Module 1: Network Requirements

Lesson 1: Introducing Campus Networks

• IIN and Cisco SONA Framework
• Cisco Network Models
• Describing Nonhierarchical Campus Network Issues
• Describing Layer 2 Network Issues
• Describing Routed Network Issues
• What Is a Multilayer Switch?
• Issues with Multilayer Switches and VLANs in a Nonhierarchical Network
• The Enterprise Composite Network Model
• Benefits of the Enterprise Composite Network Model
• Describing the Campus Infrastructure Module
• Reviewing Switch Configuration Interfaces

Module 2: Defining VLANs

Lesson 1: Implementing Best Practices for VLAN Topologies

• Describing Issues in a Poorly Designed Network
• Grouping Business Functions into VLANs
• Describing Interconnection Technologies
• Determining Equipment and Cabling Needs
• Mapping VLANs in a Hierarchical Network
• Considering Traffic Source to Destination Paths

Lesson 2: Implementing VLANs

• Describing End-to-End VLANs
• Describing Local VLANs
• Benefits of Local VLANs in an Enterprise Campus Network
• VLAN Configuration Modes
• Explaining VLAN Access Ports
• Describing VLAN Implementation Commands
• Implementing a VLAN

Lesson 3: Implementing Trunks

• Explaining VLAN Trunks
• Describing ISL Trunking
• Describing 802.1Q Trunking
• Explaining 802.1Q Native VLANs
• Explaining VLAN Ranges
• Describing Trunking Configuration Commands
• Configuring Trunking

Lesson 4: Propagating VLAN Configurations with VTP

• Explaining VTP Domains
• Describing the VTP
• VTP Modes
• Describing VTP Pruning
• Describing VTP Operation
• Describing VTP Configuration Commands
• Configuring a VTP Management Domain
• Adding New Switches to an Existing VTP Domain

Lesson 5: Correcting Common VLAN Configuration Errors

• Describing Issues with 802.1Q Native VLANs
• Resolving Issues with 802.1Q Native VLANs
• Describing Trunk Link Problems
• Resolving Trunk Link Problems
• Common Problems with VTP Configuration
• Best Practice for VTP Configuration

Module 3: Implementing Spanning Tree

Lesson 1: Describing the STP

• Describing Transparent Bridges
• Identifying Traffic Loops
• Explaining a Loop-Free Network
• Describing the 802.1D STP
• Describing the Root Bridge
• Describing Port Roles
• Explaining Enhancements to STP

Lesson 2: Implementing RSTP

• Describing the RSTP
• Describing RSTP Port States
• Describing RSTP Port Roles
• Explaining Edge Ports
• Describing RSTP Link Types
• Examining the RSTP BPDU
• Identifying the RSTP Proposal and Agreement Process
• Identifying the RSTP TCN Process
• Describing PVRST Implementation Commands
• Implementing PVRST Commands

Lesson 3: Implementing MSTP

• Explaining MSTP
• Describing MST Regions
• Describing the Extended System ID
• Interacting Between MST Regions and 802.1Q
• Describing MSTP Implementation Commands
• Configuring and Verifying MSTP

Lesson 4: Configuring Link Aggregation with EtherChannel

• Describing EtherChannel
• Describing the PAgP and LACP Protocols
• Describing EtherChannel Configuration
• Configuring Port Channels Using EtherChannel
• Configuring Load Balancing over EtherChannel

Module 4: Implementing Inter-VLAN Routing

Lesson 1: Describing Routing Between VLANs

• Inter-VLAN Routing Using an External Router
• Describing Inter-VLAN Routing Using External Router Configuration Commands
• Configuring Inter-VLAN Routing Using an External Router
• Explaining Multilayer Switching
• Frame Rewrite

Lesson 2: Enabling Routing Between VLANs on a Multilayer Switch

• Describing Layer 3 SVI
• Describing Configuration Commands for Inter-VLAN Communication on a Multilayer Switch
• Configuring Inter-VLAN Routing on a Multilayer Switch
• Describing Commands for Routed Ports on a Multilayer Switch
• Describing Routed Ports on a Multilayer Switch
• Configuring Routed Ports on a Multilayer Switch

Lesson 3: Deploying CEF-Based Multilayer Switching

• Explaining Layer 3 Switch Processing
• Explaining CEF-Based Multilayer Switches
• Identifying the Multilayer Switch Packet Forwarding Process
• Describing CEF Configuration Commands
• Enabling CEF-Based MLS
• Describing Common CEF Problems and Solutions
• Describing CEF Troubleshooting Commands
• Troubleshooting Layer 3 CEF-Based MLS

Module 5: Implementing High Availability in a Campus Environment

Lesson 1: Configuring Layer 3 Redundancy with HSRP

• Describing Routing Issues
• Identifying the Router Redundancy Process
• Describing HSRP
• Identifying HSRP Operations
• Describing HSRP States
• Describing HSRP Configuration Commands
• Enabling HSRP

Lesson 2: Optimizing HSRP

• Describing HSRP Optimization Options
• Tuning HSRP Operations
• Describing Load Sharing
• Describing HSRP Debug Commands
• Debugging HSRP Operations

Lesson 3: Configuring Layer 3 Redundancy with VRRP and GLBP

• Describing VRRP
• Identifying the VRRP Operations Process
• Configuring VRRP
• Describing the GLBP
• Identifying the GLBP Operations Process

Module 6: Wireless LANs

Lesson 1: Introducing WLANs

• Wireless Data Technologies
• Wireless LANs
• WLANs and Other Wireless Technologies
• WLANS and LANs

Lesson 2: Describing WLAN Topologies

• WLAN Topologies
• Typical WLAN Topologies
• Roaming Through Wireless Cells
• Wireless VLAN Support
• Wireless Mesh Networking

Lesson 3: Explaining WLAN Technology and Standards

• Unlicensed Frequency Bands
• WLAN Regulation and Standardization
• IEEE 802.11b Standard
• IEEE 802.11a Standard
• IEEE 802.11g Standard
• 802.11 Comparison
• General Office WLAN Design
• WLAN Security

Lesson 4: Configuring Cisco WLAN Clients

• Cisco 802.11a/b/g WLAN Client Adapters
• Cisco Aironet Desktop Utility Installation
• ADU Diagnostics: Advanced Statistics
• Cisco Aironet Site Survey Utility: Associated AP Status
• Windows XP WLAN Configuration
• Cisco Aironet Client Administration Utility
• Cisco Wireless IP Phone
• Cisco Compatible Extensions Program for WLAN Client Devices

Lesson 5: Implementing WLANs

• Cisco WLAN Implementation
• Lightweight Access Point Protocol
• Describing WLAN Components
• Cisco Unified Wireless Network
• Cisco Aironet Access Points and Bridges
• Power over Ethernet
• Explaining WLAN Antennas
• Multipath Distortion
• Definition of Decibel
• Effective Isotropic Radiated Power

Lesson 6: Configuring WLANs

• Autonomous Access Point Configuration
• Role of Autonomous Access Points in a Radio Network
• Autonomous Access Point Configuration via the Web Browser
• Lightweight WLAN Controller Configuration
• Cisco WLC Boot Menu
• Web Wizard Initial Configuration

Module 7: Configuring Campus Switches to Support Voice

Lesson 1: Planning for Implementation of Voice in a Campus Network

• Explaining Converged Network Benefits
• Describing VoIP Network Components
• Explaining Traffic Characteristics of Voice and Data
• Describing VoIP Call Flow
• Explaining Auxiliary VLANs
• Describing QoS
• Explaining the Importance of High Availability for VoIP
• Explaining Power Requirements in Support of VoIP

Lesson 2: Accommodating Voice Traffic on Campus Switches

• QoS and Voice Traffic in the Campus Model
• LAN-Based Classification and Marking
• Describing QoS Trust Boundaries
• Configuring a Switch for Attachment of a Cisco IP Phone
• Describing Basic Switch Commands to Support Attachment of a Cisco IP Phone
• What Is Cisco AutoQoS VoIP?
• Configuring Cisco AutoQoS VoIP on a Cisco Catalyst Switch

Module 8: Minimizing Service Loss and Data Theft in a Campus Network

Lesson 1: Understanding Switch Security Issues

• Overview of Switch Security Concerns
• Describing Unauthorized Access by Rogue Devices
• Switch Attack Categories
• Describing a MAC Flooding Attack
• Describing Port Security
• Configuring Port Security on a Switch
• Port Security with Sticky MAC Addresses
• Authentication, Authorization, and Accounting
• Authentication and Authorization Methods
• 802.1x Port-Based Authentication

Lesson 2: Protecting Against VLAN Attacks

• Explaining VLAN Hopping
• Mitigating VLAN Hopping
• VLAN Access Control Lists
• Configuring VACLs
• Explaining PVLANs
• Configuring PVLANs

Lesson 3: Protecting Against Spoof Attacks

• Describing a DHCP Spoof Attack
• Describing DHCP Snooping
• Configuring DHCP Snooping
• Describing ARP Spoofing
• Describing DAI
• Describing Commands to Configure DAI
• Protecting Against ARP Spoofing Attacks

Lesson 4: Describing STP Security Mechanisms

• Protecting the Operation of STP
• Describing BPDU Guard Configuration
• Describing BPDU Filtering Configuration
• Describing Root Guard
• Describing Root Guard Configuration Commands

Lesson 5: Preventing STP Forwarding Loops

• Describing UDLD
• Describing Loop Guard
• Configuring UDLD and Loop Guard
• Preventing STP Failures Caused by Unidirectional Links

Lesson 6: Securing Network Switches

• Describing Vulnerabilities in the CDP
• Describing Vulnerabilities in the Telnet Protocol
• Describing Vulnerabilities in the SSH
• Describing vty ACLs
• Describing Commands to Apply ACLs to vty
• Best Practices: Switch Security Considerations

Lab 1-2: Getting Started with Cisco Catalyst Equipment
Lab 2-1: Configuring VLANs and VTP
Lab 3-1: Configuring Primary and Backup Root Bridges
Lab 3-2: Implementing PVRST
Lab 3-3: Implementing MST
Lab 3-4: Configuring EtherChannel
Lab 3-5: Troubleshooting Spanning Tree
Quiz 4-1: Describing Routing Between VLANs
Lab 4-2: Routing Between VLANs
Lab 5-1: Enabling and Optimizing HSRP
Lab 6-1: Configuring Switches for WLANs
Lab 6-2: Setting Up the WLAN Controller
Lab 6-3: Configuring the Controller via the Web Browser
Lab 6-4: Configuring a Wireless Client (Optional)
Lab 7-1: Configuring IP Telephony Support
Case Study 8-1: Applying Security Practices to Secure Devices in the Campus
Case Study 8-2: Using Security Tools to Secure Devices in the Campus
Lab 8-3: Applying Security Tools