design bootcamp

As we love challenges and discussions, we’re also organizing network design bootcamp. Contrary to other companies specializing themselves in mass certification, it’s only bootcamp on the market that’s delivered by three instructors with CCIE and CCDE. Additionally, this is only bootcamp containing four big domains needed by modern architects and network engineers – Routing & Switching, Service Provider, Data Center and Security.

Who should attend?

Bootcamp was built and delivered already four times with architects, consultants, engineers and those of you preparing to the CCDE practical exam. It was also designed as a powerful help to people interested in technology and network design trends in group of people from different backgrounds and with various experiences across the world.


Only bootcamp on the market currently, focusing on designing campus networks, service provider networks and data centers. During 5 day intensive workshop, we’ll demonstrate and discuss topics related to designing scaleable, high available and secure networks. During the discussions we’ll deep dive into protocol design and it’s practical applicability. We will also go through major new trends in protocols, design and tools. During the scenario discussions, instructors will detail real-life connections between theoretical protocol design and practical network services. This training helps to build solid understanding of how to build and operate routing policies, security solutions, comparing and analysing viable options for specific engagements. We’ll also go over migration scenarios, as greenfield networks are rarity today.

As bootcamp is focused on practical design scenarios, it’s focused on architects, designers and engineers that already have solid fundaments of networking and application knowledge on the level of current CCNA and CCNP certifications. Discussions and scenarios let students get a wide picture of the situation, understand all the possible approaches to solving the problem and then choose best solution. Bootcamp is focused on delivering practical, useable knowledge and is built on top of knowledge not readily available in books or other training material.

One of the highlights of the bootcamp are three CCIE/CCDE instructors, experts in their domain. As it’s built on workshop-style, students will have a lot of opportunities to discuss their own scenarios, or discuss projects, challenges and interesting cases from the instructors vast experience.

Example discussion topics during bootcamp:

  • BGP confederations & route-reflectors – what’s the choice?
  • How to migrate OSPF to IS-IS, or EIGRP to OSPF?
  • How to run (and why!) two IGPs in one network?
  • Should you choose L2 or L3 for HA multicast streaming?
  • Can VPLS network loop?
  • What are the real-world caveats of VLAN translation?
  • Placement of IDS/IPS and firewalls on the network edge – where?
  • What’s the best HA strategy for firewalls between DCs?
  • What’s the value of front VRF in the encrypted DC scenario?


  • Cisco Certified Design Expert (CCDE)
  • Cisco Certified Architect (CCAr)


Strong understanding of network protocols at the CCNP, CCDP or higher required to fully appreciate the bootcamp.

Subjects covered

    First layer:

    – xWDM networks and their impact on network design
    – reliability
    – high availability
    – redundancy
    – dark and color fiber
    – management

    Second layer:

    – Ethernet
    – Spanning Tree and it’s variants
    – Spanning Tree migrations
    – loop prevention
    – flooding optimization
    – Carrier Ethernet network models, P2P and P2M services implementation, routing interaction
    – layer 2 transport

    ISP core network

    – OSPFv2 i OSPFv3
    – ISIS
    – segmentation, prefix summarization, convergence, redistribution, redundancy
    – IGP migrations in existing networks
    – microloops
    – best practices

    BGP protocol

    – best path algorithm, ‘hot potato’ routing
    – internal traffic engineering and edge traffic engineering (application of Local Preference, MED, AS_PATH, communities)
    – IGP vs BGP routing
    – BGP path redundancy
    – convergence
    – scalability
    – BGP Route Reflectors and Confederations discussion
    – BGP new features

    MPLS architecture

    – does MPLS have still value?
    – advertisement and label exchange, practical differences in LDP, RSVP and BGP
    – traffic engineering – MPLS-TE and fast convergence – MPLS-TE FRR
    – MPLS VPN – redundancy, convergence, scalability and migration scenarios
    – PE-CE edge, BGP, OSPF, EIGRP
    – loop avoidance, redundancy
    – central services in MPLS VPN architecture
    – Hub & Spoke and Partial-mesh topologies


    – IGP migrations
    – joining AS, AS change on the fly
    – other aspects of ISP migrations

    DDoS attacks

    – state-keeping devices vs stateless
    – layered defence

    Enterprise network based on EIGRP and OSPF

    – firewall location, different modes of firewall operation
    – extranet design (MPLS VPN/VRF included)
    – network virtualization
    – DMZ design
    – traffic filtering, inspection, performance and scalability
    – QoS, bandwidth optimization
    – encrypted and non-encrypted tunneling
    – Enterprise network migrations, redistributions, loop avoidance, cooperation with ISP
    – deciding on location of critical assets: voice, video, contact center, wireless controller, contect caching

    Network security

    – user authentication
    – network access and security
    – guest access
    – network attacks defence
    – remote access
    – secure WAN
    – VPN new features
    – end-user security
    – network segmentation with tags

    Network management and monitoring:

    – monitoring
    – application of (ER)SPAN, NetFlow, IPFIX, SNMP
    – configuration automation – Ansible, Chef, Puppet
    – best practices

    Address translation

    – IPv4, IPv6
    – migration and coexistence of IPv4 and IPv6

    Building and designing Data Center

    – STP removal, topologies
    – load-balancing, FHRP location
    – optimal data flow, scalability, redundancy, convergence
    – L2/L3 demarc in LAN/DC, segmentation, MSTP vs xSTP
    – DC services: firewall, IPS, antyvirus, load-balancer, NAT, DHCP, DNS, SSL offload
    – DC redundancy: A/A, traffic engineering for ingress/egress of DC
    – Leaf/Spine topologies
    – overlay networks in DC: Fabric Path vs TRILL, OTV, EVPN, STT/VXLAN/NVGRE
    – DC interconnect
    – North-South and East-West security models

    SDN networks, models, pros and cons, integration with legacy architectures, examples of real-life deployments.

Additional information:

Materials in English.

Next planned delivery:

  • in Polish language: 10.X.2016

“retake” policy:

  • any attendee can take part of the current version of the bootcamp
  • seats are limited for retake, priority is given to new attendees

More information & registration page:

  • CSH Hector: