思科認證ARCH考試要點
ARCH思科網絡服務架構設計考試,考試時間為75分鐘,共有60-70道與思科CCDP認證相關的考題。300-320 ARCH考試測試考生是否具備最新的網絡設計及技術知識,包括L2層及L3層企業架構,WAN技術,數據中心整合,網絡安全及網絡服務等知識點。下面是該科考試要點:
1.0 Advanced Addressing and Routing Solutions for Enterprise Networks22%
1.1 Create structured addressing designs to facilitate summarization
1.1.a Hierarchy
1.1.b Efficiency
1.1.c Scalability
1.1.d NAT
1.2 Create stable, secure, and scalable routing designs for IS-IS
1.3 Create stable, secure, and scalable routing designs for EIGRP
1.4 Create stable, secure, and scalable routing designs for OSPF
1.5 Create stable, secure, and scalable routing designs for BGP
1.5.a Transit prevention
1.5.b Basic route filtering
1.5.c Authentication
1.5.d Communities
1.5.e Basic traffic engineering (load distribution, creating path symmetry)
1.5.f Route reflectors
1.6 Determine IPv6 migration strategies
1.6.a Overlay (tunneling)
1.6.b Native (dual-stacking)
1.6.c Boundaries (IPv4/IPv6 translations)
2.0 Advanced Enterprise Campus Networks20%
2.1 Design for high availability
2.1.a First Hop Redundancy Protocols
2.1.b Device virtualization
2.2 Design campus Layer 2 infrastructures
2.2.a STP scalability
2.2.b Fast convergence
2.2.c Loop-free technologies
2.3 Design multicampus Layer 3 infrastructures
2.3.a Convergence
2.3.b Load sharing
2.3.c Route summarization
2.3.d Route filtering
2.3.e VRFs
2.3.f Optimal topologies
2.4 Design a network to support network programmability
2.4.a Describe Application Centric Infrastructures (ACI)
2.4.b Select appropriate controller to meet requirements
2.4.c Identify and address key security issues with network programmability
3.0 WANs for Enterprise Networks17%
3.1 Compare and contrast WAN connectivity options
3.1.a Dynamic Multipoint VPN (DMVPN)
3.1.b Layer 2 VPN
3.1.c MPLS Layer 3 VPN
3.1.d IPsec
3.1.e Generic Routing Encapsulation (GRE)
3.1.f Private lines
3.2 Design site-to-site VPNs
3.2.a DMVPN
3.2.b Layer 2 VPN
3.2.c MPLS Layer 3 VPN
3.2.d IPSec
3.2.e Group Encrypted Transport VPN (GETVPN)
3.3 Design for a resilient WAN strategy
3.3.a Single-homed
3.3.b Multi-homed
3.3.c Backup connectivity
3.3.d Failover
3.4 Design Extranet connectivity
3.4.a VPN
3.4.b Private lines
3.4.c Multitenant segmentation
3.5 Design Internet edge connectivity
3.5.a DMZ
3.5.b NAT
3.5.c Proxy functionality
3.5.d Resiliency
3.5.e Basic traffic engineering techniques (outbound/inbound load distribution, active/failover, symmetric outbound traffic flows)
4.0 Enterprise Data Center Integration17%
4.1 Describe a modular and scalable data center network
4.1.a Top-of-rack
4.1.b End-of-row
4.1.c Multitenant environments
4.1.d Multitier topologies
4.2 Describe network virtualization technologies for the data center
4.2.a VPC
4.2.b VSS
4.2.c VDCs
4.2.d VRFs
4.2.e Multichassis EtherChannel
4.2.f VXLAN
4.2.g TRILL / Fabric Path
4.3 Describe high availability in a data center network
4.3.a VPC
4.3.b VSS
4.3.c Multichassis EtherChannel
4.4 Design data center interconnectivity
4.4.a OTV
4.4.b Private Line
4.4.c L2 vs. L3
4.4.d VPLS
4.4.e A-VPLS
4.5 Design data center and network integration
4.5.a Traffic flow
4.5.b Bandwidth
4.5.c Security
4.5.d Resiliency
5.0 Security Services13%
5.1 Design firewall and IPS solutions
5.1.a Modes of operation
5.1.b Clustering
5.1.c High availability techniques
5.1.d IPS functionality and placement
5.1.e Multiple contexts
5.2 Design network access control solutions
5.2.a 802.1x
5.2.b TrustSec
5.2.c EAP
5.2.d Authentication services
5.2.e RBAC
5.2.f Basic denial of service mitigation techniques
5.3 Design infrastructure protection
5.3.a Infra structure ACLs
5.3.b CoPP
5.3.c Layer 2 / Layer 3 security considerations
6.0 Network Services11%
6.1 Select appropriate QoS strategies to meet customer requirements
6.1.a DiffServ
6.1.b IntServ
6.2 Design end-to-end QoS policies
6.2.a Classification and marking
6.2.b Shaping
6.2.c Policing
6.2.d Queuing
6.3 Describe network management techniques
6.3.a In-band vs. out-of-band
6.3.b Segmented management networks
6.3.c Prioritizing network management traffic
6.4 Describe multicast routing concepts
6.4.a Source trees, shared trees
6.4.b RPF
6.4.c Rendezvous points
6.5 Design multicast services
6.5.a SSM
6.5.b PIM bidirectional
6.5.c MSDP
-
思科認證考試試題(筆試)
由於網絡信息每四個月就增加一倍,需要更新、更快的網絡傳輸設備支撐,這意味着思科的市場還在不斷膨脹,從而使思科的.市場成了最受歡迎、增長最快的公司。下面是關於思科認證考試試題(筆試),歡迎大家參考!1:yourjuniornetworkadministratorwantstoknowwhatthedefaul...
-
路由器丟包嚴重怎麼辦
丟包,顧名思義,在通信中是指通信數據包丟失。下面小編為大家整理了關於路由器丟包嚴重怎麼辦的文章,一起來看看吧:部門(下稱部門A)中有人反映不能訪問上級部門(部門B)的網絡。我從該人所用的計算機A1(IP地址為)上用ping命令向部門B網絡中的計算機B1(IP地址為)和B2(...
-
思科網絡工程師認證考試試題
CCNA和CCNP是Cisco公司的認證考試,Cisco公司是全球最大的生產路由器和交換機的廠商。號稱全球有70%的網絡使用的都是Cisco設備。下面是小編整理的關於思科網絡工程師認證考試試題,希望大家認真閲讀!思科認證網絡工程師考試將全面升級思科(CISCO)認證網絡工程師即...
-
2016年思科認證輔導:cisco路由器忘記密碼恢復
路由器忘記密碼是很常見也是很麻煩的事情,這個時候就需要我們恢復下密碼。那麼思科路由器密碼怎麼恢復呢?下面yjbys小編為大家推薦恢復密碼的主要步驟是:1.中斷路由器啟動ctrl+break鍵2.更改配置寄存器的值為0x21423.重啟路由器4.查看保存的配置文件中enable密碼...