You are here
RS0175 - DNAC 2.1 Group-Based Access Control (Part 2)
Difficulty Level:
Lab Document:
<Please login to see the content>
Category:
Routing & Switching
Video Download:
Title: RS0175 - Video Download $17.00
The video shows you how to enable Group-Based Access Control in SDA using Cisco DNAC 2.1. Our scenario begins with a simple configuration to deny traffic between two user groups. We will then use Group-based Policy Analytic to identify type of traffic between endpoints, and leverage the information to restrict communication within the same endpoint group. Wireshark packet capture will be performed to give us an insight into VXLAN packet structure.
Part 2 of this video covers Group-based Policy Analytic
Topic:
- SDA Security Policy
- Cisco TrustSec (CTS)
- Scalable Group Tag (SGT)
- Access Contract
- Dynamic SGT assignment
- Policy Matrix and SGACL
-
Group-based Policy Analytic
- Netflow Telemetry
- VXLAN Packet Capture
- MicroSegmenataion
About Author
Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.