CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide (2023)
CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide (2023) covers key exam topics to help you succeed on test day.
John Wilson
Contributor
4.1
151
about 2 months ago
Preview (31 of 1149)
Sign in to access the full document!
Companion Website and Pearson Test Prep
Access Code
Access interactive study tools on this book’s companion website, including practice test
software, review exercises, a Key Term flash card application, a study planner, and more!
To access the companion website, simply follow these steps:
1. Go to www.ciscopress.com/register.
2. Enter the print book ISBN: 9780138216764.
3. Answer the security question to validate your purchase.
4. Go to your account page.
5. Click on the Registered Products tab.
6. Under the book listing, click on the Access Bonus Content link.
When you register your book, your Pearson Test Prep practice test access code will auto-
matically be populated in your account under the Registered Products tab. You will need
this code to access the practice test that comes with this book. You can redeem the code
at PearsonTestPrep.com. Simply choose Pearson IT Certification as your product group
and log in to the site with the same credentials you used to register your book. Click the
Activate New Product button and enter the access code. More detailed instructions on
how to redeem your access code for both the online and desktop versions can be found
on the companion website.
If you have any issues accessing the companion website or obtaining your Pearson
Test Prep practice test access code, you can contact our support team by going to
pearsonitp.echelp.org.
Access Code
Access interactive study tools on this book’s companion website, including practice test
software, review exercises, a Key Term flash card application, a study planner, and more!
To access the companion website, simply follow these steps:
1. Go to www.ciscopress.com/register.
2. Enter the print book ISBN: 9780138216764.
3. Answer the security question to validate your purchase.
4. Go to your account page.
5. Click on the Registered Products tab.
6. Under the book listing, click on the Access Bonus Content link.
When you register your book, your Pearson Test Prep practice test access code will auto-
matically be populated in your account under the Registered Products tab. You will need
this code to access the practice test that comes with this book. You can redeem the code
at PearsonTestPrep.com. Simply choose Pearson IT Certification as your product group
and log in to the site with the same credentials you used to register your book. Click the
Activate New Product button and enter the access code. More detailed instructions on
how to redeem your access code for both the online and desktop versions can be found
on the companion website.
If you have any issues accessing the companion website or obtaining your Pearson
Test Prep practice test access code, you can contact our support team by going to
pearsonitp.echelp.org.
Companion Website and Pearson Test Prep
Access Code
Access interactive study tools on this book’s companion website, including practice test
software, review exercises, a Key Term flash card application, a study planner, and more!
To access the companion website, simply follow these steps:
1. Go to www.ciscopress.com/register.
2. Enter the print book ISBN: 9780138216764.
3. Answer the security question to validate your purchase.
4. Go to your account page.
5. Click on the Registered Products tab.
6. Under the book listing, click on the Access Bonus Content link.
When you register your book, your Pearson Test Prep practice test access code will auto-
matically be populated in your account under the Registered Products tab. You will need
this code to access the practice test that comes with this book. You can redeem the code
at PearsonTestPrep.com. Simply choose Pearson IT Certification as your product group
and log in to the site with the same credentials you used to register your book. Click the
Activate New Product button and enter the access code. More detailed instructions on
how to redeem your access code for both the online and desktop versions can be found
on the companion website.
If you have any issues accessing the companion website or obtaining your Pearson
Test Prep practice test access code, you can contact our support team by going to
pearsonitp.echelp.org.
Access Code
Access interactive study tools on this book’s companion website, including practice test
software, review exercises, a Key Term flash card application, a study planner, and more!
To access the companion website, simply follow these steps:
1. Go to www.ciscopress.com/register.
2. Enter the print book ISBN: 9780138216764.
3. Answer the security question to validate your purchase.
4. Go to your account page.
5. Click on the Registered Products tab.
6. Under the book listing, click on the Access Bonus Content link.
When you register your book, your Pearson Test Prep practice test access code will auto-
matically be populated in your account under the Registered Products tab. You will need
this code to access the practice test that comes with this book. You can redeem the code
at PearsonTestPrep.com. Simply choose Pearson IT Certification as your product group
and log in to the site with the same credentials you used to register your book. Click the
Activate New Product button and enter the access code. More detailed instructions on
how to redeem your access code for both the online and desktop versions can be found
on the companion website.
If you have any issues accessing the companion website or obtaining your Pearson
Test Prep practice test access code, you can contact our support team by going to
pearsonitp.echelp.org.
This page intentionally left blank
Loading page 4...
Cisco Press
CCNP
and CCIE
Enterprise
Core
ENCOR 350-401
Official Cert Guide,
Second Edition
BRAD EDGEWORTH, CCIE No. 31574
RAMIRO GARZA RIOS, CCIE No. 15469
DAVID HUCABY, CCIE No. 4594
JASON GOOLEY, CCIE No. 38759
CCNP
and CCIE
Enterprise
Core
ENCOR 350-401
Official Cert Guide,
Second Edition
BRAD EDGEWORTH, CCIE No. 31574
RAMIRO GARZA RIOS, CCIE No. 15469
DAVID HUCABY, CCIE No. 4594
JASON GOOLEY, CCIE No. 38759
Loading page 5...
iv CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide
CCNP and CCIE Enterprise Core ENCOR
350-401 Official Cert Guide, Second
Edition
Brad Edgeworth, Ramiro Garza Rios, David Hucaby, Jason Gooley
Copyright© 2024 Cisco Systems, Inc.
Published by: Cisco Press
All rights reserved. No part of this book may be reproduced or transmitted in any form or by any means,
electronic or mechanical, including photocopying, recording, or by any information storage and retrieval
system, without written permission from the publisher, except for the inclusion of brief quotations in a
review.
$PrintCode
ISBN-13: 978-0-13-821676-4
ISBN-10: 0-13-821676-2
Warning and Disclaimer
This book is designed to provide information about the CCNP and CCIE Enterprise Core Exam. Every
effort has been made to make this book as complete and as accurate as possible, but no warranty or
fitness is implied.
The information is provided on an “as is” basis. The authors, Cisco Press, and Cisco Systems, Inc. shall
have neither liability nor responsibility to any person or entity with respect to any loss or damages arising
from the information contained in this book or from the use of the discs or programs that may accom-
pany it.
The opinions expressed in this book belong to the authors and are not necessarily those of Cisco
Systems, Inc.
Trademark Acknowledgments
All terms mentioned in this book that are known to be trademarks or service marks have been appropri-
ately capitalized. Cisco Press or Cisco Systems, Inc., cannot attest to the accuracy of this information.
Use of a term in this book should not be regarded as affecting the validity of any trademark or service
mark.
Special Sales
For information about buying this title in bulk quantities, or for special sales opportunities (which may
include electronic versions; custom cover designs; and content particular to your business, training
goals, marketing focus, or branding interests), please contact our corporate sales department at
corpsales@pearsoned.com or (800) 382-3419.
For government sales inquiries, please contact governmentsales@pearsoned.com.
For questions about sales outside the U.S., please contact intlcs@pearson.com.
CCNP and CCIE Enterprise Core ENCOR
350-401 Official Cert Guide, Second
Edition
Brad Edgeworth, Ramiro Garza Rios, David Hucaby, Jason Gooley
Copyright© 2024 Cisco Systems, Inc.
Published by: Cisco Press
All rights reserved. No part of this book may be reproduced or transmitted in any form or by any means,
electronic or mechanical, including photocopying, recording, or by any information storage and retrieval
system, without written permission from the publisher, except for the inclusion of brief quotations in a
review.
$PrintCode
ISBN-13: 978-0-13-821676-4
ISBN-10: 0-13-821676-2
Warning and Disclaimer
This book is designed to provide information about the CCNP and CCIE Enterprise Core Exam. Every
effort has been made to make this book as complete and as accurate as possible, but no warranty or
fitness is implied.
The information is provided on an “as is” basis. The authors, Cisco Press, and Cisco Systems, Inc. shall
have neither liability nor responsibility to any person or entity with respect to any loss or damages arising
from the information contained in this book or from the use of the discs or programs that may accom-
pany it.
The opinions expressed in this book belong to the authors and are not necessarily those of Cisco
Systems, Inc.
Trademark Acknowledgments
All terms mentioned in this book that are known to be trademarks or service marks have been appropri-
ately capitalized. Cisco Press or Cisco Systems, Inc., cannot attest to the accuracy of this information.
Use of a term in this book should not be regarded as affecting the validity of any trademark or service
mark.
Special Sales
For information about buying this title in bulk quantities, or for special sales opportunities (which may
include electronic versions; custom cover designs; and content particular to your business, training
goals, marketing focus, or branding interests), please contact our corporate sales department at
corpsales@pearsoned.com or (800) 382-3419.
For government sales inquiries, please contact governmentsales@pearsoned.com.
For questions about sales outside the U.S., please contact intlcs@pearson.com.
Loading page 6...
v
Feedback Information
At Cisco Press, our goal is to create in-depth technical books of the highest quality and value. Each book
is crafted with care and precision, undergoing rigorous development that involves the unique expertise of
members from the professional technical community.
Readers’ feedback is a natural continuation of this process. If you have any comments regarding how we
could improve the quality of this book, or otherwise alter it to better suit your needs, you can contact us
through email at feedback@ciscopress.com. Please make sure to include the book title and ISBN in your
message.
We greatly appreciate your assistance.
Vice President, IT Professional: Mark Taub Composition: codeMantra
Alliances Managers, Cisco Press: Technical Editors: Richard Furr, Denise
Jaci Featherly, James Risler Fishburne, Dmitry Figol, Patrick Croak
Director, ITP Product Management: Brett Bartow Editorial Assistant: Cindy Teeters
Executive Editor: Malobika Chakraborty Cover Designer: Chuti Prasertsith
Managing Editor: Sandra Schroeder Development Editor: Ellie Bru
Senior Project Editor: Tonya Simpson Indexer: Timothy Wright
Copy Editor: Chuck Hutchinson Proofreader: Donna E. Mulder
Americas Headquarters
Cisco Systems, Inc.
San Jose, CA
Asia Pacific Headquarters
Cisco Systems (USA) Pte. Ltd.
Singapore
Europe Headquarters
Cisco Systems International BV Amsterdam,
The Netherlands
Cisco has more than 200 offices worldwide. Addresses, phone numbers, and fax numbers are listed on the Cisco Website at www.cisco.com/go/offices.
Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go
to this URL: www.cisco.com/go/trademarks. Third party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply
a partnership relationship between Cisco and any other company. (1110R)
Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks,
go to this URL: www.cisco.com/go/trademarks. Third party trademarks mentioned are the property of their respective owners. The use of the word partner does
not imply a partnership relationship between Cisco and any other company. (1110R)
Americas Headquarters
Cisco Systems, Inc.
San Jose, CA
Asia Pacific Headquarters
Cisco Systems (USA) Pte. Ltd.
Singapore
Europe Headquarters
Cisco Systems International BV Amsterdam,
The Netherlands
Cisco has more than 200 offices worldwide. Addresses, phone numbers, and fax numbers are listed on the Cisco Website at www.cisco.com/go/offices.
Feedback Information
At Cisco Press, our goal is to create in-depth technical books of the highest quality and value. Each book
is crafted with care and precision, undergoing rigorous development that involves the unique expertise of
members from the professional technical community.
Readers’ feedback is a natural continuation of this process. If you have any comments regarding how we
could improve the quality of this book, or otherwise alter it to better suit your needs, you can contact us
through email at feedback@ciscopress.com. Please make sure to include the book title and ISBN in your
message.
We greatly appreciate your assistance.
Vice President, IT Professional: Mark Taub Composition: codeMantra
Alliances Managers, Cisco Press: Technical Editors: Richard Furr, Denise
Jaci Featherly, James Risler Fishburne, Dmitry Figol, Patrick Croak
Director, ITP Product Management: Brett Bartow Editorial Assistant: Cindy Teeters
Executive Editor: Malobika Chakraborty Cover Designer: Chuti Prasertsith
Managing Editor: Sandra Schroeder Development Editor: Ellie Bru
Senior Project Editor: Tonya Simpson Indexer: Timothy Wright
Copy Editor: Chuck Hutchinson Proofreader: Donna E. Mulder
Americas Headquarters
Cisco Systems, Inc.
San Jose, CA
Asia Pacific Headquarters
Cisco Systems (USA) Pte. Ltd.
Singapore
Europe Headquarters
Cisco Systems International BV Amsterdam,
The Netherlands
Cisco has more than 200 offices worldwide. Addresses, phone numbers, and fax numbers are listed on the Cisco Website at www.cisco.com/go/offices.
Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go
to this URL: www.cisco.com/go/trademarks. Third party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply
a partnership relationship between Cisco and any other company. (1110R)
Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks,
go to this URL: www.cisco.com/go/trademarks. Third party trademarks mentioned are the property of their respective owners. The use of the word partner does
not imply a partnership relationship between Cisco and any other company. (1110R)
Americas Headquarters
Cisco Systems, Inc.
San Jose, CA
Asia Pacific Headquarters
Cisco Systems (USA) Pte. Ltd.
Singapore
Europe Headquarters
Cisco Systems International BV Amsterdam,
The Netherlands
Cisco has more than 200 offices worldwide. Addresses, phone numbers, and fax numbers are listed on the Cisco Website at www.cisco.com/go/offices.
Loading page 7...
vi CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide
About the Author(s)
Brad Edgeworth, CCIE No. 31574 (R&S and SP), is an SD-WAN technical solutions
architect at Cisco Systems. Brad is a distinguished speaker at Cisco Live, where he has
presented on various topics. Before joining Cisco, Brad worked as a network architect and
consultant for various Fortune 500 companies. Brad’s expertise is based on enterprise
and service provider environments, with an emphasis on architectural and operational
simplicity. Brad holds a bachelor of arts degree in computer systems management from St.
Edward’s University in Austin, Texas. Brad can be found on Twitter as @BradEdgeworth.
Ramiro Garza Rios, CCIE No. 15469 (R&S, SP, and Security), has over 20 years of
experience in the networking industry and currently works as a solutions architect in the
Cisco Customer Experience (CX) organization. His expertise is on enterprise and service
provider network environments, with a focus on evolving architectures and next-genera-
tion technologies. He is also a Cisco Live distinguished speaker.
Before joining Cisco Systems in 2005, he was a network consulting and presales engineer
for a Cisco Gold Partner in Mexico, where he planned, designed, and implemented both
enterprise and service provider networks.
David Hucaby, CCIE No. 4594 (R&S), CWNE No. 292, is a technical education content
engineer for Cisco Meraki, where he focuses on eLearning for the Meraki product lines.
David holds bachelor’s and master’s degrees in electrical engineering from the University
of Kentucky. He has been authoring Cisco Press titles for almost 25 years.
Jason Gooley, CCIEx2 (RS, SP) No. 38759, has over 30 years of experience in the indus-
try and currently works as a technical evangelist for the Worldwide Enterprise Network-
ing and Software Sales team at Cisco Systems. Jason is passionate about helping others
in the industry succeed. In addition to being a public speaker, Jason is a published Cisco
Press author, developer of CCIE exams, an online training instructor, and a blogger. Jason
is also co-founder and organizer of the Chicago Network Operators Group (CHI-NOG).
He is the founder and host of MetalDevOps, which is a YouTube video show about the
intersection of metal music and technology.
About the Author(s)
Brad Edgeworth, CCIE No. 31574 (R&S and SP), is an SD-WAN technical solutions
architect at Cisco Systems. Brad is a distinguished speaker at Cisco Live, where he has
presented on various topics. Before joining Cisco, Brad worked as a network architect and
consultant for various Fortune 500 companies. Brad’s expertise is based on enterprise
and service provider environments, with an emphasis on architectural and operational
simplicity. Brad holds a bachelor of arts degree in computer systems management from St.
Edward’s University in Austin, Texas. Brad can be found on Twitter as @BradEdgeworth.
Ramiro Garza Rios, CCIE No. 15469 (R&S, SP, and Security), has over 20 years of
experience in the networking industry and currently works as a solutions architect in the
Cisco Customer Experience (CX) organization. His expertise is on enterprise and service
provider network environments, with a focus on evolving architectures and next-genera-
tion technologies. He is also a Cisco Live distinguished speaker.
Before joining Cisco Systems in 2005, he was a network consulting and presales engineer
for a Cisco Gold Partner in Mexico, where he planned, designed, and implemented both
enterprise and service provider networks.
David Hucaby, CCIE No. 4594 (R&S), CWNE No. 292, is a technical education content
engineer for Cisco Meraki, where he focuses on eLearning for the Meraki product lines.
David holds bachelor’s and master’s degrees in electrical engineering from the University
of Kentucky. He has been authoring Cisco Press titles for almost 25 years.
Jason Gooley, CCIEx2 (RS, SP) No. 38759, has over 30 years of experience in the indus-
try and currently works as a technical evangelist for the Worldwide Enterprise Network-
ing and Software Sales team at Cisco Systems. Jason is passionate about helping others
in the industry succeed. In addition to being a public speaker, Jason is a published Cisco
Press author, developer of CCIE exams, an online training instructor, and a blogger. Jason
is also co-founder and organizer of the Chicago Network Operators Group (CHI-NOG).
He is the founder and host of MetalDevOps, which is a YouTube video show about the
intersection of metal music and technology.
Loading page 8...
vii
About the Technical Reviewers
Richard Furr, CCIE No. 9173 (R&S and SP), is an technical leader in the Cisco Customer
Experience (CX) organization, providing support for customers and TAC teams around
the world. Richard has authored and acted as a technical editor for Cisco Press publica-
tions. During the past 19 years, Richard has provided support to service provider, enter-
prise, and data center environments, resolving complex problems with routing protocols,
MPLS, IP Multicast, IPv6, and QoS.
Denise “Fish” Fishburne, CCDE No. 2009::0014, CCIE No. 2639 (R&S and SNA), is a
solutions architect with Cisco Systems. Fish is a geek who absolutely adores learning and
passing it on. Fish has been with Cisco since 1996 and has worn many varying “hats,”
such as TAC engineer, advanced services engineer, CPOC engineer, and now solutions
architect. Fish is heavily involved with Cisco Live, which is a huge passion of hers.
Outside of Cisco, you will find her actively sharing and “passing it on” on her blog site,
YouTube channel, and Twitter. Look for Fish swimming in the bits and bytes all around
you or just go to www.NetworkingWithFish.com.
Dmitry Figol, CCIE No. 53592 (R&S), is a systems engineer in Cisco Systems Enterprise
Sales. He is in charge of design and implementation of software applications and automa-
tion systems for Cisco. His main expertise is network programmability and automation.
Before joining Cisco Sales, Dmitry worked on the Cisco Technical Assistance Center
(TAC) Core Architecture and VPN teams. Dmitry maintains several open-source projects
and is a regular speaker at conferences. He also does live streams on Twitch about
network programmability and Python. Dmitry holds a bachelor of science degree in
telecommunications. Dmitry can be found on Twitter as @dmfigol.
Patrick Croak, CCIE No. 34712 (Wireless), is a systems engineer with a focus on wire-
less and mobility. He is responsible for designing, implementing, and optimizing enter-
prise wireless networks. He also works closely with the business unit and account teams
for product development and innovation. Prior to this role, he spent several years working
on the TAC Support Escalation team, troubleshooting complex wireless network issues.
Patrick has been with Cisco since 2006.
About the Technical Reviewers
Richard Furr, CCIE No. 9173 (R&S and SP), is an technical leader in the Cisco Customer
Experience (CX) organization, providing support for customers and TAC teams around
the world. Richard has authored and acted as a technical editor for Cisco Press publica-
tions. During the past 19 years, Richard has provided support to service provider, enter-
prise, and data center environments, resolving complex problems with routing protocols,
MPLS, IP Multicast, IPv6, and QoS.
Denise “Fish” Fishburne, CCDE No. 2009::0014, CCIE No. 2639 (R&S and SNA), is a
solutions architect with Cisco Systems. Fish is a geek who absolutely adores learning and
passing it on. Fish has been with Cisco since 1996 and has worn many varying “hats,”
such as TAC engineer, advanced services engineer, CPOC engineer, and now solutions
architect. Fish is heavily involved with Cisco Live, which is a huge passion of hers.
Outside of Cisco, you will find her actively sharing and “passing it on” on her blog site,
YouTube channel, and Twitter. Look for Fish swimming in the bits and bytes all around
you or just go to www.NetworkingWithFish.com.
Dmitry Figol, CCIE No. 53592 (R&S), is a systems engineer in Cisco Systems Enterprise
Sales. He is in charge of design and implementation of software applications and automa-
tion systems for Cisco. His main expertise is network programmability and automation.
Before joining Cisco Sales, Dmitry worked on the Cisco Technical Assistance Center
(TAC) Core Architecture and VPN teams. Dmitry maintains several open-source projects
and is a regular speaker at conferences. He also does live streams on Twitch about
network programmability and Python. Dmitry holds a bachelor of science degree in
telecommunications. Dmitry can be found on Twitter as @dmfigol.
Patrick Croak, CCIE No. 34712 (Wireless), is a systems engineer with a focus on wire-
less and mobility. He is responsible for designing, implementing, and optimizing enter-
prise wireless networks. He also works closely with the business unit and account teams
for product development and innovation. Prior to this role, he spent several years working
on the TAC Support Escalation team, troubleshooting complex wireless network issues.
Patrick has been with Cisco since 2006.
Loading page 9...
viii CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide
Dedications
Brad Edgeworth:
This book is dedicated to my wife, Tanya. The successes and achievements I have today
are because of Tanya. Whenever I failed an exam, she provided the support and encour-
agement to dust myself off and try again. She sacrificed years’ worth of weekends while
I studied for my CCIE certifications. Her motivation has allowed me to overcome a
variety of obstacles with great success.
Ramiro Garza:
I would like to dedicate this book to my wonderful and beautiful wife, Mariana, and to
my four children, Ramiro, Frinee, Felix, and Lucia, for their love, patience, and support
as I worked on this project. And to my parents, Ramiro and Blanca D., and my in-laws,
Juan A. and Marisela, for their continued support and encouragement. And most
important of all, I would like to thank God for all His blessings in my life.
David Hucaby:
As always, my work is dedicated to my wife and my daughters, for their love and
support, and to God, who has blessed me with opportunities to learn, write, and work
with so many friends.
Jason Gooley:
This book is dedicated to my wife, Jamie, and my children, Kaleigh and Jaxon. Without
their support, these books would not be possible. To my father and brother, thank you
for always supporting me.
Dedications
Brad Edgeworth:
This book is dedicated to my wife, Tanya. The successes and achievements I have today
are because of Tanya. Whenever I failed an exam, she provided the support and encour-
agement to dust myself off and try again. She sacrificed years’ worth of weekends while
I studied for my CCIE certifications. Her motivation has allowed me to overcome a
variety of obstacles with great success.
Ramiro Garza:
I would like to dedicate this book to my wonderful and beautiful wife, Mariana, and to
my four children, Ramiro, Frinee, Felix, and Lucia, for their love, patience, and support
as I worked on this project. And to my parents, Ramiro and Blanca D., and my in-laws,
Juan A. and Marisela, for their continued support and encouragement. And most
important of all, I would like to thank God for all His blessings in my life.
David Hucaby:
As always, my work is dedicated to my wife and my daughters, for their love and
support, and to God, who has blessed me with opportunities to learn, write, and work
with so many friends.
Jason Gooley:
This book is dedicated to my wife, Jamie, and my children, Kaleigh and Jaxon. Without
their support, these books would not be possible. To my father and brother, thank you
for always supporting me.
Loading page 10...
ix
Acknowledgments
Brad Edgeworth:
A debt of gratitude goes to my co-authors, Ramiro, Jason, and David. I’m privileged to
be able to write a book with all of you.
To Brett Bartow, thank you for giving me the privilege to write on such an esteemed
book. I’m thankful to work with Ellie Bru and Tonya Simpson again, along with the rest
of the Pearson team.
To the technical editors—Richard, Denise, Dmitry, and Patrick—thank you for your
attention to detail.
Many people within Cisco have provided feedback and suggestions to make this a great
book. And to all of those who share knowledge (wherever you are located), keep doing it.
That is how we make this world a better place.
To the readers of this text, never give up. Failure is an opportunity to learn and grow
yourself. You probably will not like it, it does not taste good, but after you learn and
overcome, you will learn to embrace it (or at least that is what I keep telling myself).
Ramiro Garza Rios:
I’d like to give a special thank you to Brett Bartow for giving us the opportunity to work
on this project and for being our guiding light. I’m also really grateful and honored to
have worked with Brad, Jason, and David; they are amazing and great to work with. I’d
like to give special recognition to Brad for providing the leadership for this project. A big
thank you to the Cisco Press team for all your support, especially to Ellie Bru. I would
also like to thank our technical editors—Denise, Richard, Patrick, and Dmitry—for their
valuable feedback to ensure that the technical content of this book is top-notch. And
most important of all, I would like to thank God for all His blessings in my life.
David Hucaby:
I am very grateful to Brett Bartow for giving me the opportunity to work on this project.
Brad, Ramiro, and Jason have been great to work with. Many thanks to Ellie Bru for her
hard work editing our many chapters!
Jason Gooley:
Thank you to the rest of the author team for having me on this book. It has been a blast!
Thanks to Brett and the whole Cisco Press team for all the support and always being
available. This project is near and dear to my heart, as I am extremely passionate about
helping others on their certification journey.
Acknowledgments
Brad Edgeworth:
A debt of gratitude goes to my co-authors, Ramiro, Jason, and David. I’m privileged to
be able to write a book with all of you.
To Brett Bartow, thank you for giving me the privilege to write on such an esteemed
book. I’m thankful to work with Ellie Bru and Tonya Simpson again, along with the rest
of the Pearson team.
To the technical editors—Richard, Denise, Dmitry, and Patrick—thank you for your
attention to detail.
Many people within Cisco have provided feedback and suggestions to make this a great
book. And to all of those who share knowledge (wherever you are located), keep doing it.
That is how we make this world a better place.
To the readers of this text, never give up. Failure is an opportunity to learn and grow
yourself. You probably will not like it, it does not taste good, but after you learn and
overcome, you will learn to embrace it (or at least that is what I keep telling myself).
Ramiro Garza Rios:
I’d like to give a special thank you to Brett Bartow for giving us the opportunity to work
on this project and for being our guiding light. I’m also really grateful and honored to
have worked with Brad, Jason, and David; they are amazing and great to work with. I’d
like to give special recognition to Brad for providing the leadership for this project. A big
thank you to the Cisco Press team for all your support, especially to Ellie Bru. I would
also like to thank our technical editors—Denise, Richard, Patrick, and Dmitry—for their
valuable feedback to ensure that the technical content of this book is top-notch. And
most important of all, I would like to thank God for all His blessings in my life.
David Hucaby:
I am very grateful to Brett Bartow for giving me the opportunity to work on this project.
Brad, Ramiro, and Jason have been great to work with. Many thanks to Ellie Bru for her
hard work editing our many chapters!
Jason Gooley:
Thank you to the rest of the author team for having me on this book. It has been a blast!
Thanks to Brett and the whole Cisco Press team for all the support and always being
available. This project is near and dear to my heart, as I am extremely passionate about
helping others on their certification journey.
Loading page 11...
x CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide
Contents at a Glance
Introduction xli
Part I Forwarding
Chapter 1 Packet Forwarding 2
Part II Layer 2
Chapter 2 Spanning Tree Protocol 36
Chapter 3 Advanced STP Tuning 58
Chapter 4 Multiple Spanning Tree Protocol 80
Chapter 5 VLAN Trunks and EtherChannel Bundles 94
Part III Routing
Chapter 6 IP Routing Essentials 124
Chapter 7 EIGRP 154
Chapter 8 OSPF 170
Chapter 9 Advanced OSPF 202
Chapter 10 OSPFv3 230
Chapter 11 BGP 244
Chapter 12 Advanced BGP 288
Chapter 13 Multicast 334
Part IV Services
Chapter 14 Quality of Service (QoS) 370
Chapter 15 IP Services 418
Part V Overlay
Chapter 16 Overlay Tunnels 466
Part VI Wireless
Chapter 17 Wireless Signals and Modulation 510
Chapter 18 Wireless Infrastructure 542
Contents at a Glance
Introduction xli
Part I Forwarding
Chapter 1 Packet Forwarding 2
Part II Layer 2
Chapter 2 Spanning Tree Protocol 36
Chapter 3 Advanced STP Tuning 58
Chapter 4 Multiple Spanning Tree Protocol 80
Chapter 5 VLAN Trunks and EtherChannel Bundles 94
Part III Routing
Chapter 6 IP Routing Essentials 124
Chapter 7 EIGRP 154
Chapter 8 OSPF 170
Chapter 9 Advanced OSPF 202
Chapter 10 OSPFv3 230
Chapter 11 BGP 244
Chapter 12 Advanced BGP 288
Chapter 13 Multicast 334
Part IV Services
Chapter 14 Quality of Service (QoS) 370
Chapter 15 IP Services 418
Part V Overlay
Chapter 16 Overlay Tunnels 466
Part VI Wireless
Chapter 17 Wireless Signals and Modulation 510
Chapter 18 Wireless Infrastructure 542
Loading page 12...
Contents xi
Chapter 19 Understanding Wireless Roaming and Location Services 572
Chapter 20 Authenticating Wireless Clients 590
Chapter 21 Troubleshooting Wireless Connectivity 608
Part VII Architecture
Chapter 22 Enterprise Network Architecture 622
Chapter 23 Fabric Technologies 642
Chapter 24 Network Assurance 672
Part VIII Security
Chapter 25 Secure Network Access Control 736
Chapter 26 Network Device Access Control and Infrastructure Security 778
Part IX SDN
Chapter 27 Virtualization 826
Chapter 28 Foundational Network Programmability Concepts 850
Chapter 29 Introduction to Automation Tools 892
Chapter 30 Final Preparation 926
Chapter 31 ENCOR 350-401 Exam Updates 932
Appendix A Answers to the “Do I Know This Already?” Questions 936
Glossary 956
Index 978
Online Elements
Appendix B Memory Tables
Appendix C Memory Tables Answer Key
Appendix D Study Planner
Glossary
Chapter 19 Understanding Wireless Roaming and Location Services 572
Chapter 20 Authenticating Wireless Clients 590
Chapter 21 Troubleshooting Wireless Connectivity 608
Part VII Architecture
Chapter 22 Enterprise Network Architecture 622
Chapter 23 Fabric Technologies 642
Chapter 24 Network Assurance 672
Part VIII Security
Chapter 25 Secure Network Access Control 736
Chapter 26 Network Device Access Control and Infrastructure Security 778
Part IX SDN
Chapter 27 Virtualization 826
Chapter 28 Foundational Network Programmability Concepts 850
Chapter 29 Introduction to Automation Tools 892
Chapter 30 Final Preparation 926
Chapter 31 ENCOR 350-401 Exam Updates 932
Appendix A Answers to the “Do I Know This Already?” Questions 936
Glossary 956
Index 978
Online Elements
Appendix B Memory Tables
Appendix C Memory Tables Answer Key
Appendix D Study Planner
Glossary
Loading page 13...
xii CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide
Reader Services
Register your copy at www.ciscopress.com/title/9780138216764 for convenient access
to downloads, updates, and corrections as they become available. To start the registration
process, go to www.ciscopress.com/register and log in or create an account.* Enter the
product ISBN 9780138216764 and click Submit. When the process is complete, you will
find any available bonus content under Registered Products.
*Be sure to check the box that you would like to hear from us to receive exclusive
discounts on future editions of this product.
Reader Services
Register your copy at www.ciscopress.com/title/9780138216764 for convenient access
to downloads, updates, and corrections as they become available. To start the registration
process, go to www.ciscopress.com/register and log in or create an account.* Enter the
product ISBN 9780138216764 and click Submit. When the process is complete, you will
find any available bonus content under Registered Products.
*Be sure to check the box that you would like to hear from us to receive exclusive
discounts on future editions of this product.
Loading page 14...
xiii
Contents
Introduction xli
Part I Forwarding
Chapter 1 Packet Forwarding 2
“Do I Know This Already?” Quiz 2
Foundation Topics 3
Network Device Communication 3
Layer 2 Forwarding 4
Collision Domains 5
Virtual LANs 7
Access Ports 11
Trunk Ports 12
Layer 2 Diagnostic Commands 15
Layer 3 Forwarding 19
Local Network Forwarding 19
Packet Routing 20
IP Address Assignment 21
Verification of IP Addresses 24
Forwarding Architectures 26
Process Switching 26
Cisco Express Forwarding 27
Ternary Content Addressable Memory 27
Centralized Forwarding 28
Distributed Forwarding 28
Software CEF 29
Hardware CEF 30
SDM Templates 30
Exam Preparation Tasks 32
Review All Key Topics 32
Complete Tables and Lists from Memory 33
Define Key Terms 33
Use the Command Reference to Check Your Memory 33
References in This Chapter 34
Contents
Introduction xli
Part I Forwarding
Chapter 1 Packet Forwarding 2
“Do I Know This Already?” Quiz 2
Foundation Topics 3
Network Device Communication 3
Layer 2 Forwarding 4
Collision Domains 5
Virtual LANs 7
Access Ports 11
Trunk Ports 12
Layer 2 Diagnostic Commands 15
Layer 3 Forwarding 19
Local Network Forwarding 19
Packet Routing 20
IP Address Assignment 21
Verification of IP Addresses 24
Forwarding Architectures 26
Process Switching 26
Cisco Express Forwarding 27
Ternary Content Addressable Memory 27
Centralized Forwarding 28
Distributed Forwarding 28
Software CEF 29
Hardware CEF 30
SDM Templates 30
Exam Preparation Tasks 32
Review All Key Topics 32
Complete Tables and Lists from Memory 33
Define Key Terms 33
Use the Command Reference to Check Your Memory 33
References in This Chapter 34
Loading page 15...
xiv CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide
Part II Layer 2
Chapter 2 Spanning Tree Protocol 36
“Do I Know This Already?” Quiz 36
Foundation Topics 38
Spanning Tree Protocol Fundamentals 38
IEEE 802.1D STP 38
802.1D Port States 39
802.1D Port Types 39
STP Key Terminology 39
Building the STP Topology 41
Spanning Tree Path Cost 41
Root Bridge Election 41
Locating Blocked Designated Switch Ports 45
Verification of VLANs on Trunk Links 48
STP Topology Changes 49
Converging with Direct Link Failures 50
Indirect Failures 52
Rapid Spanning Tree Protocol 53
RSTP (802.1W) Port States 54
RSTP (802.1W) Port Roles 54
RSTP (802.1W) Port Types 54
Building the RSTP Topology 55
RSTP Convergence 55
Exam Preparation Tasks 56
Review All Key Topics 56
Complete Tables and Lists from Memory 56
Define Key Terms 56
Use the Command Reference to Check Your Memory 56
Chapter 3 Advanced STP Tuning 58
“Do I Know This Already?” Quiz 58
Foundation Topics 59
STP Topology Tuning 59
Placing the Root Bridge 60
Modifying STP Root Port and Blocked Switch Port Locations 63
Modifying STP Port Priority 66
Additional STP Protection Mechanisms 67
Root Guard 68
Part II Layer 2
Chapter 2 Spanning Tree Protocol 36
“Do I Know This Already?” Quiz 36
Foundation Topics 38
Spanning Tree Protocol Fundamentals 38
IEEE 802.1D STP 38
802.1D Port States 39
802.1D Port Types 39
STP Key Terminology 39
Building the STP Topology 41
Spanning Tree Path Cost 41
Root Bridge Election 41
Locating Blocked Designated Switch Ports 45
Verification of VLANs on Trunk Links 48
STP Topology Changes 49
Converging with Direct Link Failures 50
Indirect Failures 52
Rapid Spanning Tree Protocol 53
RSTP (802.1W) Port States 54
RSTP (802.1W) Port Roles 54
RSTP (802.1W) Port Types 54
Building the RSTP Topology 55
RSTP Convergence 55
Exam Preparation Tasks 56
Review All Key Topics 56
Complete Tables and Lists from Memory 56
Define Key Terms 56
Use the Command Reference to Check Your Memory 56
Chapter 3 Advanced STP Tuning 58
“Do I Know This Already?” Quiz 58
Foundation Topics 59
STP Topology Tuning 59
Placing the Root Bridge 60
Modifying STP Root Port and Blocked Switch Port Locations 63
Modifying STP Port Priority 66
Additional STP Protection Mechanisms 67
Root Guard 68
Loading page 16...
Contents xv
STP Portfast 68
BPDU Guard 70
BPDU Filter 72
Problems with Unidirectional Links 73
STP Loop Guard 74
Unidirectional Link Detection 75
Review All Key Topics 76
Exam Preparation Tasks 76
Complete Tables and Lists from Memory 77
Define Key Terms 77
Use the Command Reference to Check Your Memory 77
Chapter 4 Multiple Spanning Tree Protocol 80
“Do I Know This Already?” Quiz 80
Foundation Topics 81
Multiple Spanning Tree Protocol 81
MST Instances (MSTIs) 83
MST Configuration 84
MST Verification 85
MST Tuning 87
Common MST Misconfigurations 89
VLAN Assignment to the IST 89
Trunk Link Pruning 90
MST Region Boundary 90
MST Region as the Root Bridge 91
MST Region Not a Root Bridge for Any VLAN 91
Exam Preparation Tasks 92
Review All Key Topics 92
Complete Tables and Lists from Memory 92
Define Key Terms 92
Use the Command Reference to Check Your Memory 92
Chapter 5 VLAN Trunks and EtherChannel Bundles 94
“Do I Know This Already?” Quiz 94
Foundation Topics 96
VLAN Trunking Protocol 96
VTP Communication 97
VTP Configuration 98
VTP Verification 99
Dynamic Trunking Protocol 101
STP Portfast 68
BPDU Guard 70
BPDU Filter 72
Problems with Unidirectional Links 73
STP Loop Guard 74
Unidirectional Link Detection 75
Review All Key Topics 76
Exam Preparation Tasks 76
Complete Tables and Lists from Memory 77
Define Key Terms 77
Use the Command Reference to Check Your Memory 77
Chapter 4 Multiple Spanning Tree Protocol 80
“Do I Know This Already?” Quiz 80
Foundation Topics 81
Multiple Spanning Tree Protocol 81
MST Instances (MSTIs) 83
MST Configuration 84
MST Verification 85
MST Tuning 87
Common MST Misconfigurations 89
VLAN Assignment to the IST 89
Trunk Link Pruning 90
MST Region Boundary 90
MST Region as the Root Bridge 91
MST Region Not a Root Bridge for Any VLAN 91
Exam Preparation Tasks 92
Review All Key Topics 92
Complete Tables and Lists from Memory 92
Define Key Terms 92
Use the Command Reference to Check Your Memory 92
Chapter 5 VLAN Trunks and EtherChannel Bundles 94
“Do I Know This Already?” Quiz 94
Foundation Topics 96
VLAN Trunking Protocol 96
VTP Communication 97
VTP Configuration 98
VTP Verification 99
Dynamic Trunking Protocol 101
Loading page 17...
xvi CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide
EtherChannel Bundle 104
Dynamic Link Aggregation Protocols 106
PAgP Port Modes 106
LACP Port Modes 106
EtherChannel Configuration 107
Verifying EtherChannel Status 108
Viewing EtherChannel Neighbors 110
LACP 112
PAgP 113
Verifying EtherChannel Packets 113
LACP 113
PAgP 114
Advanced LACP Configuration Options 114
LACP Fast 115
Minimum Number of EtherChannel Member Interfaces 115
Maximum Number of EtherChannel Member Interfaces 116
LACP System Priority 117
LACP Interface Priority 118
Troubleshooting EtherChannel Bundles 118
Load Balancing Traffic with EtherChannel Bundles 119
Exam Preparation Tasks 121
Review All Key Topics 121
Complete Tables and Lists from Memory 121
Define Key Terms 121
Use the Command Reference to Check Your Memory 121
Part III Routing
Chapter 6 IP Routing Essentials 124
“Do I Know This Already?” Quiz 124
Foundation Topics 126
Routing Protocol Overview 126
Distance Vector Algorithms 128
Enhanced Distance Vector Algorithms 129
Link-State Algorithms 130
Path Vector Algorithm 131
Path Selection 132
EtherChannel Bundle 104
Dynamic Link Aggregation Protocols 106
PAgP Port Modes 106
LACP Port Modes 106
EtherChannel Configuration 107
Verifying EtherChannel Status 108
Viewing EtherChannel Neighbors 110
LACP 112
PAgP 113
Verifying EtherChannel Packets 113
LACP 113
PAgP 114
Advanced LACP Configuration Options 114
LACP Fast 115
Minimum Number of EtherChannel Member Interfaces 115
Maximum Number of EtherChannel Member Interfaces 116
LACP System Priority 117
LACP Interface Priority 118
Troubleshooting EtherChannel Bundles 118
Load Balancing Traffic with EtherChannel Bundles 119
Exam Preparation Tasks 121
Review All Key Topics 121
Complete Tables and Lists from Memory 121
Define Key Terms 121
Use the Command Reference to Check Your Memory 121
Part III Routing
Chapter 6 IP Routing Essentials 124
“Do I Know This Already?” Quiz 124
Foundation Topics 126
Routing Protocol Overview 126
Distance Vector Algorithms 128
Enhanced Distance Vector Algorithms 129
Link-State Algorithms 130
Path Vector Algorithm 131
Path Selection 132
Loading page 18...
Contents xvii
Prefix Length 133
Administrative Distance 133
Metrics 135
Equal-Cost Multipathing 135
Unequal-Cost Load Balancing 136
Static Routing 137
Static Route Types 138
Directly Attached Static Routes 138
Recursive Static Routes 139
Fully Specified Static Routes 141
Floating Static Routing 141
Static Routes to Null Interfaces 143
IPv6 Static Routes 145
Policy-based Routing 146
Virtual Routing and Forwarding 149
Exam Preparation Tasks 151
Review All Key Topics 152
Complete Tables and Lists from Memory 152
Define Key Terms 152
Use the Command Reference to Check Your Memory 153
Chapter 7 EIGRP 154
“Do I Know This Already?” Quiz 154
Foundation Topics 156
EIGRP Fundamentals 156
Autonomous Systems 157
EIGRP Terminology 157
Topology Table 159
EIGRP Neighbors 160
Path Metric Calculation 160
Wide Metrics 162
Metric Backward Compatibility 163
Load Balancing 163
Failure Detection and Timers 164
Convergence 164
Route Summarization 166
Prefix Length 133
Administrative Distance 133
Metrics 135
Equal-Cost Multipathing 135
Unequal-Cost Load Balancing 136
Static Routing 137
Static Route Types 138
Directly Attached Static Routes 138
Recursive Static Routes 139
Fully Specified Static Routes 141
Floating Static Routing 141
Static Routes to Null Interfaces 143
IPv6 Static Routes 145
Policy-based Routing 146
Virtual Routing and Forwarding 149
Exam Preparation Tasks 151
Review All Key Topics 152
Complete Tables and Lists from Memory 152
Define Key Terms 152
Use the Command Reference to Check Your Memory 153
Chapter 7 EIGRP 154
“Do I Know This Already?” Quiz 154
Foundation Topics 156
EIGRP Fundamentals 156
Autonomous Systems 157
EIGRP Terminology 157
Topology Table 159
EIGRP Neighbors 160
Path Metric Calculation 160
Wide Metrics 162
Metric Backward Compatibility 163
Load Balancing 163
Failure Detection and Timers 164
Convergence 164
Route Summarization 166
Loading page 19...
xviii CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide
Exam Preparation Tasks 167
Review All Key Topics 167
Complete Tables and Lists from Memory 167
Define Key Terms 168
References in This Chapter 168
Chapter 8 OSPF 170
“Do I Know This Already?” Quiz 170
Foundation Topics 172
OSPF Fundamentals 172
Inter-Router Communication 174
OSPF Hello Packets 175
Router ID 175
Neighbors 175
Designated Router and Backup Designated Router 176
OSPF Configuration 178
OSPF Network Statement 178
Interface-Specific Configuration 180
Statically Setting the Router ID 180
Passive Interfaces 181
Requirements for Neighbor Adjacency 181
Sample Topology and Configuration 181
Confirmation of Interfaces 184
Verification of OSPF Neighbor Adjacencies 185
Verification of OSPF Routes 186
Default Route Advertisement 187
Common OSPF Optimizations 188
Link Costs 189
Failure Detection 189
Hello Timer 190
Dead Interval Timer 190
OSPF Timers 190
DR Placement 190
Designated Router Elections 190
DR and BDR Placement 192
OSPF Network Types 194
Exam Preparation Tasks 167
Review All Key Topics 167
Complete Tables and Lists from Memory 167
Define Key Terms 168
References in This Chapter 168
Chapter 8 OSPF 170
“Do I Know This Already?” Quiz 170
Foundation Topics 172
OSPF Fundamentals 172
Inter-Router Communication 174
OSPF Hello Packets 175
Router ID 175
Neighbors 175
Designated Router and Backup Designated Router 176
OSPF Configuration 178
OSPF Network Statement 178
Interface-Specific Configuration 180
Statically Setting the Router ID 180
Passive Interfaces 181
Requirements for Neighbor Adjacency 181
Sample Topology and Configuration 181
Confirmation of Interfaces 184
Verification of OSPF Neighbor Adjacencies 185
Verification of OSPF Routes 186
Default Route Advertisement 187
Common OSPF Optimizations 188
Link Costs 189
Failure Detection 189
Hello Timer 190
Dead Interval Timer 190
OSPF Timers 190
DR Placement 190
Designated Router Elections 190
DR and BDR Placement 192
OSPF Network Types 194
Loading page 20...
Contents xix
Broadcast 194
Point-to-Point Networks 195
Loopback Networks 196
Exam Preparation Tasks 198
Review All Key Topics 198
Complete Tables and Lists from Memory 199
Define Key Terms 199
Use the Command Reference to Check Your Memory 199
References in This Chapter 200
Chapter 9 Advanced OSPF 202
“Do I Know This Already?” Quiz 202
Foundation Topics 204
Areas 204
Area ID 207
OSPF Route Types 207
Link-State Advertisements 209
LSA Sequences 210
LSA Age and Flooding 210
LSA Types 210
LSA Type 1: Router Link 210
LSA Type 2: Network Link 213
LSA Type 3: Summary Link 213
Discontiguous Networks 217
OSPF Path Selection 218
Intra-Area Routes 218
Inter-Area Routes 219
Equal-Cost Multipathing 220
Summarization of Routes 220
Summarization Fundamentals 221
Inter-Area Summarization 222
Summarization Metrics 222
Configuration of Inter-Area Summarization 223
Route Filtering 224
Filtering with Summarization 225
Area Filtering 225
Broadcast 194
Point-to-Point Networks 195
Loopback Networks 196
Exam Preparation Tasks 198
Review All Key Topics 198
Complete Tables and Lists from Memory 199
Define Key Terms 199
Use the Command Reference to Check Your Memory 199
References in This Chapter 200
Chapter 9 Advanced OSPF 202
“Do I Know This Already?” Quiz 202
Foundation Topics 204
Areas 204
Area ID 207
OSPF Route Types 207
Link-State Advertisements 209
LSA Sequences 210
LSA Age and Flooding 210
LSA Types 210
LSA Type 1: Router Link 210
LSA Type 2: Network Link 213
LSA Type 3: Summary Link 213
Discontiguous Networks 217
OSPF Path Selection 218
Intra-Area Routes 218
Inter-Area Routes 219
Equal-Cost Multipathing 220
Summarization of Routes 220
Summarization Fundamentals 221
Inter-Area Summarization 222
Summarization Metrics 222
Configuration of Inter-Area Summarization 223
Route Filtering 224
Filtering with Summarization 225
Area Filtering 225
Loading page 21...
xx CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide
Exam Preparation Tasks 228
Review All Key Topics 228
Complete Tables and Lists from Memory 228
Define Key Terms 228
Use the Command Reference to Check Your Memory 229
References in This Chapter 229
Chapter 10 OSPFv3 230
“Do I Know This Already?” Quiz 230
Foundation Topics 231
OSPFv3 Fundamentals 231
OSPFv3 Link-State Advertisement 232
OSPFv3 Communication 232
OSPFv3 Configuration 233
OSPFv3 Verification 235
Passive Interface 237
Summarization 238
Network Type 239
IPv4 Support in OSPFv3 240
Exam Preparation Tasks 242
Review All Key Topics 242
Complete Tables and Lists from Memory 242
Define Key Terms 242
Use the Command Reference to Check Your Memory 242
References in This Chapter 243
Chapter 11 BGP 244
“Do I Know This Already?” Quiz 244
Foundation Topics 246
BGP Fundamentals 246
Autonomous System Numbers 246
Path Attributes 247
Loop Prevention 247
Address Families 248
Inter-Router Communication 248
BGP Session Types 249
BGP Messages 252
Exam Preparation Tasks 228
Review All Key Topics 228
Complete Tables and Lists from Memory 228
Define Key Terms 228
Use the Command Reference to Check Your Memory 229
References in This Chapter 229
Chapter 10 OSPFv3 230
“Do I Know This Already?” Quiz 230
Foundation Topics 231
OSPFv3 Fundamentals 231
OSPFv3 Link-State Advertisement 232
OSPFv3 Communication 232
OSPFv3 Configuration 233
OSPFv3 Verification 235
Passive Interface 237
Summarization 238
Network Type 239
IPv4 Support in OSPFv3 240
Exam Preparation Tasks 242
Review All Key Topics 242
Complete Tables and Lists from Memory 242
Define Key Terms 242
Use the Command Reference to Check Your Memory 242
References in This Chapter 243
Chapter 11 BGP 244
“Do I Know This Already?” Quiz 244
Foundation Topics 246
BGP Fundamentals 246
Autonomous System Numbers 246
Path Attributes 247
Loop Prevention 247
Address Families 248
Inter-Router Communication 248
BGP Session Types 249
BGP Messages 252
Loading page 22...
Contents xxi
BGP Neighbor States 253
Idle 254
Connect 254
Active 254
OpenSent 254
OpenConfirm 255
Established 255
Basic BGP Configuration 255
Verification of BGP Sessions 257
Route Advertisement 260
Receiving and Viewing Routes 262
BGP Route Advertisements from Indirect Sources 265
IPv4 Route Summarization 268
Aggregate Address 269
Atomic Aggregate 274
Route Aggregation with AS_SET 276
Multiprotocol BGP for IPv6 278
IPv6 Configuration 279
IPv6 Route Summarization 284
Exam Preparation Tasks 285
Review All Key Topics 285
Complete Tables and Lists from Memory 286
Define Key Terms 286
Use the Command Reference to Check Your Memory 286
References in This Chapter 287
Chapter 12 Advanced BGP 288
“Do I Know This Already?” Quiz 288
Foundation Topics 290
BGP Multihoming 291
Resiliency in Service Providers 291
Internet Transit Routing 292
Branch Transit Routing 293
Conditional Matching 295
Access Control Lists 295
Standard ACLs 295
BGP Neighbor States 253
Idle 254
Connect 254
Active 254
OpenSent 254
OpenConfirm 255
Established 255
Basic BGP Configuration 255
Verification of BGP Sessions 257
Route Advertisement 260
Receiving and Viewing Routes 262
BGP Route Advertisements from Indirect Sources 265
IPv4 Route Summarization 268
Aggregate Address 269
Atomic Aggregate 274
Route Aggregation with AS_SET 276
Multiprotocol BGP for IPv6 278
IPv6 Configuration 279
IPv6 Route Summarization 284
Exam Preparation Tasks 285
Review All Key Topics 285
Complete Tables and Lists from Memory 286
Define Key Terms 286
Use the Command Reference to Check Your Memory 286
References in This Chapter 287
Chapter 12 Advanced BGP 288
“Do I Know This Already?” Quiz 288
Foundation Topics 290
BGP Multihoming 291
Resiliency in Service Providers 291
Internet Transit Routing 292
Branch Transit Routing 293
Conditional Matching 295
Access Control Lists 295
Standard ACLs 295
Loading page 23...
xxii CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide
Extended ACLs 296
BGP Network Selection 296
Prefix Matching 297
Prefix Lists 299
IPv6 Prefix Lists 299
Regular Expressions (regex) 300
Route Maps 301
Conditional Matching 302
Multiple Conditional Match Conditions 303
Complex Matching 304
Optional Actions 304
The continue Keyword 305
BGP Route Filtering and Manipulation 306
Distribute List Filtering 307
Prefix List Filtering 308
AS_Path ACL Filtering 309
Route Maps 311
Clearing BGP Connections 313
BGP Communities 313
Well-Known Communities 314
Enabling BGP Community Support 314
Conditionally Matching BGP Communities 315
Setting Private BGP Communities 317
Understanding BGP Path Selection 318
Routing Path Selection Using Longest Match 319
BGP Best Path Overview 320
Weight 321
Local Preference 322
Locally Originated via Network or Aggregate Advertisement 323
Accumulated Interior Gateway Protocol Metric 323
Shortest AS Path 324
Origin Type 325
Multi-Exit Discriminator 326
eBGP over iBGP 327
Lowest IGP Metric 327
Prefer the Path from the Oldest eBGP Session 328
Extended ACLs 296
BGP Network Selection 296
Prefix Matching 297
Prefix Lists 299
IPv6 Prefix Lists 299
Regular Expressions (regex) 300
Route Maps 301
Conditional Matching 302
Multiple Conditional Match Conditions 303
Complex Matching 304
Optional Actions 304
The continue Keyword 305
BGP Route Filtering and Manipulation 306
Distribute List Filtering 307
Prefix List Filtering 308
AS_Path ACL Filtering 309
Route Maps 311
Clearing BGP Connections 313
BGP Communities 313
Well-Known Communities 314
Enabling BGP Community Support 314
Conditionally Matching BGP Communities 315
Setting Private BGP Communities 317
Understanding BGP Path Selection 318
Routing Path Selection Using Longest Match 319
BGP Best Path Overview 320
Weight 321
Local Preference 322
Locally Originated via Network or Aggregate Advertisement 323
Accumulated Interior Gateway Protocol Metric 323
Shortest AS Path 324
Origin Type 325
Multi-Exit Discriminator 326
eBGP over iBGP 327
Lowest IGP Metric 327
Prefer the Path from the Oldest eBGP Session 328
Loading page 24...
Contents xxiii
Router ID 328
Minimum Cluster List Length 329
Lowest Neighbor Address 329
Exam Preparation Tasks 329
Review All Key Topics 330
Complete Tables and Lists from Memory 330
Define Key Terms 330
Use the Command Reference to Check Your Memory 331
References in This Chapter 332
Chapter 13 Multicast 334
“Do I Know This Already?” Quiz 334
Foundation Topics 337
Multicast Fundamentals 337
Multicast Addressing 340
Layer 2 Multicast Addresses 342
Internet Group Management Protocol 343
IGMPv2 344
IGMPv3 346
IGMP Snooping 346
Protocol Independent Multicast 349
PIM Distribution Trees 349
Source Trees 349
Shared Trees 350
PIM Terminology 352
PIM Dense Mode 354
PIM Sparse Mode 357
PIM Shared and Source Path Trees 357
Shared Tree Join 358
Source Registration 358
PIM SPT Switchover 358
Designated Routers 359
Reverse Path Forwarding 360
PIM Forwarder 361
Rendezvous Points 363
Router ID 328
Minimum Cluster List Length 329
Lowest Neighbor Address 329
Exam Preparation Tasks 329
Review All Key Topics 330
Complete Tables and Lists from Memory 330
Define Key Terms 330
Use the Command Reference to Check Your Memory 331
References in This Chapter 332
Chapter 13 Multicast 334
“Do I Know This Already?” Quiz 334
Foundation Topics 337
Multicast Fundamentals 337
Multicast Addressing 340
Layer 2 Multicast Addresses 342
Internet Group Management Protocol 343
IGMPv2 344
IGMPv3 346
IGMP Snooping 346
Protocol Independent Multicast 349
PIM Distribution Trees 349
Source Trees 349
Shared Trees 350
PIM Terminology 352
PIM Dense Mode 354
PIM Sparse Mode 357
PIM Shared and Source Path Trees 357
Shared Tree Join 358
Source Registration 358
PIM SPT Switchover 358
Designated Routers 359
Reverse Path Forwarding 360
PIM Forwarder 361
Rendezvous Points 363
Loading page 25...
xxiv CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide
Static RP 364
Auto-RP 364
Candidate RPs 364
RP Mapping Agents 365
PIM Bootstrap Router 366
Candidate RPs 366
Exam Preparation Tasks 367
Review All Key Topics 367
Complete Tables and Lists from Memory 368
Define Key Terms 368
References in This Chapter 369
Part IV Services
Chapter 14 Quality of Service (QoS) 370
“Do I Know This Already?” Quiz 371
Foundation Topics 374
The Need for QoS 374
Lack of Bandwidth 374
Latency and Jitter 374
Propagation Delay 375
Serialization Delay 375
Processing Delay 376
Delay Variation 376
Packet Loss 376
QoS Models 377
Modular QoS CLI 379
Classification and Marking 381
Classification 381
Layer 7 Classification 382
MQC Classification Configuration 382
Marking 385
Layer 2 Marking 385
Priority Code Point (PCP) 386
Layer 3 Marking 386
DSCP Per-Hop Behaviors 387
Class Selector (CS) PHB 388
Default Forwarding (DF) PHB 388
Assured Forwarding (AF) PHB 388
Static RP 364
Auto-RP 364
Candidate RPs 364
RP Mapping Agents 365
PIM Bootstrap Router 366
Candidate RPs 366
Exam Preparation Tasks 367
Review All Key Topics 367
Complete Tables and Lists from Memory 368
Define Key Terms 368
References in This Chapter 369
Part IV Services
Chapter 14 Quality of Service (QoS) 370
“Do I Know This Already?” Quiz 371
Foundation Topics 374
The Need for QoS 374
Lack of Bandwidth 374
Latency and Jitter 374
Propagation Delay 375
Serialization Delay 375
Processing Delay 376
Delay Variation 376
Packet Loss 376
QoS Models 377
Modular QoS CLI 379
Classification and Marking 381
Classification 381
Layer 7 Classification 382
MQC Classification Configuration 382
Marking 385
Layer 2 Marking 385
Priority Code Point (PCP) 386
Layer 3 Marking 386
DSCP Per-Hop Behaviors 387
Class Selector (CS) PHB 388
Default Forwarding (DF) PHB 388
Assured Forwarding (AF) PHB 388
Loading page 26...
Contents xxv
Expedited Forwarding (EF) PHB 390
Scavenger Class 391
Trust Boundary 391
Class-Based Marking Configuration 392
A Practical Example: Wireless QoS 393
Policing and Shaping 394
Placing Policers and Shapers in the Network 395
Markdown 395
Token Bucket Algorithms 395
Class-Based Policing Configuration 398
Types of Policers 399
Single-Rate Two-Color Markers/Policers 399
Single-Rate Three-Color Markers/Policers (srTCM) 400
Two-Rate Three-Color Markers/Policers (trTCM) 403
Congestion Management and Avoidance 406
Congestion Management 406
Congestion-Avoidance Tools 408
CBWFQ Configuration 410
Exam Preparation Tasks 414
Review All Key Topics 414
Complete Tables and Lists from Memory 415
Define Key Terms 416
Use the Command Reference to Check Your Memory 416
References in This Chapter 417
Chapter 15 IP Services 418
“Do I Know This Already?” Quiz 418
Foundation Topics 420
Time Synchronization 420
Network Time Protocol 420
NTP Configuration 421
Stratum Preference 424
NTP Peers 424
Precision Time Protocol (PTP) 425
PTP Configuration 427
First-Hop Redundancy Protocol 429
Object Tracking 430
Expedited Forwarding (EF) PHB 390
Scavenger Class 391
Trust Boundary 391
Class-Based Marking Configuration 392
A Practical Example: Wireless QoS 393
Policing and Shaping 394
Placing Policers and Shapers in the Network 395
Markdown 395
Token Bucket Algorithms 395
Class-Based Policing Configuration 398
Types of Policers 399
Single-Rate Two-Color Markers/Policers 399
Single-Rate Three-Color Markers/Policers (srTCM) 400
Two-Rate Three-Color Markers/Policers (trTCM) 403
Congestion Management and Avoidance 406
Congestion Management 406
Congestion-Avoidance Tools 408
CBWFQ Configuration 410
Exam Preparation Tasks 414
Review All Key Topics 414
Complete Tables and Lists from Memory 415
Define Key Terms 416
Use the Command Reference to Check Your Memory 416
References in This Chapter 417
Chapter 15 IP Services 418
“Do I Know This Already?” Quiz 418
Foundation Topics 420
Time Synchronization 420
Network Time Protocol 420
NTP Configuration 421
Stratum Preference 424
NTP Peers 424
Precision Time Protocol (PTP) 425
PTP Configuration 427
First-Hop Redundancy Protocol 429
Object Tracking 430
Loading page 27...
xxvi CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide
Hot Standby Router Protocol 432
Virtual Router Redundancy Protocol 438
VRRPv2 Configuration 438
VRRPv3 Configuration 440
Gateway Load Balancing Protocol 441
Network Address Translation 446
NAT Topology 447
Static NAT 449
Inside Static NAT 449
Outside Static NAT 452
Pooled NAT 455
Port Address Translation 458
Exam Preparation Tasks 461
Review All Key Topics 461
Complete Tables and Lists from Memory 462
Define Key Terms 462
Use the Command Reference to Check Your Memory 462
Part V Overlay
Chapter 16 Overlay Tunnels 466
“Do I Know This Already?” Quiz 467
Foundation Topics 469
Generic Routing Encapsulation (GRE) Tunnels 469
GRE Tunnel Configuration 470
GRE Configuration Example 472
Problems with Overlay Networks: Recursive Routing 474
IPsec Fundamentals 475
Authentication Header 476
Encapsulating Security Payload 477
Transform Sets 478
Internet Key Exchange 480
IKEv1 480
IKEv2 482
IPsec VPNs 484
Site-to-Site (LAN-to-LAN) IPsec VPNs 486
Cisco Dynamic Multipoint VPN (DMVPN) 486
Hot Standby Router Protocol 432
Virtual Router Redundancy Protocol 438
VRRPv2 Configuration 438
VRRPv3 Configuration 440
Gateway Load Balancing Protocol 441
Network Address Translation 446
NAT Topology 447
Static NAT 449
Inside Static NAT 449
Outside Static NAT 452
Pooled NAT 455
Port Address Translation 458
Exam Preparation Tasks 461
Review All Key Topics 461
Complete Tables and Lists from Memory 462
Define Key Terms 462
Use the Command Reference to Check Your Memory 462
Part V Overlay
Chapter 16 Overlay Tunnels 466
“Do I Know This Already?” Quiz 467
Foundation Topics 469
Generic Routing Encapsulation (GRE) Tunnels 469
GRE Tunnel Configuration 470
GRE Configuration Example 472
Problems with Overlay Networks: Recursive Routing 474
IPsec Fundamentals 475
Authentication Header 476
Encapsulating Security Payload 477
Transform Sets 478
Internet Key Exchange 480
IKEv1 480
IKEv2 482
IPsec VPNs 484
Site-to-Site (LAN-to-LAN) IPsec VPNs 486
Cisco Dynamic Multipoint VPN (DMVPN) 486
Loading page 28...
Contents xxvii
Cisco Group Encrypted Transport VPN (GET VPN) 486
Cisco FlexVPN 486
Remote VPN Access 486
Site-to-Site IPsec Configuration 486
Site-to-Site GRE over IPsec 487
Site-to-Site VTI over IPsec 493
Cisco Locator/ID Separation Protocol (LISP) 495
LISP Architecture and Protocols 497
LISP Routing Architecture 497
LISP Control Plane 497
LISP Data Plane 498
LISP Operation 499
Map Registration and Notification 499
Map Request and Reply 500
LISP Data Path 501
Proxy ETR (PETR) 502
Proxy ITR (PITR) 503
Virtual Extensible Local Area Network (VXLAN) 504
Exam Preparation Tasks 507
Review All Key Topics 507
Complete Tables and Lists from Memory 508
Define Key Terms 508
Use the Command Reference to Check Your Memory 509
Part VI Wireless
Chapter 17 Wireless Signals and Modulation 510
“Do I Know This Already?” Quiz 510
Foundation Topics 512
Understanding Basic Wireless Theory 512
Understanding Frequency 514
Understanding Phase 519
Measuring Wavelength 519
Understanding RF Power and dB 520
Important dB Laws to Remember 522
Comparing Power Against a Reference: dBm 524
Measuring Power Changes Along the Signal Path 525
Free Space Path Loss 527
Cisco Group Encrypted Transport VPN (GET VPN) 486
Cisco FlexVPN 486
Remote VPN Access 486
Site-to-Site IPsec Configuration 486
Site-to-Site GRE over IPsec 487
Site-to-Site VTI over IPsec 493
Cisco Locator/ID Separation Protocol (LISP) 495
LISP Architecture and Protocols 497
LISP Routing Architecture 497
LISP Control Plane 497
LISP Data Plane 498
LISP Operation 499
Map Registration and Notification 499
Map Request and Reply 500
LISP Data Path 501
Proxy ETR (PETR) 502
Proxy ITR (PITR) 503
Virtual Extensible Local Area Network (VXLAN) 504
Exam Preparation Tasks 507
Review All Key Topics 507
Complete Tables and Lists from Memory 508
Define Key Terms 508
Use the Command Reference to Check Your Memory 509
Part VI Wireless
Chapter 17 Wireless Signals and Modulation 510
“Do I Know This Already?” Quiz 510
Foundation Topics 512
Understanding Basic Wireless Theory 512
Understanding Frequency 514
Understanding Phase 519
Measuring Wavelength 519
Understanding RF Power and dB 520
Important dB Laws to Remember 522
Comparing Power Against a Reference: dBm 524
Measuring Power Changes Along the Signal Path 525
Free Space Path Loss 527
Loading page 29...
xxviii CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide
Understanding Power Levels at the Receiver 530
Carrying Data Over an RF Signal 531
Maintaining AP–Client Compatibility 533
Using Multiple Radios to Scale Performance 535
Spatial Multiplexing 535
Transmit Beamforming 536
Maximal-Ratio Combining 538
Maximizing the AP–Client Throughput 538
Exam Preparation Tasks 540
Review All Key Topics 540
Complete Tables and Lists from Memory 540
Define Key Terms 541
Chapter 18 Wireless Infrastructure 542
“Do I Know This Already?” Quiz 542
Foundation Topics 545
Wireless Deployment Models 545
Autonomous Deployment 545
Cisco AP Operation 547
Cisco Wireless Deployments 548
Pairing Lightweight APs and WLCs 552
AP States 552
Discovering a WLC 554
Selecting a WLC 555
Maintaining WLC Availability 556
Segmenting Wireless Configurations 557
Leveraging Antennas for Wireless Coverage 559
Radiation Patterns 560
Gain 562
Beamwidth 563
Polarization 563
Omnidirectional Antennas 564
Directional Antennas 567
Exam Preparation Tasks 570
Review All Key Topics 570
Complete Tables and Lists from Memory 571
Define Key Terms 571
Understanding Power Levels at the Receiver 530
Carrying Data Over an RF Signal 531
Maintaining AP–Client Compatibility 533
Using Multiple Radios to Scale Performance 535
Spatial Multiplexing 535
Transmit Beamforming 536
Maximal-Ratio Combining 538
Maximizing the AP–Client Throughput 538
Exam Preparation Tasks 540
Review All Key Topics 540
Complete Tables and Lists from Memory 540
Define Key Terms 541
Chapter 18 Wireless Infrastructure 542
“Do I Know This Already?” Quiz 542
Foundation Topics 545
Wireless Deployment Models 545
Autonomous Deployment 545
Cisco AP Operation 547
Cisco Wireless Deployments 548
Pairing Lightweight APs and WLCs 552
AP States 552
Discovering a WLC 554
Selecting a WLC 555
Maintaining WLC Availability 556
Segmenting Wireless Configurations 557
Leveraging Antennas for Wireless Coverage 559
Radiation Patterns 560
Gain 562
Beamwidth 563
Polarization 563
Omnidirectional Antennas 564
Directional Antennas 567
Exam Preparation Tasks 570
Review All Key Topics 570
Complete Tables and Lists from Memory 571
Define Key Terms 571
Loading page 30...
Contents xxix
Chapter 19 Understanding Wireless Roaming and Location Services 572
“Do I Know This Already?” Quiz 572
Foundation Topics 574
Roaming Overview 574
Roaming Between Autonomous APs 574
Intracontroller Roaming 577
Intercontroller Roaming 579
Layer 2 Roaming 579
Layer 3 Roaming 581
Scaling Mobility with Mobility Groups 583
Locating Devices in a Wireless Network 584
Exam Preparation Tasks 587
Review All Key Topics 587
Complete Tables and Lists from Memory 588
Define Key Terms 588
Chapter 20 Authenticating Wireless Clients 590
“Do I Know This Already?” Quiz 590
Foundation Topics 592
Open Authentication 593
Authenticating with Pre-Shared Key 595
Authenticating with EAP 597
Configuring EAP-Based Authentication with External RADIUS
Servers 600
Verifying EAP-Based Authentication Configuration 602
Authenticating with WebAuth 603
Exam Preparation Tasks 606
Review All Key Topics 606
Complete Tables and Lists from Memory 606
Define Key Terms 606
Chapter 21 Troubleshooting Wireless Connectivity 608
“Do I Know This Already?” Quiz 608
Foundation Topics 610
Troubleshooting Client Connectivity from the WLC 611
Checking the Client’s Association and Signal Status 613
Checking the Client Properties 614
吀攀挀栀渀攀琀㈀㐀
Chapter 19 Understanding Wireless Roaming and Location Services 572
“Do I Know This Already?” Quiz 572
Foundation Topics 574
Roaming Overview 574
Roaming Between Autonomous APs 574
Intracontroller Roaming 577
Intercontroller Roaming 579
Layer 2 Roaming 579
Layer 3 Roaming 581
Scaling Mobility with Mobility Groups 583
Locating Devices in a Wireless Network 584
Exam Preparation Tasks 587
Review All Key Topics 587
Complete Tables and Lists from Memory 588
Define Key Terms 588
Chapter 20 Authenticating Wireless Clients 590
“Do I Know This Already?” Quiz 590
Foundation Topics 592
Open Authentication 593
Authenticating with Pre-Shared Key 595
Authenticating with EAP 597
Configuring EAP-Based Authentication with External RADIUS
Servers 600
Verifying EAP-Based Authentication Configuration 602
Authenticating with WebAuth 603
Exam Preparation Tasks 606
Review All Key Topics 606
Complete Tables and Lists from Memory 606
Define Key Terms 606
Chapter 21 Troubleshooting Wireless Connectivity 608
“Do I Know This Already?” Quiz 608
Foundation Topics 610
Troubleshooting Client Connectivity from the WLC 611
Checking the Client’s Association and Signal Status 613
Checking the Client Properties 614
吀攀挀栀渀攀琀㈀㐀
Loading page 31...
28 more pages available. Scroll down to load them.
Preview Mode
Sign in to access the full document!
100%
Study Now!
XY-Copilot AI
Unlimited Access
Secure Payment
Instant Access
24/7 Support
AI Assistant
Document Details
Subject
Cisco Certified Network Professional