SDA

SDA Components

• DNAC (Digital Network Architecture Center)

• Border Node/Control Node

• Edge Node

• Wireless

• ISE

• Fusion Router

Edge Node

• Wired endpoint connectivitiy into the fabric

• Default gateway

• Security Enforcement

Wireless

• Wireless endpoint connectivity into the fabric

ISE (Identity Service Engine)

• AAA

• Trustsec

• Security Policy

Fusion Router

• Routing traffic in and out of the fabric

Overlay Networks

• Runs on top of an underlay network

• Virtualizes network communication

• Control Plane uses LISP routing

  • Highly scalable

  • Network Virtualization

  • Subnet Stretching

• Data plane uses VXLAN encapsulation

  • Security Group Tags (SGT)

  • Virtual Network Identifier (VNI)

Anycast Gateways

• Common default gateway on edge nodes

Configuration Example

Fusion Router

Fabric Seed Devices

Interface Configuration

ISIS Configuration

Configuring SSH for DNAC to communicate with Seed device

Cisco WLC

• Configure SNMP access on WLC

• Configure local account for initial discovery and fallback purposes

Cisco ISE Integration Prerequisite

• Administration > Deployment (Under System), enable pxGrid

• Administration > Settings > ERS Settings, enable ERS for Read/Write

DNAC interfaces

• 10 Gbps Enterprise port

  • Fabric device communication

  • GUI management

• 10 Gbps Clutser port: cluster communication

• 1Gbps CIMC port: out of band management

• 1Gbps DNAC GUI port: GUI management

• 1Gbps Cloud port: internet connectivity

Resource

• Cisco Catalyst Center-as-Code Network Compliance Use Cases - DEVNET-2157

• Deploying Cisco Catalyst Center in Seconds with CICD - DEVNET-2176