300-410 ENARSI

Implementing Cisco Enterprise Advanced Routing and Services v1.0 (300-410)

Exam Description: Implementing Cisco Enterprise Advanced Routing and Services v1.0 (ENARSI 300-410) is a 90-minute exam associated with the CCNP Enterprise Certification. This exam certifies a candidate’s knowledge of implementation and troubleshooting of advanced routing technologies and services including Layer 3, VPN services, infrastructure security, infrastructure services, and infrastructure automation. The course, Implementing Cisco Enterprise Advanced Routing and Services, helps candidates prepare for this exam.

The following topics are general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. To better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.

  1. 35% Layer 3 Technologies
    1. Troubleshoot administrative distance (all routing protocols)
    2. Troubleshoot route map for any routing protocol (attributes, tagging, filtering)
    3. Troubleshoot loop prevention mechanisms (filtering, tagging, split horizon, route poisoning)
    4. Troubleshoot redistribution between any routing protocols or routing sources
    5. Troubleshoot manual and auto-summarization with any routing protocol
    6. Configure and verify policy-based routing
    7. Configure and verify VRF-Lite
    8. Describe Bidirectional Forwarding Detection
    9. Troubleshoot EIGRP (classic and named mode)
      1. Address families (IPv4, IPv6)
      2. Neighbor relationship and authentication
      3. Loop-free path selections (RD, FD, FC, successor, feasible successor, stuck inactive)
      4. Stubs
      5. Load balancing (equal and unequal cost)
      6. Metrics
    10. Troubleshoot OSPF (v2/v3)
      1. Address families (IPv4, IPv6)
      2. Neighbor relationship and authentication
      3. Network types, area types, and router types
        1. Point-to-point, multipoint, broadcast, nonbroadcast
        2. Area type: backbone, normal, transit, stub, NSSA, total stub
        3. Internal router, backbone router, ABR, ASBR
        4. Virtual link
      4. Path preference
    11. Troubleshoot BGP (Internal and External)
      1. Address families (IPv4, IPv6)
      2. Neighbor relationship and authentication (next-hop, multihop, 4-byte AS, private AS, route refresh, synchronization, operation, peer group, states, and timers)
      3. Path preference (attributes and best path)
      4. Route reflector (excluding multiple route reflectors, confederations, dynamic peer)
      5. Policies (inbound/outbound filtering, path manipulation)
  2. 20% VPN Technologies
    1. Describe MPLS operations (LSR, LDP, label switching, LSP)
    2. Describe MPLS Layer 3 VPN
    3. Configure and verify DMVPN (single hub)
      1. GRE/mGRE
      2. NHRP
      3. IPsec
      4. Dynamic neighbor
      5. Spoke-to-spoke
  3. 20% Infrastructure Security
    1. Troubleshoot device security using IOS AAA (TACACS+, RADIUS, local database)
    2. Troubleshoot router security features
      1. IPv4 access control lists (standard, extended, time-based)
      2. IPv6 traffic filter
      3. Unicast reverse path forwarding (uRPF)
    3. Troubleshoot control plane policing (CoPP) (Telnet, SSH, HTTP(S), SNMP, EIGRP, OSPF, BGP)
    4. Describe IPv6 First Hop security features (RA guard, DHCP guard, binding table, ND inspection/snooping, source guard)
  4. 25% Infrastructure Services
    1. Troubleshoot device management
      1. Console and VTY
      2. Telnet, HTTP, HTTPS, SSH, SCP
      3. (T)FTP
    2. Troubleshoot SNMP (v2c, v3)
    3. Troubleshoot network problems using logging (local, Syslog, debugs, conditional debugs, timestamps)
    4. Troubleshoot IPv4 and IPv6 DHCP (DHCP client, IOS DHCP server, DHCP relay, DHCP options)
    5. Troubleshoot network performance issues using IP SLA (jitter, tracking objects, delay, connectivity)
    6. Troubleshoot NetFlow (v5, v9, flexible NetFlow)
    7. Troubleshoot network problems using Cisco DNA Center assurance (connectivity, monitoring, device health, network health)