CCIEEW - BYOL - Presentation Deck

Build Your Own Lab (& Beyond)
CCIE Ent. Wireless
Samuel Clements – Engineering Director, Office of the CTO, Mobility at Presidio

@samuel_clements
Santiago Lopez – CCIE Ent. Wireless EPM
santilop@cisco.com | santi@dmdjourney.org | @dmdjourney
6th April 2021
1 Do I need one? What are my options?
2 Where do I start?
Agenda 3 Your lab components
4 Licensing
5 Other options
© 2021 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2
1
q Hands-on is a must – speed!
1. BYOL
§ Best way to learn
Do I need one? § Most flexibility
What are my options? § Grow as you need/can afford
2. Rack rentals
§ Complement your own lab
§ Check costs
3. Second-hand lab
2
Equipment
• APs: 9100 / 3800 / 3700 / 1850
• Switches: 9300 / 9200 / 3650
• WLCs: 3504 / 9800 (Embedded/Private Cloud)
/ ME / vWLC
• DNAc
• VMs: CMX, ISE ,PI, Windows 10, AD
Where do I start? Software
• AireOS 8.10
• CMX 10.6
• DNAc 1.3.1
• IOS-XE 16.12
• ISE 2.4
• PI 3.7
https://learningnetwork.cisco.com/s/article/ccie-enterprise-wireless-v1-0-equipment-and-software-list
AireOS & IOS-XE
3
Access Points
Access Points options
• AireOS 8.10.X – Lightweight APs: 9130I, 9120, 9117, 9115, 1700, 1800i, 1810
OEAP, 1810W, 1815i, 1830, 1840, 1850, 2700, 2800, 3702, 3800, 4800, 700,
700W, AP803
• Catalyst 9800 16.12.X – Lightweight APs: 9120i, 9117, 9115, 1700, 1800,
1815i, 1840, 1850, 2700, 2800, 3700, 3800, 4800
• Embedded 16.12.X – Lightweight APs: 9130, 9120, 9117, 9115, 1800i,
1810OEAP, 1815i, 1830, 1840, 1850, 2800, 3800, 4800
• Autonomous Access Point 15.3.X – 3700, 2700, 1700, 1570, 1530, 700W, 702I
Can be present in the lab

Can be a good/cheaper alternative for BYOL
1700 vs 1815 vs 3700 vs 3800 vs 9100
• All supported by CMX 10.6

• All supported by PI 3.7
• 1700 not supported on 16.12.x for Embedded but supported on 9800-CL
• 1815 wave 2 AP that can act as AireOS controller or join AireOS/IOS-XE controllers
• 9100 – can run Embedded Wireless Controller
• Only 1700/3700 can be deployed in Autonomous mode
1700 vs 1815 vs 3700
WLCs
AireOS WLC - 2504 vs 3504 / vWLC
• 2504 – 8.5.171.0 supports all APs
• Be aware of what features your code is missing
8.10.105.0
• Support for 9130-AXI
• support for 9120AXE, 9120AXP
• Mesh mode on wave 2 APs
• Airtime fairness support on wave 2 APs
• Intelligent capture support added to more APs - 1800s, 9115, 9117, 9120, IW3700, Cisco 6300 Embedded AP
• WPA3 support
• Enhanced Open support
• Wi-Fi Alliance Agile Multiband (MBO) support
• SNMP traps via SNMPv3
• Support for -P domain
• Sending access points events through radius accounting
• Password encryption
• per AP group NTP server
8.9.111.0
• Support for Catalyst 9120-AXI access point
8.9.100.0
• Support for Catalyst 9115 and 9117 access points
• Support for HE PHY layer (and new MCS rates)
https://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/201007-AireOS-feature-list-per-release.html
vWLC (AireOS) – not supported features
• Software-defined access • PMIPv6
• Domain-based ACLs • Datagram Transport Layer Security (DTLS)
• Internal DHCP server • EoGRE (Supported only in local switching mode)
• Cisco TrustSec • Workgroup bridges
• Access points in local mode • Client downstream rate limiting for central
switching
• Mobility or Guest Anchor role
• SHA2 certificates
• Wired Guest
• Controller integration with Lync SDN API
• Multicast
• Cisco OfficeExtend Access Points
• AP and Client SSO in High Availability
https://www.cisco.com/c/en/us/td/docs/wireless/controller/release/notes/crn810.html#wlc-vwlc
Mobility Express Solution (AireOS)
• APs with integrated controller functionality: Cisco Aironet 1540

series, 1560 series, 1815i, 1815m, 1815w,1830 series, 1850 series, 2800
series, 3800 series, 4800 series, Cisco 6300 Series Embedded Services
• APs without integrated controller functionality: Cisco Aironet 700i,

700w, 1700 series, 1810i, 1810w, 2700 series, 3700 series, Industrial
Wireless 3702, Cisco Catalyst 9100
Can be present in the lab

Can be a good/cheaper alternative for BYOL
Mobility Express – check supported features
Mobility Express WLC AireOS

8.10.105.0 8.10.105.0
1. Support for WPA3 1. Support for 9130-AXI
2. Support Trap Notification via SNMPv3 2. support for 9120AXE, 9120AXP
3. Support for RADIUS accounting messages for AP events 3. Mesh mode on wave 2 APs
4. Support for per AP group NTP Server 4. Airtime fairness support on wave 2 APs
5. Support for Mesh mode in Cisco Mobility Express 5. Intelligent capture support added to more APs - 1800s, 9115, 9117, 9120, IW3700
6. ME + RAP Support: 1542, 1562, 1815i, 1832, 1852, 2800, 3800, 4800, and 6300 6. WPA3 support
7. Indoor Mesh Support: 1815i, 1832, 1840, 1852, 2800, 3800, and 4800 7. Enhanced Open support
8. Configuration Management enhancements (scheduled download) 8. Wi-Fi Alliance Agile Multiband (MBO) support
9. Day 0 Flex+Bridge mode configuration 9. SNMP traps via SNMPv3
10. Support for -P domain
8.9.111.0 11. Sending access points events through radius accounting
1. Support for 9120 APs as member APs (not as Mobility Express controller AP) 12. Password encryption
13. per AP group NTP server
8.9.100.0
1. Support for 9115 and 9117 APs as member APs (not as Mobility Express contr. AP) 8.9.111.0
1. Support for Catalyst 9120-AXI access point
8.8.120.0
1. Flex+Mesh support on 1542 and 1562 8.9.100.0
1. Support for Catalyst 9115 and 9117 access points
8.8.110.0 2. Support for HE PHY layer (and new MCS rates)
1. Support for Cisco Umbrella
2. IPSK on FlexConnect 8.8.120.0
1. Support for -P domain
2. Support for Bluetooth Low energy (BLE) USB dongles
3. Wave 2 APS (1560/2800/3800) - Workgroup Bridge image software
4. 4000 WLANs support on WLCs (through "config wlan 4k-ssid enable")
IOS-XE – 9800 Private Cloud vs Embedded on 9300
• Embedded needs Fabric
o (until 17.3) only supported mode is SD-Access so DNAc is needed
• If you have a 9300 great, otherwise 9800-CL is best
• Can the AireOS WLC coexist with the Catalyst 9800 Wireless Controllers?
o Yes, Inter-Release Controller Mobility (IRCM) is supported with AireOS 8.5 MR3,
AireOS 8.5 MR4, and AireOS 8.8.111.0 and later.
o IRCM feature is not supported on the 2504 Wireless Controllers
2504 vs 1815 vs vWLC vs 9800-CL
• vWLC requires entitlement! • 9800-CL free to download

Switches
Switching options
• Most switches will do
• Support for fabric would be nice to get familiar with how it works with wireless
o Fabric Edge: 3650, 3850, 9200, 9300
o Fabric-in-a-box: 9300
o SD-Access Wireless
§ Controllers: 3504, 5520, 9800-CL
§ APs: 11ac wave 1 or wave 2
• 3750 / 3560 / 2960 / Compact switches
• APs might need PoE+
• QoS – focus on MQC
If you want to hands-on study fabric

Good for basic switching and connectivity
Wireless Clients!
Wireless Clients options and tools
• No physical phone on your desk • Cisco pages available on the day
• Windows 10 Ø Cisco https://www.cisco.com

o VM – will require USB wireless adapter Products
o Physical Support (product support docs)
Cisco Community
• Applications TAC cases
o Cisco AnyConnect
o Cisco Jabber Ø DevNet
o FTP https://developer.cisco.com/docs/
o Notepad++ APIs
o PuTTY and MTPuTTY Blogs
o Web browsers – Firefox & Google Chrome Chat with us
Community
Options to host VMs
Options to host VMs
Basic server will do
• Intel NUC
• Shuttle
• Second-hand server with reasonable spec
Check cost options with different vendors

Server specs
• Use lowest specs for VMs
• No DNAc
• Console access to all physical devices
Terminal Server • Easy OOB management
• Never lose connectivity
Grow your lab
1
4
3
Where is your lab?
At home
• VPN to dynamic public IP? No-IP – Dynamic DNS
• Does your home router support VLANs?
At the office
• Client VPN to work DMZ
In the Cloud
• IPsec Site-to-Site VPN
• Does your home router support Site-to-Site VPNs?
Licensing 4
• CMX – 120 day trial period

• DNAc – no license enforcement at this point, but no Cisco support
• ISE – 90 day evaluation
• PI – 60 day evaluation
• Switches – no license if you stick to 16.X train, otherwise license maybe required
• WLCs – RTU for AireOS / no hard enforcement on 9800s
• ESXi – 60 day evaluation – limited free version
• Enterprise licensing for console redirect on 9800s – virtual serial port concentrator
• Windows 10 Enterprise – 90 day evaluation
• https://www.microsoft.com/en-gb/evalcenter/evaluate-windows-10-enterprise
5
• Network simulation tool
Cisco Modeling Labs • Real Cisco images

(CML) • Paid for
https://developer.cisco.com/modeling-labs/
CML – cont’d
Good for: Limitations of CML:
• Build your own topologies • No support for wireless equipment
• Connect & configure
• Lab from anywhere
• Packet forwarding for L2, L3 & MPLS
Demos, training and sandboxes
dCloud
Fully scripted
Free – use your Cisco.com account*
https://dcloud.cisco.com
*Accounts associated to a Cisco partner will get access to more labs than a non-partner account
dCloud – cont’d
Good for:
• Self-paced labs
• Instant demos or scheduled
• Can book for 5 days
• Don’t be afraid to go off script
• Data Centers: APJ, EMEAR, US East/West
• dCloud Community
dCloud – Scheduling
dCloud – Session
• Any time access
• Self-paced
Cisco Digital • Paid for (3-Day Trial)
Learning
• use your Cisco.com account
https://digital-learning.cisco.com/#/login
Cisco Digital Learning – cont’d
Other resources
• Books
• Cisco Live! On-Demand Library for focused sessions

o SDA Wireless
o Cisco DNA Center
o Wireless Design, Troubleshooting, Security, QoS, etc.
• CCIE Ent. Wireless Learning Matrix

https://www.cisco.com/c/dam/en_us/training-events/le31/le46/cln/marketing/learning-matrix/CCIE-Enterprise-Wireless-v1-Learning-Matrix.xlsx
• Cisco Wireless Solutions Software Compatibility Matrix

https://www.cisco.com/c/en/us/td/docs/wireless/compatibility/matrix/compatibility-matrix.html
Wireless Community
• CCIE Ent. Wireless Community @ CLN

https://learningnetwork.cisco.com/s/topic/0TO3i0000009UQSGA2/ccie-enterprise-wireless-lab-examCisco Live! On-Demand Library
• Slack – wi-fipros.slack.com
• Twitter
Upcoming webinars
CCIE Prep Wi-Fi Guest Portals: from zero to hero with Cisco
Webinar ISE and CMX/DNA Spaces
April 29th, 2021
Series
Catalyst 9800 and CMX On Prem Integration
May 25th, 2021
DNAc Assurance – Client health and client 360

June 17th, 2021
Stay on track, sign up here: cisco.com/go/ccieprep
Poll: Have your say!
What blueprint domain would
you prefer the most for any A. Radio Frequency and Standards
upcoming CCIE Ent. Wireless
B. Enterprise Wired Campus
technology webinars?
C. Enterprise Wireless Network
D. Wireless Security and Identity Management
E. Wireless Business Applications and Services
F. Automation, Analytics and Assurance
Where are you at on your CCIE
journey? (select all applicable) A. Passed CCNP ENCOR
B. Building my own lab
C. Using training material from 3rd party vendor

D. Been studying for 6-9 months
E. Planning to book 1st attempt in next 3-6 months
Questions?
Thank You.

CCIEEW - BYOL - Presentation Deck

Uploaded by

Document Information

Original Description:

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

CCIEEW - BYOL - Presentation Deck

Uploaded by

Copyright:

Available Formats

Build Your Own Lab (& Beyond)

CCIE Ent. Wireless

Samuel Clements – Engineering Director, Office of the CTO, Mobility at Presidio

Agenda 3 Your lab components

Can be present in the lab

• All supported by CMX 10.6

• APs with integrated controller functionality: Cisco Aironet 1540

• APs without integrated controller functionality: Cisco Aironet 700i,

Can be present in the lab

Mobility Express WLC AireOS

• If you have a 9300 great, otherwise 9800-CL is best

• vWLC requires entitlement! • 9800-CL free to download

If you want to hands-on study fabric

• Windows 10 Ø Cisco https://www.cisco.com

Check cost options with different vendors

• CMX – 120 day trial period

• Network simulation tool

Cisco Modeling Labs • Real Cisco images

• Cisco Live! On-Demand Library for focused sessions

• CCIE Ent. Wireless Learning Matrix

• Cisco Wireless Solutions Software Compatibility Matrix

• CCIE Ent. Wireless Community @ CLN

DNAc Assurance – Client health and client 360

Stay on track, sign up here: cisco.com/go/ccieprep

F. Automation, Analytics and Assurance

B. Building my own lab

C. Using training material from 3rd party vendor

You might also like