Tuesday, 7 September 2021

How the network team’s bold steps + agile mindset launched a cloud-ready backbone

Cisco Prep, Cisco Tutorial and Material, Cisco Career, Cisco Learning, Cisco Guides, Cisco Preparation

In 2014, we realized our world in network engineering was changing rapidly. Like many IT organizations, we saw a shift to the internet and cloud services in our network traffic. Over that year alone, we observed a 200% increase in peak internet and cloud traffic. That’s when we knew our network needed to change to accommodate the evolution of conducting business at Cisco.

Our network was designed and evolved with the bulk of our enterprise traffic originating from and destined for resources within Cisco’s “four walls.” The growing demand for traffic to cloud providers and SaaS services meant a quick pivot was necessary. As a result, our initial step was to build Cisco IT CloudPorts in strategic carrier-neutral facilities, which allowed us to quickly secure connections between the Cisco enterprise and the outside world.

Our CloudPort hubs provide high availability and flexibility to turn up new connectivity quickly, but our private backbone connecting the CloudPorts needed enhancement. With more and more business reliance on public cloud and SaaS workloads, the resiliency and performance required for CloudPort connections grew. We needed the capability to quickly respond to network issues and use our backbone to route traffic from one region to another.

Cisco Prep, Cisco Tutorial and Material, Cisco Career, Cisco Learning, Cisco Guides, Cisco Preparation

Our CloudPorts are now interconnected with a global cloud-ready backbone that allows seamless routing of connectivity in case of outages or performance issues within a region. This new backbone is built on top-of-line routers like the Cisco ASR9k and Cisco NCS5k series that are optimized for internet route table scale and better programmability of Border Gateway Protocol (BGP) policies.

That’s where we are today. But how did we get here?

The genesis: The birth of a strategy


During a team off-site — sitting in a small restaurant near our offices in North Carolina — our group discussed how our core network design was not sustainable. We needed a big change. While the approaches and technologies weren’t anything new, the scale and breadth of such a change was significant. How would we rearchitect and deploy a change of this scale, especially given the size and complexity of Cisco’s business? And a common question — how would we deploy with minimal disruption?

Over dessert, we began to sketch and brainstorm and sketch some more — literally on the back of a cocktail napkin. (We’ve all done that, right?) We concluded that we needed to stop thinking of the traditional enterprise where communication patterns were between users and our private cloud. Instead, we needed to design a new architecture that would deliver optimized and resilient connectivity between on-premise resources and users, and the outside world.

Our path to a solution began.

The value in the process


Over the next three years, our team looked at how to address the issue. We started by examining the existing infrastructure and making small, incremental changes to address immediate performance concerns. While we saw minor improvements, they were isolated, not necessarily repeatable at scale, and would create new complexity down the road. But this exercise provided great insight into the issues and confirmed our belief that we needed a new uniform network architecture.

Team member Oliver Agpalasin shares how our journey began: “We started with a blank canvas and set out to define the ‘future state’ of the network, putting traditional and historical thinking aside. With that architecture defined, we could then start thinking about execution and how to move to the new environment. All while recognizing the value this would bring to Cisco and the quality of experience it could provide to our internal clients.”

Changing the mindset


As an operations organization typically focused on solving day-to-day business issues, we were challenged by our inherent silos and conflicts of interest. To solve this, we adopted an agile mindset and made operations engineers the leaders of the program, freeing them from the constraints of “just keeping the lights on.” We wanted to leverage the team’s deep working knowledge of the network, break down the barriers between design and operations, and gather everyone in the same room in a series of workshops.

“We never questioned the value in the vision,” says team member Alisha Sanchez. “Adopting an agile mindset gave us the opportunity to carve that path independently and allowed us to focus on creating options, test those theories, and make informed decisions based on our findings.”

Insight from one team manager summarizes the real value of this mindset shift. As Steve Sheldon describes it, “Part of the agile methodology for me is that you’re able to make your own work. You are able to decide the best strategy as a team. In an operational role, you don’t always get that option. That’s a big mindset shift.”

Team member Prashant Bhadoria adds: “Along the way, and despite the new challenges that came up, we were always focused on choosing the best options. Having an overarching strategy in place helped us address each issue focused on that overall intent. We’re typically perfectionists, not risk-takers. But with the support of our leadership, we were encouraged to take bold steps.”

Deploying the new network


We understood our most significant challenges to be twofold:

1. Building consensus among our stakeholders
2. Deployment of the new network itself

With a project at this scale, we recognized  significant obstacles which at first appeared insurmountable. But through the program team’s persistence and commitment, we solved them one by one.

“It was not easy to explain the business value to secure the funding and resources,” says Warren Rigney, a team manager. “But our leadership understood the risks and potential impacts of doing nothing.”

Part of the task facing us was to unravel two decades of complexity that could hinder delivery of the new architecture. Through self-written automation and auditing tools, we could visualize and continuously track all required clean-up efforts. As we peeled back the onion, we grew more confident in our ability to succeed.

In the words of team member Touseef Ahmed Gulgundi, “To speed up deployments and avoid risks, we utilized Network Services Orchestrator (NSO) automation to deploy the new backbone and policies. This approach allows us to reduce the deployment time from 12 hours for the first deployment down to less than four hours for the second — an efficiency trend that continued over time.”

Because we were deploying significant changes to Cisco’s core network, a prudent approach was needed, even if it meant small delays to project timelines. We built development and test environments where we could safely validate our changes before deploying at scale in production.

Building and deploying the new backbone was one thing. We also had to make sure that our support teams would understand the new environment. The test and development networks allowed team members to spin up their own virtual instances so they could freely play with the new setup. We invited these teams to shadow us during the implementations and turned over the keys to those confident enough to learn the new setup during deployment. In addition, we did extensive Transfer of Information sessions to make sure everyone in the wider team could support the new solution.

IT is all about the people


In the last one and a half years, the newly formed program team put their shoulders to the wheel, and things really started to happen. The team consisted of a mix of engineers, some wanting to move very aggressively while others preferring a more prudent approach. This mix triggered good conversations (and occasional differences) that ultimately resulted in the right decisions being made. The team also worked tirelessly across time zones, through late evenings, and in meetings while supporting their families during the global pandemic. Behind every corner there was often a new surprise, but the team never gave up and tackled each problem as it came.

The future of our network


This new backbone design laid the groundwork for the future and allowed us to be more agile and deliver new technical capabilities quickly while supporting our business transition and adoption of the cloud. Most importantly, the lessons learned during this program will benefit us as we keep driving innovation into Cisco’s corporate network.

What’s next? Our team is focused on expanding the network’s capabilities, including automating the resiliency of our internet network, extending the resiliency in our connectivity to cloud services, and bolstering our disaster recovery for internet services at scale.

Oh, and what became of the napkin? We still have it. We break it out every time a member of our team says, “It can’t be done!”

Monday, 6 September 2021

Edge Apps in the enterprise

The concept of edge computing has been in use for quite a while now in IoT networks. It makes immense sense for compute to be shifted to the edge in these kind of networks since we can save on costly bandwidth by avoiding unnecessary traffic over the WAN. Sensors that sent data up only when a metric changed Or just when thresholds were breached helped save on precious WAN bandwidth. More importantly this also dramatically reduced the amount of data that had to be processed.

More recently this trend of computing at the edge of the network is being increasingly embraced in the enterprise with several not-so-obvious yet key benefits.

Let’s look at some of these.

Point of deployment

Network monitoring is best done near the point where its performance is perceived. If you’d like to measure how the network is treating its users, its best done at the edge. Hence apps like Cisco ThousandEyes are ideally suited to run in devices like the Catalyst 9300 and 9400s that form the access layer of the network.

Apps that guard the network are best deployed where attacks strike first. An app that simulates a honeypot or one that looks for suspicious rogues is best when deployed where such attacks strike first.

Apps that monitor the OT(Operational Technology) network have to be deployed at the point where the IT and OT networks intersect. The Cisco Cybervision app hence belongs here.

As we see from the above examples, Edge Apps have to be deployed in those parts of the network where they can perform their function the best.

Point of compute

The fact that network bandwidth is abundant in the enterprise may lead us to believe that it does not pay to process information at the edge. Computing at the edge of the network has another not-so-obvious benefit. In reducing the amount of traffic we send up to the controller or data center, we save on precious compute resources at those points in the network where traffic is aggregated like a wireless controller or the management station in the data center. This frees up compute for the other more important functions that these network equipment deliver like scaling to more sessions or ensuring better performance.

Enterprise IoT convergence

Customers had to deploy overlay networks in order to achieve IoT use cases like ESL (Enterprise Shelf Labels) tags or for managing devices over ZigBee or other IoT protocols. With an extensible USB dongle in the Cisco Catalyst range of access points, the same infrastructure deployed for providing WiFi networking services can be used for IoT use cases too. This results in lesser management and operational overheads.

Cisco DNAC Spaces embraces app hosting on edge equipment to support legacy IoT devices that run the not-so-latest protocols.

What’s changing now ?

The coming together of three different complementary technologies from Cisco stables is truly changing the game here.

Apps

Compute at the edge is only useful when we have killer apps that offer business critical functionality. Cisco ThousandEyes which already loved and used by enterprises world over is now available to be run on the Catalyst range of switches. So is Cisco Cybervision  which helps with industrial visibility and security and Cisco Edge Intelligence which helps get IoT data to the right application at the right time.

App hosting capability

Cisco has been working on the app hosting capabilities on the supported range of Catalyst switches and access points to enable several more capabilities that the apps can exploit. Be it greater available bandwidth for operations, the ability to utilize the in-built SSD on the device in-lieu of external storage or even getting access to more privileges as a Docker container running on the switches, apps  on switches can now do so much more.

Cisco Catalyst Access Points support a third party dongle that apps can access and use. This ability is what apps like SoluM and ImagoTag use. Plans are afoot to grant the apps access to many more capabilities on the access points.

Orchestration of apps via Cisco DNA Center

Unlike networking configuration, apps on device could pose a very different challenge to the network administrator. Apps have a life of their own – they need to be configured at start, be monitored while in action, be restarted when in need and be upgraded to fix vulnerabilities or avail new features. Network admins can ill afford to use another tool to this purpose since it would mean that the network inventory needs to be kept in sync on both tools.

Managing apps in enterprise networks require an integrated console that can help manage the network and the apps running across it.

Cisco DNA Center fits this ask to the T with the app hosting capability. Apps can be managed across hundreds or even thousands of devices (switches or access points) with this capability.

The Cisco Thousand Eyes can be installed across on several vantage Catalyst devices with this one workflow.

Cisco Prep, Cisco Learning, Cisco Tutorial and Materials, Cisco Career, Cisco Preparation

Cisco Prep, Cisco Learning, Cisco Tutorial and Materials, Cisco Career, Cisco Preparation

Cisco Prep, Cisco Learning, Cisco Tutorial and Materials, Cisco Career, Cisco Preparation

Apps can be uploaded straight out of DockerHub into Cisco DNAC.

Several Cisco apps like Cisco ThousandEyes are auto uploaded into Cisco DNAC so that you have the latest and greatest version of the app at all times.

Cisco Prep, Cisco Learning, Cisco Tutorial and Materials, Cisco Career, Cisco Preparation

With an architecture designed for high performance at scale operations like app configuration edit or upgrade can be performed on thousands of devices through a single user action.

What’s more, one could even download the app’s console logs right from Cisco DNA Center. This makes collections of logs for troubleshooting extremely easy and intuitive.

Cisco Prep, Cisco Learning, Cisco Tutorial and Materials, Cisco Career, Cisco Preparation

One of the challenges with Cisco devices that support app hosting is that different devices have different capabilities enabling them to support only some apps based on which image they run or what hardware they have. Cisco DNA Center helps customers solves this conundrum by running a bunch of tests on each device and telling them if the device is ready for app hosting as well as what it may be missing.

Cisco Prep, Cisco Learning, Cisco Tutorial and Materials, Cisco Career, Cisco Preparation

Customers could bring their own apps into their network just as easily.

The combination of these three developments brings app hosting in the enterprise to an inflection point as evidenced by the large number of Cisco customers embracing this solution.

Source: cisco.com

Saturday, 4 September 2021

Cisco vAnalytics: enabling an optimal user experience with Microsoft 365

Cisco Prep, Cisco Exam Prep, Cisco Preparation, Cisco Tutorial and Materials, Cisco Career

Applications and cloud connectivity are the lifeblood of any enterprise today. The ability to connect users to applications reliably and securely across the remote workforce, branches, data centers, and multicloud has become a critical success factor for any organization. In a time where employees are working from home or in a hybrid work environment, reliable and secure connectivity to SaaS applications, such as Microsoft 365, is ever more important.

Applications experience poses special challenges for network teams. First and foremost is application performance. For a remote workforce or branch offices, routing user requests to SaaS applications through a centralized data center creates substantial performance impacts that include delays and latencies. Second, application optimization comes to mind. Applications, whether internally hosted or SaaS, require constant prioritization and optimization. For instance, when concurrent traffic accessing Microsoft Word and video conferencing are treated with the same parameters, optimization becomes a critical factor to ensure the quality of experience (QoE). Last, network teams often lack visibility into the performance of SaaS applications. Application issues might manifest as network issues. Service disruptions can lead to endless finger-pointing. The resulting cycles spent pinpointing the source of issues can lead to prolonged service interruptions.

Visibility and insight with network analytics 

As organizations continue to embrace the internet, cloud, and SaaS, network teams are increasingly embracing analytics and visibility capabilities that result in improved application performance, faster troubleshooting, actionable business insights, and remediation. Cisco offers comprehensive analytics solutions for SD-WAN with Cisco ThousandEyes and Cisco vAnalytics.

Cisco SD-WAN is fully integrated with ThousandEyes as a turn-key solution that extends visibility into the internet, cloud, and SaaS applications for actionable insights beyond the traditional corporate network. Network teams can expedite the deployment of ThousandEyes agents from vManage to quickly pinpoint the source of issues, get to a resolution faster, and manage the performance of what matters.

Cisco vAnalytics is a powerful cloud-based analytics engine for aggregation, visualization, and analysis of SD-WAN telemetry.  It is a feature-rich application that provides correlation of application behavior and QoE with the underlying SD-WAN network, translating telemetry data into visualized insights. vAnalytics is seamlessly integrated with vManage for complete management and control of the entire SD-WAN fabric.

Getting the best out of Microsoft 365

Cisco is the first SD-WAN vendor in the industry to deliver informed network routing for Microsoft 365. Leveraging real-time telemetry data from Microsoft 365 and Cisco SD-WAN Cloud OnRamp path probing data, vAnalytics dynamically correlates the baseline network performance of underlying infrastructure with Microsoft 365; proactively providing corrective suggestions when real-time metrics deviate from the operational benchmark.

Cisco Prep, Cisco Exam Prep, Cisco Preparation, Cisco Tutorial and Materials, Cisco Career

This enhanced visibility substantially increases overall control over user experience with Microsoft 365. It enables automation of the edge devices to determine the best performing path for Microsoft 365 applications, such as direct internet access (DIA) policies based on specific predefined service areas. URL categorization provided by Cloud OnRamp also classifies Microsoft 365 applications into three categories based on the application characteristics such as sensitivity to loss, latency, and jitter. Using this classification CloudOnRamp creates granular policies, giving network teams more detailed control over traffic management within the platform. By enabling policy-based parameters for different Microsoft applications, organizations can now prioritize their network traffic more efficiently around their business needs and ensure an optimal application experience.

Source: cisco.com

Friday, 3 September 2021

Cisco Catalyst 9100 series, much more than Wi-Fi connectivity

Cisco Catalyst 9100, Wi-Fi Connectivity, Cisco Exam Prep, Cisco Tutorial and Materials, Cisco Career, Cisco Preparation

Are you one of those people who, when entering a new building (such as a hotel, corporate office, stadium, hospital—literarily any building) the first thing you do is look up to spot the presence of an access point (AP)?

What? You don’t? You don’t know what you are missing!

Yes, I am one of those people. Call it professional deviation, but when entering a building I must check if there is a Wi-Fi signal, where the APs are located, what’s the AP brand, how have the access points been mounted, what type of antennas they us. Sometimes I even take pictures, but don’t tell anyone.

Ok, but even if you are not a human Wi-Fi sentinel like myself, I am quite sure that when you see an access point, you immediately think of a reliable, secure (and yes, hopefully free!) wireless connection. Today it is all about Wi-Fi 6, so you have even greater expectations, right?

I agree with you, the primary role of the AP is to provide reliable coverage and a secure connection, with the bandwidth needed for your devices and applications to work properly.

But what if I told you that there is much more than connectivity to a Cisco Access Point? Cisco has embedded so many cool innovations into the Catalyst Access Point that by the end of this blog, you will look at an access point in a totally different prospective.

When you think about it, the AP can do much more than just offer Wi-Fi connectivity: you have these intelligent network devices sitting in the ceiling  with a privileged view of people and things moving around. The APs are in the perfect spot to capture a lot of useful information beyond the client data packets. For example, getting the location of movable devices.

Cisco Catalyst 9100, Wi-Fi Connectivity, Cisco Exam Prep, Cisco Tutorial and Materials, Cisco Career, Cisco Preparation

The AP can act as a multi-protocol (multi-language) gateway, capable of enabling multiple wireless technologies. It can also open up a lot of interesting use cases in the IoT world, for example simplifying Retail management using integrated remote shelf labeling solutions.

We have built the Catalyst AP with this idea in mind: to make it a multi-function and multi-purpose platform for innovation. We do this first by embedding a dedicated, software programmable radios in the access point. The main purpose of this radio is to grab and analyze RF information so that the system can make intelligent decisions. Cisco brings the benefits of programmable hardware to the edge of the network: being programmable, it allows Cisco to introduce technology innovations without requiring a hardware refresh. For the Catalyst Wi-Fi 6 access points, the built-in programmable radio is called Cisco RF ASIC.

We then combine it with the Cisco IoX framework, bringing the possibility to load a Cisco or 3rd party containerized application directly on to the Catalyst AP in a completely automated manner. This combination of programmable hardware and embedded software capabilities is an industry first and allows Cisco to bring new innovative wireless solutions faster to market.

Cisco Catalyst 9100, Wi-Fi Connectivity, Cisco Exam Prep, Cisco Tutorial and Materials, Cisco Career, Cisco Preparation

Let’s look under the AP hood and understand the benefits of these innovations. The first focus of an Access Point is the Wi-Fi connectivity, so we built a  state-of-the-art Wi-Fi 6 AP with an awesome RF design capable of embedding ten different antennas in a small form factor. It’s actually 25% smaller and lighter than the previous models, allowing for easier mounting and even more pleasant aesthetics:

Cisco Catalyst 9100, Wi-Fi Connectivity, Cisco Exam Prep, Cisco Tutorial and Materials, Cisco Career, Cisco Preparation

But Cisco goes beyond the Wi-Fi standard in multiple ways; first, thanks to a close collaboration with device vendors (Apple, Samsung, and Intel), Cisco has embedded additional functionalities to make sure that these vendor devices have a better experience on a Cisco wireless network. Apple Analytics, Apple FastLane and Fastlane+, Samsung and Intel Analytics are some of the most recent examples of this partnerships. The insights Cisco gets from client devise are super critical for troubleshooting because they provide the client view of the RF network, which is usually different from the access points’ view.

With the introduction of the Cisco RF ASIC as a third dedicated radio, the wireless connectivity is optimized because this offloads all the heavy-duty work from the client-serving radios: resulting 25% increase in client performance is expected for all clients, not only Wi-Fi 6 clients. The dedicated programmable radio is continuously scanning and grabbing a lot of critical information about the RF environment, client onboarding, interferences and analytics in general. From there, it’s streamed efficiently and securely to the cloud and use Machine Learning (ML) and Artificial Intelligence (AI) in DNAC Assurance and DNA Spaces to make the data actionable. A clear example of this is Intelligent capture in DNAC Center Assurance which provides a new way of proactively troubleshooting the network.

This is going to save you and your team a lot of time, effort  and busy work.

Cisco Catalyst 9100, Wi-Fi Connectivity, Cisco Exam Prep, Cisco Tutorial and Materials, Cisco Career, Cisco Preparation

And finally, the AP can act as an IoT gateway, supporting multiple IoT protocols via software. A Cisco or third party APP can be installed directly on the AP in a fully automated fashion. This opens a lot of opportunities for. One example is an IoT gateway for remote shelf labelling that allows customer to save operational and capital expenses by not deploying a parallel IoT network.

So, I am sure you agree with me that a Cisco Catalyst Access Point is much more than just Wi-Fi connectivity; and next time you enter a building you will turn your head up and look for those great pieces of wireless innovation.

Source: cisco.com

Wednesday, 1 September 2021

Accelerate Data Lake on Cisco Data Intelligence Platform with NVIDIA and Cloudera

Cisco Data Intelligence Platform, Cisco Prep, Cisco Learning, Cisco Guides, Cisco Tutorial and Materials, Cisco Preparation, Cisco Career

The Big Data (Hadoop) ecosystem has evolved over the years from batch processing (Hadoop 1.0) to streaming and near real-time analytics (Hadoop 2.0) to Hadoop meets AI (Hadoop 3.0). These technical capabilities continue to evolve, delivering the data lake as a private cloud with separation of storage and compute. Future enhancements include support for a hybrid cloud (and multi-cloud) enablement.

Cloudera and NVIDIA Partnerships

Cloudera released the following two software platforms in the second half of 2020, which, together, enables the data lake as a private cloud:

◉ Cloudera Data Platform Private Cloud Base – Provides storage and supports traditional data lake environments; introduced Apache Ozone, the next generation filesystem for data lake

◉ Cloudera Data Platform Private Cloud Experiences – Allows experience- or persona-based processing of workloads (such as data analyst, data scientist, data engineer) for data stored in the CDP Private Cloud Base.

Today we are excited to announce that our collaboration with NVIDIA has gone to the next level with Cloudera, as the Cloudera Data Platform Private Cloud Base 7.1.6. will bring in full support of Apache Spark 3.0 with NVIDIA GPU on Cisco CDIP.

Cisco Data Intelligence Platform (CDIP)

Cisco Data Intelligence Platform (CDIP) is a thoughtfully designed private cloud for data lake requirements, supporting data-intensive workloads with the Cloudera Data Platform (CDP) Private Cloud Base and compute-rich (AI/ML) and compute-intensive workloads with the Cloudera Data Platform Private Cloud Experiences — all the while providing storage consolidation with Apache Ozone on the Cisco UCS infrastructure. And it is all fully managed through Cisco Intersight. Cisco Intersight simplifies hybrid cloud management, and, among other things, moves the management of servers from the network into the cloud.

CDIP as a private cloud is based on the new Cisco UCS M6 family of servers that support NVIDIA GPUs and 3rd Gen Intel Xeon Scalable family processors with PCIe Gen 4 capabilities. These servers include the following:

◉ Cisco UCS C240 M6 Server for Storage (Apache Ozone and HDFS) with CDP Private Cloud Base — extends the capabilities of the Cisco UCS rack server portfolio with 3rd Gen Intel Xeon Scalable Processors, supporting more than 43% more cores per socket and 33% more memory than the previous generation.

◉ Cisco UCS® X-Series for CDP Private Cloud Experiences — a modular system managed from the cloud (Cisco Intersight). Its adaptable, future-ready, modular design meets the needs of modern applications and improves operational efficiency, agility, and scale.

Cisco Data Intelligence Platform, Cisco Prep, Cisco Learning, Cisco Guides, Cisco Tutorial and Materials, Cisco Preparation, Cisco Career

CDIP is designed for hybrid clouds to help customers address the needs of modern apps and extensible data platforms. They can further accelerate their AI/ML and ETL workloads on their data lake with GA of Apache Spark 3.0 enabling GPU-accelerated workloads powered by NVIDIA RAPIDS data science libraries in the CDP Private Cloud Base 7.1.6.

The NVIDIA RAPIDS suite of open-source software libraries gives you the freedom to execute end-to-end data science and analytics pipelines entirely on GPUs. RAPIDS uses NVIDIA CUDA and exposes GPU parallelism to accelerate ETL and machine-learning workloads. NVIDIA RAPIDS Accelerator for Apache Spark leverages GPUs to accelerate data processing in Apache Spark 3.0 using the RAPIDS libraries. This allows users to run existing Apache Applications ten times faster with no code changes.

On the AI/ML side, NVIDIA GPUs integrates with libraries like TensorFlow and PyTorch to accelerate the training of Neural Networks for various use cases, such as Computer Vision and Natural Language processing, on a single GPU node or on multiple nodes, reducing the training time from weeks to days (or hours). This saves our customers valuable time.

The Cisco, NVIDIA, and Cloudera three-way partnership brings our joint customers a much richer data lake experience through solution technology advancements, validated designs, and it all comes with full product support.

Source: cisco.com

Tuesday, 31 August 2021

Everything You Need to Study for the Cisco 200-201 CBROPS Exam

The 200-201 CBROPS: Understanding Cisco Cybersecurity Operations Fundamentals exam is associated with Cisco CyberOps Certification. Passing this exam satisfies a part of the requirements for earning the Cisco CyberOps certification. The exam is intended to assess the candidates’ skills and expertise concerning security concepts, security monitoring, host-based analysis, security policies & procedures, and network intrusion analysis. It’s important to expand skills in these skill areas before sitting for this exam. There are no former prerequisites needed to opt for the Cisco 200-201 CBROPS exam. Though, the applicants should understand all the topics included in the exam syllabus before taking this certification exam.

Important Information on Cisco 200-201CBROPS Exam

Cisco 200-201 CBROPS is a 120-minute exam comprising 95-105 questions that need to be finished in 120 minutes. To register for the exam, visit the Pearson VUE website and log in to your account and schedule your exam. The exam is available in the English language. You must prepare thoroughly for this Cisco exam to ensure your success.

The 200-201 CBROPS exam includes a broad range of topics classified under five domains. Each of these topics has a list of subtopics with their comprehensive sections. It’s suggested that you go through their details before taking the exam. The objectives incorporated in this Cisco certification exam are mentioned below:

  • Network Intrusion Analysis
  • Security Monitoring
  • Security Policies and Procedures
  • Security Concepts
  • Host-Based Analysis

Applicants should pay close attention to the percentage of the exam topics as they indicate the weight of questions that may be exacted from each of them. You’ll find the breakdown of each domain on the exam webpage. The learners should also take time to read other related topics as the questions may be administered from the areas not covered in these objectives.

Help Your Career with Cisco CyberOps Associate 200-201 Exam

Tips for Successful 200-201 CBROPS Exam Preparation

Studying and preparing are important to success in exams. And now that you know what to expect from the actual 200-201 CBROPS, let’s see how you can enhance your understanding and pave your path to success:

1. Take Advantage of Official Training Resources

The official training course offered by Cisco for the 200-201 exam is the Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) v1.0. It is instructor-led training, in which the applicants have the chance to learn from Cisco certified instructors how to avoid security breaches and retain their organization’s systems updated. Moreover, this course is accessible in the classroom or virtual modes. Furthermore, if your schedule is too busy, you can go for the e-learning version.

2. Gain Practical Experience

Practical experience can help you acquire skills and techniques you may not get from the books or training courses. If you become familiar with the TCP/IP and Ethernet networking, your chances of passing the actual Cisco 200-201 CBROPS exam with a good score improve considerably. Moreover, you can obtain prior experience in working with the Windows operating systems and Linux. Additionally, understanding the basic networking security concepts will give you a comparative strength over other applicants.

3. Set Yourself Up for Success with 200-201 CBROPS Practice Tests

Practice tests will help you identify your knowledge and preparation level. Practice tests for Cisco 200-201 CBROPS exam can be found on third-party websites. By performing practice tests, you learn how to deal with the tricky questions and the topics on which you require to concentrate more. Moreover, practice tests will help you strengthen your self-confidence as you know what to expect in the actual Cisco 200-201 exam.

4. Join an Online Community

Joining online study groups and online communities proves to be really helpful throughout your exam preparations. They help you learn from the experience of experts. You can also ask and solve your doubts. The professionals give valuable perceptions for you to obtain this certification.


Enjoy the Successful CyberOps Career with Cisco 200-201 CBROPS Certification

Conclusion

As you can see, if you want to pass the Cisco 200-201 on the first attempt, you have everything for it. You only require to use authentic study materials and prepare with dedication. So, your Cisco Certified CyberOps Associate certification is almost in your hand. All the Best!

Monday, 30 August 2021

Cisco Nexus Data Broker Now an App on Nexus Dashboard and Ready for Enterprise Networks

Cisco Nexus Data Broker has seen tremendous success and traction with data center customers since its inception. Our customers really liked the idea of using the same Nexus Data Center switch for building the packet broker network for their monitoring needs. They didn’t need to invest in additional skill development to manage purpose-built packet broker appliances. They could streamline the procurement and availability of spares and stock in their inventory. And they benefited from a much lower price point compared to the purpose-built packet broker appliances.

Data Broker Controller as an App on Cisco Nexus Dashboard

I am very excited to announce the next stage in evolution of Nexus Data Broker. Let’s start with the name change. We are changing the name to Nexus Dashboard Data Broker or Nexus Dashboard Data Broker. Why change the name? With the latest release, we have made the Data Broker Controller application available as an app on Cisco Nexus Dashboard (Figure 1).  

Cisco Nexus Data Broker, Cisco Enterprise Networks, Cisco Exam Prep, Cisco Tutorial and Materials, Cisco Guides, Cisco Learning, Cisco Preparation
Figure 1. Nexus Dashboard and Nexus Dashboard Data Broker

When you go into Cisco DC App Store, you will find the Cisco Nexus Dashboard Data Broker app to download and install. We are in the process of making all Day 2 applications run as services on top of the Nexus Dashboard platform and we did this with Nexus Data Broker. This new model of Data Broker Controller software distribution and run time .

There’s no need to download additional software from a download center for the first or future upgrades. The Nexus Dashboard Data Broker app is like a smartphone app, installed and upgraded directly from the Nexus Dashboard in the app store.

Nexus Dashboard Data Broker for Enterprise Networks


With the newest release of Nexus Dashboard Data Broker, we are expanding the scope of Nexus Dashboard Data Broker to enterprise network deployments, including campus and branch locations.  You can create a copy of the traffic using test access point (TAP) or switched port analyzer (SPAN) from Cisco Catalyst to Nexus Dashboard Data Broker solution (Figure 2). We have simplified the deployment of the Nexus Dashboard Data Broker solution for enterprise networks further by automating the SPAN configuration from the Nexus Dashboard Data Broker Controller via Cisco DNA Center or directly on Cisco Catalyst switches. I am really excited about extending the benefits of Nexus Dashboard Data Broker to enterprise networks.

Cisco Nexus Data Broker, Cisco Enterprise Networks, Cisco Exam Prep, Cisco Tutorial and Materials, Cisco Guides, Cisco Learning, Cisco Preparation
Figure 2. Nexus Data Broker for Enterprise Networks

Introducing Cisco Nexus 3550-F Fusion Layer 1 as TAP in Nexus Dashboard Data Broker Solution


Another exciting new capability we’re announcing is the addition of Cisco Nexus 3550-F Fusion Layer 1 platform as a TAP device (Figure 3). With it you can use the TAP functionality provided by the Nexus 3550-F Fusion switch with complete automation of TAP configuration from the Nexus Dashboard Data Broker Controller GUI.

Cisco Nexus Data Broker, Cisco Enterprise Networks, Cisco Exam Prep, Cisco Tutorial and Materials, Cisco Guides, Cisco Learning, Cisco Preparation
Figure 3. Automation of TAP Provisioning from the Nexus Dashboard

GUI and Usability Enhancements

Finally, I would like to mention the usability and user interface enhancements made to the newest Nexus Dashboard Data Broker Controller 3.10.1 release. The GUI is completely redesigned with the latest and greatest GUI framework and architecture, aligned with Nexus Dashboard and Nexus Dashboard services. This redesigned GUI framework lays the foundation for further enhancements and alignment in the areas of topology and other GUI screens (Figure 4).

Cisco Nexus Data Broker, Cisco Enterprise Networks, Cisco Exam Prep, Cisco Tutorial and Materials, Cisco Guides, Cisco Learning, Cisco Preparation
Figure 4. New GUI for Nexus Dashboard Data Broker Dashboard

Sneak Peek into Upcoming Releases


What’s next in the pipeline for Nexus Dashboard Data Broker in the next 6-9 months? We will focus on further improving the user interface and the user experience by upgrading the topology to the blueprint and framework provided by Nexus Dashboard. We will also focus on increasing the scale to support more source ports and tool ports to meet ever-increasing demand.

Try It, You’ll Like It


If you are already a Nexus Dashboard Data Broker user, I invite you to try the new 3.10.1 release and see the enhancements for yourself. If you are not a current user, I strongly believe that we have a great product that solves your packet brokering needs at a very attractive price point and I invite you to evaluate the product for your packet broker infrastructure.

As always, we are standing by to provide you with the necessary resources to make your deployment successful and to listen to your feedback for further product improvements.

Source: cisco.com