The Cisco CCIE ® Data Center version 2.1 unifies written and lab exam topics documents into a unique curriculum, while explicitly disclosing which domains pertain to which exam, and relative weight of each domain.

The Cisco CCIE Data Center written exam version 2.1 (400-151) validates the expertise that candidates to have to design, implement, diagnose, and troubleshoot advanced data center technologies. Candidates must understand the requirements of data centers and how different components in the data center interoperate, and must be able to translate that understanding into the device configurations. The exam is a two-hour test with 90 to 110 questions. The exam is closed book, and no outside reference materials are allowed.

The Cisco CCIE Data Center lab exam version 2.1 is an eight-hour, hands-on exam that requires a candidate to configure, diagnose, and troubleshoot a series of complex data center scenarios for a given specification. Troubleshooting is an important skill, and candidates are expected to diagnose and solve issues as part of the CCIE lab exam.

The following topics are general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. To better reflect the contents of the exam or to improve clarity, the guidelines below may change at any time without notice.

Course Syllabus

  • Data Center Layer 2/Layer 3 Connectivity

    Design, implement, and troubleshoot Layer 2 technologies
    – Link aggregation
    – Tagging/trunking
    – Spanning Tree Protocol

    Design, implement, and troubleshoot overlays
    – VXLAN
    – EVPN
    – OTV

    Design, implement, and troubleshoot routing protocols and features
    – OSPF
    – IS-IS
    – BGP
    – BFD
    – FHRP

    Design, implement, and troubleshoot multicast protocols
    – PIM
    – IGMP
    – Describe interfabric connectivity
    – Multipod
    – Multisite

    Design, implement, and troubleshoot external fabric connectivity
    – L2/L3Out
    – VRF-Lite

    Design, implement, and troubleshoot traffic management
    – Queueing
    – Policing
    – Classification/marking
    – RoCE

  • Data Center Network Services

    Design, implement, and troubleshoot network services insertion and redirection
    – Policy-based routing
    – Policy-based redirection
    – VRF stitching
    – BD/VLAN stitching

    Design, implement, and troubleshoot services
    – PTP
    – NTP
    – DNS
    – DHCP

    Design, implement, and troubleshoot RBAC
    – RADIUS
    – TACACS+
    – LDAP
    – AAA

    Design, implement, and troubleshoot maintenance tasks
    – Backup and restore
    – Firmware upgrades and downgrades

    Design, implement, and troubleshoot monitoring services
    – Flow export
    – SPAN
    – SNMP
    – Syslog

    Design, implement, and troubleshoot security features
    – CoPP
    – Storm control
    – ACLs
    – First-hop security
    – Contracts
    – Port security
    – MACsec
    – Private VLANs

  • Data Center Storage Networking and Compute

    Describe, configure, and troubleshoot infrastructure to support block storage protocols
    – Fibre Channel
    – FCoE
    – iSCSI

    Design, implement, and troubleshoot data center storage networking features
    – Zoning
    – NPV/NPIV

    Design, implement, and troubleshoot compute policies and profiles
    – Cisco UCS Manager
    – Cisco Intersight

    Design, implement, and troubleshoot data center connectivity
    – SAN/LAN uplinks
    – Rack server integration
    – Fabric ports
    – Appliance ports

  • Data Center Automation and Orchestration

    Implement and troubleshoot data center tasks using provided Python scripts
    – Create, read, update, delete using RESTful APIs
    – Deploy and modify configurations
    – Data collection and statistics

    Describe and design data center orchestration using tools
    – Cisco Intersight
    – Cisco UCS Director
    – Cisco CloudCenter

  • Data Center Fabric Infrastructure

    Configure and troubleshoot physical fabric components
    – Fabric discovery
    – Controllers/network managers
    – Switches

    Design, implement, and troubleshoot fabric policies
    – Access policies
    – Layer 2/Layer 3 multitenancy
    – Troubleshooting policies
    – Monitoring policies

    Design, implement, and troubleshoot tenant policies
    – Application profiles
    – Networking
    – Security

    Analyze and troubleshoot logical fabric elements
    – Faults
    – Events
    – Health indicators

    Design, implement, and troubleshoot virtual networking
    – Cisco AVE
    – vSphere Distributed Switch
    – Hyper-V switch

  • Evolving Technologies v1.1

    => Compare and contrast public, private, hybrid, and multicloud design considerations
    – Infrastructure, platform, and software as a service (XaaS)
    – Performance, scalability, and high availability
    – Security implications, compliance, and policy
    – Workload migration
    => Describe cloud infrastructure and operations
    – Compute virtualization (containers and virtual machines)
    – Connectivity (virtual switches, SD-WAN and SD-Access)
    – Virtualization functions (NFVi, VNF, and L4/L6)
    – Automation and orchestration tools (CloudCenter, DNA-center, and Kubernetes)

    Network programmability (SDN)
    => Describe architectural and operational considerations for a programmable network
    – Data models and structures (YANG, JSON and XML)
    – Device programmability (gRPC, NETCONF and RESTCONF)
    – Controller based network design (policy driven configuration and northbound/southbound APIs)
    – Configuration management tools (agent and agentless) and version control systems(Git and SVN)

    Internet of things (IoT)
    => Describe architectural framework and deployment considerations for IoT
    – IoT technology stack (IoT Network Hierarchy, data acquisition and flow)
    – IoT standards and protocols (characteristics within IT and OT environment)
    – IoT security (network segmentation, device profiling, and secure remote access)
    – IoT edge and fog computing (data aggregation and edge intelligence)