Course Code: 18921

Cisco AWS Integration

Class Dates:
5 Days
Class Time:
Virtual Instructor-Led Training


  • Course Overview
  • Cisco AWS Integration v1.0 (CISAWS) is a five-day instructor led course that includes both lectures and hands-on labs. Students will learn how to use a suite of Cisco products to deploy a hybrid cloud environment that supports application workload mobility between a private Data Center deployed with 100% Cisco components and the AWS public cloud infrastructure. Cisco products featured in this course include: Cisco CSR 1000V, Cisco ASAv, Cisco CloudCenter, and Cisco Tetration. Throughout this course, the topic of security is stressed. Emphasis is placed on using Cisco products to provide the highest level of security in a Cisco/AWS hybrid cloud environment.
  • Audience
  • This course is designed for network and data center engineers who want to learn how to deploy a secure hybrid cloud between a Cisco powered private cloud and Amazon Web Services using Cisco products such as the Cisco CSR 1000V and the Cisco ASAv. Network and data center engineers will also learn how to migrate application workloads between a Cisco powered private cloud and Amazon Web Services using Cisco CloudCenter. Finally, network and data center engineer’s monitor complex application workload dependencies in real time with Cisco Tetration in a secure hybrid cloud environment.


  • CCNA or Equivalent Experience in Cisco routing and Cisco ASA firewall concepts

Course Details

  • Objectives
  • Understand the modularization of compute, network and storage services in a cloud environment
  • Understand the concept of application workload mobility
  • Understand how to create a hybrid cloud connecting a Cisco powered private cloud with Amazon Web Services
  • Understand and tour the Amazon Web Services eco-system
  • Learn how to deploy the Cisco CSR 1000V in Amazon Web Services
  • Learn how to interconnect a Cisco Private Cloud to Amazon Web Services using the Cisco CSR 1000V
  • Learn how to deploy the Cisco ASAv in Amazon Web Services
  • Learn how to deploy secure VPN interconnections between Amazon Web Services and a Cisco Private Cloud using the Cisco ASAv
  • Learn how to migrate application workloads from Amazon Web Services to a Cisco Private Cloud using Cisco CloudCenter
  • Learn how to monitor complex application dependencies in real time with Cisco Tetration in both a Cisco Private Cloud and in an Amazon Web Services public cloud environment
  • Overview of Application Workload Components
  • Code, Data, Infrastructure, OS Infrastructure
  • Network Infrastructure (IP address blocks, DNS, caching, etc.)
  • Hardware Infrastructure (compute, storage, network hardware)
  • Decoupling application workload software and infrastructure components
  • Creating a common infrastructure for application workloads in a private and public cloud
  • Attaining a state of “infrastructure as code” using API’s for efficiently deploying and migrating application workloads from one cloud to another
  • Comparing and contrasting private and public environments
  • Creating a state-of-the-art Cisco Powered Private Cloud with ACI and UCS,
  • Review of the major Public Cloud providers,Amazon Web Services, Microsoft Azure,Google Cloud Platform
  • Evaluating the pros and cons of private and public environments,Synthesizing private and public clouds to create a hybrid cloud environment
  • Designing a secure hybrid cloud model to facilitate application workload mobility
  • Review the challenges and complexities of deploying a hybrid cloud environment to facilitate application workload mobility
  • .
  • The application dependency challenge
  • The multi-faceted security challenges
  • Review the critical Cisco products to facilitate application workload mobility in a secure hybrid cloud environment
  • The Cisco CSR 1000V, The Cisco ASAv
  • Cisco CloudCenter
  • Cisco Tetration
  • Lessons 2: Introduction to AWS
  • AWS Architecture Overview
  • AWS Services Overview
  • Using the AWS GUI Console
  • Using the AWS CLI
  • Review of AWS Programmability using the Python BOTO3 SDK
  • Enhancing an AWS deployment with Cisco products
  • AWS Design Considerations
  • Lesson 3: Deploying the Cisco CSR 1000V in AWS
  • Cisco CSR 1000V Overview
  • Cisco CSR 1000V capabilities
  • Exploring the multiple Cisco CSR 1000V management interfaces
  • Installing a Cisco CSR 1000V in AWS
  • Configuring DMVPN with the Cisco CSR 1000V to connect enterprise sites with AWS
  • Configuring IPSec on Cisco CSR 1000V DMVPN tunnels,
  • Using the Cisco CSR 1000V to establish AWS inter-VPC VPN Tunnels and to create redundant connections to AWS
  • Lesson 4: Deploying the Cisco ASAv in AWS
  • Cisco ASAv Overview
  • Cisco ASAv capabilities
  • Cisco ASA management interfaces
  • Installing the Cisco ASAv in AWS
  • Managing the Cisco ASAv with Cisco FireSIGHT Management Center
  • Lesson 5: Deploying Cisco CloudCenter in AWS
  • Cisco CloudCenter Overview
  • Cisco CloudCenter Components
  • Exploring Cisco CloudCenter User Interfaces
  • Installing Cisco CloudCenter
  • Cisco CloudCenter Configuration Defaults
  • Deploying an Application Cisco CloudCenter
  • Migrating an application workload with Cisco CloudCenter from AWS
  • Cisco CloudCenter advanced features: Benchmarking and Scaling Features
  • Lesson 6: Deploying Cisco Tetration in AWS
  • Cisco Tetration Overview
  • Cisco Tetration Features and Benefits
  • Cisco Tetration Analytics Platform Architecture
  • Functional Layers, Data Collection Layers, Analytics Layers, Enforcement Layers and Visualization Layer
  • Cisco Tetration Hardware and Software Sensors
  • Supported Operating Systems for Full-Visibility, Enforcement and Universal Software Sensors
  • Hardware Sensor Supported Platform, Cisco Tetration Analytics Use Cases
  • Application visibility and insight into application component communication
  • Automated whitelist policy recommendations
  • Policy enforcement that enables application segmentation
  • Policy impact analysis and compliance
  • Complete flow visualization, exploration, and forensics
  • .
  • Cisco Tetration Licensing and Deployment Models
  • Base licensing
  • Add-on license for policy enforcement and application segmentation
  • Cisco Tetration Analytics Platform Large Form Factor
  • Cisco Tetration-M (Small Form Factor)
  • Cisco Tetration Cloud (Amazon Web Service [AWS] Public Cloud) on Cloud