digital Network Academy

NextGen Networking Certification

1 Objectives
The primary objectives of the Network Fundamentals training program are:

▪ To Understand Networking & Security Basics: Provide participants with a clear understanding of networking
concepts, NextGen firewall and AWS networking including network architecture, protocols, and components

▪ To Master TCP/IP: Ensure participants can confidently work with the TCP/IP protocol suite, including IP
addressing, subnets, and routing.

▪ To Learn Network Services: Introduce participants to key network services such as DNS, DHCP, and NAT

▪ To Implement Basic Network Security: Familiarize participants with basic network security principles and the
importance of firewalls, encryption, and access controls.

▪ To Troubleshoot Network & firewall Issues: Teach participants how to identify and resolve common network
problems.

2 Delivery Methods
The Network Fundamentals training program will be delivered through a combination of methods to ensure a
comprehensive learning experience:

▪ Instructor-Led Training (ILT): Engaging classroom sessions led by experienced instructors.

▪ Hands-On Labs: Practical exercises and simulations for real-world experience.

▪ E-Learning Modules: Access to online modules and resources for self-paced learning.

▪ Group Discussions: Collaborative discussions to foster knowledge sharing

3 Benefits
▪ Improved network management and troubleshooting skills
▪ Enhanced network security awareness and risk mitigation, contribute network-related projects and tasks
▪ Greater confidence in working with network devices and configurations, An overall boost in productivity and
performance
 Fundamental of Networking training proposal

4 Networking fundamental Training topics

Following table describing about training topics along with hands-on LAB. All the topics has been considered & shall be
covered as per track.

Topic 1 Network Fundamentals

1.1 What is networking and different types of components
1.2 IPv4 addressing (IP Classes, Subnet Mask, subnetting)
1.3 IPv4 address designing (VLSM design)
1.4 OSI & TCP/IP Layer Model, Data encapsulation, MAC/ethernet-address, ARP, RARP, inverse ARP
1.5 Brief about Transport layer protocol – HTTPS, FTP, TFTP, SNMP, DNS and so on
1.6 Role of router, switches, firewall, endpoints
1.7 Network topology architecture – Two-tier, Three-tier, Spine-leaf, WAN On-prem, Cloud
Lab-1 TCP/IPv4 LAN setting, IPv4 address assignment
Lab-2 PC to PC communication within same subnet (showcase ping & MAC-address)
Lab-3 PC to PC communication between different subnet (showcase ping & MAC-address)
Lab-4 Connecting router / switch via console port
Lab-5 Connecting router / switch via telnet port (line vty)
Lab-6 Configuring router – clock, NTP, banner,
Topic 2 Layer-2 switching
2.1 Switching functions, brief about vlan, default vlan, vlan ranges, MAC-address table, native vlan
2.2 Layer-2 and layer-3 switching and routing
2.3 Inter switch connectivity - access & trunk port, Native vlan, 802.1q
2.4 Switching (Layer-2) loop – STP, RSTP, PVST
2.5 Switchport security, Port Fast,
2.6 Ether-channel - Layer 2/Layer 3 EtherChannel (LACP) & PAgP, load distribution
2.7 Brief about different switching topology
Lab-1 Creating and configuring VLANs (add, remove, and rename vlan)
Lab-2 Configuring trunk ports between switches. Verifying VLAN and trunking configurations
Lab-3 Enable and configure inter-vlan communication
Lab-4 Configuring STP, RSTP & PVST & issue troubleshooting
Lab-5 Configuring Layer-2 and layer-3 EtherChannel – Dynamic & manual
Lab-6 Real life scenario labs
Topic 3 Layer-3 Routing
3.1 Routing functions & requirements, routing table, next-hop, network mask, prefix, last resort
3.2 Routing forwarding decision – longest prefix, administrative distance, Routing protocol metric
3.3 Brief about Router-on-stick, sub-interface, switch virtual interface & VRF- virtual routing & forwarding
3.4 Routing type - Inter-vlan routing, default routing, static routing, dynamic routing
3.5 Dynamic routing protocol requirements and functionality
3.6 Routing protocol – OSPF (Area, ospf state, router type, virtual link, route filtering, LSA type, DR/BDR)
3.7 Routing protocol – BGP at basic level (BGP requirement, ASN, ibgp, ebgp, overview of attribute)
Lab-1 Configuring static & default routing with Next-hop address, exist interface, floating of static route

Networking fundamental proposal Email – [email protected] Contact - +91 7972860238

Raj Square, Pashan - Sus Rd, Pune, Maharashtra 411021
 Fundamental of Networking training proposal

Lab-2 Configuring VRF and inter-VRF routing

Lab-3 Implementing dynamic routing protocols OSPF, single area, multiple area
Lab-4 OSPF topology – Point-to-Point, broadcast, Verifying routing table and neighbour adjacencies
Lab-5 Configuring ibgp & ebgp, attribute AS-Path, local preference, origin code, Next-hop
Lab-6 Configuring advance BGP LAB – route filtering, route manipulation, best path selection
Topic 4 Access Control Lists (ACL)
4.1 Brief about ACL requirements, functionality, type of ACL, evaluation order & ACL rules
4.2 Brief about standard ACL its location, direction & command syntax
4.3 Brief about extended ACL, its location, direction & command syntax
4.4 Brief about named ACL, its location, direction & command syntax
4.5 ACL to interface for traffic filtering
4.6 How to edit ACL sequence number – advance
4.7 ACL implementation consideration
Lab-1 Configuring standard ACL list to filter data traffic
Lab-2 Configuring extended ACL list to filter data traffic
Lab-3 Configuring named ACL list to filter data traffic
Lab-4 Advance lab with real life scenario & deep dive troubleshooting
Topic 5 NAT – Network address translation
5.1 Brief about NAT and NAT requirement, private v/s public IP address
5.2 NAT addressing term, NAT process and NAT rule evaluation
5.3 Brief about static NAT – one to one NAT, Bidirectional & unidirectional NAT
5.4 Brief about dynamic / source NAT –Many to one – egress interface & IP Pool
5.5 Overloading NAT with Port address translation
Lab-1 Configuring static NAT – one to one NAT
Lab-2 Configuring static NAT – Bi-directional & uni-directional
Lab-3 Configuring dynamic / source NAT –Many to one – egress interface
Lab-4 Configuring dynamic / source NAT –Many to one – IP Pool
Lab-5 Implementing dynamic NAT and PAT
Lab-6 Verifying NAT translations, advance lab with real life scenario & deep dive troubleshooting
Topic 6 IP Services & Network Architecture
6.1 Brief about DNS & DHCP concepts, dhcp rely, dhcp snooping
6.2 Brief about First Hop Redundancy Protocol – HSRP & VRRP, load balancing
6.3 Brief about SNMP – Simple Network Management Protocol
6.4 Brief about FTP, TFTP, SSH, Telnet, syslog, radius, AAA, NTP
6.5 Basic of private WAN, VPN, MPLS-VPN, IP-Sec VPN, Remote access VPN
6.6 Two tier campus design, collapse core, networking with virtual switch
6.7 Brief about private cloud, public cloud, SDN and controller-based networks
Lab-1 Configuring DHCP server and client, router, and switch as dhcp server and client, dhcp snooping
Lab-2 Configure dynamic ARP inspection, Syslog
Lab-3 Configure router & switch for remote management

Networking fundamental proposal Email – [email protected] Contact - +91 7972860238

Raj Square, Pashan - Sus Rd, Pune, Maharashtra 411021
 Fundamental of Networking training proposal

Lab-4 Configure private WAN & Site-to-site VPN (at the high level)
Lab-5 Diagnosing and resolving common network issues
Lab-6 Using show commands and debug tools for network troubleshooting
Lab-7 Verifying network connectivity and performance
Topic-7 Device Management
7.1 Secure the router & switch CLI – local username, external authentication, remote access secure shell
7.2 Brief about discovery protocol – cdp & lldp
7.3 Configuration Management - Initial Configuration, change management, configuration back
7.4 Firmware and Software Updates – Cisco IOS
7.5 Monitoring and Performance Management - Real-time Monitoring, Alerting & Performance Optimization
7.6 Brief about IP SLA, NetFlow
7.7 Device management best practises
Lab-1 configure basic router & switch management
Lab-2 Configure local username, external authentication, remote access secure shell
Lab-3 Configure discovery protocol – cdp & lldp
Lab-4 Show case Firmware and Software Updates – Cisco IOS
Lab-5 Configure and verify basic device hardening.
Lab-6 Set up role-based access control (RBAC) to limit access to authorized personnel
Lab-7 Network documentation
Topic-8 Network Architecture & Network Automation
8.1 LAN Architecture – 2 tier, 3 tier & SOHO (Small office/home office)
8.2 LAN Architecture – Concepts of PoE
8.3 WAN Architecture – Metro ethernet, MPLS (Multiprotocol label switching), internet VPN
8.4 WAN Architecture – site-to-site VPN with IPSec
8.5 Cloud Architecture - Explain the role and function of network components, server virtualization
8.6 Cloud Architecture – private cloud, public cloud, IaaS, SaaS,
8.7 Introduction to controller-based networking
8.8 Explain the role and function of network components. Endpoints & servers
8.9 Describe characteristics of network topology architectures - SPINE-LEAF network
8.10 Compare traditional networks with controller-based networking
8.11 Describe controller-based and software defined architectures (overlay, underlay, and fabric)
8.12 Separation of control plane and data plane
8.13 Cisco Software-Define Access (SDA)
8.14 Controllers (Cisco DNA Center and WLC)
8.15 Compare traditional networks with controller-based networking
8.16 Understanding REST & JSON
8.17 Northbound and southbound APIs
8.18 Understanding Ansible, puppet & Chef

Networking fundamental proposal Email – [email protected] Contact - +91 7972860238

Raj Square, Pashan - Sus Rd, Pune, Maharashtra 411021
 Fundamental of Networking training proposal

5 PaloAlto NextGen firewall

Following table describing about training topics along with hands-on LAB. All the topics has been considered & shall be
covered as per track.

Topic 1 PaloAlto Architecture, Design & management

1.1 Palo Alto Networks platforms and deployment scenarios & Security operating platform architecture
1.2 Brief about paloalto hardware, virtual appliance, data plane & control plane
1.3 Firewall deployment options – TAP, v-wire, Later-2 & layer-3
1.4 Security zones and policies – Interzone & intra zone
1.5 Demonstrate the knowledge of firewall management interfaces – methods of access (Web, Cli & API)
1.6 Brief about local administrator, role-based authentication
1.7 Maintain firewall configuration – save, load, export & import
1.8 Active/Passive and Active/Active HA deployment modes
1.9 Core concept of firewall failover & pre-emption
Lab-1 Configure firewall management interface through cli & GUI, access restriction, management service
Lab-2 Configuring – Hostname, DNS, NTP, syslog, banner, time-zone, logging, service-route
Lab-3 Configuring local admin, user, user-group, role-base access
Lab-4 Configuring firewall in TAP mode, v-wire mode & later-2 & test the traffic
Lab-5 Demonstrate – PANOS upgradation – manually and automated
Lab-6 Demonstrate – configuration backup, restore, rollback, save, export & import action
Lab-7 Demonstrate – active/passive high availability & traffic failover
Topic 2 Security policy architecture
2.1 Brief about objects – address, address group, service, service group, region, application – group & filters
2.2 Policy types and evaluation order, Rule base best practices
2.3 Application identification techniques, Application signatures and updates
2.4 Custom App-ID and application groups, Application overrides and filters
2.5 Brief about paloalto security NAT (dynamic NAT, static NAT & PAT)
2.6 Concept of source NAT (Many-to-One, one-to-one, interface NAT & Pool NAT)
2.7 Concept of destination NAT (one-to-many, one-to-one, interface NAT & Pool NAT)
Lab-1 Configure security rule for outbound & east-west traffic (port and app-id base security rules)
Lab-2 Configure security for inbound traffic
Lab-3 Configuration of source NAT (dynamic IP, dynamic IP & port, static)
Lab-4 Configuration of destination NAT (one-to-one, one-to-Many PAT, dynamic IP-session distribution)
Lab-5 Scenario base LAB – single service provider & dual service provider
Topic 3 Routing
3.1 Brief about static routing & different next-hop option
3.2 Fundamental of policy base forwarding – PBF
3.3 Fundamental virtual router and virtual system
Lab-1 Static route configuration
Lab-2 Configuration of PBF (policy base forwarding)
Lab-3 Configuration of multiple virtual routing and routing between virtual router

Networking fundamental proposal Email – [email protected] Contact - +91 7972860238

Raj Square, Pashan - Sus Rd, Pune, Maharashtra 411021
 Fundamental of Networking training proposal

6 AWS Network & security

Following table describing about training topics along with hands-on LAB. All the topics has been considered & shall be
covered as per track.

Topic Fundamental of AWS cloud networking & Security

1.1 About cloud networking, public cloud, private cloud & hybrid cloud network
1.2 About AWS instance, instance type, templates, Amazon Machine Images (AMIs), elastic block storage
1.3 Fundamentals of AWS Networking, Building multiple Virtual Private Cloud (VPC)
1.4 Virtual Private Cloud (VPC), subnets, routing tables, security groups, and network access control lists
Route table (subnet association, edge association & route propagation), Elastic IP’s & Manually create
1.5
network interface
1.6 Configuring network connectivity architectures by using AWS services in a single-VPC or multi VPC design

1.7 VPC endpoint service (network & Gateway) & configuring a hub-and-spoke network architecture

Transit Gateway (transit gateway attachment, Transit gateway policy tables, Transit gateway route tables),
1.8
Transit gateway attachment propagation & association
Configuring and Deploying VPCs with Multiple Subnets, Virtual private gateway, site-to-site VPN connection &
1.9
Client VPN endpoints
1.10 Network ACL (define outbound and inbound rules, subnet associations)
Load Balancing and Auto Scaling (Internet-facing and internal, IP listener routing, auto scaling group)
 Application Load Balancer
1.11
 Network Load Balancer
 Gateway Load Balancer
1.12 Target group (Instance, IP address, application load balancer)

Networking fundamental proposal Email – [email protected] Contact - +91 7972860238

Raj Square, Pashan - Sus Rd, Pune, Maharashtra 411021