This weeks class - Implementing AOS-CX v24.31 (ICX)

RFC: OSPF version 2 (2328)

Welcome to Implementing Aruba AOS-CX (ICX)



Please be sure you have downloaded the learner guide and lab guide as per instructions you received from an email you would have received from HPE last week.  Check your email history, spam folder etc... for keyword "OnSecure" if you cannot find the email.

    • the lab access Spreadsheet is password protected
      (ask me for the password in class)
  • CX - New Features (10.08)
    • automatically create vlans on switch when assigned to user by role
      • port access auto-vlan    
Day 1 - Lecture Modules & Labs

  • M00: Course Introduction
    • M01: Introduction to Aruba Switching
      • Lab 1 - Base Configuration- Initial Lab Setup
        • 1-1: Factory reset of devices (optional)
        • 1-2: Configure the OOBM interface on Access-1
        • 1-3: Configure the OOBM for Access-2, Core-1, and Core-2 
    • M02: VSX
        • techhub: OS-CX_10.04 Online VSX Guide - 6400-8320-8325-8400
        • abc: VSX Technology Overview (10.04)
      • Lab 2 - VSX
        • 2-1: Verify the lab starting configuration
        • 2-2: Preparing for VSX
        • 2-3: VSX basic setup
        • 2-4: VSX configuration synchronization
        • 2-5: VSX Layer 2—VSX link aggregation (VSX LAG)
        • 2-6: VSX Layer 3 active gateway
        • 2-7: VSX failover test (optional)
        • 2-8: VSX split-brain handling
        • 2-9: Finalize the configuration for the upcoming labs 

      • M03: Layer 2 Optimization
        • Lab 3 - Layer 2 Optization and protection features
          • 3-1: Verify the lab starting configuration
          • 3-2: Examine the LAG load sharing process
          • 3-3: Using the LACP fallback feature
          • 3-4: Configure an MSTP solution
          • 3-5: Understanding edge ports and their operation with spanning
          • 3-6: Implement BPDU guard
          • 3-7: Implement root guard
          • 3-8: Implement loop protection
          • 3-9: Implement PVLANs (optional)  
      Day 2 - Lecture Modules & Labs

      • M04:Advanced OSPF

        • Lab 4.1 - OSPF single area
          • 4.1.1: Verify Lab Start Configuration
          • 4.1.2: Basic OSPF Setup on Core Area 0
          • 4.1.3: OSPF Address Advertisements and Control
          • 4.1.4: OSPF Peering Using VSX LAG
        • Lab 4.2 - OSPF and multi-area
          • 4.2.1: Assign Access1 to OSPF Area 1
          • 4.2.2: Assign Access2 to OSPF Area 2
          • 4.2.3: Route Summarization
          • 4.2.4: Verify Route Propagation Impact with Summarization
          • 4.2.5: ABR Route Filtering
        • Lab 4.3 - Managing OSPF external routes
          • 4.3.1: Setup Link to RouterA
          • 4.3.2: Redistribute Static Routes into OSPF
          • 4.3.3: Control Route Redistribution and Metric Types
          • 4.3.4: Filter Routes with Stub and Totally Stub Areas
          • 4.3.5: Filter Routes with a Not So Stubby Area (NSSA)
          • 4.3.6: Save configuration checkpoints for the upcoming labs

      • M05: BGP
        • Lab 5 - Basic BGP peering
          • 5.1: Prepare the lab setup
          • 5.2: Core-1 eBGP peering to ISP1
          • 5.3: Core-1 and Core2 iBGP peering
          • 5.4: Core-2 eBGP Peering to ISP2
          • 5.5: Announce Routes to eBGP Peers

      • M06: Additional L3 Features

        • Lab 6 - Additional Layer 3 Features
          • 6.1: Prepare the lab start configuration
          • 6-2: Add a new routing VRF
          • 6-3: OSPF routing inside a VRF
          • 6-4: Implementing DHCP snooping
          • 6-5: Implementing Dynamic ARP Inspection

        Day 3 - Lecture Modules & Labs

          • Lab 7 - IGMP
            • 7-1: Prepare the lab starting configuration
            • 7-2: Set up the multicast sender and receiver
            • 7-3: Enable IGMP querier and snooping
            • 7-4: Verify the IGMP snooping operation
            • 7-5: Verify IGMP snooping fast leave (optional)

            • Lab 8 - PIM
                • 8.1: Prepare and review the lab setup
                • 8.2: Configure PIM sparse mode
                • 8.3: Verify multicast forwarding
          • M09: ACLs
              • key point:
                • The "implicit permit" behavior of policy matching differs from the "implicit deny" behavior of ACL matching.

            • Lab 9 - ACLs
              • 9.1: Verify the lab starting configuration
              • 9.2: Port ACLs
              • 9.3: Using object groups
              • 9.4: Resource usage

          Day 4 - Lecture Modules & Labs

          • M10: 802.1X Authentication

            • Lab 10 - Dot1X
              • 10.1: Verify the lab starting configuration
              • 10.2: RADIUS server setup
              • 10.3: Basic 802.1X authentication with a single user
              • 10.4: Change of authorization verification
              • 10.5: Basic 802.1X authentication with a single user
              • 10.6: Unknown role assignment

            • M11: MAC Authentication
              • Lab 11 - Mac-Based Authentication
                • 11.1: MAC authentication with a single device on a port
                • 11.2: Verify access with two devices connected on same port
                • 11.3: Aruba user role-based access
                • 11.4: OPTIONAL—client-mode versus device-mode port authentication
                • 11.5: Authentication priority order with combined MAC-auth and 802.1X
                • 11.6: Verify 802.1X authentication precedence over MAC-auth
                • 11.7: OPTIONAL—device profiles with LLDP
                • 11.8: Save checkpoint configuration
            • M12: Dynamic Segmentation
              • Lab 12.1 - CPPM DUR
                • 12.1.1: CPPM REST API communication
                • 12.1.2: CPPM user role definitions
                • 12.1.3: Testing 802.1X DUR with employee and contractor
                • 12.1.4: OPTIONAL—ClearPass DUR configuration and troubleshooting
              • Lab 12.2 - CPPM UBT with MC
                • 12.2.1: Prepare the lab devices
                • 12.2.2: HPE Aruba Networking MC integration
                • 12.2.3: User role configuration on the switch and the MC
                • 12.2.4: Test MC integration
                • 12.2.5: OPTIONAL—MAC authentication role example for IoT

              • M13: Quality of Service

                • Lab 13 - Quality of Service
                  • 13.1: Prepare the lab start configuration
                  • 13.2: Port classification – trust configuration
                  • 13.3: LLDP device profile for QoS trust
                  • 13.4: QoS classification
                  • 13.5: Queue configuration
                  • 13.6: LLDP-MED and voice VLAN configuration

                Day 5 - Lecture Modules & Labs

                • M14: Rest API

                  • Lab 14 - REST API
                    • 14.1: Enable access to REST API on the AOS-CX switch
                    • 14.2: REST reference interface

                • M15: Network Analytics Engine
                    • airheads: What is Baselining and how can I add it to my NAE script?
                    • techhub: AOS-CX 10.06 Network Analytics Engine Guide - ADC
                    • asp: AOS-CX 10.08 Mirroring commands
                  • Lab 15 - NAE Configuration
                    • 15.1: Test the environment
                    • 15.2: Review the built.in NAE script and agent
                    • 15.3: Add a new NAE script and agent
                    • 15.4: OPTIONAL – Connectivity check
                    • 15.5: Review the NAE agent in the switch configuration file

                • M16: Troubleshooting
                    • airheads: What is Baselining and how can I add it to my NAE script?
                    • techhub: AOS-CX 10.06 Network Analytics Engine Guide - ADC
                    • asp: AOS-CX 10.08 Mirroring commands
                  • Lab 16 - Troubleshooting
                    • 16.1: Prepare the lab start configuration
                    • 16.2: Support ticket troubleshoot

                • M17: Conclusion
                  • airheads: What is Baselining and how can I add it to my NAE script?
                  • techhub: AOS-CX 10.06 Network Analytics Engine Guide - ADC
                  • asp: AOS-CX 10.08 Mirroring commands

                Appendix

                • Acronyms or Key terms
                  • ASIC: application specific integrated circuit
                  • SVI: switched virtual interface (interface vlan <vlan-id>)
                  • TCAM: ternary content addressable memory (logic system: true, false, other)
                  • NetEDIT's types of Validation:
                    • Syntax: validated by command line parser in editor
                      • in-line typing, command and parameters validity
                    • Sematics: configuration consistency validated with "Validate" button
                      • eg: create vlan before creating SVI
                    • Conformance: applied by policies you create, in editor validation
                      • corporate polieis or minimum requirements conformancy
                    • Consistency: validated in editor
                      • eg: ensure interswitch trunk setting match
                    • Change: compare show output before and after deploy
                      • offers rollback or commit as followthrough in Plan deployment
                • Lab Access Errata
                  • placeholder
                Neal Vadekar, SME, ACEX, ACSX, ACMX, ACDX, ACCP, ACNSP, ADCNS

                Comments

                Post a Comment

                Popular posts from this blog

                Arubanetworks Webgate - Copy and Paste instructions

                Copy/Paste Text from local to remote  Copy/Paste from local to remote  You need to copy the text between local and remote devices as follows: Copy the text from your local machine as usual Press Ctrl+Alt+Shift to get the menu (don't do this on the network diagram, only on telnet / RDP sessions) Paste the text in the box that shows on the menu (this copies the text to the remote server) Press Ctrl+Alt+Shift to close the menu (or do this after the next step) Right click on the device to paste in telnet or paste normally in the remote RDP session Copy/Paste from remote to local To copy to your local machine from the remote switch reverse this: Select the text like you would with Putty Press Ctrl+Alt+Shift to get the menu (don't do this on the network diagram, only on telnet / RDP sessions) Copy text from box on menu Press Ctrl+Alt+Shift to close the menu (or do this after the next step) Paste as usual on your local PC Copy/Paste an Archive of Files from remote to local Make a zip...
                Read more

                Designing HPE Aruba Campus Access Solutions 23.312 (DCAS)

                  Welcome to this week's class (DCAS) navigate to   https://rubbernecks-arubanetworks.blogspot.com Be sure you have downloaded the course learner guide as per the instructions you received in an email from HPE last week.  Check your email history, spam folder, etc... for the keyword "OnSecure" if you cannot find the email.  You only have 10 days to print this learner guide (PDF or paper). Click   here for this week's lab access spreadsheet(v1) check the chat room for this link's password in this spreadsheet, you will find the links for: Lab guide (Scenario - Lab 1) Lab guide (full guide, use after you complete Lab 1) Lab worksheet (within, record your answers for most lab questions)      Class Preparation Notes Although there is a remote lab, you may not need to use it for this class, you can set up the required software on your own computer. You will need: IRIS : as a partner or employee you should already have this, if not: your company domain n...
                Read more

                Instructor PPTX VBA - Standardize the PPTX Slide Deck "Title" position, font, width and other formatting settings

                Image
                Dealing with PowerPoint slide deck "Title" Insanity Here is a script that will: loop through each slide you have selected in your presentation detects all shapes with TextFrames it attempts to characterize them for the probability one is actually the intended title it uses font size, frame width, height and proximity to the top of the slide sometimes a slides will not have a textFrame with the name "title" or worse... will have multiple TextFrames with the name "title" but are not a title but an integral part of your slides presented data, and cannot be moved once a probable title has been detected, the script will relocate and apply consistent formatting across all selected slides Sub positionTitleTxtBoxallslide()     Dim oSld As Slide     Dim oShp As Shape          For Each oSld In ActiveWindow.Selection.SlideRange         Dim x As Long         For x = oSld.Shapes.Count To 1 Step -1     ...
                Read more