思科软件安全接入最佳实践 - 设计和部署.pdf

《思科软件安全接入最佳实践 - 设计和部署.pdf》由会员分享，可在线阅读，更多相关《思科软件安全接入最佳实践 - 设计和部署.pdf（68页珍藏版）》请在三个皮匠报告上搜索。

1、#CiscoLive#CiscoLiveMahesh Nagireddy Technical Marketing Engineering,Technical LeaderCCIE R&SBRKENS-2502Design and DeploymentCisco SD-Access Best Practices 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEnter your personal notes hereCisco Webex App Questions?Use Cisco Web

2、ex App to chat with the speaker after the sessionFind this session in the Cisco Live Mobile AppClick“Join the Discussion”Install the Webex App or go directly to the Webex spaceEnter messages/questions in the Webex spaceHowWebex spaces will be moderated by the speaker until June 9,2023.12343https:/ 2

3、023 Cisco and/or its affiliates.All rights reserved.Cisco PublicBRKENS-25023 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveCisco SD-Access Learning MapBRKENS-25024Agenda 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicIntroductionSD-Access Scale&Readines

4、sSD-Access Single-Site Design OptionsSD-Access Multi-Site Design OptionsSD-Access Policy Design OptionsBRKENS-25025 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveCisco ISECisco SD-AccessFabric Roles&TerminologyControl-Plane Nodes Map System that manages Endpoint to Devic

5、e relationshipsFabric Edge Nodes A fabric device(e.g.Access or Distribution)that connects Wired Endpoints to the SD-Access fabricIdentity Services NAC&ID Services(e.g.ISE)for dynamic Endpoint to Group mapping and Policy definitionFabric Border Nodes A fabric device(e.g.Core)that connects External L3

6、 network(s)to the SD-Access fabricIntermediate Nodes(Underlay)Fabric Border Fabric Border NodesNodesFabric Edge Fabric Edge NodesNodesNetwork Automation Simple GUI and APIs for intent-based Automation of wired and wireless fabric devicesNetwork Assurance Data Collectors analyze Endpoint to Applicati