Cisco AWS Integration

  • Tuition USD $4,495
  • Reviews star_rate star_rate star_rate star_rate star_half 1110 Ratings
  • Course Code CISAWS
  • Duration 5 days
  • Available Formats Classroom

Cisco AWS Integration v1.0 (CISAWS) is a five-day instructor led course that includes both lectures and hands-on labs. Students will learn how to use a suite of Cisco products to deploy a hybrid cloud environment that supports application workload mobility between a private Data Center deployed with 100% Cisco components and the AWS public cloud infrastructure. Cisco products featured in this course include: Cisco CSR 1000V, Cisco ASAv, Cisco CloudCenter, and Cisco Tetration. Throughout this course, the topic of security is stressed. Emphasis is placed on using Cisco products to provide the highest level of security in a Cisco/AWS hybrid cloud environment.

Skills Gained

Upon completing this course, the learner will be able to meet these overall objectives:

  • Understand the modularization of compute, network and storage services in a cloud environment
  • Understand the concept of application workload mobility
  • Understand how to create a hybrid cloud connecting a Cisco powered private cloud with Amazon Web Services
  • Understand and tour the Amazon Web Services eco-system
  • Learn how to deploy the Cisco CSR 1000V in Amazon Web Services
  • Learn how to interconnect a Cisco Private Cloud to Amazon Web Services using the Cisco CSR 1000V
  • Learn how to deploy the Cisco ASAv in Amazon Web Services
  • Learn how to deploy secure VPN interconnections between Amazon Web Services and a Cisco Private Cloud using the Cisco ASAv
  • Learn how to migrate application workloads from Amazon Web Services to a Cisco Private Cloud using Cisco CloudCenter
  • Learn how to monitor complex application dependencies in real time with Cisco Tetration in both a Cisco Private Cloud and in an Amazon Web Services public cloud environment

Who Can Benefit

This course is designed for network and data center engineers who want to learn how to deploy a secure hybrid cloud between a Cisco powered private cloud and Amazon Web Services using Cisco products such as the Cisco CSR 1000V and the Cisco ASAv. Network and data center engineers will also learn how to migrate application workloads between a Cisco powered private cloud and Amazon Web Services using Cisco CloudCenter. Finally, network and data center engineer's monitor complex application workload dependencies in real time with Cisco Tetration in a secure hybrid cloud environment.

Prerequisites

It is recommended that each student has the following knowledge and skills before attending this course:

  • CCNA or Equivalent Experience in Cisco routing and Cisco ASA firewall concepts

Course Details

Outline

Lesson 1: Application Workloads in a Cloud Environment

  • Overview of Application Workload Components
  • Code
  • Data
  • Infrastructure
  • OS Infrastructure
  • Network Infrastructure (IP address blocks, DNS, caching, etc.)
  • Hardware Infrastructure (compute, storage, network hardware)
  • Decoupling application workload software and infrastructure components
  • Creating a common infrastructure for application workloads in a private and public cloud
  • Attaining a state of “infrastructure as code” using API’s for efficiently deploying and migrating application workloads from one cloud to another
  • Comparing and contrasting private and public environments
  • Creating a state-of-the-art Cisco Powered Private Cloud with ACI and UCS
  • Review of the major Public Cloud providers
  • Amazon Web Services
  • Microsoft Azure
  • Google Cloud Platform
  • Evaluating the pros and cons of private and public environments
  • Synthesizing private and public clouds to create a hybrid cloud environment
  • Designing a secure hybrid cloud model to facilitate application workload mobility
  • Review the challenges and complexities of deploying a hybrid cloud environment to facilitate application workload mobility
  • the application dependency challenge
  • the multi-faceted security challenges
  • Review the critical Cisco products to facilitate application workload mobility in a secure hybrid cloud environment
  • The Cisco CSR 1000V
  • The Cisco ASAv
  • Cisco CloudCenter
  • Cisco Tetration

Lesson 2: Introduction to AWS

  • AWS Architecture Overview
  • Introduction to AWS Elastic Services and the concept of auto-scaling cloud resources
  • Review of the AWS networking architecture
  • Review of the AWS “Shared Security Model”
  • The security challenges and responsibilities placed on AWS users
  • The Cisco suite of security services to meet AWS security challenges
  • Cisco ASAv
  • Cisco CSR 1000V
  • Cisco Tetration
  • AWS Services Overview
  • AWS service categories
  • Compute
  • Storage
  • Networking
  • Other AWS Service Categories
  • Using the AWS GUI Console
  • Provisioning a VM with the AWS EC2 wizard
  • Configuring the AWS networking environment with a VPC wizard
  • Using the AWS CLI
  • Viewing AWS CLI output in tabular form or in JSON
  • Managing a AWS EC2 instance with the CLI
  • Extracting AWS networking information with the CLI
  • Review of AWS Programmability using the Python BOTO3 SDK
  • Enhancing an AWS deployment with Cisco products
  • AWS Design Considerations
  • How to avoid being locked into an AWS environment
  • Deploy AWS application workloads for cloud mobility with Cisco CloudCenter
  • Be prepared to meet the security challenges and responsibilities of deploying workloads in an AWS environment with the Cisco ASAv and Cisco CSR 1000v.
  • Comparing a Cisco Powered Private Cloud Deployment with an AWS Public Cloud Deployment

Lesson 3: Deploying the Cisco CSR 1000V in AWS

  • Cisco CSR 1000V Overview
  • Router features
  • Technology Packages
  • Licensing Structure with AWS
  • Cisco CSR 1000V capabilities
  • provide enhanced routing features in an AWS environment
  • securely connect AWS Virtual Private Clouds
  • provide secure private cloud to AWS connections
  • provide secure branch office to AWS connections
  • Exploring the multiple Cisco CSR 1000V management interfaces
  • Cisco CSR 1000V CLI
  • Cisco CSR 1000V IOS-XE programmability features
  • NETCONF
  • RESTCONF
  • Installing a Cisco CSR 1000V in AWS
  • Using the Cisco CSR 1000V as a AWS VPC Gateway
  • Configuring DMVPN with the Cisco CSR 1000V to connect enterprise sites with AWS
  • Connect Enterprise Data Centers and Private Clouds to AWS
  • Connect Enterprise Offices to AWS
  • Configuring IPSec on Cisco CSR 1000V DMVPN tunnels
  • Using the Cisco CSR 1000V to establish AWS inter-VPC VPN Tunnels
  • Using the Cisco CSR 1000V to create redundant connections to AWS​

Lesson 4: Deploying the Cisco ASAv in AWS

  • Cisco ASAv Overview
  • Cisco ASAv features
  • Cisco ASAv deployment options.
  • Cisco ASAv Licensing Structure
  • Comparing roles of an Cisco ASAv and a Cisco CSR 1000V
  • Cisco ASAv capabilities
  • Connection Table & Local Host Table
  • Interface Access Rules / ACLs
  • Network Address Translation (NAT) operations
  • Cisco ASA management interfaces
  • Managing the Cisco ASAv using the CLI
  • Managing the Cisco ASAv using the GUI (ASDM)
  • Managing the Cisco ASAv using the REST-ful API
  • Installing the Cisco ASAv in AWS
  • Installing the Cisco ASAv in AWS
  • Configuring Interface Access Rules / ACLs
  • Configuring Network Address Translation (NAT)
  • Managing the Cisco ASAv
  • Managing Cisco ASAv with Cisco FireSIGHT Management Center

Lesson 5: Deploying Cisco CloudCenter in AWS

  • Cisco CloudCenter Overview
  • Cisco CloudCenter Components
  • Cisco CloudCenter Manager (CCM)
  • Cisco CloudCenter Orchestrator (CCO)
  • Advanced Message Queuing Protocol (AMQP)
  • Management Agents
  • Exploring Cisco CloudCenter User Interfaces
  • GUI
  • CLI
  • API (REST/JSON)
  • Installing Cisco CloudCenter
  • Cisco CloudCenter Configuration Defaults
  • Default number of Cisco CloudCenter templates
  • Default Cisco CloudCenter user accounts
  • Supported Public Clouds (emphasis on AWS)
  • Deploying an Application Cisco CloudCenter
  • Create an Application Profile: Model, Deploy and Manage
  • Using Cisco CloudCenter Templates
  • Migrating an application workload with Cisco CloudCenter from AWS
  • Cisco CloudCenter advanced features: Benchmarking and Scaling Features

Lesson 6: Deploying Cisco Tetration in AWS

  • Cisco Tetration Overview
  • Cisco Tetration Features and Benefits
  • Cisco Tetration Analytics Platform Architecture
  • Functional Layers
  • Data Collection Layer
  • Analytics Layer
  • Enforcement Layer
  • Visualization Layer
  • Cisco Tetration Hardware and Software Sensors
  • Supported Operating Systems for Full-Visibility
  • Supported Operating Systems for Enforcement
  • Supported Operating Systems for Universal Software Sensors
  • Hardware Sensor Supported Platform
  • Cisco Tetration Analytics Use Cases
  • Application visibility and insight into application component communication
  • Automated whitelist policy recommendations
  • Policy enforcement that enables application segmentation
  • Policy impact analysis and compliance
  • Complete flow visualization, exploration, and forensics
  • Cisco Tetration Licensing and Deployment Models
  • Base licensing
  • Add-on license for policy enforcement and application segmentation
  • Cisco Tetration Analytics Platform Large Form Factor
  • Cisco Tetration-M (Small Form Factor)
  • Cisco Tetration Cloud (Amazon Web Service [AWS] Public Cloud) on Cloud

Labs

  • Lab Exercise 2-1: Lab Access and the AWS GUI
  • Lab Exercise 2-2: Launch a CENTOS VM as an AWS EC2 Instance
  • Lab Exercise 2-3: The AWS CLI
  • Lab Exercise 2-4: The AWS API Interface with Python BOTO3
  • Lab Exercise 3-1: Installation and Basic Setup of Cisco CSR 1000V
  • Lab Exercise 3-2: Configuring a DMVPN Tunnel Using the Cisco CSR 1000V
  • Lab Exercise 3-3: Managing the CSR 1000V using a REST-ful API
  • Lab Exercise 4-1: Installation and Basic Setup of Cisco ASAv
  • Lab Exercise 4-2: Configuring Cisco ASAv for Stateful Packet Inspection and NAT
  • Lab Exercise 4-3: Managing the Cisco ASAv using a REST-ful API
  • Lab Exercise 5-1: Installing and Configuring Cisco CloudCenter in AWS
  • Lab Exercise 5-2: Deploy an Application to AWS

When does class start/end?

Classes begin promptly at 9:00 am, and typically end at 5:00 pm.

Does the course schedule include a Lunchbreak?

Lunch is normally an hour long and begins at noon. Coffee, tea, hot chocolate and juice are available all day in the kitchen. Fruit, muffins and bagels are served each morning. There are numerous restaurants near each of our centers, and some popular ones are indicated on the Area Map in the Student Welcome Handbooks - these can be picked up in the lobby or requested from one of our ExitCertified staff.

How can someone reach me during class?

If someone should need to contact you while you are in class, please have them call the center telephone number and leave a message with the receptionist.

What languages are used to deliver training?

Most courses are conducted in English, unless otherwise specified. Some courses will have the word "FRENCH" marked in red beside the scheduled date(s) indicating the language of instruction.

What does GTR stand for?

GTR stands for Guaranteed to Run; if you see a course with this status, it means this event is confirmed to run. View our GTR page to see our full list of Guaranteed to Run courses.

Does ExitCertified deliver group training?

Yes, we provide training for groups, individuals and private on sites. View our group training page for more information.

Does ExitCertified deliver group training?

Yes, we provide training for groups, individuals, and private on sites. View our group training page for more information.

I am overall very impressed with ExitCertified/Tech Data regarding the Spring Core class outline and iMVP delivery format.

This is a great way to learn online. Courses are well structured and clearly explained with very dedicated staff.

ExitCertified is a great way to gain hands-on experience through their virtual learning environment.

J`aime l´environnement, la façon dont les labs sont organises. Sauf que je ne peux pas faire de click droit sur ces pages. Pour les labs çà aurait été utile.

This is the first time I have taken course on ExitCertified. It's pretty good and it's very easy to learn and the layout is nice. The labwork is also presented pretty well.

0 options available

There are currently no scheduled dates for this course. If you are interested in this course, request a course date with the links above. We can also contact you when the course is scheduled in your area.

Contact Us 1-800-803-3948
Contact Us Live Chat
FAQ Get immediate answers to our most frequently asked qestions. View FAQs arrow_forward