3 arrows

NEW DATES ADDED: Summer-Ready Savings Up To $500 Off Training 

closeClose

Implementing ArubaOS-CX Switching, Rev. 20.21

  • Tuition USD $3,200
  • Reviews star_rate star_rate star_rate star_rate star_half 4425 Ratings
  • Course Code Aruba-IOCS-20-21
  • Duration 5 days
  • Available Formats Classroom, Virtual

This course teaches you the advanced skills necessary to implement and operate enterprise level Aruba campus switching solutions. You will build on the skills you learned at the Associate level to configure and manage modern, open standards-based networking solutions using Aruba's OS-CX routing and switching technologies. In this course, participants learn about ArubaOS-CX switch technologies including: securing port access with Aruba's dynamic segmentation, redundancy technologies such as Multiple Spanning Tree Protocol (MSTP), link aggregation techniques including Link Aggregation Protocol (LACP) and switch virtualization with Aruba’s Virtual Switching Extension (VSX) and Aruba's Virtual Switching Framework (VSF). This course is approximately 50% lecture and 50% hands-on lab exercises.

Skills Gained

After you successfully complete this course, expect to be able to:

  • Use NetEdit to manage switch configurations
  • Use the Network Analytics Engine (NAE) to implement scripting solutions to provide for proactive network management and monitoring
  • Compare and contrast VSX, VSF, and backplane stacking
  • Explain how VSX handles a split-brain scenario
  • Implement and manage a VSX fabric
  • Define ACLs and identify the criteria by which ACLs select traffic
  • Configure ACLs on AOS-CX switches to select given traffic
  • Apply static ACLs to interfaces to meet the needs of a particular scenario
  • Examine an ACL configuration and determine the action taken on specific packets
  • Deploy AOS-Switches in single-area and multi-area OSPF systems
  • Use area definitions and summaries to create efficient and scalable multiple area designs
  • Advertise routes to external networks in a variety of OSPF environments
  • Promote fast, effective convergence during a variety of failover situations
  • Use virtual links as required to establish non-direct connections to the backbone
  • Implement OSFP authentication
  • Establish and monitor BGP sessions between your routers and ISP routers
  • Advertise an IP block to multiple ISP routers
  • Configure a BGP router to advertise a default route in OSPF
  • Use Internet Group Management Protocol (IGMP) to optimize forwarding of multicast traffic within VLANs
  • Describe the differences between IGMP and IGMP snooping
  • Distinguish between PIM-DM and PIM-SM
  • Implement PIM-DM and PIM-SM to route multicast traffic
  • Implement Virtual Routing Forwarding (VRF) policies to contain and segregate routing information
  • Create route maps to control routing policies
  • Understand the use of user roles to control user access on AOS-CX switches
  • Implement local user roles on AOS-CX switches and downloadable user roles using a ClearPass solution
  • Implement 802.1X on AOS-CX switch ports
  • Integrate AOS-CX switches with an Aruba ClearPass solution, which might apply dynamic role settings
  • Implement RADIUS-based MAC Authentication (MAC-Auth) on AOS-CX switch ports
  • Configure captive portal authentication on AOS-CX switches to integrate them with an Aruba ClearPass solution
  • Combine multiple forms of authentication on a switch port that supports one or more simultaneous users
  • Configure dynamic segmentation on AOS-CX switches
  • Explain how technologies such as sFlow and traffic mirroring allow you to monitor network traffic
  • Describe how AOS-CX switches prioritize traffic based on its queue
  • Configure AOS-CX switches to honor the appropriate QoS marks applied by other devices
  • Configure AOS-CX switches to select traffic, apply the appropriate QoS marks, and place the traffic in the proper priority queues
  • Implement rate limiting
  • Understand how the Virtual Output Queuing (VOQ) feature mitigates head-of-line (HOL) blocking
  • Configure a voice VLAN and LLDP-MED

Who Can Benefit

Typical candidates for this course are IT Professionals who will deploy and manage networks based on HPE’s ArubaOS-CX switches.

Prerequisites

Suggested

  • ArubaOS-CX Switching Fundamentals, Rev. 20.21

Course Details

Topics

Introduction to Aruba Switching

  • Switches overview
  • Architectures

NetEdit

  • Overview
  • Centralized configuration
  • Switch groups/templates
  • AOS-CX mobile App

Network Analytics Engine (NAE)

  • Overview
  • Configuration
  • Core NAE feature lab
  • sflow, local mirror, remote mirror

VSX

  • VSF vs. VSX: access and Agg/core design
  • Stacking review
  • VSF and uni/multi packet forwarding
  • Stack fragments / split brain
  • VSX Overview: roles, control, data, management planes
  • VSX components (ISL, Keepalive, VSX LAG, Active Gateway, Active-Forwarding, Link Delay)
  • Split Brain scenario
  • Upstream Connectively Options (ROP single VRF, SVIs with multiple VRF, VSX Lag SVIs with multiple VRFs)
  • Upstream/Downstream unicast traffic flow (South-North and North-South)
  • VSX Configuration: VSX and Active Gateway
  • VSX firmware updates

ACLs

  • Overview: types, components
  • MAC ACL, Standard ACL, Extended ACL,
  • Classifier-based Policies
  • Configuration: wildcard bits, logging, pacl, vacl, racl

Advanced OSPF

  • Review basic OSPF
  • Multi area: setup and aggregation
  • Area-Types Stub, Totally Stub, NSSA, Totally NSSA
  • External routes
  • OSPF tuning: costs, bfd, gr, auth, vrrp, virt link

BGP

  • Overview: i/e bgp, as numbers
  • Best path selection
  • Configuration: route announcement
  • Route filtering to prevent transit as

IGMP

  • Overview
  • Querier
  • Snooping
  • Unknown multicasts

Multicast Routing: PIM

  • Overview
  • PIM DM

802.1X Authentication

  • Overview: roles, requirements, coa, accounting
  • Dynamic port configuration: avp, acl, qos, VLAN
  • Port-based vs. user-based: examples
  • Radius service tracking, critical VLAN

MAC Authentication

  • Overview: Use cases
  • Radius-based MAC Auth

Dynamic Segmentation

  • Leverage dynamic segmentation features
  • Configure tunneled-node on AOS-CX switches
  • Describe when and how to configure PAPI enhanced security, high availability, and fallback switching for tunneled-node

Quality of Service

  • Overview
  • VoQ (Virtual Output Queue)
  • QOS: queueing, QOS marks, dot1p, dscp
  • Trust levels
  • QOS configuration: port, VLAN, policies
  • Interaction with user roles
  • Queue configuration
  • Rate limiters
  • LLDP-MED

Additional Routing Technologies

  • VRF - Management VRF
  • PBR
  • MDNS
  • PIM SM

Capitve Portal Authentication

  • Overview of guest solutions
  • Built-in web auth
  • ClearPass redirect with CPPM

When does class start/end?

Classes begin promptly at 9:00 am, and typically end at 5:00 pm.

Does the course schedule include a Lunchbreak?

Lunch is normally an hour long and begins at noon. Coffee, tea, hot chocolate and juice are available all day in the kitchen. Fruit, muffins and bagels are served each morning. There are numerous restaurants near each of our centers, and some popular ones are indicated on the Area Map in the Student Welcome Handbooks - these can be picked up in the lobby or requested from one of our ExitCertified staff.

How can someone reach me during class?

If someone should need to contact you while you are in class, please have them call the center telephone number and leave a message with the receptionist.

What languages are used to deliver training?

Most courses are conducted in English, unless otherwise specified. Some courses will have the word "FRENCH" marked in red beside the scheduled date(s) indicating the language of instruction.

What does GTR stand for?

GTR stands for Guaranteed to Run; if you see a course with this status, it means this event is confirmed to run. View our GTR page to see our full list of Guaranteed to Run courses.

Does ExitCertified deliver group training?

Yes, we provide training for groups, individuals and private on sites. View our group training page for more information.

Does ExitCertified deliver group training?

Yes, we provide training for groups, individuals, and private on sites. View our group training page for more information.

The instructor really took his time and made sure I was able to understand the concepts.

Simply great training provider that I can go for updating/acquiring my skill sets.

The labs and course material gave me valuable insights into cloud security architecture

The class was very vast paced however the teacher was very good at checking in on us while giving us time to complete the labs.

This course gave me a clearer understanding of the AWS cloud architecture.

5 options available

undo
  • Oct 11, 2021 Oct 15, 2021 (5 days)
    Location
    Virtual
    Language
    English
    Time
    9:00 5:00 PDT
    Enroll
    Enroll
    EXTRA DATES ADDED - SAVE on this course -  Promo Code: SUMMER500
  • Oct 18, 2021 Oct 22, 2021 (5 days)
    Location
    Virtual
    Language
    English
    Time
    9:00 5:00 CDT
    Enroll
    Enroll
    EXTRA DATES ADDED - SAVE on this course -  Promo Code: SUMMER500
  • Nov 15, 2021 Nov 19, 2021 (5 days)
    Location
    Virtual
    Language
    English
    Time
    9:00 5:00 EST
    Enroll
    Enroll
    EXTRA DATES ADDED - SAVE on this course -  Promo Code: SUMMER500
  • Dec 13, 2021 Dec 17, 2021 (5 days)
    Location
    Virtual
    Language
    English
    Time
    9:00 5:00 CST
    Enroll
    Enroll
  • Jan 10, 2022 Jan 14, 2022 (5 days)
    Location
    Virtual
    Language
    English
    Time
    9:00 5:00 PST
    Enroll
    Enroll
Contact Us 1-800-803-3948
Contact Us
FAQ Get immediate answers to our most frequently asked qestions. View FAQs arrow_forward