Home > Articles > Software-Defined Networking Security and Network Programmability

Software-Defined Networking Security and Network Programmability

Chapter Description

In this sample chapter from CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide, Omar Santos reviews exam objectives related to software-defined networking and network programmability.

This chapter covers the following topics:

  • Software-Defined Networking (SDN) and SDN Security

  • Network Programmability

This chapter starts with an introduction to SDN and different SDN security concepts, such as centralized policy management and micro-segmentation. This chapter also introduces SDN solutions such as Cisco ACI and modern networking environments such as Cisco DNA. You will also learn what are network overlays and what they are trying to solve.

The second part of this chapter provides an overview of network programmability and how networks are being managed using modern application programming interfaces (APIs) and other functions. This chapter also includes dozens of references that are available to enhance your learning.

The following SCOR 350-701 exam objectives are covered in this chapter:

  • Domain 1: Security Concepts

    • 1.7 Explain northbound and southbound APIs in the SDN architecture

    • 1.8 Explain DNAC APIs for network provisioning, optimization, monitoring, and troubleshooting

“Do I Know This Already?” Quiz

The “Do I Know This Already?” quiz allows you to assess whether you should read this entire chapter thoroughly or jump to the “Exam Preparation Tasks” section. If you are in doubt about your answers to these questions or your own assessment of your knowledge of the topics, read the entire chapter. Table 3-1 lists the major headings in this chapter and their corresponding “Do I Know This Already?” quiz questions. You can find the answers in Appendix A, “Answers to the ‘Do I Know This Already?’ Quizzes and Q&A Sections.”

Table 3-1 “Do I Know This Already?” Section-to-Question Mapping

Foundation Topics Section

Questions

Software-Defined Networking (SDN) and SDN Security

1–5

Network Programmability

6–10

  1. Which of the following are the three different “planes” in traditional networking?

    1. The management, control, and data planes

    2. The authorization, authentication, and accountability planes

    3. The authentication, control, and data planes

    4. None of these answers is correct.

  2. Which of the following is true about Cisco ACI?

    1. Spine nodes interconnect leaf devices, and they can also be used to establish connections from a Cisco ACI pod to an IP network or interconnect multiple Cisco ACI pods.

    2. Leaf switches provide the Virtual Extensible LAN (VXLAN) tunnel endpoint (VTEP) function.

    3. The APIC manages the distributed policy repository responsible for the definition and deployment of the policy-based configuration of the Cisco ACI infrastructure.

    4. All of these answers are correct.

  3. Which of the following is used to create network overlays?

    1. SDN-Lane

    2. VXLAN

    3. VXWAN

    4. None of these answers is correct.

  4. Which of the following is an identifier or a tag that represents a logical segment?

    1. VXLAN Network Identifier (VNID)

    2. VXLAN Segment Identifier (VSID)

    3. ACI Network Identifier (ANID)

    4. Application Policy Infrastructure Controller (APIC)

  5. Which of the following is network traffic between servers (virtual servers or physical servers), containers, and so on?

    1. East-west traffic

    2. North-south traffic

    3. Micro-segmentation

    4. Network overlays

  6. Which of the following is an HTTP status code message range related to successful HTTP transactions?

    1. Messages in the 100 range

    2. Messages in the 200 range

    3. Messages in the 400 range

    4. Messages in the 500 range

  7. Which of the following is a Python package that can be used to interact with REST APIs?

    1. argparse

    2. requests

    3. rest_api_pkg

    4. None of these answers is correct.

  8. Which of the following is a type of API that exclusively uses XML?

    1. APIC

    2. REST

    3. SOAP

    4. GraphQL

  9. Which of the following is a modern framework of API documentation and is now the basis of the OpenAPI Specification (OAS)?

    1. SOAP

    2. REST

    3. Swagger

    4. WSDL

  10. Which of the following can be used to retrieve a network device configuration?

    1. RESTCONF

    2. NETCONF

    3. SNMP

    4. All of these answers are correct.

2. Foundation Topics: Introduction to Software-Defined Networking | Next Section

Cisco Press Promotional Mailings & Special Offers

I would like to receive exclusive offers and hear about products from Cisco Press and its family of brands. I can unsubscribe at any time.