cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Cisco EN Validated Design and Deployment Guides

7617
Views
10
Helpful
3
Comments
image.png Announcement! SD-WAN Controller Certificates and Whitelist Authorization File Guide Download Here!

header.jpg

 

What are EN Validated Design & Deployment Guides?

 

SD-Access

SD-WAN

Security, Policy & Access

Infrastructure

 

Design Guides

Architecture-based guidance to design a technical solution.  Target audience are Network & Security Architects, Sr. Network Engineering and Security Analysts. Design guides provide Solution Recommendations and Design Considerations.  These guides are NOT Release-based and do not containScreen Shots and/or Configurations

 

Deployment Guides

Prescriptive, technical step-by-step guidance to solve a Use Case required in your network. Target Audience are Network & Security Engineering and Operations.  Deployment guides provide an easy template (DEFINE, DESIGN, DEPLOY & OPERATE) to provide step-by-step validated guidance complete with screenshots and configuration

 

_____________________________________________________________________________________________

 

SD-Access

 

Design Guides

 

Software-Defined Access - Solution Design Guide

First Published August 2018 / Last Reviewed October 2019

In this guide, you will learn deployment models, approaches and considerations along with recommended design practices for SDA fabric sites ranging from very small to very large in size that can be single independent sites or part of a larger, multi-site deployment

Software-Defined Access Segmentation Design Guide

First Published August 2018 / Last Reviewed April 2019

In this design guide, you will find background information around the need for segmentation in today’s networks to reduce the network attack surface. This document briefly looks at the history of segmentation and provides guidance around the use of macro-segmentation (VRFs/VNs) and/or micro-segmentation (SGTs) and how to determine which strategy is most applicable in different scenarios. Through several simple use cases in verticals such as education, healthcare, retail, manufacturing, and utilities, the reader will see how a combination of micro and macro-segmentation can be implemented to group network devices while minimizing the attack surface

Deployment Guides

Software-Defined Access & Cisco DNA Center Management Infrastructure Deployment Guide

First Published October 2019 

In this guide, you will learn how to install and bootstrap the management infrastructure for the Cisco Digital Network Architecture which includes Cisco DNA Center, ISE, and the WLC.

Catalyst 9800 Non-Fabric Deployment using Cisco DNA Center Deployment Guide

First Published October 2019

In this guide, you will learn how to deploy a wireless local area network (WLAN) within a campus network, using Catalyst 9800 Series WLAN controllers (WLCs) with access points (APs) in centralized (local mode) operation, using Cisco DNA Center

 

Catalyst 9800 Non-Fabric FlexConnect Deployment using Cisco DNA Center

First Published October 2019

This guide focuses on how to deploy a wireless local area network (WLAN) within a branch network, using Catalyst 9800 Series WLAN controllers (WLCs) with access points (APs) in FlexConnect mode operation, using Cisco DNA Center.

 

Network Device On-boarding Using Cisco DNA Center Deployment Guide

First Published  October 2019

In this guide, you will learn how to automate Day-0 on-boarding of a single switch at branch/campus with Cisco DNA Center to reduce the overall cost and time by leveraging built-in PnP functionality and an on-boarding template.

 

Campus Software Image Management Using Cisco DNA Center Deployment Guide

First Published August 2018 / Last Reviewed October 2019

In this guide, you will learn how to leverage Cisco DNA Center to manage software images according to image type and version. You can view, import, and delete software images in the repository as well as standardize images per device family type by marking them as golden. The software images can then be pushed to target devices in your network for day 0-N use cases.

Enabling Cisco DNA Assurance on Existing Network Deployment Guide

First Published October 2019

In this guide, you will learn how to leverage Cisco DNA Center to deploy Assurance in an existing brownfield network. This document covers both network and clients assurance.

Cisco DNA Application Assurance Deployment Guide

First Published  October 2019

In this guide, you will learn how to deploy Cisco DNA Application Assurance within an enterprise network; and how to monitor and troubleshoot applications and their performance when the application traffic crosses the WAN, through Cisco DNA Application Assurance.

Software-Defined Access Medium and Large Site Fabric Provisioning Deployment Guide

First Published August 2018 / Last Reviewed October 2019

In this guide you will learn how to deploy medium and large fabric sites consisting of a multi-tier Hierarchical network model with dedicated shared services block and physical WLCs.

Software-Defined Access for Distributed Campus Deployment Guide

First Published May 2019  / Last Reviewed October 2019

This guide will show you how to deploy unified and consistent policy across a metro area SD-Access deployment consisting of multiple, independent fabric sites.  Both IP-based transits with fusion routers and SDA transits are discussed and deployed along with methods to provide Internet access to the deployment.  Finally, important considerations and recommended practices for the deployment of the key architecture component–transit control plane nodes–are discussed and deployed.  

 

Encrypted Traffic Analytics Non-Fabric Deployment Guide

First Published October 2019

This document provides guidance on deploying ETA and NaaS configuration to routers and switches without the assistance of Cisco DNA Center in a Non-Fabric environment.

 

 

Encrypted Traffic Analytics in Cisco SD-Access Fabrics Deployment Guide

First Published October 2019

In this guide, you will learn how to configure ETA using Cisco DNA Center’s SSA application which allows for simple and automated deployment in a SD-Access Fabric.

 

_____________________________________________________________________________________________

 

SD-WAN

 

Design Guides

SD-WAN Design Guide

First Published October 2018 / Last Reviewed October 2019

In this guide, you will learn about the architecture and different aspects of the Cisco SD-WAN solution. A high-level discussion of components, on-boarding of WAN devices, controller connections, configuration templates, and policies is covered, in addition to deployment planning considerations.

 

Deployment Guides

SD-WAN Controller Certificates and Whitelist Authorization File Deployment Guide

First Published October 2019

In this guide, you will learn about the different certificate options available on the Cisco SD-WAN controller complex and how to deploy them, along with the whitelist authorization file. The guide also describes how to renew certificates, how to install certificates manually, and how to migrate to Cisco PKI certificates.

SD-WAN End-to-End Deployment Guide

First Published October 2018 / Last Reviewed April 2019

In this guide, you will learn how to deploy the Cisco SD-WAN solution from end to end. You will learn how to configure and deploy feature and device templates, how to onboard WAN Edge devices, and how to configure localized and centralized policies, QoS, and application-aware routing.

SD-WAN: Enabling Direct Internet Access Deployment Guide

First Published July 2019 

In this guide, you will learn to design and deploy direct internet access on both vEdge and SD-WAN XE platforms. The guide includes design considerations, configuration and troubleshooting steps to be adopted while deploying features such as NAT DIA route and Centralized Data Policy within your branch WAN Edge device to establish local internet exit.

SD-WAN: Enabling Cisco Cloud onramp for IaaS with AWS Deployment Guide

First Published January  2019 / Last Reviewed July 2019

In this guide, you will learn how to deploy secure network connectivity from private network campus and branch locations to one or more AWS VPCs using Cisco SD-WAN Cloud onRamp for IaaS.

SD-WAN: Cloud onramp for SaaS Deployment Guide

First Published January 2019 / Last Reviewed July 2019

In this guide, you will learn about how Cisco SD-WAN Cloud onRamp for SaaS operates and how to deploy it successfully.

 

_____________________________________________________________________________________________

Security, Policy & Access

Design Guides

Encrypted Traffic Analytics Design Guide

First Published October 2017 / Last Reviewed October 2019

In this guide, you will read about Encrypted Threat Analytics (ETA) design considerations for deploying this technology in either Cisco SD-Access fabrics or in traditional campus LANs or WANs. This document looks in depth at where and how to deploy this technology in conjunction with Flexible NetFlow on your network infrastructure to obtain the best results.

Deployment Guides

Encrypted Traffic Analytics Non-Fabric Deployment Guide

First Published October 2019

This document provides guidance on deploying ETA and NaaS configuration to routers and switches without the assistance of Cisco DNA Center in a Non-Fabric environment.

Encrypted Traffic Analytics in Cisco SD-Access Fabrics Deployment Guide

First Published August 2018 / Last Reviewed October 2019

In this guide, you will learn how to configure ETA using Cisco DNA Center’s SSA application which allows for simple and automated deployment in a SD-Access Fabric.

 

_____________________________________________________________________________________________

 

Campus / Branch Infrastructure

 

Design Guides

Campus LAN and Wireless LAN Design Guide

First Published August 2018 / Last Reviewed January 2019

In this guide, you will learn how to design Campus LAN and Wireless LAN for High-density, Medium-Density and Small Site campuses.  Design fundamentals for each layer in a campus (Access, Distribution and Core) for wired are discussed along with best practices.  Campus WLAN design fundamentals such as controllers, deployment models and key features are discussed along with a best practices check list.  In addition, management, ISE and QoS guidance is given.

Deployment Guides

Campus LAN L2 Access with Simplified Distribution Deployment Guide

First Published October 2015 / Last Reviewed January 2019

In this guide, guidance is given around Layer 2 Access layer wiring closets of varying port sizes along with platform configurations for this layer.  Simplified Layer 2 distribution layer deployment guidance along with platform configurations are discussed.

Comments
Cisco Employee

If you have any feedback or question regarding any of the above guides, please kindly leave your comment here, and we will get back to you as soon as possible.

Cisco Employee

Somebody please correct the SWIM deployment guide for DNAC here (top of page 6):

https://www.cisco.com/c/dam/en/us/td/docs/solutions/CVD/Campus/dnac-swim-deployment-guide-2019oct.pdf

It suggests that ISE has to be installed before doing SWIM.  I'm 99.999% sure that SWIM can be done without DNAC-ISE integration.  Please correct me if I'm wrong. 

Cisco Employee

@pmerlitt Thanks for your feedback. We will review the doc and fix it asap.

CreatePlease to create content
Content for Community-Ad
August's Community Spotlight Awards