Designing & Implementing Cloud Connectivity (ENCC)

The Designing and Implementing Cloud Connectivity training helps you develop the skills required to design and implement enterprise cloud connectivity solutions. You will learn how to leverage both private and public internet-based connectivity to extend the enterprise network to cloud providers. You will explore the basic concepts surrounding public cloud infrastructure and how services like Software as a Service (SaaS) can be integrated. You will practice how to analyze and recommend connectivity models that provide the best quality of experience for users. You will learn to implement both Internet Protocol Security (IPsec) and Software-Defined Wide-Area Network (SD-WAN) cloud connectivity, as well as build overlay routing with Open Shortest Path First (OSPF) and Border Gateway Protocol (BGP). Finally, you will practice troubleshooting cloud connectivity issues relating to IPsec, SD-WAN, routing, application performance, and policy application.

Retail Price: $3,395.00

Next Date: 10/15/2024

Course Days: 4

Enroll in Next Date

Request Custom Course

Course Objectives:

  • Describe the fundamental components and concepts of cloud computing, including deployment models, cloud services, and cloud providers, to provide learners with a comprehensive overview of the subject  
  • Describe the options available for establishing connectivity to public cloud services, including point-to-point IPsec VPN and various Cisco Catalyst SD-WAN Cloud OnRamp deployment options 
  • Explain the public cloud connectivity architecture similarities and differences between different cloud service providers and explore the available connectivity options to the public cloud from a Cisco Catalyst SD-WAN environment  
  • Describe private connectivity options to public cloud provider infrastructure  
  • Describe direct connections to different public cloud providers for private peering  
  • Describe connectivity solutions such as colocation, cloud exchange, and software-defined cloud interconnect providers for connecting to the public cloud infrastructure  
  • Describe the available options for connectivity to SaaS applications from a geographically distributed organization’s premises  
  • Explain the emergence of DIA to optimize cloud application performance and user experience  
  • Describe the essential business and technical prerequisites for achieving high availability, resiliency, and scalability within an enterprise cloud connectivity network solution  
  • Describe AWS, Azure, and GCP native security  
  • Describe PCI DSS, FedRAMP, and HIPAA compliance requirements and their role in public cloud integration  
  • Implement underlay (internet-based) connectivity to connect to the public cloud  
  • Configure overlay tunnels over public transport to a cloud-native gateway in AWS, Azure, and GCP and to a cloud-hosted Cisco IOS XE router 
  • Deploy a cloud-hosted Cisco IOS XE-based router instance and customize the cloud networking setup  
  • Configure OSPF and BGP routing for typical enterprise network  
  • Explore Cisco Umbrella SIG  
  • Introduce Cisco vManage Policy Architecture and centralized data policies  
  • Explain AAR policy components and implementation 
  • Understand Microsoft 365 Traffic categories and service areas  
  • Describe the AppQoE feature  
  • Describe DRE deployment considerations  
  • Describe how to diagnose and troubleshoot common issues for connectivity to public cloud environments using internet-based connectivity  
  • Introduce the BGP routing protocol used for establishing connectivity between on-premises and public cloud devices over different connection options  
  • Discuss BGP peering and connectivity issues with Microsoft Azure and explore various troubleshooting and test tools and techniques  
  • Discuss some common configuration, networking, and routing issues encountered on customer edge devices when connecting to Microsoft Azure ExpressRoute  


Target Audience:

  • Cloud Architects  
  • Cloud Administrators  
  • Cloud Engineers  
  • Cloud Network Engineers  
  • Cloud Automation Engineers  
  • Cloud Systems Engineers  
  • Security Analysts  
  • Cloud Security Managers  
  • Cloud Consultants  
  • Cloud Application Developers  
  • Systems Engineers  
  • Technical Solutions Architect 



The knowledge and skills you are expected to have before attending this training are: 

  • Basic understanding of enterprise routing  
  • Basic understanding of WAN networking  
  • Basic understanding of VPN technology  
  • Basic understanding of Cisco Catalyst SD-WAN  
  • Basic understanding of Public Cloud services 

 These skills can be found in the following Cisco Learning Offerings:  

  • Implementing and Administering Cisco Solutions 2.0  
  • Implementing and Operating Cisco Enterprise Network Core Technologies 1.3  
  • Cisco SD-WAN Fundamentals 2.0  
  • Implementing Cisco SD-WAN Security and Cloud Solutions 1.1 

Course Outline:

Course Outline

  • Public Cloud Fundamentals 
  • Internet-Based Connectivity to Public Cloud 
  • Private Connectivity to Public Cloud 
  • SaaS Connectivity 
  • Resilient and Scalable Public Cloud Connectivity 
  • Cloud-Native Security Policies 
  • Regulatory Compliance Requirements 
  • Internet-Based Public Cloud Connectivity 
  • Overlay Routing Deployment 
  • Cisco SD-WAN Internet-Based Cloud Connectivity 
  • Cisco SD-WAN Cloud Security 
  • Cloud OnRamp for Saas 
  • Cisco SD-WAN Policies 
  • Application Quality of Experience 
  • Internet-Based Public Cloud Connectivity Diagnostics 
  • Overlay Routing Diagnostics 
  • Cisco SD-WAN Public Cloud Connectivity Diagnostics 

Lab Outline

  • Initial Lab Network Exploration 
  • Implement IPsec Connectivity to Public Cloud Gateways 
  • Implement IPsec Connectivity to Cloud-Hosted Cisco IOS-XE Routers 
  • Implement Overlay Routing 
  • Deploy Cloud OnRamp for Multicloud 
  • Deploy Umbrella Cloud Security 
  • Implement Cloud OnRamp for SaaS 
  • Troubleshoot Underlay Connectivity 
  • Troubleshoot Overlay Routing 
  • Diagnose Cloud OnRamp for Multicloud 
Course Dates Course Times (EST) Delivery Mode GTR
10/15/2024 - 10/18/2024 10:00 AM - 5:00 PM Virtual gauranteed to run course date Enroll