CCIE Course Details

The Cisco Certified Internetwork Expert, or CCIE, is a technical certification offered by Cisco Systems. The CCIE certifies the skills required of network engineers to plan, operate and troubleshoot complex, converged network infrastructures on a wide variety of Cisco equipment.


    Network Principles
    Network theory
o     Describe basic software architecture differences between IOS and IOS XE
     (i) Control plane and Forwarding plane
     (ii) Impact to troubleshooting and performances
     (iii) Excluding specific platform's architecture
o     Identify Cisco express forwarding concepts
     (i) RIB, FIB, LFIB, Adjacency table
     (ii) Load balancing Hash
     (iii) Polarization concept and avoidance
o     Explain general network challenges
     (i) Unicast flooding
     (ii) Out of order packets
     (iii) Asymmetric routing
     (iv) Impact of micro burst
o     Explain IP operations
     (i) ICMP unreachable, redirect
     (ii) IPv4 options, IPv6 extension headers
     (iii) IPv4 and IPv6 fragmentation
     (iv) TTL & (v) IP MTU
o     Explain TCP operations
     (i) IPv4 and IPv6 PMTU
     (ii) MSS &
    (iii) Latency &
    (iv) Windowing
     (v) Bandwidth delay product
     (vi) Global synchronization &
     (vii) Options
o     Explain UDP operations
     (i) Starvation &
     (ii) Latency
     (iii) RTP/RTCP concepts
    Network implementation and operation
o     Evaluate proposed changes to a network
o     (i) Changes to routing protocol parameters
o     (ii) Migrate parts of a network to IPv6
o     (iii) Routing protocol migration
o     (iv) Adding multicast support
o     (v) Migrate spanning tree protocol
o     (vi) Evaluate impact of new traffic on existing QoS design
    Network troubleshooting
o     Use IOS troubleshooting tools
     (i) debug, conditional debug
     (ii) ping, traceroute with extended options
     (iii) Embedded packet capture
     (iv) Performance monitor
o     Apply troubleshooting methodologies
     (i) Diagnose the root cause of networking issue (analyze symptoms,
    identify and describe root cause)
     (ii) Design and implement valid solutions according to constraints
     (iii) Verify and monitor resolution
o     Interpret packet capture
     (i) Using Wireshark trace analyzer
     (ii) Using IOS embedded packet capture

    Layer 2 Technologies
    LAN switching technologies
o     Implement and troubleshoot switch administration
•     (i) Managing MAC address table
•     (ii) errdisable recovery
•     (iii) L2 MTU
o     Implement and troubleshoot layer 2 protocols
     (i) CDP, LLDP
     (ii) UDLD
o     Implement and troubleshoot VLAN
     (i) Access ports
     (ii) VLAN database
     (iii) Normal, extended VLAN, voice VLAN
o     Implement and troubleshoot trunking
     (i) VTPv1, VTPv2, VTPv3, VTP pruning
     (ii) dot1Q
     (iii) Native VLAN
     (iv) Manual pruning
o     Implement and troubleshoot EtherChannel
     (i) LACP, PAgP, manual
     (ii) Layer 2, layer 3
     (iii) Load-balancing
     (iv) Etherchannel misconfiguration guard
o     Implement and troubleshoot spanning-tree
     (i) PVST+/RPVST+/MST
     (ii) Switch priority, port priority, path cost, STP timers
     (iii) port fast, BPDUguard, BPDUfilter
     (iv) loopguard, rootguard
o     Implement and troubleshoot other LAN switching technologies
o     Describe chassis virtualization and aggregation technologies
     (i) Multichassis
     (ii) VSS concepts
     (iii) Alternative to STP
     (iv) Stackwise
     (v) Excluding specific platform implementation
o     Describe spanning-tree concepts
     (i) Compatibility between MST and RSTP
     (ii) STP dispute, STP bridge assurance
    Layer 2 multicast
o     Implement and troubleshoot IGMP
     (i) IGMPv1, IGMPv2, IGMPv3
     (ii) IGMP snooping
     (iii) IGMP querier
     (iv) IGMP filter
     (v) IGMP proxy
o     Explain MLD
o     Explain PIM snooping
    Layer 2 WAN circuit technologies
o     Implement and troubleshoot HDLC
o     Implement and troubleshoot PPP
     (i) Authentication (PAP, CHAP)
     (ii) PPPoE
     (iii) MLPPP
o     Describe WAN rate-based ethernet circuits
     (i) Metro and WAN Ethernet topologies
     (ii) Use of rate-limited WAN ethernet services

    Layer 3 Technologies
    Addressing technologies
o     Identify, implement and troubleshoot IPv4 addressing and subnetting
     (i) Address types, VLSM
     (ii) ARP
o     Identify, implement and troubleshoot IPv6 addressing and subnetting
     (i) Unicast, multicast
     (ii) EUI-64
     (iii) ND, RS/RA
     (iv) Autoconfig/SLAAC, temporary addresses (RFC4941)
     (v) Global prefix configuration feature
     (vi) DHCP protocol operations
     (vii) SLAAC/DHCPv6 interaction
     (viii) Stateful, stateless DHCPv6
     (ix) DHCPv6 prefix delegation
    Layer 3 multicast
o     Troubleshoot reverse path forwarding
     (i) RPF failure
     (ii) RPF failure with tunnel interface
o     Implement and troubleshoot IPv4 protocol independent multicast
     (i) PIM dense mode, sparse mode, sparse-dense mode
     (ii) Static RP, auto-RP, BSR
     (iii) BiDirectional PIM
     (iv) Source-specific multicast
     (v) Group to RP mapping
     (vi) Multicast boundary
o     Implement and troubleshoot multicast source discovery protocol
     (i) Intra-domain MSDP (anycast RP)
     (ii) SA filter
o     Describe IPv6 multicast
     (i) IPv6 multicast addresses
     (ii) PIMv6
    Fundamental routing concepts
o     Implement and troubleshoot static routing
o     Implement and troubleshoot default routing
o     Compare routing protocol types
     (i) Distance vector
     (ii) Link state
     (iii) Path vector
o     Implement, optimize and troubleshoot administrative distance
o     Implement and troubleshoot passive interface
o     Implement and troubleshoot VRF lite
o     Implement, optimize and troubleshoot filtering with any routing protocol
o     Implement, optimize & troubleshoot redistribution between any routing protocol
o     Implement, optimize & troubleshoot manual & auto summarization with any routing protocol
o     Implement, optimize and troubleshoot policy-based routing
o     Identify and troubleshoot sub-optimal routing
o     Implement and troubleshoot bidirectional forwarding detection
o     Implement and troubleshoot loop prevention mechanisms
     (i) Route tagging, filtering
     (ii) Split horizon
     (iii) Route poisoning
o     Implement and troubleshoot routing protocol authentication
     (i) MD5
     (ii) Key-chain
     (iii) EIGRP HMAC SHA2-256bit
     (iv) OSPFv2 SHA1-196bit
o     (v) OSPFv3 IPsec authentication
    RIP (v2 and v6)
o    Implement and troubleshoot RIPv2
o    Describe RIPv6 (RIPng)
    EIGRP (for IPv4 and IPv6)
o     Describe packet types
     (i) Packet types (hello, query, update, and such)
     (ii) Route types (internal, external)
o     Implement and troubleshoot neighbor relationship
     (i) Multicast, unicast EIGRP peering
     (ii) OTP point-to-point peering
     (iii) OTP route-reflector peering
     (iv) OTP multiple service providers scenario
o     Implement and troubleshoot loop free path selection
     (i) RD, FD, FC, successor, feasible successor
     (ii) Classic metric
     (iii) Wide metric
o     Implement and troubleshoot operations
     (i) General operations
     (ii) Topology table, update, query, active, passive
     (iii) Stuck in active
     (iv) Graceful shutdown
o     Implement and troubleshoot EIGRP stub
     (i) Stub
     (ii) Leak-map
o     Implement and troubleshoot load-balancing
     (i) equal-cost
     (ii) unequal-cost
     (iii) add-path
o     Implement EIGRP (multi-address) named mode
     (i) Types of families
     (ii) IPv4 address-family
     (iii) IPv6 address-family
o     Implement, troubleshoot and optimize EIGRP convergence and scalability
     (i) Describe fast convergence requirements
     (ii) Control query boundaries
     (iii) IP FRR/fast reroute (single hop)
     (iv) Summary leak-map
    (v) Summary metric
    OSPF (v2 and v3)
o     Describe packet types
     (i) LSA types (1, 2, 3, 4, 5, 7, 9)
     (ii) Route types (N1, N2, E1, E2)
o     Implement and troubleshoot neighbor relationship
o     Implement and troubleshoot OSPFv3 address-family support
     (i) IPv4 address-family
     (ii) IPv6 address-family
o     Implement and troubleshoot network types, area types and router types
     (i) Point-to-point, multipoint, broadcast, non-broadcast
     (ii) LSA types, area type: backbone, normal, transit, stub, NSSA, totally stub
     (iii) Internal router, ABR, ASBR
     (iv) Virtual link
o     Implement and troubleshoot path preference
o     Implement and troubleshoot operations
     (i) General operations
     (ii) Graceful shutdown
     (iii) GTSM (Generic TTL Security Mechanism)
o     Implement, troubleshoot and optimize OSPF convergence and scalability
     (i) Metrics
     (ii) LSA throttling, SPF tuning, fast hello
     (iii) LSA propagation control (area types, ISPF)
     (iv) IP FRR/fast reroute (single hop)
     (v) LFA/loop-free alternative (multi hop)
     (vi) OSPFv3 prefix suppression
    BGP
o     Describe, implement and troubleshoot peer relationships
     (i) Peer-group, template
     (ii) Active, passive
     (iii) States, timers
     (iv) Dynamic neighbors
o     Implement and troubleshoot IBGP and EBGP
     (i) EBGP, IBGP
     (ii) 4 bytes AS number
     (iii) Private AS
o     Explain attributes and best-path selection
o     Implement, optimize and troubleshoot routing policies
     (i) Attribute manipulation
     (ii) Conditional advertisement
     (iii) Outbound route filtering
     (iv) Communities, extended communities
     (v) Multi-homing
o     Implement and troubleshoot scalability
     (i) Route-reflector, cluster
     (ii) Confederations
     (iii) Aggregation, AS set
o     Implement and troubleshoot multiprotocol BGP
o     (i) IPv4, IPv6, VPN address-family
o     Implement and troubleshoot AS path manipulations
     (i) Local AS, allow AS in, remove private AS
     (ii) Prepend
     (iii) Regexp
o     Implement and troubleshoot other features
     (i) Multipath
     (ii) BGP synchronization
     (iii) Soft reconfiguration, route refresh
o     Describe BGP fast convergence features
     (i) Prefix independent convergence
     (ii) Add-path
     (iii) Next-hop address tracking
    ISIS (for IPv4 and IPv6)
o     Describe basic ISIS network
o     (i) Single area, single topology
o     Describe neighbor relationship
o     Describe network types, levels and router types
o     (i) NSAP addressing
o     (ii) Point-to-point, broadcast
o     Describe operations
o     Describe optimization features
o     (i) Metrics, wide metric

    VPN Technologies
    Tunneling
o     Implement and troubleshoot MPLS operations
o     (i) Label stack, LSR, LSP
o     (ii) LDP
o     (iii) MPLS ping, MPLS traceroute
o     Implement and troubleshoot basic MPLS L3VPN
     (i) L3VPN, CE, PE, P
     (ii) Extranet (route leaking)
o     Implement and troubleshoot encapsulation
     (i) GRE
     (ii) Dynamic GRE
     (iii) LISP encapsulation principles supporting EIGRP OTP
o     Implement and troubleshoot DMVPN (single hub)
     (i) NHRP
     (ii) DMVPN with IPsec using preshared key
     (iii) QoS profile
     (iv) Pre-classify
o     Describe IPv6 tunneling techniques
     (i) 6in4, 6to4
     (ii) ISATAP
     (iii) 6RD
     (iv) 6PE/6VPE
o     Describe basic layer 2 VPN - wireline
     (i) L2TPv3 general principals
     (ii) ATOM general principals
o     Describe basic L2VPN - LAN services
     (i) MPLS-VPLS general principals
     (ii) OTV general principals
    Encryption
o     Implement and troubleshoot IPsec with preshared key
     (i) IPv4 site to IPv4 site
     (ii) IPv6 in IPv4 tunnels
     (iii) Virtual tunneling Interface (VTI)
o     Describe GET VPN

    Infrastructure Security
    Device security
o     Implement and troubleshoot IOS AAA using local database
o     Implement and troubleshoot device access control
o     (i) Lines (VTY, AUX, console)
o     (ii) SNMP
o     (iii) Management plane protection
o     (iv) Password encryption
o     Implement and troubleshoot control plane policing
o     Describe device security using IOS AAA with TACACS+ and RADIUS
o     (i) AAA with TACACS+ and RADIUS
o     (ii) Local privilege authorization fallback
    Network security
o     Implement and troubleshoot switch security features
o     (i) VACL, PACL
o     (ii) Stormcontrol
o     (iii) DHCP snooping
o     (iv) IP source-guard
o     (v) Dynamic ARP inspection
o     (vi) port-security
o     (vii) Private VLAN
o     Implement and troubleshoot router security features
o     (i) IPv4 access control lists (standard, extended, time-based)
o     (ii) IPv6 traffic filter
o     (iii) Unicast reverse path forwarding
o     Implement and troubleshoot IPv6 first hop security
o     (i) RA guard
o     (ii) DHCP guard
o     (iii) Binding table
o     (iv) Device tracking
o     (v) ND inspection/snooping
o     (vii) Source guard
o     (viii) PACL
o     Describe 802.1x
o     (i) 802.1x, EAP, RADIUS
o     (ii) MAC authentication bypass

    Infrastructure Services
    System management
o     Implement and troubleshoot device management
o     (i) Console and VTY
o     (ii) telnet, HTTP, HTTPS, SSH, SCP
o     (iii) (T)FTP
o     Implement and troubleshoot SNMP
o     (i) v2c, v3
o     Implement and troubleshoot logging
o     (i) Local logging, syslog, debug, conditional debug
o     (ii) Timestamp
    Quality of service
o     Implement and troubleshoot end-to-end QoS
o     (i) CoS and DSCP mapping
o     Implement, optimize and troubleshoot QoS using MQC
o     (i) Classification
o     (ii) Network based application recognition (NBAR)
o     (iii) Marking using IP precedence, DSCP, CoS, ECN
o     (iv) Policing, shaping
o     (v) Congestion management (queuing)
o     (vi) HQoS, sub-rate ethernet link
o     (vii) Congestion avoidance (WRED)
o     Describe layer 2 QoS
o     (i) Queuing, scheduling
o     (ii) Classification, marking
    Network services
o     Implement and troubleshoot first-hop redundancy protocols
o     (i) HSRP, GLBP, VRRP
o     (ii) Redundancy using IPv6 RS/RA
o     Implement and troubleshoot network time protocol
o     (i) NTP master, client, version 3, version 4
o     (ii) NTP Authentication
o     Implement and troubleshoot IPv4 and IPv6 DHCP
o     (i) DHCP client, IOS DHCP server, DHCP relay
o     (ii) DHCP options
o     (iii) DHCP protocol operations
o     (iv) SLAAC/DHCPv6 interaction
o     (v) Stateful, stateless DHCPv6
o     (vi) DHCPv6 prefix delegation
o     Implement and troubleshoot IPv4 network address translation
o     (i) Static NAT, dynamic NAT, policy-based NAT, PAT
o     (ii) NAT ALG
o     Describe IPv6 network address translation
o     (i) NAT64
o     (ii) NPTv6
    Network optimization
o     Implement and troubleshoot IP SLA
     (i) ICMP, UDP, Jitter, VoIP
o     Implement and troubleshoot tracking object
     (i) Tracking object, tracking list
     (ii) Tracking different entities (e.g. interfaces, routes, IPSLA, and such)
o     Implement and troubleshoot netflow
     (i) Netflow v5, v9
     (ii) Local retrieval
     (iii) Export (configuration only)
o     Implement and troubleshoot embedded event manager
     (i) EEM policy using applet
o     Identify performance routing (PfR)
     (i) Basic load balancing
     (ii) Voice optimization

Last modified: Thursday, 21 July 2016, 3:49 AM