Add to collection(s) Add to saved
  1. No category
Uploaded by Priyaraj R (Raj)

CCIE SPv5 Webinar - Build your own lab-v1

advertisement 
CCIE Service Provider 5.0 Prep Series
Build your own lab and Beyond!!!!!!!!!
Kashif Zeeshan | kzeeshan@cisco.com
CCIE Service Provider Exam Program Manager
LinkedIn | https://www.linkedin.com/in/kashifzeeshan-cisco/
March 25th 2021
Agenda
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
1
CCIE SPv5 Lab Scope
2
CCIE SPv5 Lab Build Requirements
3
CCIE SPv5 Lab Build Options
4
CCIE SPv5 Lab Build Resources
5
CCIE SPv5 Poll Questions
6
Q&A
2
CCIE Service Provider 5.0 Certification Journey
Ø Where to Start from?
Ø What are my options?
Ø How much is it going to cost?
Ø How much time will it take to build the lab?
Ø How much time it will take to prepare?
Ø Where and When to schedule for the lab?
Ø Where can I go for advice?
Ø Has there been changes to the lab?
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
3
CCIE SP 5.0 – Blueprint weighting per Domain
Domains
Domain Weight
1. Core Routing
25%
2. Architecture and Services
25%
3. Access Connectivity
10%
4. High Availability and Fast Convergence
10%
5. Security
10%
6. Network Assurance and Automation
20%
Total
100%
https://learningnetwork.cisco.com/s/ccie-service-provider-exam-topics
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
4
CCIE SP 5.0 Exam Topics
Domain
5 Tasks
29 Sub-Tasks
Changes in 5.0 versus 4.x highlighted in Yellow
1.1 Interior Gateway Protocol (IGP) – IS-IS and OSPF
1.0 Core Routing
1.2 Border Gateway Protocol (BGP-LU and BGP-LS)
1.3 Multicast (PIM, RP and MLDP)
1.4 Multiprotocol Label Switching (SR + Interworking)
1.5 MPLS Traffic Engineering (SR-TE, Flex-Algo and SR-PCE)
Topics are consolidated
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
5
CCIE SP 5.0 Exam Topics
Domain
7 Tasks
25 Sub-Tasks
Changes in 5.0 versus 4.x highlighted in Yellow
2.1 Virtualized Infrastructure (Cloud Networking and 5G)
2.0 Architecture and Services
2.2 Large Scale MPLS Architecture (Multi-Domain SR)
2.3 Carrier Ethernet (EVPN-VPWS and EVPN-IRB)
2.4 L3VPN
2.5 Internet Service
2.6 Multicast VPN
2.7 QoS for Core, Distribution and Access
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
6
CCIE SP 5.0 Exam Topics
Domain
2 Tasks
5 Sub-Tasks
Changes in 5.0 versus 4.x highlighted in Yellow
3.0 Access Connectivity
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
3.1 Layer-2 connectivity
3.2 Layer-3 connectivity
7
CCIE SP 5.0 Exam Topics
Domain
2 Tasks
7 Sub-Tasks
Changes in 5.0 versus 4.x highlighted in Yellow
4.0 High Availability and
Fast Convergence
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
4.1 High Availability
4.2 Routing and Fast Convergence (TI-LFA)
8
CCIE SP 5.0 Exam Topics
Domain
3 Tasks
11 Sub-Tasks
Changes in 5.0 versus 4.x highlighted in Yellow
5.1 Control plane security
5.0 Security
5.2 Management plane security
5.3 Infrastructure security
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
9
CCIE SP 5.0 Exam Topics
Domain
2 Tasks
11 Sub-Tasks
Changes in 5.0 versus 4.x highlighted in Yellow
6.0 Assurance and Automation
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
6.1 Network Assurance (Ethernet OAM and SR-OAM)
6.2 Network Automation (NSO and Ansible scripts)
10
CCIE SP Lab Build
Requirements
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
11
CCIE Service Provider 5.0 Devices and Versions
The new lab topology is fully virtual and contain following lab devices
#
Device Type
Version (MD)
Device Count (Approx)
1
Cloud Services Router 1000V (CSR1K)
16.6.5
6+
2
IOS XRV 9000 VRR Profile (XRV9K)
6.5.3
12-15+
3
NSO installed on Ubuntu 18.04 Linux VM
5.2
1
Ø Hardware Agnostic - Cisco UCS and any 3rd Party bare metal (VT-x)
Ø Hypervisor Agnostic – VMWare ESXi, QEMU/KVM, Ubuntu
(ESXi 5.5,6+ RHEL & CentOS 7+ , Ubuntu 16.04+ LTS)
Ø Cloud Infrastructure (IaaS) Agnostic – AWS, Azure, GCP, IBM or OCI
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
12
Lab Hardware Resources Requirements
Device
CPU (Cores)
Memory (RAM)
Hard Disk
XRv9K
8
24
45GB
CSR1K
1-4
4-8
8GB
NSO
2
4-8
50G+
Device
Device Count
CPU (Cores)
Memory (RAM)
Hard Disk
XRv9K
12
96
288
540GB
CSR1K
6
24
48
48GB
NSO
1
2
4-8
50G+
Total
Approx
~122
~344
~700GB
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
13
Recommended Software Versions for devices
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
14
Sample Topology
CE
Access
Edge
PE /
Agg
Edge
Edge
Core
Edge
RR
Agg
Agg
Contr
Core
Agg
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
Agg
15
Modular Labs
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
16
CCIE SP Lab Build
Options
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
17
Build your CCIE SP Lab Options
1) Any Physical Server supporting virtualization with choice of hypervisor
2) Lab Simulators: CML-P, 3rd Party (EVE-NG, GNS3, etc) – Require heavy duty server
3) dCloud à 20+ LABS on Segment Routing, SR-PCE, MPLS, EVPN and NSO, etc.
4) Cloud Infrastructure – AWS, Azure, GCP and OCI
5) Lab Rack Rentals
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
18
Cisco IOS XRv 9000 Virtual Router
Licensing: Smart Enabled
Demo mode has
rate limitation of 200Kbps.
Ø Operates as single VM → 64-bit
Linux containers used for data,
control and admin planes
Ø Distributed XR architected for:
ü CP/DP Separation (Scale Up)
ü Distributed DP (Scale Out)
ü Active/standby CP redundancy
Ø Deployment models
XRv Supported Features 6.5.3
https://www.cisco.com/c/en/us/td/docs/routers/virtual-routers/xrv9k-65x/general/release/notes/b-releasenotes-xrv9k-653.html#topic_4893145A472846029AD5FD412609562C
Free Trial for 30 days or more - XRv 6.3.1
https://aws.amazon.com/marketplace/pp/B077GJPZ7H?ref_=srh_res_product_title#pdp-pricing
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
ü
ü
ü
ü
PCI pass-through (PF)
SR-IOV (VF)
Para-virtualized (virtIO)
Fully emulated (E1000)
Ø Use cases:
ü
ü
ü
ü
Virtual BGP Route Reflector (vRR)
Virtual Internet Edge Router (vPE)
Segment Routing PCE (SR PCE)
Service Function Forwarder (SFF)
and Chaining (SFC) with NSH
19
Mapping NICs with Cisco IOS XRv 9000 Router
Ø Each time Cisco IOS XRv 9000 Router is booted:
ü 1st NIC is used as Mgmt Ethernet Interface
ü 2nd NIC is used by virtual router internally
E1000
ü 3rd NIC is used by virtual router internally
Ø The rest of the 7 NICs are mapped to the data
plane as line interfaces which are by default E1000.
Ø VMXNET3 for traffic interfaces only
Ø Disable VMware ESXi power management to
increase performance on VMWare ESXi.
Ø XRv9k MTU range up to 9216 bytes. However,
VMWare ESXi vSwitches support maximum frame
size of 9000 bytes.
10 NICS
NA5
NA6
NA4
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
https://www.cisco.com/c/en/us/td/docs/routers/virtual-routers/configuration/guide/b-xrv9k-cg/b-xrvirtual9k-cg_chapter_010.html
20
6 CPU
IOS XRv 9000 Bring-up
14G
1G
8 G / 2 CPU
Accessing the IOS XRv Virtual Machine
XR-RP
XRADM
XR-LC
Host
1
GE1
Mar
Mar
Mar
Mar
Mar
Mar
Mar
Mar
22
22
22
22
22
22
22
22
18:55:11
18:55:11
18:55:11
18:55:11
18:55:11
18:55:11
18:55:11
18:55:11
UTC
UTC
UTC
UTC
UTC
UTC
UTC
UTC
2021
2021
2021
2021
2021
2021
2021
2021
(/proc/self/fd/9):
(/proc/self/fd/9):
(/proc/self/fd/9):
(/proc/self/fd/9):
(/proc/self/fd/9):
(/proc/self/fd/9):
(/proc/self/fd/9):
(/proc/self/fd/9):
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
4
Host
E1000
Mon
Mon
Mon
Mon
Mon
Mon
Mon
Mon
Hypervisor
3
2
24G / 8 CPU
GE3
GE6
VMXNET3
Hardware profile: vrr
Host has 23.40GB RAM / 8 vCPUs
Management plane: 1024MB RAM
XR control plane: 14336MB RAM
XR packet memory: 256MB RAM
Centralized LC: 8192MB RAM
Data plane core assignment: 6-7
Control plane core assignment: 0-5
21
IOS XRv 9000 Deployment using ESXi
2. Upload the ova file
1. Add lab networks
3. Map the right networks to interfaces
4. Configure Serial Port to access via telnet
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
22
IOS XRv 9000 - Deployment on ESXi
Accessing the IOS-XRv VM
Filesystem type is iso9660, using whole disk
kernel /boot/bzImage root=/dev/ram console=ttyS0 prod=1 install=/dev/sda platfo
Telnet to the Serial Port
telnet <esxi_host_ip> <port_number>
<SNIP>
Wed Feb 17 02:13:47 UTC 2021: Copying all ISOs to repository took 68 seconds
[ 340.853307] reboot: Restarting system
Press any key to continue.
<SNIP>
Will go through baking process on first boot
up &reload
################################################################################
Only
#
#
#
Welcome to the Cisco IOS XRv9k platform
#
#
Please wait for Cisco IOS XR to start.
#
#
Copyright (c) 2014-2015 by Cisco Systems, Inc.
#
#
#
################################################################################
happens once, during the first bootup
Cisco IOS XR console
will start on the 1st serial port
Cisco IOS XR aux console will start on the 2nd serial port
Cisco Calvados console
will start on the 3rd serial port
<snip>
Create Username and Password
ios con0/RP0/CPU0 is now available
Press RETURN to get started.
!!!!!!!!!!!!!!!!!!!! NO root-system username is configured. Need to configure root-system username.
!!!!!!!!!!!!!!!!!!!!Configuration lock is held by another agent. Please wait. [.OK]
--- Administrative User Dialog --Enter
root-system
username:
© 2021 Cisco and/or its affiliates.
All rights
reserved. Cisco Public
23
CSR 1000v (Cloud Services Router)
Ø
Virtualized ASR 1000 router based on 64-bit IOS XE
ü
ü
Ø
CSR1000v can be downloaded and used free for 60 days
AWS single instance free for 30 days
Ø
Rich set of use cases for NFV including but not limited to:
ü
ü
ü
ü
ü
ü
ü
ü
ü
ü
Virtual BNG / BRAS / LNS (vBNG)
Virtual L2 VPN edge (vPE)
Virtual MPLS (Layer 3) VPN edge (vPE)
Virtual BGP Route Reflector (vRR)
Virtual BGP Route Server
Virtual Internet edge (vPE)
Wi-Fi access gateway, Wi-Fi offload
IPv4 and IPv6 translation (vCGN)
Virtual Cloud VPN Gateway
Managed Services (vCPE, vNAT, vFW, vLB, etc.)
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
Hypervisors:
ü
Ø
Cloud VM orchestration:
ü
Ø
VMWare ESXi, KVM, Citrix Xen,
Microsoft Hyper-V & Azure, and
Amazon AMI
OpenStack, VMware vCenter,
VMware vCloud Director, Cisco
ESC
Service orchestration:
ü
REST API, NETCONF/YANG (3.17)
and NSO (enabled by Tail-f)
24
Network Services Orchestrator (NSO)
https://developer.cisco.com/site/nso/
Ø
Free Trial for non-production use
ü
Ø
Learning Labs
ü
Ø
https://developer.cisco.com/learning/tracks
/get_started_with_nso
Developer Community
ü
Ø
https://developer.cisco.com/docs/nso/#!get
ting-and-installing-nso
https://community.cisco.com/t5/nsodeveloper-hub/ct-p/5672j-dev-nso
5-day training
ü
https://github.com/NSO-developer/nso-5day-training
https://devnetsandbox.cisco.com/RM/Diagram/Index/43964e62-a13c-4929-bde7-a2f68ad6b27c?diagramType=Topology
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
25
Cisco Modeling Lab
(CML)
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
26
Cisco Modeling Labs - Offerings
CML-Personal
CML-Enterprise
(Formerly VIRL)
•
Available through the CLN Store (Not CCW)
•
Available through CCW
•
B2C Purchasing Model
•
B2B Purchasing Model (Requires a Smart Account)
•
Simulate both Cisco and 3rd Party Devices
•
Built for Multi-User Environments
•
Built for a single user
•
Expansion to 300 nodes
•
No node expansion available
•
•
Requires internet connectivity
Requires Internet Connectivity by default
SLR Licensing is supported
•
Base License Includes 20/40 Cisco Nodes for
$199/$349
•
TAC Support
•
More Enterprise Features on the way!
•
Community support ONLY
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
27
Build Lab Topology in CML 2.1.2
Caveats:
Ø Large Topologies cause high
CPU Spikes
Ø No Performance testing
Ø Don’t change the node name in
the UI, the configuration
extraction will fail.
https://developer.cisco.com/docs/modeling-labs/#!preparing-a-custom-image
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
28
Cisco dCloud
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
29
Cisco dCloud SP Labs
ØFree self-paced labs and sandbox environment
ØSupports HTML5 RDP access or Anyconnect VPN into environment
ØLabs are either instant-demos or scheduled in advance.
ØCan book up to 5 consecutive days (possible to request longer extension)
ØDatacenters hosted in US East, US West, APJ & EMEAR
ØdCloud Support – Tickets can be open in case you have issues.
ØdCloud News: https://dcloud-cms.cisco.com/news
ØdCloud Community: https://community.cisco.com/t5/cisco-dcloud/ct-p/dcloud
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
30
Cisco dCloud Routing Labs
1) Cisco Service Provider SDN Segment Routing in Action Sandbox v5
2) Cisco IOS-XR Segment Routing Flexible Algorithm Lab v1
3) Cisco IOS-XR EVPN VPWS Service over SR-TE v1
4) Cisco IS-IS and Segment Routing 101 v1
5) Segment Routing Traffic Engineering Lab v1
6) Cisco MPLS Segment Routing Introduction Lab v1
7) Cisco Segment Routing Inter-Domain SRTE ISIS v2
8) Cisco Segment Routing BGP Prefix-SID in Inter-AS Network v2
9) Cisco Segment Routing VPNv4 and VPNv6 over IPv4 ISIS SR MPLS Lab v1
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
31
Cisco dCloud NSO Labs
1) Cisco Network Services Orchestrator 5.4.0.2 Sandbox v1
2) Cisco NSO vBranch FP and Ansible NSO Modules v1
3) Cisco NSO Service Modeling Lab 103 Scenarios 1-5 (v1)
4) Cisco NSO Development with LSA and Workflows v1.1
5) Cisco NSO Service Modeling 102 Scenarios 1-3 (v1)
6) Cisco NSO Service Modeling 101 Lab Scenarios 1-6 (v1)
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
32
Cloud AWS and Lab
Rentals
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
33
XRv9k on AWS
1) Login to AWS Management
console and pick the region.
2) Create VPC, subnet, security
group and access key-pair
3) Choose the XRv9K AMI image
and launch button and then
follow the wizard
4) Attach more NIC to the XRv9k
instance when needed
5) Allocate IP address and bind
to a data interface
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
34
Lab Rentals
Ø 3rd Party lab rentals. Try good known ones
Ø Cisco does not provide rack rentals yet!!!
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
35
Lab Build Analysis
Build Options
Cost
Time Consuming
Ease of Use
Flexibility
On-Prem Server
High Capex
Initially, Yes
Virtualization skill
set required
Very High
CML-P or Ent
High Capex
Quick
Very Intuitive
High
dCloud
Free
Moderate
Yes
NA
Cloud IaaS
Subscription
based
Moderate
Yes, Cloud skills
required
Moderate
Lab Rentals
Subscription
based
Moderate
Yes
None
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
36
CCIE SP Lab
Resources
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
37
CCIE SP Lab Preparation Resources
•
Refer to CCIE Service Provider (v5.0) Exam Blueprint
•
Consult the CCIE Service Provider (v5.0) Learning Matrix
•
Visit Cisco Live! On-Demand Library
•
Visit developer.cisco.com for programmability topics (Networking)
•
Use Cisco Learning Library for targeted courses
•
Use Cisco dCloud for targeted technologies (NSO v5.x)
•
Use CML-P for your practice lab
•
Join Service Provider Certifications CLN community
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
38
CCIE SP Lab Exam Community
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
https://learningnetwork.cisco.com/s/topic/0TO3i0000008jY8GAI/service-provider-certifications-community
39
Cisco Learning Library Essentials
184 Hrs
Ø Cisco Service Provider 5G Technologies Foundations (SPMBL100) v1.0 – 36 Hrs
Ø NSO Essentials for Programmers and Network Architects (NSO201) v4.0 – 32 Hrs
Ø Implementing and Operating Cisco Service Provider Network Core Technologies (SPCOR) v1.0 – 64 hrs
Ø Cisco IOS XR Ethernet VPN Implementation and Verification (IOSXR303) v1.0 – 9Hrs
Ø Implementing Segment Routing on Cisco IOS XR (SEGRTE201) v2.0 – 32 hrs
Ø Cisco IOS XR MPLS and Tunnel Technologies for IPv4 (XMPLST4) v3.0 – 11 Hrs
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
40
Documentation for CCIE SP Exam
•
The environment in the CCIE exam lab location will allow limited access to a
set of documentation relevant for the given track
•
For CCIE Service Provider, at minimum:
•
•
•
•
•
•
•
•
https://www.cisco.com/c/en/us/solutions/service-provider/index.html
https://www.cisco.com/c/en/us/solutions/enterprise/design-zone-serviceprovider/programmable-network.html#~tab-epn-5guides
https://www.cisco.com/c/en/us/support/routers/ios-xrv-9000-router/series.html
https://developer.cisco.com/site/nso/
https://developer.cisco.com/site/ios-xr/
https://developer.cisco.com/site/ios-xe/
https://xrdocs.io/
http://www.segment-routing.net/
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
41
CCIE SP v5.0 Lab Practice Resources
•
Cisco DEVNET Sandbox:
Ø
https://developer.cisco.com/site/nso/
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
•
Cisco XR for Service Provider:
Ø
https://xrdocs.io/
42
Lab Preparation Trainings for CCIE SP
https://www.segment-routing.net/tutorials/
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
https://developer.cisco.com/learning/tracks/get_started_with_nso
43
Cisco Press Books
BGP Design and
Implementation
IP Multicast
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
MPLS Fundamentals
Cisco IOS XR
Fundamentals
MPLS and VPN
Architectures
Interconnecting Data
Centers Using VPLS
Troubleshooting BGP
44
Poll Questions
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
45
Poll Questions
Q1: Which cisco resources would help you most towards your CCIE SP Lab
preparations?
a) Access to lab equipment only.
b) Access to sample lab scenarios only.
c) Access to equipment and lab scenario.
d) Training modules associated with each blueprint domain.
e) Lab Tutorials with sample lab scenarios and equipment to practice.
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
46
Poll Questions
Q2: What blueprint domain would you prefer the most for the upcoming CCIE
Service Provider technology deep-dive webinar?
a) Core Routing
b) Segment Routing focused Architectures
c) Architecture and Services
d) Telco Cloud Infrastructure
e) EVPN
f) Access and Connectivity
g) High Availability and Convergence
h) SP Security
i) Automation and Assurance
j) NSO
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
47
Poll Questions
Q3: Which CCIE SP Topic is most essential in your role?
a) Core Routing LDP based
b) Core Routing Segment Routing based
c) L3VPN and MVPN
d) EVPN
e) Network Automation
f) Network Security
g) 5G Architecture
h) Entire Blueprint
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
48
Q&A
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
49
Thank you.
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public
50
Related documents
1.1.1.2 Lab - How Connected are You
1.1.1.2 Lab - How Connected are You
Module Summary
Module Summary
Networking Fundamentals Cisco.ctb
Networking Fundamentals Cisco.ctb
WWW+Internet+networking - Edulink
WWW+Internet+networking - Edulink
Download
advertisement