the future trends. You can reach Iskren on LinkedIn: https://www.linkedin.com/in/iskrennikolov.Firas Ahmed, CCIE No. 14967, is a solution architect on the data center technologiesteam at Nile. He completed a master’s degree in systems and control engineering follow-ing a bachelor’s degree in computer engineering. Firas holds CCIE certificates in routingand switching, collaboration, wireless, security, and data center technologies in additionto industry-based certifications, including CISSP, PMP, VMware VCP6.5-DCV, ITIL, andGICSP. Firas has more than 18 years of experience in designing, developing, and support-ing various data centers for enterprise and IoT customers. Firas has additional experienceas a seasonal instructor in a number of community colleges in Toronto, where he taughtvarious computer networking courses. You can reach Firas on Twitter: @dccor_firas.

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 10 preview image

Loading page ...

viiiCCNP and CCIE Data Center Core DCCOR 350-601 Official Cert GuideAbout the Technical ReviewerDonald Bachais an infrastructure manager with a health research organization in NewYork City. He’s the technical lead responsible for designing and implementing network,compute, virtualization, storage, and disaster recovery solutions. During the past 18years, Donald has supported Cloud Services Provider, Enterprise, and Data Center envi-ronments contributing to complex routing and switching, data center, storage, and virtu-alization projects in both greenfield and brownfield deployments. Donald’s certificationsinclude CCNP Data Center, CCNP Enterprise, and VCAP-DCV. Donald holds a master ofscience in network engineering from Southern Methodist University (SMU) Lyle Schoolof Engineering and a master of business administration from the Commonwealth ofLearning/University of Guyana. You can reach Donald on Twitter: @donald_bacha.

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 11 preview image

Loading page ...

ixDedicationsSomit:To my loving wife, Renuka, for her unending love and support.To my wonderful parents, who supported me in every phase of my life.To Navya and Namit, who agreed not to fight while Papa was working on the book.To my aunt, Tara, for being the guiding angel in my life.Iskren:To my loving family—my wife, Petya, and my kids, Diana and Valentin—for theircontinued support and unconditional love!Firas:To my amazing wife, Nora, who has been extremely supportive throughout this process.Thanks for letting me spend long hours on my computer once again!To Ibrahim and Maryam, you are growing so fast. Never give up on what you want. If atfirst you don’t succeed, try and try again. I love you more than anything!To my parents, you are still the guiding light that keeps me on the right path.

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 12 preview image

Loading page ...

xCCNP and CCIE Data Center Core DCCOR 350-601 Official Cert GuideAcknowledgmentsSomit Maloo:I would like to thank my coauthors, Iskren Nikolov and Firas Ahmed, for working as ateam to complete this book. Without their support, this book would not have been pos-sible. I am thankful to all our professional editors, especially James Manly and Ellie Bru,for their patience and guidance at every step of the book process. I would also like tothank our technical editor, Donald Bacha, for his keen attention to detail and for agreeingto review the book, taking time out of his busy schedule.Firas Ahmed:I would like to thank my co-author, Somit Maloo, for taking the initiative to form thispartnership and for his dedication in putting together the outline of this book. Thank youfor your valuable input and continuous support throughout the process.Thanks to the Cisco Press team, especially James Manly, for believing in us, and Ellie Bru,for her guidance and extreme patience while editing and amending the chapters of thebook.A special credit to Hazim Dahir, distinguished engineer at Cisco Systems, for his help andsupport with the technical review of the book.In addition, I want to thank my colleague Naveen Chapa for reviewing and providingconstructive feedback that helped enhance the ACI chapter.Iskren Nikolov:I would like to thank my co-author, Somit Maloo—it’s not that often one can workeffortlessly as a team with someone. I am thankful to the whole production team, espe-cially James Manly and Ellie Bru, for their professionalism and endless patience with me!Special thanks also to our technical editor, Donald Bacha, for providing this preciousother perspective on how we can tell a better story about the technology!

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 13 preview image

Loading page ...

xiContents at a GlanceIntroductionxxxvPart INetworkingChapter 1Implementing Routing in the Data Center2Chapter 2Implementing Data Center Switching Protocols90Chapter 3Implementing Data Center Overlay Protocols150Chapter 4Describe Cisco Application Centric Infrastructure172Chapter 5Cisco Cloud Services and Deployment Models240Chapter 6Data Center Network Management and Monitoring252Chapter 7Describe Cisco Nexus Dashboard314Part IIStorageChapter 8Implement Fibre Channel352Chapter 9Implement FCoE Unified Fabric434Chapter 10Describe NFS and NAS Concepts478Chapter 11Describe Software Management and Infrastructure Monitoring488Part IIIComputeChapter 12Cisco Unified Computing Systems Overview530Chapter 13Cisco Unified Computing Infrastructure Monitoring628Chapter 14Cisco Unified Compute Software and Configuration Management658Chapter 15Cisco HyperFlex Overview702Part IVAutomationChapter 16Automation and Scripting Tools730Chapter 17Evaluate Automation and Orchestration Technologies762Part VSecurityChapter 18Network Security798Chapter 19Compute Security874

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 14 preview image

Loading page ...

xiiCCNP and CCIE Data Center Core DCCOR 350-601 Official Cert GuideChapter 20Storage Security896Chapter 21Final Preparation932Chapter 22CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert GuideExam Updates942Appendix AAnswers to the “Do I Know This Already?” Quizzes946Glossary961Index984Online ElementsAppendix BMemory TablesAppendix CMemory Tables Answer KeyAppendix DStudy PlannerGlossary

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 15 preview image

Loading page ...

xiiiContentsIntroductionxxxvPart INetworkingChapter 1Implementing Routing in the Data Center2“Do I Know This Already?” Quiz2Foundation Topics5Routing Protocols Support on Cisco Nexus Devices5OSPF6OSPF Link-State Advertisements7OSPF Areas10Designated Routers and Backup Designated Routers12OSPF Authentication13OSPF Configurations and Verifications13Border Gateway Protocol24BGP Peering25BGP Path Selection26Step 1: Comparing Pairs of Paths27Step 2: Determining the Order of Comparisons28Step 3: Determining the Best-Path Change Suppression29Multiprotocol BGP29BGP Configurations and Verifications30Bidirectional Forwarding Detection37Rapid Detection of Failures38BFD Configurations and Verifications38Multicast42Internet Group Management Protocol43Switch IGMP Snooping46Multicast Listener Discovery46Multicast Distribution Trees47Protocol Independent Multicast49PIM Rendezvous Points53PIM Designated Routers/Forwarders54Multicast Forwarding55Multicast Configurations and Verifications56Hot Standby Router Protocol69Virtual Router Redundancy Protocol73

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 16 preview image

Loading page ...

xivCCNP and CCIE Data Center Core DCCOR 350-601 Official Cert GuideVRRP Operation73VRRP Groups75VRRP Router Priority and Preemption76VRRP Authentication77VRRP Tracking77IPv6 First Hop Redundancy77HSRP/VRRP Configurations and Verifications79Exam Preparation Tasks87Review All Key Topics87Memory Tables88Define Key Terms88References88Chapter 2Implementing Data Center Switching Protocols90“Do I Know This Already?” Quiz90Foundation Topics93Spanning Tree Protocols93STP Topology93STP Port Types94STP Extensions94STP Bridge Assurance95BPDU Guard96BPDU Filter96Loop Guard96Root Guard97Unidirectional Link Detection97Rapid PVST+98Rapid PVST+ Ports100Spanning Tree Configurations and Verifications102Port Channels117Port Channel Load Balance120Virtual Port Channel122vPC Traffic Flows125vPC Dual-Control Plane126vPC Primary and Secondary Roles127vPC Configuration Consistency128vPC Duplicate Frames Prevention Mechanism129vPC HSRP Gateway Considerations131

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 17 preview image

Loading page ...

xvvPC ARP Synchronization131vPC Peer Gateway131Port Channel Configurations and Verifications132Exam Preparation Tasks146Review All Key Topics146Memory Tables147Define Key Terms147References148Chapter 3Implementing Data Center Overlay Protocols150“Do I Know This Already?” Quiz150Foundation Topics151Virtual Extensible LAN (VXLAN) Overview151VXLAN Encapsulation and Packet Format152VXLAN Tunnel Endpoint152Virtual Network Identifier153VXLAN Control Plane154VXLAN Flood and Learn Multicast-Based Control Plane154VXLAN MPBGP EVPN Control Plane156VXLAN Gateways157VXLAN High Availability157VXLAN Tenant Routed Multicast159VXLAN Configurations and Verifications159Exam Preparation Tasks169Review All Key Topics169Define Key Terms170References170Chapter 4Describe Cisco Application Centric Infrastructure172“Do I Know This Already?” Quiz172Foundation Topics174Cisco Application Centric Infrastructure (ACI) Overview174Cisco Application Policy Infrastructure Controller176Cisco Nexus 9000 Series Spine and Leaf Switches for Cisco ACI179Cisco ACI Initial Setup, Fabric Discovery, Fabric Upgrade, and Fabric AccessPolicies182Cisco ACI Initial Setup182Cisco ACI Fabric Discovery187

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 18 preview image

Loading page ...

xviCCNP and CCIE Data Center Core DCCOR 350-601 Official Cert GuideStartup with Cisco ACI Fabric Discovery and Configuration188Fabric Upgrade189Cisco ACI Fabric Access Policies190Cisco ACI Fabric Building Blocks, Policy Model, and VMM Domains195ACI Policy Model197Cisco ACI Tenants198Virtual Routing and Forwarding200Bridge Domain and Subnets200Endpoint Group202Cisco ACI Virtual Machine Manager Domains203Cisco ACI Integration with Microsoft SCVMM204Cisco ACI Integration with VMware vCenter205Cisco ACI Virtual Edge206Integrating VMware Overlays with the Cisco ACI206Application Profiles206Microsegmentations207Attachable Entity Profile207ACI Contract208Taboo Contracts209vzAny Rule210Filters and Subjects213Management Tenant213In-Band Management Access214Out-of-Band Management Access214ACI VXLAN215ACI Intersubnet Tenant Traffic217Policy Identification and Enforcement218ACI Fabric Traffic Storm Control219ACI Fabric Traffic Load Balance219ACI Fabric Loop Detection220ACI Design Best Practices221ACI LAB Configurations Example221Building ACI Fabric224Creating Tenant227Creating Contract and Filter230Deploying a Three-Tier Application233Integrating with vCenter235

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 19 preview image

Loading page ...

xviiExam Preparation Tasks238Review All Key Topics238Define Key Terms239References239Chapter 5Cisco Cloud Services and Deployment Models240“Do I Know This Already?” Quiz240Foundation Topics242What Is Cloud Computing?242Cloud Service Models245Software as a Service245Platform as a Service246Infrastructure as a Service246Cloud Deployment Models248Private Cloud248Public Cloud248Hybrid Cloud249Community Cloud250Exam Preparation Tasks250Review All Key Topics250Define Key Terms251References251Chapter 6Data Center Network Management and Monitoring252“Do I Know This Already?” Quiz252Foundation Topics254Cisco Nexus NX-OS Software Installation, Updates, and Their Impacts254PowerOn Auto Provisioning (POAP)259Data Center Infrastructure Software Lifecycle Management263Nexus Nondisruptive In-Service Software Upgrade263Nexus Disruptive and Nondisruptive Upgrade/Downgrade Procedure265Programmable Logical Devices Upgrade269Nexus Configuration Management271NX-OS Configuration Save and Backup272Nexus Config Rollback and Checkpoint272Network Time Management274Network Time Protocol275Precision Time Protocol280

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 20 preview image

Loading page ...

xviiiCCNP and CCIE Data Center Core DCCOR 350-601 Official Cert GuideNetwork Infrastructure Monitoring284NX-OS System Message Logging284NX-OS Simple Network Management Protocol286Nexus Smart Call Home292Nexus NetFlow293Switched Port Analyzer298Streaming Telemetry306Network Assurance Concept310Exam Preparation Tasks312Review All Key Topics312Memory Tables313Define Key Terms313References313Chapter 7Describe Cisco Nexus Dashboard314“Do I Know This Already?” Quiz314Foundation Topics316Cisco Nexus Dashboard316Cisco Nexus Dashboard Insights318Cisco Nexus Dashboard Insights Features and Benefits318Cisco Nexus Dashboard Insights GUI Overview320Cisco Nexus Dashboard Orchestrator323Cisco Nexus Dashboard Orchestrator Features and Benefits324Cisco Nexus Dashboard Fabric Controller325Cisco Nexus Dashboard Fabric Controller Features and Benefits326Cisco Nexus Dashboard Fabric Controller GUI Overview331Cisco Nexus Dashboard Data Broker335Cisco Nexus Dashboard Data Broker Features and Benefits337Cisco Nexus Dashboard Platforms337Cisco Nexus Dashboard Cluster Nodes339Cisco Nexus Dashboard External Networks341Cisco Nexus Dashboard GUI Overview342One View Page343Admin Console Page343Overview Page344Sites Page345Services Page345System Resources Pages346

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 21 preview image

Loading page ...

xixOperations Pages347Infrastructure Pages348Administrative Pages348Exam Preparation Tasks348Review All Key Topics348Memory Tables349Define Key Terms349References349Part IIStorageChapter 8Implement Fibre Channel352“Do I Know This Already?” Quiz353Foundation Topics356Cisco MDS 9000 Series Hardware356Cisco MDS 9700 Series Multilayer Directors356Cisco MDS 9300 Series Multilayer Fabric Switches360Cisco MDS 9200 Series Multiservice Switches361Cisco MDS 9100 Series Multilayer Fabric Switches362Fibre Channel Basics365Fibre Channel Topologies365Fibre Channel Port Types368E Port369F Port369NP Ports369TE Port369TF Port370TNP Port370Fx Port370Auto Mode370Fibre Channel Addressing371Flow Control372Switched Fabric Initialization373Principal Switch Selection374Domain ID Distribution375FCID Allocation377Fabric Reconfiguration377Device Registration: FLOGI, PLOGI, PRLI378FLOGI and FCNS Databases378

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 22 preview image

Loading page ...

xxCCNP and CCIE Data Center Core DCCOR 350-601 Official Cert GuideCFS380CFS Features381CFS Fabric Lock382CFSoIP and CFSoFC382CFS Merge384CFS Regions384VSAN386VSAN Features386VSAN Attributes387VSAN Advantages388Dynamic Port VSAN Membership (DPVM)388VSAN Trunking389SAN Port Channels396Types of SAN Port Channels396Port Channel Load Balancing398Port Channel Modes399Zoning404Zoning Features404Zone Enforcement406Full and Active Zone Set407Autozone410Zone Merge410Smart Zoning411Enhanced Zoning412Device Alias418Device Alias Features419Device Alias Modes419Device Alias Distribution420Zone Aliases (FC Aliases) Versus Device Aliases421NPIV and NPV424Exam Preparation Tasks431Review All Key Topics431Memory Tables432Define Key Terms432References433

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 23 preview image

Loading page ...

xxiChapter 9Implement FCoE Unified Fabric434“Do I Know This Already?” Quiz434Foundation Topics436FCoE Overview436Ethernet Enhancements438Priority-Based Flow Control (PFC)438Enhanced Transmission Selection (ETS)439Data Center Bridging Exchange (DCBX)440FCoE Frame Format442Virtual Fibre Channel (VFC)444FCoE Elements and Port Types445FCoE Addressing and Forwarding447FCoE Initialization Protocol (FIP)448Benefits of FCoE451FCoE Topology Options451FCoE Single-Hop Topology451FCoE Direct-Attached Topology452FCoE FEX Topology453FCoE Remote-Attached Topology454FCoE Multi-Hop Topology454FCoE Implementations455FCoE Configuration on Cisco Nexus 7000 Series Switches456Miscellaneous FCoE Configuration457FCoE Configuration on Cisco Nexus 5000 Series Switches458FCoE Configuration on Cisco Nexus 9000 Series Switches459FCoE over FEX461FCoE NPV463FCoE Verification466Exam Preparation Tasks475Review All Key Topics475Memory Tables476Define Key Terms476References476Chapter 10Describe NFS and NAS Concepts478“Do I Know This Already?” Quiz478Foundation Topics479Describe NFS Concepts479

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 24 preview image

Loading page ...

xxiiCCNP and CCIE Data Center Core DCCOR 350-601 Official Cert GuideDescribe NAS Concepts481NAS Benefits483Cisco UCS S-Series Storage Servers483Exam Preparation Tasks485Review All Key Topics485Define Key Terms485References486Chapter 11Describe Software Management and Infrastructure Monitoring488“Do I Know This Already?” Quiz488Foundation Topics490Cisco MDS NX-OS Setup Utility490Cisco MDS NX-OS Software Upgrade and Downgrade498Nondisruptive Upgrade on a Cisco MDS Fabric Switch500Disruptive Upgrade on a Cisco MDS Fabric Switch505Nondisruptive Downgrade on a Cisco MDS Fabric Switch508Disruptive Downgrade on a Cisco MDS Fabric Switch513EPLD Upgrade on Cisco MDS 9000 Series Switches515Infrastructure Monitoring521System Messages521Call Home521Embedded Event Manager522RMON523SPAN523SPAN Configuration Example526Remote SPAN526Exam Preparation Tasks528Review All Key Topics528Define Key Terms529References529Part IIIComputeChapter 12Cisco Unified Computing Systems Overview530“Do I Know This Already?” Quiz530Foundation Topics532Cisco UCS Architecture532Cisco UCS Components and Connectivity534Cisco UCS 5108 Blade Server Chassis536

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 25 preview image

Loading page ...

xxiiiUCS Blade Servers536Cisco UCS Rack Servers537Cisco UCS Storage Servers537Cisco UCS Mini539Cisco UCS Fabric Infrastructure539Cisco UCS 6536 Fabric Interconnect540Cisco UCS 6454 Fabric Interconnect541Cisco UCS 6300 Series Fabric Interconnects543Fabric Interconnect and Fabric Extender Connectivity544Cisco UCS Virtualization Infrastructure550Cisco UCS-X System555Cisco UCS Initial Setup and Management557Fabric Interconnect Connectivity and Configurations565Uplink Connectivity566Downlink Connectivity567Fabric Interconnect Port Modes567Fabric Failover for Ethernet: High-Availability vNIC569Ethernet Switching Mode570UCS Device Discovery577Chassis/FEX Discovery577Rack Server Discovery Policy577Initial Server Setup for Standalone UCS C-Series578Cisco UCS Network Management584UCS Virtual LAN584Named VLANs586UCS Identity Pools591Universally Unique Identifier Suffix Pools591MAC Pools593IP Pools593Server Pools596Service Profiles596UCS Server Policies599UCS Service Profile Templates602Quality of Service608QoS System Classes608QoS System Classes Configurations609Configuring Quality of Service Policies610

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 26 preview image

Loading page ...

xxivCCNP and CCIE Data Center Core DCCOR 350-601 Official Cert GuideCisco UCS Storage611UCS SAN Connectivity611UCS SAN Configuration615Virtual Storage-Area Networks616Named VSANs Configurations616Zones and Zone Sets618World Wide Name Pool621SAN Connectivity Policies624Exam Preparation Tasks625Review All Key Topics625Define Key Terms626References626Chapter 13Cisco Unified Computing Infrastructure Monitoring628“Do I Know This Already?” Quiz628Foundation Topics630Cisco UCS System Monitoring630Data Management Engine631Application Gateway631Northbound Interfaces631Cisco UCS Monitoring Events and Logs632Cisco UCS Monitoring Policies634Cisco UCS Simple Network Management Protocol636Cisco UCS Call Home and Smart Call Home636Cisco UCS Manager Database Health and Hardware Monitoring638Cisco UCS NetFlow Monitoring638Traffic Monitoring640Traffic Monitoring Across Ethernet641Traffic Monitoring Across Fibre Channel642Cisco Intersight647Intersight Management as a Service648Intersight as a Telemetry Data Collection650Cisco Intersight Supported Software650Cisco Intersight Licensing652Exam Preparation Tasks656Review All Key Topics656Define Key Terms657References657

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 27 preview image

Loading page ...

xxvChapter 14Cisco Unified Compute Software and ConfigurationManagement658“Do I Know This Already?” Quiz658Foundation Topics660Cisco UCS Configuration Management660Creating and Running a Backup Operation661Backup Policies666Backup Policy Configuration666Import Backups668Enable the Import Operation669System Restore670Restoring the Configuration for a Fabric Interconnect671UCS Firmware and Software Updates672Firmware Version Terminology679Firmware Upgrades Through Auto Install680Direct Upgrade After Auto Install Procedure684Install Infrastructure Firmware Procedure688Upgrading the Server Firmware with Auto Install691Standalone Cisco UCS C-Series Server Firmware Upgrade Using the HostUpgrade Utility (HUU)693Downloading and Preparing the ISO for an Upgrade694Exam Preparation Tasks700Review All Key Topics700Define Key Terms700References700Chapter 15Cisco HyperFlex Overview702“Do I Know This Already?” Quiz702Foundation Topics704Cisco HyperFlex Solution and Benefits704HyperFlex Benefits707Intelligent End-to-End Automation708Unified Management for All Workloads709Independent Resource Scaling710Superior Virtual Machine Density with Lower and ConsistentLatency711HyperFlex as an Edge, Hybrid, and All-Flash Nodes712HyperFlex as an Edge Device712

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 28 preview image

Loading page ...

xxviCCNP and CCIE Data Center Core DCCOR 350-601 Official Cert GuideHyperFlex Hyperconverged Multicloud Platform (Hybrid orAll-Flash)714HyperFlex All NVMe715Cisco HyperFlex Data Platform716HX Storage Cluster Physical Components717HX Data Platform High Availability718HX Data Platform Cluster Tolerated Failures719HX Data Platform Ready Clones719HX Data Platform Native Snapshots719HX Cluster Interfaces720HX Self-Encrypting Drives720Configuring a Local Encryption Key721Managing HX Disks in the Cluster721Managing HX Datastores724Expand Cisco HX System Clusters725Enabling HX Logical Availability Zones726Exam Preparation Tasks728Review All Key Topics728Define Key Terms728References728Part IVAutomationChapter 16Automation and Scripting Tools730“Do I Know This Already?” Quiz730Foundation Topics733EEM Overview733Policies733Event Statements734Action Statements734Configuring EEM735Verifying the EEM Configuration736Scheduler736Configuring Scheduler737Verifying Scheduler Configuration739Bash Shell for Cisco NX-OS740Managing Feature RPMs742Managing Patch RPMs742Guest Shell for Cisco NX-OS743

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 29 preview image

Loading page ...

xxviiAccessing the Guest Shell743Resources Used for the Guest Shell744Capabilities in the Guest Shell744Managing the Guest Shell746XML748Example749XML Syntax750JSON751Rest API752Authentication753Response754NX-API755NX-API Request and Response Elements757NX-API Developer Sandbox759Exam Preparation Tasks760Review All Key Topics760Memory Tables761Define Key Terms761References761Chapter 17Evaluate Automation and Orchestration Technologies762“Do I Know This Already?” Quiz762Foundation Topics764Ansible764Ansible Components765Important Ansible Concepts766Ansible CLI Tools767Cisco NX-OS and Ansible Example767Python768Python Package for Cisco769Using the CLI Command APIs771Python in Interactive Mode772Python in Noninteractive Mode773UCS Manager Python SDK775Convert to UCS Python777PowerOn Auto Provisioning (POAP)777Limitations of POAP778Network Requirements for POAP778

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 30 preview image

Loading page ...

xxviiiCCNP and CCIE Data Center Core DCCOR 350-601 Official Cert GuidePOAP Configuration Script778POAP Process779Power-Up Phase779USB Discovery Phase779DHCP Discovery Phase781Script Execution Phase782Post-Installation Reload Phase782Configuring a Switch Using POAP782HashiCorp Terraform783Terraform Concept784Terraform Components784Terraform Commands786PowerShell789Exam Preparation Tasks795Review All Key Topics795Memory Tables796Define Key Terms796References797Part VSecurityChapter 18Network Security798“Do I Know This Already?” Quiz798Foundation Topics801Authentication, Authorization, and Accounting801AAA Service Configuration Options802Authentication and Authorization User Login Process803AAA NX-OS Configurations804Role-Based Access Control807NX-OS User Roles and Rules809NX-OS RBAC Configurations811Nexus First-Hop Security815Nexus Dynamic ARP Inspection816NX-OS DAI Configurations819NX-OS DHCP Snooping827DHCP Snooping Trusted and Untrusted Sources827DHCP Snooping Packet Validation828DHCP Snooping Option 82 Data Insertion829

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023) - Page 31 preview image

Loading page ...

xxixNX-OS DHCP Snooping Configuration829Port Security832Nexus Port Secure MAC Address Maximum and Dynamic AddressAging833Port Security Violations and Actions834Nexus Port Types and Port Security835NX-OS Port Security Configuration835Nexus Control Plane Policing837Control Plane Packet839Classification for CoPP840Rate-Controlling Mechanisms840Modular QoS Command-Line Interface842NX-OS CoPP Configuration844Cisco ACI Contracts851Cisco ACI Contract Configuration Parameters853Create, Modify, or Remove Regular Contracts854Apply or Remove VRF Contracts856Inter-Tenant Contracts857Inter-Private Network Contracts Communication858Single Contract Bidirectional Reverse Filter859Single Contract Unidirectional with Multiple Filters859Multiple Contracts Unidirectional Single Filter860ACI Microsegmentation860Example: ACI Microsegmentation with VMs from a Single ApplicationEPG862Example: ACI Microsegmentation with VMs in Different ApplicationEPGs863ACI Microsegmentation Configurations864Keychain Authentication868NX-OS Keychain Configurations868Key Selection871Exam Preparation Tasks872Review All Key Topics872Define Key Terms873References873

Preview Mode

This document has 1111 pages. Sign in to access the full document!

Report

Study Now!

Document Details

Related Documents

CCNP Enterprise Certification Study Guide (2020)

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020)

CCNP Enterprise Wireless Design ENWLSD 300-425 and Implementation ENWLSI 300-430 Official Cert Guide (2024)

CCNP and CCIE Data Center Core DCCOR 350-601 2nd Ed Official Cert Guide (2024)

CCNP and CCIE Enterprise Core ENCOR 350-401 Exam Cram (2022)

CCNP Enterprise Design ENSLD 300-420 Official Cert Guide (2024)

CCNP and CCIE Enterprise Core and CCNP Advanced Routing Portable Command Guide: All ENCOR (350-401) and ENARSI (300-410) (2020)

CCNP and CCIE Enterprise Core ENCOR 350-401 Exam Cram (2022)

CCNP Enterprise Design ENSLD 300-420 Official Cert Guide: Designing Cisco Enterprise Networks (2020)

CCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert Guide (2023)

Company

Explore

Study Tools