Designing Cisco Network Service Architectures (ARCH v2.1)

Request a Quote for this class

About this Course

The Designing Cisco Network Service Architectures (ARCH) v2.1 course is a five-day instructor-led course. The aim of the course is to enable learners to perform the conceptual, intermediate, and detailed design of a network infrastructure that supports desired network solutions over intelligent network services, in order to achieve effective performance, scalability, and availability. This course enables learners, by applying solid Cisco network solution models and recommended design practices, to provide viable, stable enterprise internetworking solutions.

The course presents concepts and examples that are necessary to design converged enterprise networks. Advanced network infrastructure technologies, such as virtual private networks (VPNs) and other security solutions, are also covered.

Audience Profile

The primary audience for this course is as follows:

  • Individuals seeking the Cisco CCDP certification and those working toward the Cisco CCDE certification

The secondary audience for this course is as follows:

  • Presales and postsales network engineers that are involved in network design, planning, and implementation
  • Network administrators and designers that are responsible for designing and implementing the enterprise network
  • Cisco CCDA, CCDP, and CCDE candidates

At Course Completion

Upon completing this course, the student will be able to meet these overall objectives:

  • Introduce the Cisco Network Architectures for the Enterprise and explain how this concept addresses enterprise network needs for performance, scalability, and availability
  • Describe how the Cisco Network Architectures for the Enterprise can be used as a framework for designing enterprise networks
  • Create conceptual, intermediate, and detailed enterprise campus network designs
  • Create conceptual, intermediate, and detailed enterprise data center designs
  • Create conceptual, intermediate, and detailed enterprise edge and remote infrastructure designs
  • Create conceptual, intermediate, and detailed network service designs for security considerations
  • Create conceptual, intermediate, and detailed VPN designs


Before taking the ARCH v2.1 course, learners should be familiar with internetworking technologies, Cisco products, and Cisco IOS features. To gain the prerequisite skills and knowledge, Cisco strongly recommends knowledge of Cisco CCNA, Cisco CCDA, Implementing Cisco IP Routing (ROUTE), and Implementing Cisco Switched Networks (SWITCH) content:

  • The recommended courses for CCNA are the Interconnecting Cisco Network Devices Part 1 (ICND1) and Interconnecting Cisco Network Devices Part 2 (ICND2) courses.
  • The recommended course for CCDA is Designing for Cisco Internetwork Solutions (DESGN).
  • The recommended course for the ROUTE exam is Implementing Cisco IP Routing (ROUTE).
  • The recommended course for the SWITCH exam is Implementing Cisco IP Switched Networks (SWITCH).




Course Outline

Module 1: Cisco Network Architectures for the Enterprise

Lesson 1: Review of Network Architectures for the Enterprise

  • Hierarchical Model
  • Enterprise Network Design for Cisco Architectures
  • Service and Application Integration
  • Modularity in Cisco Network Architectures for the Enterprise

Lesson 2: Reviewing the Cisco PPDIOO Approach

  • PPDIOO Network Life-Cycle Approach
  • Using the Design Methodology Under PPDIOO

Module 2: Enterprise Campus Network Design

Lesson 1: High Availability in the Enterprise Campus

  • Enterprise Campus Infrastructure Review
  • High Availability Considerations

Lesson 2: Layer 2 Design Recommendations

  • Recommended Practices for Spanning-Tree Configuration
  • Recommended Practices for STP Hardening
  • Recommended Practices for Trunk Configuration
  • Recommended Practices for UDLD Configuration
  • Recommended Practices for EtherChannel
  • Supporting Virtual Switching Systems Designs

Lesson 3: Layer 3 Design Recommendations

  • Managing Oversubscription and Bandwidth
  • Link Load Balancing
  • Routing Protocol Design
  • First-Hop Redundancy

Lesson 4: Designing the Layer 2-to-Layer 3 Boundary

  • Layer 2-to-Layer 3 Boundary Design Models
  • Potential Design Issues

Lesson 5: Describing Enterprise Network Virtualization Technologies

  • Describing Network Virtualization
  • Describing Device Virtualization
  • Describing Server Virtualization

Lesson 6: Infrastructure Services Considerations

  • IP Telephony Considerations
  • Video Considerations
  • QoS Considerations

Module 3: Advanced Addressing and Routing Design

Lesson 1: Advanced Addressing Design

  • IP Address Planning as a Foundation
  • Applications of Summarizable Addressing
  • Design Considerations for IPv6 in Campus Networks

Lesson 2: Advanced Routing Design

  • Route Summarization and Default Routing
  • Route Filtering in the Network Design
  • Designing Redistribution

Lesson 3: Scalable EIGRP Design

  • Scaling EIGRP Designs
  • EIGRP with Multiple Autonomous Systems

Lesson 4: Scalable OSPF Design

  • Factors Influencing OSPF Scalability
  • Fast Convergence in OSPF

Lesson 5: Scalable BGP Design

  • Scaling IBGP Designs
  • Scaling IBGP with BGP Route Reflectors
  • Scaling IBGP with BGP Confederations

Module 4: Advanced WAN Services Design Considerations

Lesson 1: Optical Technologies for WANs

  • Advanced WAN Service Layers
  • Overview of SONET and SDH
  • WDM Overview

Lesson 2: Using Metro Ethernet, VPLS, and MPLS VPN Technologies

  • Metro Ethernet Overview
  • VPLS Overview
  • MPLS VPN Overview

Lesson 3: Advanced WAN Service Implementations

  • Advanced WAN Service Selection
  • SLA Overview
  • Application Performance Across the WAN
  • Cisco PfR Overview

Module 5: Enterprise Data Center Design

Lesson 1: Core and Aggregation Layer Design

  • Data Center Architecture Overview
  • Data Center Core Layer Design
  • Aggregation Layer Design
  • Using the Cisco Nexus 7000 Series in the Core and Aggregation Layer

Lesson 2: Access Layer Design

  • Overview of the Data Center Access Layer
  • Layer 2 Looped Designs
  • Layer 2 Loop-Free Designs
  • Layer 2 Flex Link Designs
  • Layer 3 Access Layer Designs
  • Blade Server Overview
  • Cisco Nexus Switch Family in the Access Layer

Lesson 3: Scaling the Data Center Architecture

  • End-of-Row vs. Top-of-Rack Designs
  • Scaling Bandwidth and Uplink Density

Lesson 4: Spanning-Tree Sizing and High Availability

  • STP Scalability
  • High Availability in the Data Center

Module 6: E-Commerce Module Design

Lesson 1: Common Component Designs for the E-Commerce Module

  • Common Firewall Designs for E-Commerce
  • Common Server Load Balancer Designs for E-Commerce
  • Common Topology Designs for E-Commerce

Lesson 2: Integrated E-Commerce Designs

  • Base E-Commerce Module Design
  • Design with Two Firewall Layers
  • One-Armed Design with Two Firewall Layers
  • One-Armed SLB Design with Firewall Contexts

Module 7: SAN Design Considerations

Lesson 1: Identifying SAN Components and Technologies

  • SAN Overview and Components
  • Storage Topologies
  • SAN Technologies

Lesson 2: SAN and SAN Extension Design

  • SAN Design Factors
  • SAN Extension

Lesson 3: Integrated Fabric Designs Using Cisco Nexus Technology

  • Unified Fabric Technologies
  • Unified Fabric Design Considerations

Module 8: Security Services Design

Lesson 1: Firewall Design Considerations

  • Firewall Modes
  • Zone-Based Policy Firewall
  • Virtual Firewall Overview
  • Active-Active Firewall Topology
  • Asymmetric Routing with Firewalls
  • Performance Scaling with Multiple Cisco FWSM Devices

Lesson 2: Network Admission Control Design

  • Network Security with Access Control
  • Cisco NAC Appliance Fundamentals
  • Cisco NAS Deployment Options
  • Cisco NAC Appliance Designs

Lesson 3: Intrusion Detection and Prevention Designs

  • IDS and IPS Overview
  • IDS and IPS Deployment Considerations
  • IDS and IPS Monitoring and Management

Module 9: IPsec and SSL VPN Design

Lesson 1: Remote Access VPN Design

  • Remote Access VPN Overview
  • SSL VPN Overview
  • Remote Access VPN Design Considerations

Lesson 2: Site-to-Site VPN Design

  • Site-to-Site VPN Applications
  • Site-to-Site VPN Design Considerations

Lesson 3: IPsec VPN Technologies

  • IPsec VPN Overview
  • Cisco Easy VPN
  • GRE over IPsec
  • Dynamic Multipoint VPNs
  • VTI Overview
  • GET VPN Overview

Lesson 4: VPN Management and Scaling

  • Recommendations for Managing VPNs
  • Considerations for Scaling VPNs

Module 10: IP Multicast Design

Lesson 1: IP Multicast Overview

  • Overview of IP Multicast
  • IP Multicast Group Membership
  • Multicast Routing
  • Multicast Forwarding at Layer 2

Lesson 2: PIM and RP Considerations

  • PIM Deployment Models
  • RP Considerations

Lesson 3: IP Multicast Security

  • Security Considerations for IP Multicast
  • Multicast Access Control
  • Multicast over IPsec VPNs

Module 11: Network Management Capabilities with Cisco IOS Software

Lesson 1: Embedded Management Capabilities

  • Embedded Management Rationale
  • Syslog Considerations

Lesson 2: NetFlow Considerations

  • NetFlow Technology Overview
  • Definition of a Flow
  • Flow Record Creation
  • NetFlow Cache Management
  • NetFlow Export Versions
  • NetFlow Deployment

Lesson 3: NBAR Considerations

  • NBAR Overview
  • NBAR and Cisco AutoQoS

Lesson 4: IP SLA Considerations

  • IP SLA Technology Overview
  • Deploying IP SLA Measurements
  • Network Management Applications Using IP SLA Measurements