Cisco Intelligent WAN (IWAN) (Networking Technology)

Brad Edgeworth, David Prall, Jean Marc Barozet, Anthony Lockhart, Nir Ben-Dvora

  • 出版商: Cisco Press
  • 出版日期: 2016-10-28
  • 售價: $3,090
  • 貴賓價: 9.5$2,936
  • 語言: 英文
  • 頁數: 880
  • 裝訂: Paperback
  • ISBN: 1587144638
  • ISBN-13: 9781587144639
  • 相關分類: Cisco
  • 海外代購書籍(需單獨結帳)

買這商品的人也買了...

相關主題

商品描述

<Description>

The complete guide to Cisco® IWAN: features, benefits, planning, and deployment

Using Cisco Intelligent WAN (IWAN), businesses can deliver an uncompromised experience, security, and reliability to branch offices over any connection. Cisco IWAN simplifies WAN design, improves network responsiveness, and accelerates deployment of new services. Now, there’s an authoritative single-source guide to Cisco IWAN: all you need to understand it, design it, and deploy it for maximum value.

In Cisco Intelligent WAN (IWAN), leading Cisco experts cover all key IWAN technologies and components, addressing issues ranging from visibility and provisioning
to troubleshooting and optimization. They offer extensive practical guidance on migrating to IWAN from your existing WAN infrastructure.

This guide will be indispensable for all experienced network professionals who support WANs, are deploying Cisco IWAN solutions, or use related technologies such as DMVPN or PfR.

Deploy Hybrid WAN connectivity to increase WAN capacity and improve application performance
Overlay DMVPN on WAN transport to simplify operations, gain transport independence, and improve VPN scalability
Secure DMVPN tunnels and IWAN routers
Use Application Recognition to support QoS, Performance Routing (PfR), and application visibility
Improve application delivery and WAN efficiency via PfR
Monitor hub, transit, and branch sites, traffic classes, and channels
Add application-level visibility and per-application monitoring to IWAN routers
Overcome latency and bandwidth inefficiencies that limit application performance
Use Cisco WAAS to customize each location’s optimizations, application accelerations, and virtualization
Smoothly integrate Cisco WAAS into branch office network infrastructure
Ensure appropriate WAN application responsiveness and experience
Improve SaaS application performance with Direct Internet Access (DIA)
Perform pre-migration tasks, and prepare your current WAN for IWAN
Migrate current point-to-point and multipoint technologies to IWAN

<Sample Content>

Table of Contents

Part I Introduction to IWAN

Chapter 1 Evolution of the WAN

WAN Connectivity

Increasing Demands on Enterprise WANs

Quality of Service for the WAN

Branch Internet Connectivity and Security

Cisco Intelligent WAN

Summary

Part II Transport Independent Design

Chapter 2 Transport Independence

WAN Transport Technologies

Benefits of Transport Independence

Summary

Chapter 3 Dynamic Multipoint VPN

Generic Routing Encapsulation (GRE) Tunnels

Next Hop Resolution Protocol (NHRP)

Dynamic Multipoint VPN (DMVPN)

DMVPN Configuration

Spoke-to-Spoke Communication

Problems with Overlay Networks

IP NHRP Authentication

Unique IP NHRP Registration

DMVPN Failure Detection and High Availability

DMVPN Dual-Hub and Dual-Cloud Designs

IWAN DMVPN Sample Configurations

Sample IWAN DMVPN Transport Models

Backup Connectivity via Cellular Modem

IWAN DMVPN Guidelines

Troubleshooting Tips

Summary

Further Reading

Chapter 4 Intelligent WAN (IWAN) Routing

Routing Protocol Overview

Topology

WAN Routing Principles

EIGRP for IWAN

Border Gateway Protocol (BGP)

FVRF Transport Routing

Multicast Routing

Summary

Further Reading

Chapter 5 Securing DMVPN Tunnels and Routers

Elements of Secure Transport

IPsec Fundamentals

IPsec Tunnel Protection

IKEv2 Protection

Securing Routers That Connect to the Internet

Control Plane Policing (CoPP)

Device Hardening

Summary

Further Reading

Part III Intelligent Path Control

Chapter 6 Application Recognition

What Is Application Recognition?

What Are the Benefits of Application Recognition?

NBAR2 Application Recognition

NBAR2 Application ID, Attributes, and Extracted Fields

NBAR2 Operation and Functions

Custom Applications and Attributes

NBAR2 State with Regard to Device High Availability

Encrypted Traffic

NBAR2 Interoperability with Other Services

NBAR2 Protocol Discovery

NBAR2 Visibility Dashboard

NBAR2 Protocol Packs

Validation and Troubleshooting

Summary

Further Reading

Chapter 7 Introduction to Performance Routing (PfR)

Performance Routing (PfR)

Introduction to the IWAN Domain

Intelligent Path Control Principles

Summary

Further Reading

Chapter 8 PfR Provisioning

IWAN Domain

Topology

PfR Configuration

Advanced Parameters

Path Selection

Summary

Further Reading

Chapter 9 PfR Monitoring

Topology

Checking the Hub Site

Checking the Transit Site

Check the Branch Site

Monitoring Operations

Summary

Further Reading

Chapter 10 Application Visibility

Application Visibility Fundamentals

Performance Metrics

Flexible NetFlow

Evolution to Performance Monitor

Metrics Export

Deployment Considerations

Summary

Further Reading

Part IV Application Optimization

Chapter 11 Introduction to Application Optimization

Application Behavior

Cisco Wide Area Application Services (WAAS)

Caching and Compression

Application-Specific Acceleration

Summary

Further Reading

Chapter 12 Cisco Wide Area Application Services (WAAS)

Cisco WAAS Architecture

Cisco WAAS Platforms

WAAS Design and Performance Metrics

Cisco WAAS Operational Modes

Interception Techniques and Protocols

WAAS Interception Network Integration Best Practices

Summary

Further Reading

Chapter 13 Deploying Application Optimizations

GBI: Saving WAN Bandwidth and Replicating Data

WAN Optimization Solution

Deploying Cisco WAAS

AppNav-XE

GBI Branch Deployment

Summary

Part V QoS

Chapter 14 Intelligent WAN Quality of Service (QoS)

QoS Overview

Ingress QoS NBAR-Based Classification

Ingress LAN Policy Maps

Egress QoS DSCP-Based Classification

Egress QoS Policy Map

Hierarchical QoS

DMVPN Per-Tunnel QoS

QoS and IPSec Packet Replay Protection

Complete QoS Configuration

Summary

Further Reading

Part VI Direct Internet Access

Chapter 15 Direct Internet Access (DIA)

Guest Internet Access

Guest Access Quality of Service (QoS)

Guest Access Web-Based Acceptable Use Policy

Internal User Access

Fully Specified Static Default Route

Verification of Internet Connectivity

Network Address Translation (NAT)

Policy-Based Routing (PBR)

Internal Access Zone-Based Firewall (ZBFW)

Cloud Web Security (CWS)

Baseline Configuration

Outbound Proxy

WAAS and WCCP Redirect

Prevention of Internal Traffic Leakage to the Internet

Summary

References in this Chapter

Part VII Migration

Chapter 16 Deploying Cisco Intelligent WAN

Pre-Migration Tasks

Migration Overview

Deploying DMVPN Hub Routers

Migrating the Branch Routers

Post-Migration Tasks

Migrating from a Dual MPLS to a Hybrid IWAN Model

Migrating IPsec Tunnels

PfR Deployment

Testing the Migration Plan

Summary

Further Reading

Part VIII Conclusion

Chapter 17 Conclusion and Looking Forward

Intelligent WAN Today

Intelligent WAN Architecture

Intelligent WAN Tomorrow

Appendix A Dynamic Multipoint VPN Redundancy Models

Appendix B IPv6 Dynamic Multipoint VPN

Index

商品描述(中文翻譯)

《Cisco® IWAN 完全指南:功能、優勢、規劃和部署》是一本全面介紹 Cisco Intelligent WAN (IWAN) 的書籍。使用 Cisco IWAN,企業可以在任何連接下為分支辦公室提供無損的體驗、安全性和可靠性。Cisco IWAN 簡化了廣域網路設計,提高了網絡響應能力,加速了新服務的部署。現在,有了這本權威的單一來源指南,您可以全面了解 Cisco IWAN,設計它並實現最大價值。

在《Cisco Intelligent WAN (IWAN)》中,領先的 Cisco 專家涵蓋了所有關鍵的 IWAN 技術和組件,解決了從可見性和配置到故障排除和優化的問題。他們提供了廣泛的實用指南,以從現有的廣域網路基礎設施遷移到 IWAN。

這本指南對於所有有經驗的網絡專業人士來說都是必不可少的,他們支持廣域網路、部署 Cisco IWAN 解決方案或使用相關技術,如 DMVPN 或 PfR。

以下是一些主題的摘要:
- 部署混合廣域網路連接以增加廣域網路容量和改善應用性能
- 在廣域網路傳輸上覆蓋 DMVPN 以簡化操作、獲得傳輸獨立性和提高 VPN 可擴展性
- 保護 DMVPN 隧道和 IWAN 路由器
- 使用應用識別來支持 QoS、性能路由 (PfR) 和應用可見性
- 通過 PfR 改善應用交付和廣域網路效率
- 監控中心、中轉站和分支站點、流量類別和通道
- 為 IWAN 路由器添加應用層級的可見性和每個應用程序的監控
- 克服限制應用性能的延遲和帶寬效率問題
- 使用 Cisco WAAS 自定義每個位置的優化、應用加速和虛擬化
- 將 Cisco WAAS 順利集成到分支辦公室網絡基礎設施中
- 確保適當的廣域網路應用響應和體驗
- 通過直接網際網路訪問 (DIA) 改善 SaaS 應用性能
- 執行預遷移任務,為 IWAN 準備當前的廣域網路
- 將當前的點對點和多點技術遷移到 IWAN

本書還包含了《範例內容》和《目錄》等章節,以及介紹 IWAN 的第一部分和獨立傳輸設計的第二部分。