ARCH思科網絡服務架構設計考試主要內容
ARCH思科網絡服務架構設計考試主要內容
300-320 ARCH思科網絡服務架構設計考試,考試時間為75分鐘,共有60-70道與思科CCDP認證相關的考題。300-320 ARCH考試測試考生是否具備最新的網絡設計及技術知識,包括L2層及L3層企業架構,WAN技術,數據中心整合,網絡安全及網絡服務等知識點。
下面的`信息提供思科網絡服務架構設計考試的大綱。然而,在具體的考試中還可能出現其他的相關題目。
1.0 Advanced Addressing and Routing Solutions for Enterprise Networks22%
1.1 Create structured addressing designs to facilitate summarization
1.1.a Hierarchy
1.1.b Efficiency
1.1.c Scalability
1.1.d NAT
1.2 Create stable, secure, and scalable routing designs for IS-IS
1.3 Create stable, secure, and scalable routing designs for EIGRP
1.4 Create stable, secure, and scalable routing designs for OSPF
1.5 Create stable, secure, and scalable routing designs for BGP
1.5.a Transit prevention
1.5.b Basic route filtering
1.5.c Authentication
1.5.d Communities
1.5.e Basic traffic engineering (load distribution, creating path symmetry)
1.5.f Route reflectors
1.6 Determine IPv6 migration strategies
1.6.a Overlay (tunneling)
1.6.b Native (dual-stacking)
1.6.c Boundaries (IPv4/IPv6 translations)
2.0 Advanced Enterprise Campus Networks20%
2.1 Design for high availability
2.1.a First Hop Redundancy Protocols
2.1.b Device virtualization
2.2 Design campus Layer 2 infrastructures
2.2.a STP scalability
2.2.b Fast convergence
2.2.c Loop-free technologies
2.3 Design multicampus Layer 3 infrastructures
2.3.a Convergence
2.3.b Load sharing
2.3.c Route summarization
2.3.d Route filtering
2.3.e VRFs
2.3.f Optimal topologies
2.4 Design a network to support network programmability
2.4.a Describe Application Centric Infrastructures (ACI)
2.4.b Select appropriate controller to meet requirements
2.4.c Identify and address key security issues with network programmability
3.0 WANs for Enterprise Networks17%
3.1 Compare and contrast WAN connectivity options
3.1.a Dynamic Multipoint VPN (DMVPN)
3.1.b Layer 2 VPN
3.1.c MPLS Layer 3 VPN
3.1.d IPsec
3.1.e Generic Routing Encapsulation (GRE)
3.1.f Private lines
3.2 Design site-to-site VPNs
3.2.a DMVPN
3.2.b Layer 2 VPN
3.2.c MPLS Layer 3 VPN
3.2.d IPSec
3.2.e Group Encrypted Transport VPN (GETVPN)
3.3 Design for a resilient WAN strategy
3.3.a Single-homed
3.3.b Multi-homed
3.3.c Backup connectivity
3.3.d Failover
3.4 Design Extranet connectivity
3.4.a VPN
3.4.b Private lines
3.4.c Multitenant segmentation
3.5 Design Internet edge connectivity
3.5.a DMZ
3.5.b NAT
3.5.c Proxy functionality
3.5.d Resiliency
3.5.e Basic traffic engineering techniques (outbound/inbound load distribution, active/failover, symmetric outbound traffic flows)
4.0 Enterprise Data Center Integration17%
4.1 Describe a modular and scalable data center network
4.1.a Top-of-rack
4.1.b End-of-row
4.1.c Multitenant environments
4.1.d Multitier topologies
4.2 Describe network virtualization technologies for the data center
4.2.a VPC
4.2.b VSS
4.2.c VDCs
4.2.d VRFs
4.2.e Multichassis EtherChannel
4.2.f VXLAN
4.2.g TRILL / Fabric Path
4.3 Describe high availability in a data center network
4.3.a VPC
4.3.b VSS
4.3.c Multichassis EtherChannel
4.4 Design data center interconnectivity
4.4.a OTV
4.4.b Private Line
4.4.c L2 vs. L3
4.4.d VPLS
4.4.e A-VPLS
4.5 Design data center and network integration
4.5.a Traffic flow
4.5.b Bandwidth
4.5.c Security
4.5.d Resiliency
5.0 Security Services13%
5.1 Design firewall and IPS solutions
5.1.a Modes of operation
5.1.b Clustering
5.1.c High availability techniques
5.1.d IPS functionality and placement
5.1.e Multiple contexts
5.2 Design network access control solutions
5.2.a 802.1x
5.2.b TrustSec
5.2.c EAP
5.2.d Authentication services
5.2.e RBAC
5.2.f Basic denial of service mitigation techniques
5.3 Design infrastructure protection
5.3.a Infra structure ACLs
5.3.b CoPP
5.3.c Layer 2 / Layer 3 security considerations
6.0 Network Services11%
6.1 Select appropriate QoS strategies to meet customer requirements
6.1.a DiffServ
6.1.b IntServ
6.2 Design end-to-end QoS policies
6.2.a Classification and marking
6.2.b Shaping
6.2.c Policing
6.2.d Queuing
6.3 Describe network management techniques
6.3.a In-band vs. out-of-band
6.3.b Segmented management networks
6.3.c Prioritizing network management traffic
6.4 Describe multicast routing concepts
6.4.a Source trees, shared trees
6.4.b RPF
6.4.c Rendezvous points
6.5 Design multicast services
6.5.a SSM
6.5.b PIM bidirectional
6.5.c MSDP
-
2017思科認證考試等級劃分
思科認證網絡支持工程師認證證書説明了你擁有足夠的網絡知識去提供服務給中小型企業。下面是小編整理的關於思科認證考試等級劃分,歡迎大家參考!思科認證考試等級一般性認證和專業認證思科供給了三個一般性認證品級,它們所代表的專業水平逐級上升:工程師、資深工...
-
思科認證的含金量
目前,CCIE(思科認證互聯網專家)持有者佔思科認證總人數還不足3%,全球網絡從業者的1%不到(思科官方數據)。下面一起來看看思科認證的含金量有多少吧!思科認證的含金量如何?Cisco認證主要提供工程師在今日快速變動的網絡環境中駕馭Cisco設備所需的專業知識。CCIE是...
-
思科交換機劃分vlan配置實例
VLAN是一種比較新的技術,工作在OSI參考模型的.第2層和第3層,一個VLAN就是一個廣播域,VLAN之間的通信是通過第3層的路由器來完成的。那麼在思科交換機上怎麼劃分vlan,一起來看看吧!//添加vlanSwitch>enableSwitch#vlandataSwitch(vlan)#vlan10namev1VLAN10added:Nam...
-
2016年思科認證CCNA報考指南
CCNA認證(CCNA-Cisco認證網絡支持工程師)是整個Cisco認證體系中最初級的認證,同時它也是獲得CCNP認證、CCDP認證和CCSP認證的必要條件(CCIP認證、CCIE認證不強制要求),而且許多Cisco專業認證(CiscoQualifiedSpecialist)也要求考生首先得具備的CCNA認證。報考CCNA...