Scribd
Upload
37 views63 pages

Wired Design Fundamentals

Uploaded by

NabsNabs
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
37 views63 pages

Wired Design Fundamentals

Uploaded by

NabsNabs
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 63

123 - Enterprise Campus

Wired Design Fundamentals


Back to Basics
DC WAN ISP

Edge

Core

Shawn Wargo – Principal TME


BRKENS-1501 Distribution

Access
MDF 1

#CiscoLive
https://ciscolive.ciscoevents.com/

Cisco Webex App ciscolivebot/#BRKENS-1501

Questions?
Use Cisco Webex App to chat
with the speaker after the session

How
1 Find this session in the Cisco Live Mobile App

2 Click “Join the Discussion”

3 Install the Webex App or go directly to the Webex space

4 Enter messages/questions in the Webex space

Webex spaces will be moderated Enter your personal notes here

by the speaker until June 7, 2024.

BRKARC-2092 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 2
Who am I?
I’m a Principal Engineer of Technical Marketing (Principal TME) for
Cisco Enterprise ‘Network Experience’ (NX) Product Management
team. I’ve been with Cisco since 1999.
I mainly focus on Enterprise Switching & Routing technology areas,
with a special emphasis on ‘next generation’ Hardware & Software
products and solutions.
As a Principal TME, I’m currently working on the next generation of
Catalyst Switching, Wireless & Routing products, and solutions like
Software-Defined Access (SDA) & Cisco DNA.

Shawn Wargo
Principal TME
[email protected] @shawn_wargo

#CiscoLive © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 3
What this session is NOT

This session is NOT intended as a Deep-Dive or CVD!


The goal is to understand basic reasons & rationale for each Campus design ☺

Please also review BRKENS-1500


• Introduction to Campus Wired LAN Deployment Using Cisco Validated Designs - BRKENS-1500

Other Related Sessions:


• Designing Highly Available Networks using Catalyst 9000 Series Switches - BRKENS-2095
• Enterprise Campus Design: Multilayer Architectures and Design Principles - BRKCRS-2031
• Building for the Campus of the Future - BRKENS-2599

www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html
#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 4
1 What is a Campus Network?
2 1-2-3 or 4+ Tier Design
3 ECMP vs. StackWise
Agenda
4 MPLS vs. EVPN vs. SD-Access
5 Wireless & Security Notes
6 Summary & References
BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 5
Campus PINs Architecture Solutions WLC & FW Wrap Up
Campus Baseline
1 2 3 4 5 6
Campus Networks

❖ What is “Campus”?
DC WAN ISP

Edge

❖ Place in Network (PIN) Core

❖ Multi-Layer Model Distribution

❖ Chassis Considerations Access

❖ Cabling Considerations
MDF 1

❖ Feature Considerations

BRKENS-1501
What is a “Campus”?
A basic Merriam-Webster definition of a Campus is:
A group of one or more buildings, and surrounding grounds,
where people and their belongings work together.

Common examples are Corporate & Government Offices,


Hospitals, Schools, Transportation, Manufacturing & more.

Using this - it’s clear a Campus Network is focused on:


✅ People (Users, Vendors, etc.)

✅ People's devices (PCs, Phones, Printers, etc.)

✅ Local geographic area (LAN, WLAN or MAN, etc.)

✅ Access other domains (WAN, ISP, DC & Cloud, etc.)

This includes many different network technology areas


(Wired, Wireless, Security, QoS, Management, etc.)

Campus is focused on User Access


#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 7
Campus = Geography
Buildings are spread out. Multiple floors per building

www.cisco.com/c/en/us/solutions/cisco-on-cisco/enterprise-networks.html

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 8
Campus Networks
Building MDF/IDF & Wiring Closets

MDF = Main Distribution Framework (Core & Edge)


IDF = Intermediate Distribution Framework (Distro & Access)

www.cisco.com/c/en/us/solutions/design-zone/networking-design-guides/campus-wired-wireless.html

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 9
Campus ≠ Data-Center
One or few large buildings nearby. Usually a single floor.

www.cisco.com/c/en/us/solutions/cisco-on-cisco/enterprise-networks.html

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 10
Campus Networks - Real Life

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 11
Campus PINs & Topology

BGP, MPLS
BGP, EVPN BGP, IGP

Core
CoreInterconnect
Interconnect
Core
Core++Edge
Edge

OSPF, EIGRP, ISIS Campus


CampusCore
Core

Collapsed
CollapsedCore
Core Campus
CampusDistribution
Distribution

STP STP

Campus
CampusAccess
Access

STP, REP STP, REP


Extended
ExtendedAccess
Access
IOT
IOT/ /FTTX
FTTX

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
Campus Multi-Layer Model
• Few MAN (High-Speed) or WAN (Low-Speed) Uplinks
• Internal & External Autonomous Systems
CORE +

• Medium - Large IPv4 / IPv6 Routing Tables


• Layer 3 Security, QoS & Flexible NetFlow
• Virtualization: SVL, MPLS/VPLS, EVPN, SDA, etc.
Catalyst 9600 Catalyst 9500 Catalyst 9400 • Few Medium to High-Speed LAN Downlinks
DISTRIBUTION

• Few Medium - High Speed LAN Uplinks


• Medium IPv4 / IPv6 Routing Tables
• Medium MAC Tables & ARP / ND Tables
• L2 & L3 Security, QoS & Flexible NetFlow
• Virtualization: SVL, STP / REP, VLAN, SDA, etc.
Catalyst 9600 Catalyst 9500 Catalyst 9400 • Many Small to Medium Speed LAN Downlinks

• Few Small - Medium Speed LAN Uplinks


Small – Medium MAC Tables
ACCESS


• Power Over Ethernet, Integrated Wireless, etc.
• L2 Security, QoS & Flexible NetFlow
• Virtualization: Stack, VLAN, STP / REP, SDA etc.
Catalyst 9400 Catalyst 9300 Catalyst 9200 • Many Low - Medium Speed LAN Downlinks

Always 3 “Logical” Layers If you ‘collapse’ layers


your device needs
• Each layer provides a specific set of functions to support
all ‘logical’ functions
• Each layer has a specific set of requirements
#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 13
Campus Design Fundamentals
Hierarchical design model – Scalability & Stability

SCALE Core

Collapsed Core Distribution


+ Distribution

Client
Client
Access Access

Fault Domain

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 14
Modular vs. Fixed Platforms
Catalyst
9400

Modular Fixed
PROs CONs PROs CONs
• More Flexible • More Complex • Less Complex • Less Flexible
• Longer Life-Cycle • BW limit by Chassis • Swap Chassis for BW • Shorter Life-Cycle
• Higher Port Density • Slow(er) Dev & Test • Faster Dev & Test • Lower Port Density
• More Power/Cooling • Lower MTBF • Higher MTBF • Less Power/Cooling
• Redundant Processors • Higher COGs • Lower COGs • Single Processor

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 15
Modular Platform Features & Benefits
Redundancy, Expansion, Efficiency & Flexibility

Highest Resiliency Highest Flexibility Highest Efficiency Longest Lifecycle

≤ 200ms
1
SSO
2
& NSF 3
4

Redundant Supervisors SUP1 for Small Designs Lowest Watts per Port Start w/ SUP1 & few Gen1 LCs
StackWise® Virtual SUP2/XL for Large Designs 3000W Power Supplies Add Gen1 LCs as Access grows
Easy Upgrades with ISSU & GIR Custom ASIC Scale Templates Titanium Rated (95%) PSUs Replace SUP1 with SUP2
Redundant Fans (Fan-Tray) Traditional Multi-Layer Designs AC and/or DC Power Gen1 LCs get a 2X boost
Redundant PSUs (1:1, N+1) Fabric Overlay Designs Configurable Power Priority Add new Gen2 LCs as Core grows

Most Port Options


Mixes of RJ45, SFP & QSFP C9600-LC-40YL4CD C9600X-LC-32CD C9400-LC-48XS C9400-LC-48HX
40x 50G SFP + 2x 100G + 2x 400G QSFP 32x 100G or 24x + 8x 400G QSFP 48x 1/10G SFP 48 x 10G mGig + UPOE®

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 16
Modular Design for Large Campus
Architecture Perspective – Full Mesh vs. Hierarchical Design

Fixed System Design Modular System Design

• Static • Simple
• Costly IP | MPLS | VXLAN IP | MPLS | VXLAN
• Scalable
• Complex • Sustainable

Modular System Benefits

Sustainable Cost Operation Flexible Resilient


Reduce Energy Demand Reduce cost – CAPEX | OPEX Proven for large Enterprise Pay-As-You-Grow model Non-stop communication
Reduce Carbon footprint License & Service Management Day 0 – N scalable architecture Elastic Aggregation. Static Core. Protected network performance
Environmental efficient Reduce product life-cycle TCO Simplified Tools and Management Simple and large L2 boundaries Reduced MTTR and MTBF

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 17
Copper vs. Fiber Media www.cisco.com/c/en/us/products/interfaces-modules/transceiver-modules/

Category 5, 6 & 7 OM3, OM4 & OM5


Single-Mode (SMF) Wave-Division
Unshielded (UTP) Shielded (STP) Multi-Mode (MMF) Multiplex (WDM)

RJ45 (Access to Endpoints) SFP (Access & Distribution) QSFP (Core & Edge)

Cat6A Cat5E SFP-LC mSFP MPO12 MPO24


(Offset Wires) (Flush Wires) LC Duplex Mini LC Duplex 12 Fibers 24 Fibers

Short Distance – Cheap


Category Frequency Distance Data Rate Shielding
5E 100-350 MHz 100m 1000 Mbps UTP or STP
1G – 100m 1 Gbps
6 250-550 MHz
10G - 50m 10 Gbps
UTP or STP

6A 500-550 MHz 100m 10 Gbps UTP or STP


7 600 MHz 100m 10 Gbps Shielded only

NEW NEW NEW


10M 100M 1G 2.5G 5G 10G 100M 1G 10G 25G 40G 50G 100G 200G 400G

www.cisco.com/c/en/us/products/collateral/switches/catalyst-9000/nb-06-cat9000-panduit-cables-wp-cte-en.html

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 18
100GE & 400GE - A Better Alternative
Designation Speed
D 400GE
C 100GE

Provide a seamless migration path from 40GE QSFP Q 40GE

Catalyst 9600 Catalyst 9500 Catalyst 9400 Catalyst 9300

C9600X-SUP2 & LC-32CD C9500X-28C8D C9400X-SUP2XL C9300X-NM-4C

C9600-SUP1 & LC-24C C9500-32C C9400-SUP1XL C9300X-NM-2C

Reduced CapEx through reuse of existing cabling


Single-Lane optics provide port densities similar to 40G
Gradual migration options with support for Dual-Rate optics

Reduced OpEx through savings in power and cooling


#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public
25GE & 50GE - A Better Alternative
Designation Speed
L 50GE
Y 25GE

Provide a seamless migration path from 1/10GE SFP X 10GE

Catalyst 9600 Catalyst 9500 Catalyst 9400 Catalyst 9300

C9600X-SUP2 & LC-40YL4CD C9500X-60L4D C9400X-SUP2XL C9300X-NM-8Y

C9600-SUP1 & LC-48YL C9500-48Y4C C9400-SUP1XL-Y C9300-NM-2Y

Reduced CapEx through reuse of existing cabling


Single-Lane optics provide port densities similar to 10G
Gradual migration options with support for Dual-Rate optics

Reduced OpEx through savings in power and cooling


#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public
Campus Networks
L2/L3 Unicast Technologies

IPv4 Unicast IPv6 Unicast


Data
Internet Branch
Center

• MP-BGP, VPNv4 • MP-BGP, VPNv6


• Internet (v4), NAT, PBR • Internet2 (v6), NAT64, PBR
• MPLS-VPN, VRF-Lite
Core • MPLS-VPN, VRF-Lite
Core
• IPv4 SSO, NSF/NSR, GIR • IPv6 SSO, NSF/NSR, GIR

• EIGRP, OSPFv2, ISIS, RIP • EIGRPv6, OSPFv3, ISISv6, RIPng


• SVI, HSRP/VRRP L3 • SVI, HSRPv6/VRRPv6
L3
• ARP, DHCP Relay • NDP, DHCPv6 Relay
• IPDT/SISF, DAI
Distribution • SISF (v4/v6), RA Guard
Distribution
• BFD, Echo L2 L2 • BFDv6, Echo
• IPv4 SSO, NSF/NSR, GIR • IPv6 SSO, NSF/NSR, GIR

• PVST, MST, REP/RENN • PVST, MST, REP/RENN


• 802.1Q, DTP • 802.1Q, DTP
• VLANs, VTP • VLANs, VTP
• DHCP Snooping
Access • DHCPv6 Snooping
Access
• MAC Leaning • MAC Leaning
• L2 SSO • L2 SSO

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 21
Campus Networks
L2/L3 Multicast Technologies

IPv4 Multicast IPv6 Multicast


Data
Internet Branch
Center
• PIM-SM, SSM and Bidir
• PIM-SM and SSM
• AutoRP, BSR RP, MSDP
• IPv6 BSR RP
• MVPN, Multicast VRF-Lite Core • IPv6 embedded RP
Core
• Multicast load splitting
• IPv6 multicast HA
• IPv4 multicast HA

• Dual-stack IPv4 / IPv6 • Dual-stack IPv4 / IPv6


• PIM-SM, SSM and Bidir L3 L3 • PIM-SM and SSM
• IGMPv2,v3 snooping • MLDv1,v2 snooping
• Stub multicast routing Distribution • HW register and RPF Distribution
• PIM BFD L2 L2 • HSRP-aware PIM
• IPv4 multicast HA • IPv6 multicast HA

• IGMP v1,v2,v3 snooping • MLD v1,v2 snooping


• IPv4 multicast QoS & ACL Access • IPv6 multicast QoS & ACL Access
• IGMP v1,v2 filtering • MLD v1,v2 filtering

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 22
Cisco Catalyst 9000 Switching Portfolio 2022-2023
One Family from Access to Core – Common Hardware & Software

Catalyst 9600X

Catalyst 9300X Catalyst 9400X Catalyst Catalyst 9500X

Catalyst 9400 Series


9000 Catalyst 9600 Series

Series
Catalyst 9300 Series Catalyst 9500 Series
Catalyst 9200 Series

Catalyst 9300LM
Catalyst 9200CX Cisco Cisco
ASIC IOS® XE

Catalyst Catalyst Catalyst Catalyst Catalyst Catalyst


2960-X/XR 3650/3850 4500-E Series 3850-XS/4500-X 6840-X/6880-X 6500-E/6807-XL

Access Switching Core Switching

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 23
Campus PINs Architecture Solutions WLC & FW Wrap Up
Campus Networks
1 2 3 4 5 6
Campus PINs

❖ Campus Core
(Baseline)
❖ Campus Core +
Interconnect
❖ Campus Core +
Edge

BRKENS-1501
Campus Core (Baseline)

The Core PIN (Tier 3) focuses on connecting


DC ISP
multiple Distribution layers to an Interconnect WAN

(if applicable) and/or other network domains


BGP
• Other names: MDF, BDF
• Common in Medium & Large Campus Core

Main goal is a simple, high-bandwidth, L3


transport between other network layers
OSPF,
Tends to be L3 routed (north & south) Distribution IS-IS or
EIGRP L3
• North: BGP or IGP (ABR), PIM + MSDP
• South: OSPF, IS-IS or EIGRP, PIM PVST L2
or
MST
Tends to use minimal L3 features Access
• Limited ACLs (e.g. inter-area route-maps, remote access)
MDF 1
• Limited QoS (e.g. many-to-one WRED, aggregate policers)

• Limited NetFlow (e.g. inter-area, aggregate flows)

Tends to require high L3 forwarding scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 25
Campus Core Interconnect
10/25/40G
The Interconnect PIN (Tier 4) is an extension of the 100/400G

Core, used to connect multiple Core layers (areas) ISP WAN


and/or other network domains.
• Other names: Backbone, Super Core, MAN, DCI DC 1 BGP BGP DC 2
• Common in Large & Very-Large Campus

• Main goal is to distribute the bandwidth and


density requirements of multiple Core layers BGP BGP

• Similar attributes & requirements as Core PIN


Interconnect
• Tends to be L3 routed (north & south)
• North: BGP or IGP (ABR/ASBR), PIM + MSDP
• South: OSPF, IS-IS or EIGRP, PIM OSPF,
IS-IS or
• Tends to use minimal L3 features EIGRP
Core
• Limited ACLs (e.g. inter-area route-maps, remote access)

• Limited QoS (e.g. many-to-one WRED, aggregate policers)


L3
Distro
• Limited NetFlow (e.g. inter-area, aggregate flows)

Access L2

• Tends to require higher L3 scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 26
Campus Core + Edge (SP/WAN)
The Core-Edge PIN (Tier 4) focuses on connecting
multiple Campus areas to remote domains (SP/WAN) ISP WAN
and/or to the Internet.
MP-BGP + MP-BGP +
• Other names: Edge Device, Internet Edge DC 1 L2/L3VPN L2/L3VPN DC 2
• Common in Medium to Very-Large Campus

Main purpose is to collapse Core & Edge layers


Tends to be L3 routed (north & south)
MP-BGP + MP-BGP +
• North: MP-BGP + Inter-AS, NAT/PAT, PIM + MSDP L2/L3VPN L2/L3VPN
• South: BGP or IGP (ABR/ASBR), PIM + MSDP Edge

Tends to use Virtualization & Tunnels


• VRF-Lite, MPLS/VPLS, SR, MVPN
OSPFv3,
• GRE/MGRE, IPsec, DMVPN
EIGRP-VRF
• QinQ, L2oMGRE, OTV, EVPN
Core
Tends to use multiple L3/VRF features
• Edge Security ACLs (e.g. RACL, CBAC, ZBFW)
Distro L3
• Hierarchical QoS (e.g. Class-based Queuing, Shaping)

• Policy Based Routing (e.g. WAAS & WCCP) Access L2


• WAN NetFlow (e.g. L3/VRF FNF, WAN ETA)

Tends to require highest L3/VRF & feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 27
Campus Design Fundamentals
Access Layer - Oversubscription Ratios

Soft recommendation for


Distribution Layer
Access to Distribution ≤ 20:1
StackWise Virtual
Access Uplinks: 40 Gbps
4x 10G uplinks spread across two
separate switches in the stack Potential Downlinks:
48 x 10 Gbps
+ 144 x 1 Gbps
4x 48 Port Switches in Stack
• 12x mGig-10Gbps + 36x 1Gbps -----------------------
SUM: 624 Gbps

Oversubcription ratio:
~15.6 : 1

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 28
Campus PINs Architecture Solutions WLC & FW Wrap Up
Campus Networks
1 2 3 4 5 6
Campus PINs

❖ Campus Distribution
(Baseline)

❖ Collapsed Core +
Distribution

❖ Campus Distro +
Extended Access

BRKENS-1501
Campus Distribution (Baseline)
The Distribution PIN (Tier 2) focuses on connecting
multiple Access layers and the Core layer. DC WAN ISP

• Other names: Collapsed Core, Aggregation, IDF


BGP
• Common in Small to Large Campus

Main purpose is to “distribute” connectivity (fan-out) Core


from the Core/WAN to the Access
• Reduces need for high port-density in Core layer
• Also applicable to L3 Routed Access
OSPF,
Distribution IS-IS or
Tends to be both L3 routed (north) EIGRP L3
and L2 switched (south)
PVST L2
• North: SVI, HSRP/VRRP, ARP/ND, IGP, PIM or
• South: VLAN, 802.1Q, STP, MAC, IGMP MST
Access
Tends to use multiple L2 & L3 features MDF 1
• Access Security (e.g. IPDT/SISF, VACLs, PACLs, etc)

• Access QoS (e.g. NBAR, Classification & Marking)

• Access NetFlow (e.g. AVC, FNF, EPA & ETA)

Tends to require med-high L2/L3 & feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 30
Campus Collapsed Core
The Collapsed Core (Tier 2) focuses on connecting
multiple Access layers and the WAN/Edge layer. DC WAN ISP

• Other names : Distribution, BDF


BGP
• Common in Small Campus or Medium Branch

Main purpose is to collapse Core & Distribution layers Edge


• Mostly for small(er) sites, with low(er) port density
• Similar attributes & requirements as Core + Distribution
• Also applicable to L3 Routed Access
OSPF,
Coll. Core IS-IS or
Tends to be both L3 routed (north) EIGRP L3
and L2 switched (south)
PVST L2
• North: SVI, HSRP/VRRP, ARP/ND, IGP, PIM or
MST
• South: VLAN, 802.1Q, STP, MAC, IGMP
Access
Tends to use multiple L2 & L3 features MDF 1
• Access Security (e.g. IPDT/SISF, VACLs, PACLs, etc)

• Access QoS (e.g. NBAR, Classification & Marking)

• Access NetFlow (e.g. AVC, FNF, EPA & ETA)

Tends to require high L2/L3 & feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 31
Campus Distro + Ext. Access
The Distribution + Ext. Access PIN (Tier 2+) focuses
on connecting multiple Access layers, including an DC WAN ISP

Extended Access (IOT/FTTX) layer, to the Core layer.


BGP
• Other names: Distribution, BDF
• Common in Very-Large Campus or Large Branch
Core
Main purpose is to “distribute” connectivity (fan-out)
from the Core/WAN to the Access + Ext. Access
• Reduces need for high port-density in Core layer
OSPF,
Distribution IS-IS or
Tends to be both L3 routed (north) EIGRP L3
and L2 switched (south)
PVST L2
• North: VRF, SVI, HSRP/VRRP, ARP/ND, IGP, PIM or
MST
• South: VLAN, 802.1Q, STP, MAC, IGMP
Access
Tends to use multiple L2 & L3 features MDF 1
• Access Security (e.g. IPDT/SISF, VACLs, PACLs, etc)

• Access QoS (e.g. NBAR, Classification & Marking)


IOT
• Access NetFlow (e.g. AVC, FNF, EPA & ETA)
REP REP
Tends to require highest L2/L3 & feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 32
Design Fundamentals
Distribution Layer - Oversubscription Ratios

Core Layer Soft recommendation for


Distribution to Core ≤ 4:1
2x 40G uplinks

Distribution Uplinks: 80 Gbps


Distribution Layer 32x 25G uplinks from access switches
StackWise Virtual connected to the distribution switches
From Access Layer:
4x 25G uplinks spread across two
separate switches in the stack
4 x 2 x 4 x 25 Gbps
SUM: 800 Gbps
Access Layer
StackWise Stack
4x Floors Oversubcription ratio:
2x Stacks per foor
4x 48 Port Switches in Stack 10 : 1
• 12x mGig-10Gbps + 36x 1Gbps

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 33
Campus PINs Architecture Solutions WLC & FW Wrap Up
Campus Networks
1 2 3 4 5 6
Campus PINs

❖ Campus Access
(Baseline)

❖ Routed Access
❖ Extended Access +
IOT / FTTX

BRKENS-1501
Campus Access (Baseline)

The Access PIN (Tier 1) focuses on connecting


DC ISP
Users & Devices, or an Extended Access WAN

(if applicable), to the Distribution layer


BGP
• Other names: IDF, Wiring Closet
• Common in all Campus & Branch networks Core

Main purpose is to connect users to network


Tends to be L2 switched (north & south)
OSPF,
• North: VLAN, 802.1Q, STP, MAC, IGMP Snooping Distribution IS-IS or
EIGRP L3
• South: AAA, STP, Portfast, Storm-Control
PVST L2
Tends to use multiple L2 features & services or
MST
• Access Security (e.g. 802.1x, VACLs, PACLs, etc)
Access
• Access QoS (e.g. L2 CoS, Classification & Marking)
MDF 1
• Access NetFlow (e.g. AVC, FNF, EPA & ETA)

Tends to require low-med L2 & feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 35
Routed Access
The Routed Access PIN (Tier 1) has the same
DC ISP
purpose, but uses L3 IP routing to limit L2 scale WAN

• Other names: IDF, Wiring Closet


BGP
• Semi-common in Campus & Branch networks

Main purpose is to connect users to network using Core


L3 protocols to reduce L2 challenges.
• Mostly for network stability and simplicity of protocols
• Similar attributes & requirements as Distribution
OSPF,
Distribution IS-IS or
Tends to be both L3 routed (north) EIGRP L3
and L2 switched (south)
L2
• North: SVI, HSRP/VRRP, ARP/ND, IGP, PIM
• South: VLAN, AAA, MAC, IGMP, STP Portfast
Access
Tends to use multiple L2 & L3 features MDF 1

• Access Security (e.g. IPDT/SISF, VACLs, PACLs, etc)

• Access QoS (e.g. NBAR, Classification & Marking)

• Access NetFlow (e.g. AVC, FNF, EPA & ETA)

Tends to require low-med L2 & L3 feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 36
Extended Access (IOT / FTTX)

The Extended Access PIN (Tier 1) is an


DC ISP
extension of the Access, to connect multiple WAN

Access layers (areas) to the Distribution layer BGP


• Other names: High-End Access, IOT, FTTX
• Common in Very-Large Campus or Large Branch Core

Main goal is to extend the size and scale


of the Access layer and connect more hosts
OSPF,
Tends to be L2 switched (north & south) Distribution IS-IS or
EIGRP L3
• North: VLAN, 802.1Q, STP/REP, MAC, IGMP Snooping
• South: AAA, STP/REP, Portfast, Storm-Control PVST L2
or
MST
Tends to use multiple L2 features & services Access
• Access Security (e.g. 802.1x, VACLs, PACLs, etc)
MDF 1
• Access QoS (e.g. L2 CoS, Classification & Marking)

• Access NetFlow (e.g. AVC, FNF, EPA & ETA)


IOT
Tends to require med-high L2 & feature scale REP REP

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 37
Campus PINs Architecture Solutions WLC & FW Wrap Up
Campus Networks
1 2 3 4 5 6
Campus Architecture

❖ Equal Cost Multi-Path


(Traditional)

❖ StackWise
(Access Stacking)

❖ StackWise Virtual
(Core/Distro Stacking)

BRKENS-1501
Campus Architectures
Control-Plane & Data-Plane Redundancy

1 2 3
ECMP (L2/L3 Paths) EtherChannel (L2/L3 LAG) StackWise (L2/L3 MEC)

• Complex Topology • Complex Topology • Simple Topology


• More Nodes, Less Cables • Same Nodes, More Cables (2-8) • Same Cables, Less Nodes
• More Neighbors (+ Tuning) • Same Neighbors (+ Tuning) • Less Neighbors (No Tuning)
• Protocol Load-Balancing (ECMP) • EtherChannel Load-Balancing • Multi-chassis EtherChannel (MEC)
• Node-level Redundancy • Node & Link-level Redundancy • Layer-level Redundancy

L1 : Single Connections L1 : Multiple Connections L1 : Multiple Connections


L2: STP, MST, REP + ECMP (Port Cost) L2: STP, MST, REP + ECMP (Portchannel Cost) L2: L2 MEC (No STP or REP)
L3: FHRP, IGP, BGP + ECMP(Port Cost) L3: FHRP, IGP, BGP + ECMP (Portchannel Cost) L3: IGP, BGP + L3 MEC (No FHRP)
More Neighbors = Requires Protocol Tuning More Neighbors = Requires Protocol Tuning Fewer Neighbors = No Protocol Tuning

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 39
Campus + EtherChannel
Using EtherChannel focuses on combining
DC ISP
multiple physical links into a single logical link WAN

• Other names: Portchannel, Link-Aggregation (LAG)


BGP
• Common in Medium & Large Campus
Core
Main goal is to increase bandwidth, and provide
link-level redundancy between network layers
• Mostly for large(r) sites, with high(er) port density
• Similar attributes & requirements as existing PIN(s) OSPF,
Distribution IS-IS or
L3
Can be used for both L2 & L3 links (north & south) EIGRP

• North: BGP or IGP, PIM PVST L2


or
• South: STP or REP, IGMP/MLD MST
Access
Tends to require special L2/L3 features MDF 1
• Portchannel ACLs (e.g. L2/L3 RACL)

• Portchannel QoS (e.g. L2/L3 aggregate policers)

• Portchannel NetFlow (e.g. L2/L3 FNF)

Tends to require less L2/L3 forwarding scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 40
StackWise Virtual Core/Distro
The StackWise Virtual (SVL) Core PIN focuses on
combining Core and/or Distribution into a single virtual DC WAN ISP

switch to connect to outside areas.


• Typically, the same layer as Distribution or Core (Tier 2-3)
BGP
• The same ‘physical’ topology as a multi-layer network
Core
Main goal is to simplify and expand the Distribution
and/or Core layer OSPF,
IS-IS or
Same L2/L3 protocols & features as Distro/Core EIGRP

• North: SVI, ARP/ND, IGP/BGP, PIM L3 MEC


Distribution
L3
• South: VLAN, 802.1Q, MAC, IGMP (No STP)
L2
Leverages Stateful Switchover (SSO)
• Active/Standby Control-Plane (synchronized)
Access L2 MEC
• Works with NSF/NSR for L3 protocols

Leverages Multi-chassis EtherChannel (MEC)


• Active/Active Data-Plane (both switches forwarding)
• L2 & L3 Portchannel (neighbor sees single neighbor)

Tends to require med-high L2, L3 & feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 41
StackWise Access
The StackWise Access PIN focuses on combining
multiple Access switches into a single virtual switch DC WAN ISP

to increase access-layer port density.


• Typically, the same layer as Access (Tier 1)
BGP
• The same ‘physical’ topology as a multi-layer network
Core
Main goal is to expand port density of Access layer
OSPF,
Same L2 protocols & features as Access IS-IS or
EIGRP
• North: VLAN, 802.1Q, STP, MAC, IGMP Snooping
L3 MEC
• South: AAA, STP, Portfast, Storm-Control Distribution
L3

Leverages Stateful Switchover (SSO) L2


• Active/Standby Control-Plane (synchronized)
• Works with NSF/NSR for L3 protocols
Access L2 MEC

Leverages Multi-chassis EtherChannel (MEC) MDF 1 MDF 1

• Active/Active Data-Plane (both switches forwarding)


• L2 Portchannel (neighbor sees single neighbor)

Tends to require med-high L2 + feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 42
Campus PINs Architecture Solutions WLC & FW Wrap Up
Campus Solutions
1 2 3 4 5 6
Campus Solutions

❖ MPLS / VPLS
(L2/L3VPN)

❖ EVPN + VXLAN
(L2/L3VNI)

❖ LISP + VXLAN
(L2/L3VNI)

BRKENS-1501
Campus Solutions & Designs
Providing additional services (beyond basic PINs)

1 2 3
MPLS (L2/L3VPN) EVPN (L2/L3VNI) SDA (L2/L3VNI + SGT)

• L3 Underlay + L2/L3 VPN Overlay • L3 Underlay + L2/L3 VNI Overlay • L3 Underlay + L2/L3 VNI Overlay
• Virtual Private Networks • Virtual Network Instances • VNIs + Scalable Group Tagging
• L3 VRF-based Segmentation • L2/L3 VNI-based Segments • L2/L3 VNI + SGT Segments
• WAN/Edge + VPN Services • Common WAN/LAN Services • LAN Services + Group-Based Policy

MPLS/VPLS, LDP, SR, MP-BGP, PIC MP-BGP/EVPN, VXLAN, VRF-Lite LISP, VXLAN, MP-BGP, VRF-Lite
MVPN, LSM, Extranet, MSR L2 TRM, L3 TRM, L2 BUM LISP HER, Native, L2 BUM
SSO, NSF/NSR, ECMP, GIR SSO, NSF/NSR, ECMP, GIR SSO, NSF/NSR, ECMP, GIR
VPN-FNF, Uniform/Pipe QoS, PBR, IPACL Fabric-FNF, Uniform QoS, IPACL/OGACL Fabric-FNF, App QoS, SGACL

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 44
MPLS-VPN Provider Edge
The Provider-Edge PIN (Tier 3-4) focuses on
connecting multiple Campus areas to remote domains ISP WAN
(SP/WAN) using MPLS-VPN.
MP-BGP + MP-BGP +
DC 1 L2/L3VPN DC 2
Main goal is to connect EVPN fabric to other networks L2/L3VPN

Uses a L3 Underlay + L3 Hand-off


• North (outside): L3 MP-BGP + Inter-AS, PIM + MSDP
• South (inside): L3 IGP, PIM + MSDP
MP-BGP + MP-BGP +
Uses a Virtualized L2/L3 Overlay L2/L3VPN L2/L3VPN
Edge
• Control-Plane: MPLS, EoMPLS/VPLS, MVPN
• Data-Plane: LDP, mLDP
• Policy-Plane: VPN ID
OSPFv3,
Tends to use Overlay-aware Features EIGRP-VRF
• IP or OG ACLs (e.g. destined Outside)
• Uniform/Pipe QoS (e.g. separate Inner vs. Outer) Core
• Inter-VRF Routing (e.g. VRF-Lite, Leaking)
• MPLS-aware NetFlow (e.g. VPN ID in FNF) Distro L3

May require multiple encapsulation(s) Access L2

Tends to require high L2/L3 & feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 45
EVPN Border & Spine
The EVPN Border & Spine PIN focuses on connecting
an EVPN Fabric and/or other network domains.
• Typically, the same layer as Core or Edge (Tier 3-4) DC WAN ISP

Main goal is to connect EVPN fabric to other networks


BGP
Uses a L3 Underlay + L3 Hand-off B|S B|S
• North (outside): L3 MP-BGP + Inter-AS, PIM + MSDP Core
• South (inside): L3 IGP, PIM + MSDP

Uses a Virtualized L2/L3 Overlay


• Control-Plane: BGP-EVPN (RR), TRM
• Data-Plane: VXLAN Overlay:
Distribution
• Policy-Plane: L2/L3 VNID BGP-EVPN +
VXLAN
Tends to use Overlay-aware Features Underlay:
• IP/OG ACLs (e.g. destined Outside) IGP
• Uniform QoS (e.g. copy Inner, queue Outer)
Access
• Inter-VRF Routing (e.g. VRF-Lite, Leaking)
L L L L L L
• Fabric NetFlow (e.g. VRF/VNID in FNF)

May require multiple encapsulation(s)


Tends to require high L2/L3 & feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 46
EVPN Leaf
The EVPN Leaf PIN focuses on connecting Wired
endpoints to an EVPN Fabric domain.
• Typically, the same layer as Access or Extended (Tier 1) DC WAN ISP

Main goal is to connect Endpoints to EVPN network


BGP
Uses a L3 Underlay + L2 Hand-off B|S B|S
• North (inside): L3 IGP, PIM + MSDP Core
• South (outside): L2 VLAN (L3 SVI), STP, IGMP

Uses a Virtualized L2/L3 Overlay


• Control-Plane: BGP-EVPN, TRM
• Data-Plane: VXLAN Distribution
Overlay:
BGP-EVPN +
• Policy-Plane: L2/L3 VNI
VXLAN

Tends to use Overlay-aware features Underlay:


IGP
• IP/OG ACLs (e.g. destined outside)
• Uniform QoS (e.g. copy inner, queue outer) Access
• Inter-VRF Routing (e.g. VRF Leaking) L L L L L L
• Fabric NetFlow (e.g. FNF + VNID)

Tends to require med-high L2/L3 & feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 47
SD-Access Border & CP
The SDA Border & CP PIN focuses on connecting an
SDA Fabric and/or other network domains.
• Typically, the same layer as Core or Core/Edge (Tier 3-4) DC WAN ISP

Main goal is to connect SDA fabric to other networks


MP-BGP
Uses a L3 Underlay + L3 Hand-off B|C B|C
• North (outside): L3 MP-BGP + Inter-AS, PIM + MSDP Core
• South (inside): L3 IGP, PIM + MSDP

Uses a Virtualized L2/L3 Overlay


• Control-Plane: LISP (XTR, MS/MR), PIM
• Data-Plane: VXLAN-GPO Overlay:
Distribution LISP +
• Policy-Plane: L2/L3 VNI + SGT
VXLAN-GPO

Tends to use Overlay-aware features Underlay:


• Security Group ACLs (e.g. destined outside) IGP

• Uniform Pipe QoS (e.g. copy inner, queue outer)


Access
• Inter-VRF Routing (e.g. VN Extranet, or VRF-Lite) E E EMDF 1 E E E
• Fabric NetFlow (e.g. VRF/VNID + SGT FNF, NaaS/ETA)

May require multiple encapsulation(s)


Tends to require higher L3 & feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 48
SD-Access Edge
The SDA Edge PIN focuses on connecting
Wired/Wireless endpoints to an SDA Fabric domain.
• Typically, the same layer as Access or Extended (Tier 1) DC WAN ISP

Main goal is to connect Endpoints to SDA network


BGP
Uses a L3 Underlay + L2 Hand-off B|C B|C
• North (inside): L3 IGP, PIM + MSDP Core
• South (outside): L2 VLAN (L3 SVI), STP, IGMP

Uses a Virtualized L2/L3 Overlay


• Control-Plane: LISP (XTR), PIM
• Data-Plane: VXLAN-GPO Overlay:
Distribution
LISP +
• Policy-Plane: VN + SGT
VXLAN-GPO

Tends to use Overlay-aware features Underlay:


IGP
• Security Group ACLs (e.g. destined outside)
• Uniform Pipe QoS (e.g. copy inner, queue outer) Access
• Inter-VRF Routing (e.g. VN Extranet) E E EMDF 1 E E E
• Fabric NetFlow (e.g. FNF, NaaS)

Tends to require higher L3 & feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 49
Campus PINs Architecture Solutions WLC & FW Wrap Up
Campus Networks
1 2 3 4 5 6
Wireless & Firewall

C9800- 40/80 VLAN C9500X/9600X SVI


WLC Clusters VLAN SVI
VLAN Core Switches SVI

❖ Central Wireless CAPWAP

❖ Firewalls, VRFs & ACLs


VLAN VLAN VLAN

C9130 WIFI6/6E C9300X/9400X


Access Points Access Switches

BRKENS-1501
Wireless LAN
The Central Wireless PIN focuses on connecting
Wireless APs centrally to one or multiple WLCs.
• WLC is typically connected to Core, Edge or DC (Tier 3+)
Central Wireless
• APs are typically connected to Access (Tier 1) C9800-40/80 VLAN C9500X/9600X SVI
WLC Clusters VLAN SVI
Main goal is to connect Wireless Endpoints (via APs) VLAN Core Switches SVI
to a Wireless LAN (WLAN) - centrally in the network

Uses a L2/L3 Underlay + L2 Hand-off


• North (to WLC): L2 VLAN + 802.1Q, L3 SVI, IGP
• South (to AP): L2 VLAN + 802.1Q, STP, IGMP CAPWAP

Uses a Tunneled L2 Overlay VLAN VLAN VLAN

• Control-Plane: CAPWAP, DTLS, LWAPP


• Data-Plane: CAPWAP, DTLS

Tends to require L2 (WLAN) features


• L2 ACLs (e.g. VACL, MAC ACL)
C9130 WIFI6/6E C9300X/9400X
• L2 QoS (e.g. VLAN QoS)
Access Points Access Switches
• L2 NetFlow (e.g. FNF, AVC, EPA & ETA)

Tends to require higher L2/L3 + feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 51
Firewalls, VRFs & ACLs
The Firewall (DMZ) PIN focuses on controlling
access into or out of different network areas.
• Typically connected to Core, Edge or DC (Tier 3+)
Firewalls (DMZ)
• Complex designs may use Distro or Access (Tier 1-2)

Main goal is to prevent unauthorized access to different


network domains (segments).
• Evolved from “Edge” Access-Control Lists (ACLs)
• Can be either L2, L3 or VRF-aware
• Tends to focus on L4-L7 flows (with or w/o DPI)

Uses a L2 or L3/VRF + ACLs


• North (outside): L2 802.1Q, L3 (SVI, Sub-Ints), IGP, BGP
• South (inside): L2 802.1Q, L3 (SVI, Sub-Ints), IGP, BGP

Tends to use L2 & L3/VRF + DPI & ACL features


• L4/App ACLs (e.g. VACL, MAC ACL)
• L4/App QoS (e.g. VLAN QoS)
• L4/App NetFlow (e.g. FNF, AVC, EPA & ETA)
De-Militarized Zone (DMZ)

Tends to require med-high L2/L3 & feature scale

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 52
Campus PINs Architecture Solutions WLC & FW Wrap Up
Campus Networks
1 2 3 4 5 6
Wrap Up

DC WAN ISP

Edge

❖ Know the Campus PINs Core

❖ Other References Distribution

❖ Keep Learning!! ☺ Access


MDF 1

BRKENS-1501
Remember: Campus PINs & Topology

BGP, MPLS
BGP, EVPN BGP, IGP

Core
CoreInterconnect
Interconnect
Core
Core++Edge
Edge

OSPF, EIGRP, ISIS Campus


CampusCore
Core

Collapsed
CollapsedCore
Core Campus
CampusDistribution
Distribution

STP STP

Campus
CampusAccess
Access

STP, REP STP, REP


Extended
ExtendedAccess
Access
IOT
IOT/ /FTTX
FTTX

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 54
Remember: Campus Design Fundamentals
Collapse or Expand Modular or Fixed Fiber or Copper
Layers? Platforms? Links?

ECMP, EtherChannel L2/L3 or MPLS Wireless or Security


or Stacking? or VXLAN? Included?

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 55
New Feature

Catalyst Leadership in Enterprise Networks


Enhanced

A Platform based Approach


Catalyst Center and Meraki Dashboard Secure Networking Digital Experience Operational Simplicity

Common Cloud Managed

28M Network Devices Managed


Campus Automation
Policy Catalyst

50% Y/Y 19M APs | 6M Switches | 2.5M Routers | 830M Clients


Secure Equipment AI Endpoint Infrastructure
Access Analytics as a Code

13M 15.3M SD-Access ThousandEyes S3 & CloudWatch


Devices on Devices on (LISP & EVPN) Digital Experience Integration
Catalyst Center Meraki Dashboard
High-speed Visibility, Control
AI Ops & Assurance
Encryption & Rollback

Catalyst 9000 Family

100,000+ Customers, Millions of Switches

Catalyst 9K continues to be the fastest


ramping product in the company's
history - Chuck Robbins, CEO Cisco Systems
Cisco Validated Profiles Industry Industry Cisco Modeling
(CVP) Validated Reports Certifications Labs

#CiscoLive Session ID © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 56
Keep Learning! cisco.com/go/cvd
Cisco Validated Design (CVD) cs.co/en-cvds

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 57
References – Multi-Layer Campus
Type Sub-Type References
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html
www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Campus/HA_campus_DG/hacampusdg.html
General Multi-Layer www.ccexpert.us/network-design-2/designing-a-campus-network-design-topology.html
networkdirection.net/articles/network-theory/hierarchicalnetworkmodel
www.geeksforgeeks.org/types-of-area-networks-lan-man-and-wan/
www.atlantic.net/managed-services/network-edge/
Edge www.ccexpert.us/network-design/enterprise-edge-modules.html
what-when-how.com/ipv6-for-enterprise-networks/enterprise-edge-network-design-ipv6/
www.geeksforgeeks.org/difference-between-lan-and-man

Core Interconnect www.ti.com/solution/intra-dc-interconnect-metro


en.wikipedia.org/wiki/Backbone_network
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html#Corelayer
www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Campus/HA_campus_DG/hacampusdg.html#wp1107724
Baseline www.ccexpert.us/network-design/campus-core-design-considerations.html
en.wikipedia.org/wiki/Hierarchical_internetworking_model#Core_layer
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html#Twotierdesign
www.econfigs.com/ccna-1-5-compare-and-contrast-collapsed-core-and-three-tier-architectures
Collapsed Core interestingtraffic.nl/2018/06/08/collapsed_core_design
Distribution oreilly.com/library/view/ccna-data-center/9780133860429/ch01lev3sec4.html
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html#Distributionlayer
Baseline www.ccexpert.us/network-design/building-distribution-layer-design-considerations.html
en.wikipedia.org/wiki/Hierarchical_internetworking_model#Distribution_layer
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html#Accesslayer
www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Campus/HA_campus_DG/hacampusdg.html#wp1107746
Baseline www.ccexpert.us/network-design/building-access-layer-design-considerations.html
en.wikipedia.org/wiki/Hierarchical_internetworking_model#Access_layer
Access Routed Access
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html#Layer3routedaccesscampusdesign
www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Campus/HA_campus_DG/hacampusdg.html#wp1108952
www.cisco.com/c/en/us/td/docs/solutions/Verticals/CCI/CCI/DG/cci-dg/cci-dg.html#99480
Extended/IOT www.geeksforgeeks.org/5-layer-architecture-of-internet-of-things/

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 58
References – ECMP & StackWise(Virtual)
Type Sub-Type References
www.cisco.com/c/en/us/solutions/hybrid-work/what-is-high-availability.html#~infrastructure-elements
General Redundancy www.ccexpert.us/network-design/designing-link-redundancy.html
www.geeksforgeeks.org/redundant-link-problems-in-computer-network/
www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/5212-46.html
ECMP www.ccexpert.us/routing-protocols/equalcost-load-balancing.html
en.wikipedia.org/wiki/Equal-cost_multi-path_routing
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html#EtherChannel
Core EtherChannel en.wikipedia.org/wiki/Link_aggregation#Network_backbone
en.wikipedia.org/wiki/Multi-chassis_link_aggregation_group
www.ciscolive.com/c/dam/r/ciscolive/emea/docs/2020/pdf/BRKCRS-2650.pdf
SVL www.cisco.com/c/en/us/products/collateral/switches/catalyst-9000/nb-06-cat-9k-stack-wp-cte-en.html
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html#StackWiseVirtualTechnology
www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/5212-46.html
ECMP www.ccexpert.us/routing-protocols/equalcost-load-balancing.html
en.wikipedia.org/wiki/Equal-cost_multi-path_routing
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html#EtherChannel
Distribution EtherChannel en.wikipedia.org/wiki/Link_aggregation
en.wikipedia.org/wiki/Multi-chassis_link_aggregation_group
www.ciscolive.com/c/dam/r/ciscolive/emea/docs/2020/pdf/BRKCRS-2650.pdf
SVL www.cisco.com/c/en/us/products/collateral/switches/catalyst-9000/nb-06-cat-9k-stack-wp-cte-en.html
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html#StackWiseVirtualTechnology
www.cisco.com/c/en/us/support/docs/lan-switching/spanning-tree-protocol/10555-15.html
ECMP en.wikipedia.org/wiki/Spanning_Tree_Protocol#Path_to_the_root_bridge
en.wikipedia.org/wiki/Flex_links
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html#EtherChannel
Access EtherChannel en.wikipedia.org/wiki/EtherChannel
www.ciscolive.com/c/dam/r/ciscolive/emea/docs/2020/pdf/BRKCRS-2650.pdf
www.cisco.com/c/en/us/products/collateral/switches/catalyst-9300-series-switches/white-paper-c11-741468.html
Stacking www.cisco.com/c/en/us/products/collateral/switches/catalyst-9200-series-switches/nb-06-stackwise-architecture-cte-en.html
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html#SwitchStacksandCiscoStackWiseTechnology

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 59
References – SD-Access, EVPN & MPLS
Type Sub-Type References
www.cisco.com/c/en/us/solutions/intent-based-networking.html
General SDN/IBN www.networkworld.com/article/3281447/a-new-era-of-campus-network-design.html
www.geeksforgeeks.org/difference-between-software-defined-network-and-traditional-network/
www.ciscolive.com/c/dam/r/ciscolive/us/docs/2020/pdf/DGTL-BRKCRS-2810.pdf#page=27
SDA www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-sda-design-guide.html#BorderNode
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-sda-design-guide.html#ControlPlaneNode
www.ciscolive.com/c/dam/r/ciscolive/us/docs/2021/pdf/BRKENS-2003.pdf#page=12
Core EVPN www.cisco.com/c/en/us/td/docs/switches/lan/catalyst9500/software/release/17-
7/configuration_guide/vxlan/b_177_bgp_evpn_vxlan_9500_cg/bgp_evpn_vxlan_overview.html#id_126799
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html#AlternativevirtualizationdesignforcampusBGPEVPNVXLAN
www.ciscolive.com/c/dam/r/ciscolive/us/docs/2020/pdf/DGTL-BRKMPL-1100.pdf#page=48
MPLS www.ciscolive.com/c/dam/r/ciscolive/us/docs/2020/pdf/DGTL-BRKMPL-2112.pdf#page=42
www.geeksforgeeks.org/multi-protocol-label-switching-mpls/
www.ciscolive.com/c/dam/r/ciscolive/us/docs/2020/pdf/DGTL-BRKCRS-2810.pdf#page=19
SDA www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-sda-design-guide.html#IntermediateNode
www.ciscolive.com/c/dam/r/ciscolive/us/docs/2021/pdf/BRKENS-2003.pdf#page=12
Distribution EVPN www.cisco.com/c/en/us/td/docs/switches/lan/catalyst9500/software/release/17-
7/configuration_guide/vxlan/b_177_bgp_evpn_vxlan_9500_cg/bgp_evpn_vxlan_overview.html#id_126799
www.ciscolive.com/c/dam/r/ciscolive/us/docs/2020/pdf/DGTL-BRKMPL-1100.pdf#page=48
MPLS www.ciscolive.com/c/dam/r/ciscolive/us/docs/2020/pdf/DGTL-BRKMPL-2112.pdf#page=42
www.geeksforgeeks.org/multi-protocol-label-switching-mpls/
www.ciscolive.com/c/dam/r/ciscolive/us/docs/2020/pdf/DGTL-BRKCRS-2810.pdf#page=24
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-sda-design-guide.html#EdgeNode
SDA www.cisco.com/c/dam/en/us/solutions/collateral/internet-of-things/nb-09-intent-based-iot-wp-cte-en.pdf
www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-campus-lan-wlan-design-guide.html#CiscoSoftwareDefinedAccesscampusdesign

Access EVPN
www.ciscolive.com/c/dam/r/ciscolive/us/docs/2021/pdf/BRKENS-2003.pdf#page=12
www.cisco.com/c/en/us/td/docs/switches/lan/catalyst9500/software/release/17-
7/configuration_guide/vxlan/b_177_bgp_evpn_vxlan_9500_cg/bgp_evpn_vxlan_overview.html#id_126799
www.ciscolive.com/c/dam/r/ciscolive/us/docs/2020/pdf/DGTL-BRKMPL-1100.pdf#page=48
MPLS www.geeksforgeeks.org/multi-protocol-label-switching-mpls/

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 60
Complete Your Session Evaluations

Complete a minimum of 4 session surveys and the Overall Event Survey to be


entered in a drawing to win 1 of 5 full conference passes to Cisco Live 2025.

Earn 100 points per survey completed and compete on the Cisco Live
Challenge leaderboard.

Level up and earn exclusive prizes!

Complete your surveys in the Cisco Live mobile app.

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 61
• Visit the Cisco Showcase
for related demos

• Book your one-on-one


Meet the Engineer meeting
Continue Attend the interactive education
your education

with DevNet, Capture the Flag,
and Walk-in Labs

• Visit the On-Demand Library


for more sessions at
www.CiscoLive.com/on-demand

#CiscoLive BRKENS-1501 © 2024 Cisco and/or its affiliates. All rights reserved. Cisco Public 62
Thank you

#CiscoLive

You might also like