CCNP Enterprise Course

CCNP Enterprise – Advanced Networking Certification

Cisco Networking Enterprise Solutions

CCNP Enterprise validates your skills in implementing, troubleshooting, and securing enterprise networks. The course covers core routing, switching, wireless, SD-WAN, and automation technologies required for enterprise-level networking.

  • Core Networking (350-401 ENCOR)
  • Advanced Routing & Services (ENARSI)
  • SD-WAN & Wireless Implementation
  • Enterprise Design & Automation
Enroll Now

CCNP Enterprise – Detailed Course Modules

  • Architecture: Enterprise design, high availability, cloud vs on-prem.
  • Virtualization: VRF, GRE/IPsec, VXLAN, LISP.
  • Infrastructure: Switching (RSTP/MST), Routing (OSPF, BGP), Wireless (RF, AP modes).
  • IP Services: NAT, NTP, HSRP, Multicast.
  • Security: AAA, ACLs, 802.1X, TrustSec, MACsec.
  • Automation: Python, REST APIs, NETCONF/RESTCONF, EEM, Ansible.

  • EIGRP & OSPF advanced concepts, redistribution, VRF-Lite.
  • BGP policies, route reflectors, path selection.
  • MPLS, DMVPN, IPsec, GRE tunnels.
  • Infrastructure Security & Services: SNMP, DHCP, IP SLA, NetFlow.

  • Layer 3 Technologies: AD, route-maps, loop prevention, redistribution, summarization, PBR, VRF-Lite, BFD.
  • EIGRP (v4/v6): Neighbors/auth, metrics, stubs, LFAs, equal/unequal load balancing, SIA.
  • OSPF (v2/v3): Neighbors/auth, network/area/router types, p2p/nbma, virtual links, path preference.
  • BGP (i/eBGP): Neighbors/auth, best-path attributes, route reflectors, policy (in/out), multipath.
  • VPN Technologies: MPLS ops & L3VPN overview, DMVPN (GRE/mGRE, NHRP, IPsec, spoke-to-spoke).
  • Infrastructure Security: AAA (TACACS+/RADIUS/local), ACLs (IPv4/IPv6), uRPF, CoPP, IPv6 FHS.
  • Infrastructure Services: Device mgmt (VTY/SSH/HTTP[S]/SCP), SNMPv2c/v3, logging/syslog/debugs, DHCP (client/server/relay), IP SLA, NetFlow/FNF, DNA Center assurance.

  • Architecture & Components: vBond (orchestration), vManage (management), vSmart/OMP (control), vEdge/cEdge (data), TLOC/IPsec/vRoute/BFD.
  • Controller Deployment: Cloud/on-prem (KVM/hypervisor), install, scale/HA, certificates/whitelisting, control-plane troubleshooting.
  • WAN Edge Deployment: Onboarding, ZTP/PNP, hub/regional designs, underlay/overlay, TLOC-extension, OMP/TLOCs, feature templates (VRRP/OSPF/BGP).
  • Policies: Control/data policies, VPN segmentation & topologies, application-aware routing, DIA.
  • Security & QoS: Service insertion, app-aware firewall, scheduling/queuing/shaping/policing.
  • Operations: vManage monitoring/reporting, REST API monitoring, software upgrades.

  • Advanced Addressing & Routing: Structured IPv4/IPv6 plans, scalable designs for IS-IS/EIGRP/OSPF/BGP (AFs, filtering, attributes, RRs, load sharing), IPv6 migration (tunnels, dual-stack, NAT64).
  • Enterprise Campus Design: HA (FHRP, GR, BFD), L2 (STP scale, fast convergence, loop-free), PoE/WoL, L3 (convergence, load share, summarization/filtering, VRFs, redistribution).
  • WAN Design: L2VPN, MPLS L3VPN, MetroE, DWDM, 4G/5G, DMVPN/IPsec/GRE/GETVPN; single/multihomed, backup/failover.
  • SD-Access & SD-WAN Design: Planes, onboarding, HA, overlay/LAN design, scalability, security, QoS/multicast over fabric.
  • Network Services: QoS strategies (DiffServ/IntServ), classification/marking, shaping/policing/queuing, mgmt networks, multicast (RPF/RP, SSM, BiDir, MSDP).
  • Automation & Telemetry: YANG model selection (IETF/OpenConfig/Cisco), NETCONF vs RESTCONF, dial-in/out telemetry (periodic/on-change).

  • Site Surveys: Requirements/constraints, material attenuation, L1 analysis, predictive, pre/post deployment, planning tools (Ekahau/AirMagnet etc.).
  • Infrastructure: Physical (power/cabling/ports/mount/ground), logical (WLC/AP licensing), RRM/RF profiles/RxSOP.
  • Use Cases: Data, voice/video, location/hyperlocation; high-density campus/venues.
  • Bridging/Mesh: Modes, Ethernet bridging, WGB & roaming.
  • Mobility & HA: Mobility groups/optimization, tunneling, controller HA (LAG/SSO/anchor priority), AP HA (prioritization/fallback).

  • FlexConnect: Modes/switching, groups/roaming, split tunneling, VLAN central switching, Flex ACL, smart AP upgrades, OfficeExtend.
  • QoS: Wired-to-wireless mappings, client QoS, AVC/Fastlane.
  • Multicast: Components, WLAN impact, mDNS & Multicast Direct.
  • Location Services: MSE/CMX deploy, client/rogue/interferer tracking, analytics, presence, custom guest portals, Hyperlocation & HA, wIPS.
  • Security & Monitoring: Client profiling (WLC/ISE), BYOD/guest (CWA/LWA), 802.1X & AAA, IBN (VLAN/QoS/ACL), DNA Center/PI reporting, interferer/rogue mgmt, device hardening (RADIUS/TACACS+, CPU ACLs, AP auth).

  • Foundations: Git ops, API styles (REST/RPC), sync/async patterns, Python (types/functions/classes/flow), venvs, config tools (Ansible/Puppet).
  • APIs & Models: JSON/XML from YANG, module trees, OpenConfig/IETF/Cisco YANG, NETCONF vs RESTCONF.
  • Device Programmability: Netmiko, ncclient/NETCONF, RESTCONF with Python requests, Ansible for IOS XE, MDT subscriptions (CLI/NETCONF/RESTCONF), periodic vs on-change, Day-0 (iPXE/PNP/ZTP).
  • Cisco DNA Center: Features (Assurance/Intent/Events), outbound webhooks, Intent/Command Runner/Site/Discovery/Template APIs, troubleshooting automation flows.
  • SD-WAN vManage: Cert mgmt, Device Inventory, Admin, Config & Monitoring APIs; Python automation & troubleshooting.
  • Meraki: Location Scanning, MV Sense, External Captive Portal, Webhooks; create/configure networks & alerting via APIs.
eduact