The Cisco SD-WAN and Next-Generation Security Bootcamp (SDWANB) v2.0 course is an intensive 3-day instructor-led training with heavy focus on how to deploy and configure the most relevant features of the SD-WAN solution. It covers both on-prem and cloud deployment details, and dives into the details of control, data and security policies. Students spend more than 50% of time in a dedicated lab environment, where they deploy the SD-WAN solution from scratch, including controllers bring-up, device templates configuration, control, data and security policies definitions, and deployment.

Choose date

Price chage currency
Date: from 28.7.2020 to 30.7.2020
Language: English
Location: Europe/Africa
Price on request Book now
Date: from 3.11.2020 to 5.11.2020
Language: English
Location: Europe/Africa
Price on request Book now


Upon completing this course, the learner will be able to meet these overall objectives:
  • Design and Deploy on-prem and cloud SD-WAN controllers
  • Utilize device templates to centralize configuration management
  • Design and implement control policies
  • Design and implement data policies
  • Design and implement direct Internet access
  • Design and implement application aware policies
  • Design and implement security policies (ENT FW, IPS, AMP, TG, Umbrella)


The course contains these components:

Day 1 – SD-WAN Basics
  • SD-WAN Architecture overview
  • Deploying the controllers on-prem
    • Lab: Configuring a redundant vSmart Controller
  • Cisco Cloud Delivered Controllers Specifics
  • Deploying WAN EDGE Routers
    • Lab: Configuring WAN Edge Routers
  • Zero Touch Provisioning (ZTP/PnP)
  • Network Address Translation (NAT) Traversal
  • High Availability and Scaling
  • Configuration Templates
    • Lab: Using Configuration Templates
  • Service Side Routing
  • Lab: Configuring OSPF
  • Migration from Traditional WAN to SD-WAN
  • SD-WAN Multi-Tenancy
    • Demonstration: Multi-tenancy Configuration
Day 2 – SD-WAN Policies
  • Policy Basics
  • Centralized Policies
    • Lab: Configuring topologies
    • Lab: Configuring VPN Membership
  • Localized Policies
    • Configuring OSPF metric-type and cost
  • Policy Applications
    • Application-Aware Routing
    • Lab: Application Aware Routing
  • Service Chaining
    • Lab: Service Chaining
  • Quality of Service
    • Lab: QoS
  • Network Address Translation
    • NAT Policies
  • Cisco SD-WAN Lawful Intercept

Day 3 – SD-WAN Security:
  • SD-WAN Security Overview
  • Enterprise Firewall with Application Awareness
    • Unified Threat Defense
    • Intrusion Detection-Prevention System
    • Umbrella DNS Security
    • URL Filtering
    • Advanced Malware Protection
    • Threat Grid
  • Security Policies
    • Compliance
      • Lab: Configuring a Compliance Policy
    • Guest Access
      • Lab: Configuring a Guest Access Policy
    • Direct Cloud Access
    • Direct Internet Access
      • Lab: Configuring a DIA Policy
    • Custom Policies
      • Lab: Configuring Custom Security Policies
  • Using APIs
    • Lab: Configuring and using vManage APIs
  • Licensing

Prerequisite Knowledge

The knowledge and skills that a learner should possess before attending this course are as follows:
  • Solid understanding of WAN technologies
  • Basic understanding of the SD-WAN solution