Cisco AWS Integration (CISAWS)

Cisco AWS Integration v1.0 (CISAWS) is a five-day instructor led course that includes both lectures and hands-on labs. Students will learn how to use a suite of Cisco products to deploy a hybrid cloud environment that supports application workload mobility between a private Data Center deployed with 100% Cisco components and the AWS public cloud infrastructure. Cisco products featured in this course include: Cisco CSR 1000V, Cisco ASAv, Cisco CloudCenter, and Cisco Tetration. Throughout this course, the topic of security is stressed. Emphasis is placed on using Cisco products to provide the highest level of security in a Cisco/AWS hybrid cloud environment.

Retail Price: $4,695.00

Next Date: Request Date

Course Days: 5

Request a Date

Request Custom Course


Upon completing this course, the learner will be able to meet these overall objectives:     

  • Understand the modularization of compute, network and storage services in a cloud environment
  • Understand the concept of application workload mobility
  • Understand how to create a hybrid cloud connecting a Cisco powered private cloud with Amazon Web Services
  • Understand and tour the Amazon Web Services eco-system
  • Learn how to deploy the Cisco CSR 1000V in Amazon Web Services
  • Learn how to interconnect a Cisco Private Cloud to Amazon Web Services using the Cisco CSR 1000V
  • Learn how to deploy the Cisco ASAv in Amazon Web Services
  • Learn how to deploy secure VPN interconnections between Amazon Web Services and a Cisco Private Cloud using the Cisco ASAv
  • Learn how to migrate application workloads from Amazon Web Services to a Cisco Private Cloud using Cisco CloudCenter
  • Learn how to monitor complex application dependencies in real time with Cisco Tetration in both a Cisco Private Cloud and in an Amazon Web Services public cloud environment


Who Should Attend

This course is designed for network and data center engineers who want to learn how to deploy a secure hybrid cloud between a Cisco powered private cloud and Amazon Web Services using Cisco products such as the Cisco CSR 1000V and the Cisco ASAv. Network and data center engineers will also learn how to migrate application workloads between a Cisco powered private cloud and Amazon Web Services using Cisco CloudCenter. Finally, network and data center engineer's monitor complex application workload dependencies in real time with Cisco Tetration in a secure hybrid cloud environment.



It is recommended that each student has the following knowledge and skills before attending this course:

  • CCNA or Equivalent Experience in Cisco routing and Cisco ASA firewall concepts



Lesson 1: Application Workloads in a Cloud Environment

  • Overview of Application Workload Components

    • Code

    • Data

    • Infrastructure

    • OS Infrastructure

    • Network Infrastructure (IP address blocks, DNS, caching, etc.)

    • Hardware Infrastructure (compute, storage, network hardware)

  • Decoupling application workload software and infrastructure components

  • Creating a common infrastructure for application workloads in a private and public cloud

  • Attaining a state of “infrastructure as code” using API’s for efficiently deploying and migrating application workloads from one cloud to another

  • Comparing and contrasting private and public environments

    • Creating a state-of-the-art Cisco Powered Private Cloud with ACI and UCS

    • Review of the major Public Cloud providers

      • Amazon Web Services

      • Microsoft Azure

      • Google Cloud Platform

  • Evaluating the pros and cons of private and public environments

  • Synthesizing private and public clouds to create a hybrid cloud environment

  • Designing a secure hybrid cloud model to facilitate application workload mobility

  • Review the challenges and complexities of deploying a hybrid cloud environment to facilitate application workload mobility

    • the application dependency challenge

    • the multi-faceted security challenges

  • Review the critical Cisco products to facilitate application workload mobility in a secure hybrid cloud environment

    • The Cisco CSR 1000V

    • The Cisco ASAv

    • Cisco CloudCenter

    • Cisco Tetration

Lessons 2: Introduction to AWS

  • AWS Architecture Overview

    • Introduction to AWS Elastic Services and the concept of auto-scaling cloud resources

    • Review of the AWS networking architecture

    • Review of the AWS “Shared Security Model”

      • The security challenges and responsibilities placed on AWS users

      • The Cisco suite of security services to meet AWS security challenges

        • Cisco ASAv

        • Cisco CSR 1000V

        • Cisco Tetration

  • AWS Services Overview

    • AWS service categories

      • Compute

      • Storage

      • Networking

      • Other AWS Service Categories

  • Using the AWS GUI Console

    • Provisioning a VM with the AWS EC2 wizard

    • Configuring the AWS networking environment with a VPC wizard

  • Using the AWS CLI

    • Viewing AWS CLI output in tabular form or in JSON

    • Managing a AWS EC2 instance with the CLI

    • Extracting AWS networking information with the CLI

  • Review of AWS Programmability using the Python BOTO3 SDK

  • Enhancing an AWS deployment with Cisco products

  • AWS  Design Considerations

    • How to avoid being locked into an AWS environment

    • Deploy AWS application workloads for cloud mobility with Cisco CloudCenter

    • Be prepared to meet the security challenges and responsibilities of deploying workloads in an AWS environment with the Cisco ASAv and Cisco CSR 1000v.

  • Comparing a Cisco Powered Private Cloud Deployment with an AWS Public Cloud Deployment

Lesson 3:  Deploying the Cisco CSR 1000V in AWS

  • Cisco CSR 1000V Overview

    • Router features

    • Technology Packages

    • Licensing Structure with AWS

  • Cisco CSR 1000V capabilities

    • provide enhanced routing features in an AWS environment

    • securely connect AWS Virtual Private Clouds

    • provide secure private cloud to AWS connections

    • provide secure branch office to AWS connections

  • Exploring the multiple Cisco CSR 1000V management interfaces

    • Cisco CSR 1000V CLI

    • Cisco CSR 1000V IOS-XE programmability features

      • NETCONF

      • RESTCONF

  • Installing a Cisco CSR 1000V in AWS

    • Using the Cisco CSR 1000V as a AWS VPC Gateway

  • Configuring DMVPN with the Cisco CSR 1000V to connect enterprise sites with AWS

    • Connect Enterprise Data Centers and Private Clouds to AWS

    • Connect Enterprise Offices to AWS

  • Configuring IPSec on Cisco CSR 1000V DMVPN tunnels

  • Using the Cisco CSR 1000V to establish AWS inter-VPC VPN Tunnels

  • Using the Cisco CSR 1000V to create redundant connections to AWS?

Lesson 4: Deploying the Cisco ASAv in AWS

  • Cisco ASAv Overview

    • Cisco ASAv features

    • Cisco ASAv deployment options.

    • Cisco ASAv Licensing Structure

    • Comparing roles of an Cisco ASAv and a Cisco CSR 1000V

  • Cisco ASAv capabilities

    • Connection Table & Local Host Table

    • Interface Access Rules / ACLs

    • Network Address Translation (NAT) operations

  • Cisco ASA management interfaces

    • Managing the Cisco ASAv using the CLI

    • Managing the Cisco ASAv using the GUI (ASDM)

    • Managing the Cisco ASAv using the REST-ful API

  • Installing the Cisco ASAv in AWS

    • Installing the Cisco ASAv in AWS

    • Configuring Interface Access Rules / ACLs

    • Configuring Network Address Translation (NAT)

  • Managing the Cisco ASAv

    • Managing Cisco ASAv with Cisco FireSIGHT Management Center

Lesson 5: Deploying Cisco CloudCenter in AWS

  • Cisco CloudCenter Overview

  • Cisco CloudCenter Components

    • Cisco CloudCenter Manager (CCM)

    • Cisco CloudCenter Orchestrator (CCO)

    • Advanced Message Queuing Protocol (AMQP)

    • Management Agents

  • Exploring Cisco CloudCenter User Interfaces

    • GUI

    • CLI


  • Installing Cisco CloudCenter

  • Cisco CloudCenter Configuration Defaults

    • Default number of Cisco CloudCenter templates

    • Default Cisco CloudCenter user accounts

    • Supported Public Clouds (emphasis on AWS)

  • Deploying an Application Cisco CloudCenter

    • Create an Application Profile: Model, Deploy and Manage

    • Using Cisco CloudCenter Templates

  • Migrating an application workload with Cisco CloudCenter from AWS 

  • Cisco CloudCenter advanced features: Benchmarking and Scaling Features

Lesson 6: Deploying Cisco Tetration in AWS

  • Cisco Tetration Overview

  • Cisco Tetration Features and Benefits

  • Cisco Tetration Analytics Platform Architecture

    • Functional Layers

    • Data Collection Layer

    • Analytics Layer

    • Enforcement Layer

    • Visualization Layer

  •  Cisco Tetration Hardware and Software Sensors

    • Supported Operating Systems for Full-Visibility

    • Supported Operating Systems for Enforcement

    • Supported Operating Systems for Universal Software Sensors

    • Hardware Sensor Supported Platform

      • Cisco Tetration Analytics Use Cases

    • Application visibility and insight into application component communication

    • Automated whitelist policy recommendations

    • Policy enforcement that enables application segmentation

    • Policy impact analysis and compliance

    • Complete flow visualization, exploration, and forensics

  • Cisco Tetration Licensing and Deployment Models

    • Base licensing

      • Add-on license for policy enforcement and application segmentation

      • Cisco Tetration Analytics Platform Large Form Factor

      • Cisco Tetration-M (Small Form Factor)

      • Cisco Tetration Cloud (Amazon Web Service [AWS] Public Cloud) on Cloud



  • Lab Exercise 2-1:  Lab Access and the AWS GUI

  • Lab Exercise 2-2:  Launch a CENTOS VM as an AWS EC2 Instance

  • Lab Exercise 2-3:  The AWS CLI

  • Lab Exercise 2-4:  The AWS API Interface with Python BOTO3

  • Lab Exercise 3-1:  Installation and Basic Setup of Cisco CSR 1000V

  • Lab Exercise 3-2:  Configuring a DMVPN Tunnel Using the Cisco CSR 1000V

  • Lab Exercise 3-3:  Managing the CSR 1000V using a REST-ful API 

  • Lab Exercise 4-1:  Installation and Basic Setup of Cisco ASAv

  • Lab Exercise 4-2:  Configuring Cisco ASAv for Stateful Packet Inspection and NAT

  • Lab Exercise 4-3:  Managing the Cisco ASAv using a REST-ful API 

  • Lab Exercise 5-1:  Installing and Configuring Cisco CloudCenter in AWS

  • Lab Exercise 5-2:  Deploy an Application to AWS 

Sorry! It looks like we haven’t updated our dates for the class you selected yet. There’s a quick way to find out. Contact us at 502.265.3057 or email

Request a Date