CCDEv3 Learning Matrix

CCDEv3 Learning Matrix Last updated 7/15/2021
Goal
This Learning Matrix aims to help you getting started on preparing for the CCDE certification.
The primary source of resources are Cisco Press books, Cisco Live on-demand library, and Cisco documentation.
It is meant as a reference and a starting point, and in no way intends to provide a full set of resources.
This spreadsheet consists of multiple sheets
The Exam Topics sheet provides reading suggestions for the overall exam topics - these topics are not bound to a
The Core Technologies sheet contains reading suggestions for the Core technologies, and expert-level knowledge
Each offered Area of Expertise modules has its own sheet with suggested readings for technologies in that specifi
Disclaimer
Sipmply reading the content referenced within this Learning Matrix is not a guarantee to pass the exam, but it will
Plenty of other resources are available that cover the same exam topics as the ones suggested here. You are encou
This Learning Matrix should be considered a living document; with the vast amount of resources available, the obj
Note
This exam is dual-stack oriented by design, so unless otherwise noted, expert-level knowledge of both IPv4 and IPv
If you know of relevant resources that would be beneficiary to include in this Learning Matrix, please feel free to le
The CCDE Written exam only uses technologies from the Core technologies list - Area of Expertise technologies wil
, and Cisco documentation.
l set of resources.
hese topics are not bound to a specific technology and covers things like methodologies and concepts. The topics listed cover b
es, and expert-level knowledge of these technologies is expected for all candidates.
for technologies in that specific Area of Expertise module. You only need to focus on the technology list for the Area of Experti
ee to pass the exam, but it will certainly improve your skills and lay the foundation you need to build upon.
suggested here. You are encouraged to to use any other resources at your own discretion as you prepare for the exam.
of resources available, the objective is to refine and improve this compilation of resources over time, so remember to check reg
nowledge of both IPv4 and IPv6 are assumed and expected across all exam topics and technologies.
ng Matrix, please feel free to let us know. We will regularly review suggestions and update this document accordingly.
a of Expertise technologies will only be found in the Practical exam.
cepts. The topics listed cover both the Written and Practical exams.
ogy list for the Area of Expertise module you intend to select as part of our Practical exam.
prepare for the exam.

me, so remember to check regularly for updates.
ocument accordingly.
Version history
Version Date
1.0 7/15/2021
Version history
Changes
Initial version
CCDEv3 Exam Topics
Self
evaluation
Task Description
1.0 Business Strategy Design
1.1 Impact on network design, implementation, and optimization using
various customer project management methodologies (e.g., waterfall
and agile)
1.2 Solutions based on business continuity and operational sustainability
(e.g., RPO, ROI, CAPEX/OPEX cost analysis, and risk/reward)
2.0 Control, data, management plane and operational design

2.1 End-to-end IP traffic flow in a feature-rich network
2.2 Data, control, and management plane technologies
2.3 Centralized, decentralized, or hybrid control plane
2.4 Automation/orchestration design, integration, and on-going support
for networks (e.g. interfacing with APIs, model-driven management,
controller-based technologies, evolution to CI/CD framework)
2.5 Software-defined architecture and controller-based solution design

(SD-WAN, overlay, underlay, and fabric)
3.0 Network Design
3.1 Resilient, scalable, and secure modular networks, covering both
traditional and software-defined architectures, considering:
3.1.a Technical constraints and requirements
3.1.b Operational constraints and requirements
3.1.c Application behavior and needs
3.1.d Business requirements
3.1.e Implementation plans
3.1.f Migration and transformation
4.0 Service Design
4.1 Resilient, scalable, and secure modular network design based on
constraints (e.g., technical, operational, application, and business
constraints) to support applications on the IP network (e.g., voice,
video, backups, data center replication, IoT, and storage)
4.2 Cloud/hybrid solutions based on business-critical operations

4.2.a regulatory compliance
4.2.b data governance (e.g., sovereignty, ownership, and locale)
4.2.c service placement
4.2.d SaaS, PaaS, and IaaS
4.2.e cloud connectivity (e.g., direct connect, cloud on ramp, MPLS direct
connect, and WAN integration)
4.2.f security
5.0 Security Design
5.1 Network security design and integration
5.1.a segmentation
5.1.b network access control
5.1.c visibility
5.1.d policy enforcement
5.1.e CIA triad
5.1.f regulatory compliance
Books, articles, blog
The books listed here covers the entire set of Exam Topics and are generally recommeneded to read in their entirety
Cisco Press: The Art of Network Architecture: Business-Driven Design
Cisco DevNet: Network Automation Delivery Model
Cisco Press: Optimal Routing Design

Cisco Press: Definitive MPLS Network Designs
Cisco Press: CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide
Cisco Press: CCNP Enterprise Design ENSLD 300-420 Official Cert Guide
Cisco Press: CCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert Guide
Cisco Press: Cisco Certified DevNet Associate DEVASC 200-901 Official Cert Guide
Cisco Design Zone CVDs
Cisco CVD: Cisco Software-Defined Access Design Guide

Cisco CVD: Cisco Software-Defined Access Segmentation Design Guide
Cisco CVD: Cisco DNA Center & ISE Management Infrastructure Deployment Guide
Technologies for CCDEv3 Core module
ID Technology
1.0 Transport technologies
1.1 Ethernet
1.2 CWDM/DWDM
1.3 Frame Relay (migration only)
1.4 Cellular and broadband (as transport methods)
1.5 Wireless
1.6 Physical mediums, such as fiber and copper

2.0 Layer 2 Control Plane
2.1 Physical media considerations
2.1.a Down detection
2.1.b Interface convergence characteristics

2.2 Loop detection protocols and loop-free topology mechanisms
2.2.a Spanning tree types
2.2.b Spanning tree tuning techniques
2.2.c Multipath
2.2.d Switch clustering
2.3 Loop detection and mitigation
2.4 Multicast switching

2.4.a IGMPv2, IGMPv3, MLDv1, MLDv2
2.4.b IGMP/MLD Snooping

2.4.c IGMP/MLD Querier
2.5 Fault isolation and resiliency
2.5.a Fate sharing
2.5.b Redundancy
2.5.c Virtualization
2.5.d Segmentation
3.1 Network hierarchy and topologies
3.1.a Layers and their purposes in various environments
3.1.b Network topology hiding

3.2 Unicast routing protocol operation (OSPF, EIGRP, ISIS, BGP, and RIP)
3.2.a Neighbor relationships
3.2.b Loop-free paths
3.2.c Flooding domains
3.2.d Scalability
3.2.e Routing policy

3.2.f Redistribution methods
3.3 Fast convergence techniques and mechanism

3.3.a Protocols
3.3.b Timers
3.3.c Topologies
3.3.d Loop-free alternates
3.4 Factors affecting convergence

3.4.a Recursion
3.4.b Micro-loops
3.5 Route aggregation
3.5.a When to leak routes / avoid suboptimal routing

3.5.b When to include more specific routes (up to and including host routes)
3.5.c Aggregation location and techniques

3.6 Fault isolation and resiliency
3.6.a Fate sharing
3.6.b Redundancy
3.7 Metric-based traffic flow and modification
3.7.a Metrics to modify traffic flow
3.7.b Third-party next hop
3.8 Generic routing and addressing concepts

3.8.a Policy-based routing
3.8.b NAT
3.8.c Subnetting
3.8.d RIB-FIB relationships
3.9 Multicast routing concepts

3.9.a General multicast concepts
3.9.b MSDP/anycast
3.9.c PIM
4.0 Network Virtualization

4.1 Multiprotocol Label Switching
4.1.a MPLS forwarding and control plane mechanisms
4.1.b MP-BGP and related address families
4.1.c LDP
4.2 Layer 2 and 3 VPN and tunneling technologies

4.2.a Tunneling technology selection (such as DMVPN, GETVPN, IPsec, MPLS, GRE)
4.2.b Tunneling endpoint selection
4.2.c Tunneling parameter optimization of end-user applications
4.2.d Effects of tunneling on routing
4.2.e Routing protocol selection and tuning for tunnels
4.2.f Route path selection

4.2.g MACsec (802.1ae)
4.2.h Infrastructure segmentation methods

4.2.h.i VLAN
4.2.h.ii PVLAN
4.2.h.iii VRF-Lite
4.3 SD-WAN
4.3.a Orchestration plane
4.3.b Management plane
4.3.c Control plane
4.3.d Data plane
4.3.e Segmentation
4.3.f Policy
4.3.f.i Security
4.3.f.ii Topologies
4.3.f.iii Application-based routing
4.4 Migration techniques
4.5 Design considerations
4.6 QOS techniques and strategies

4.6.a Application requirements
4.6.b Infrastructure requirements
4.7 Network management techniques
4.7.a Traditional (such as SNMP, SYSLOG)

4.7.b Model-driven (such as NETCONF, RESTCONF, gNMI, streaming telemetry)
4.8 Reference models and paradigms that are used in network management (such as
FCAPS, ITIL®, TOGAF, and DevOps)
5.0 Security
5.1 Infrastructure security
5.1.a Device hardening techniques and control plane protection methods
5.1.b Management plane protection techniques
5.1.b.i CPU
5.1.b.ii Memory thresholding
5.1.b.iii Securing device access
5.1.c Data plane protection techniques

5.1.c.i QoS
5.1.d Layer 2 security techniques
5.1.d.i Dynamic ARP inspection
5.1.d.ii IPDT
5.1.d.iii STP security

5.1.d.iv Port security
5.1.d.v DHCP snooping
5.1.d.vi IPv6-specific security mechanisms
5.1.d.vii VACL
5.1.e Wireless security technologies

5.1.e.i WPA
5.1.e.ii WPA2
5.1.e.ii WPA2
5.1.e.iii WPA3
5.1.e.iv TKIP
5.1.e.v AES
5.2 Protecting network services
5.2.a Deep packet inspection
5.2.b Data plane protection
5.3 Perimeter security and intrusion prevention

5.3.a Firewall deployment modes
5.3.a.i Routed
5.3.a.ii Transparent
5.3.a.iii Virtualization
5.3.a.iv Clustering and high availability
5.3.b Firewall features
5.3.b.i NAT
5.3.b.ii Application inspection

5.3.b.iii Traffic zones
5.3.b.iv Policy-based routing
5.3.b.v TLS inspection

5.3.b.vi User identity
5.3.b.vii Geolocation
5.3.c IPS/IDS deployment modes
5.3.c.i In-line
5.3.c.ii Passive
5.3.c.iii TAP
5.3.d Detect and mitigate common types of attacks
5.3.d.i DoS/DDoS
5.3.d.ii Evasion techniques
5.3.d.iii Spoofing
5.3.d.iv Man-in-the-middle
5.3.d.iv Man-in-the-middle
5.3.d.v Botnet
5.4 Network control and identity Management
5.4.a Wired and wireless network access control
5.4.b AAA for network access with 802.1X and MAB
5.4.c Guest and BYOD considerations
5.4.d Internal and external identity sources
5.4.e Certificate-based authentication
5.4.f EAP Chaining authentication method
5.4.g Integration with multifactor authentication
6.0 Wireless
6.1 IEEE 802.11 Standards and Protocols
6.1.a Indoor and outdoor RF deployments
6.1.a.i Coverage
6.1.a.ii Throughput
6.1.a.iii Voice
6.1.a.iv Location
6.1.a.v High density / very high density
6.2 Enterprise wireless network
6.2.a High availability, redundancy, and resiliency
6.2.b Controller-based mobility and controller placement
6.2.c L2/L3 roaming
6.2.d Tunnel traffic optimization
6.2.e AP groups
6.2.f AP modes
7.0 Automation
7.1 Zero-touch provisioning
7.2 Infrastructure as Code (tools, awareness, and when to use)
7.2.a Automation tools (i.e. Ansible)
7.2.b Orchestration platforms
7.2.c Programming Language (e.g. Python)
7.3 CI/CD Pipeline

Self
evaluation
Books, articles, blogs, whitepapers
Cisco Press: CCNP Enterprise Wireless Design ENWLSD 300-425 and Implementation ENWLSI 300-430 Official Cert G
Appendix A
Cisco Learning Network Blog: Optical Fiber Explained and Demystified

Chapter 7 - Fast Down Detection
Chapter 7 - IP Event Dampening
Cisco Press: CCNP and CCIE Enterprise Core ENCOR 350-401 Official Cert Guide
Chapter 2, 4
Chapter 3
Cisco Press: Designing Cisco Network Service Architectures (ARCH) Foundation Learning Guide: (CCDP ARCH 642-874
Chapter 5
CCIE Routing and Switching v5.0 Official Cert Guide, Volume 1, 5th Edition
Chapter 3
Cisco Press: Designing for Cisco Network Service Architectures (ARCH) Foundation Learning Guide: CCDP ARCH 300-
Chapter 1
Cisco Press: CCIE Routing and Switching v5.0 Official Cert Guide, Volume 1, 5th Edition
Chapter 3
Cisco Press: IP Multicast, Volume 1: Cisco IP Multicast Networking

Chapter 2, 6
Chapter 13

Chapter 6
Chapter 1
Chapter 7
Chapter 1

Chapter 2, 3, 4, 5, 6 (Protocol Specific)
Chapter 22

Chapters 3, 4, 5, 6

Appendix A, B, C, D
Appendix A
Appendix A, B, C
Chapter 1, 6, Appendix D
Cisco Press: Routing TCP/IP, Volume 1, 2nd Edition

Chapter 11

Chapter 7
Chapter 7
Chapter 1, 4, 5
Chapter 5, 7, Appendix A

Chapter 7 - High Availability and Fast Convergence
Chapter 2 - Applying the Fundamentals
Chapters 2, 3, 4, 5, 6 (Protocol Specific)

Chapter 1
Chapters 3, 4, 5, 6 (Protocol Specific)
Chapters 6 - BGP Cores and Network Scalability
Chapter 15
Cisco Press: Routing TCP/IP, Volume II: CCIE Professional Development, 2nd Edition
Chapter 10
Chapter 6
Cisco Press: IPv6 Fundamentals: A Straightforward Approach to Understanding IPv6, 2nd Edition
Chapter 5
Chapter 1
Chapter 13
Chapter 9
Routing TCP/IP, Volume II: CCIE Professional Development, 2nd Edition
Chapter 8
Cisco Press: IP Multicast, Volume 1: Cisco IP Multicast Networking
Chapter 3, 4, 6
Cisco Press: MPLS Fundamentals

Chapter 9, 10, 11
Chapter 7
Chapter 4
Cisco Press: Layer 2 VPN Architectures

Chapter 1-5
Chapters 6, 9, 18
Chapter 8
Cisco Press: CCNP Security Identity Management SISE 300-715 Official Cert Guide
Chapter 17
Chapter 6
Chapter 18
Cisco Press: Cisco Software-Defined Wide Area Networks: Designing, Deploying and Securing Your Next Generation
All chapters

Chapters 2, 3, 4, 5, 6
Cisco Press: End-to-End QoS Network Design, 2nd Edition
Chapters 1, 2, 3, 4, 5, 11
QoS aspects of all case studies
Cisco Press: Top-Down Network Design, 3rd Edition
Chapter 9
Cisco Press: Network Management Fundamentals
DevNet: Model Driven Programmability
Cisco Whitepaper: Network Configuration Management
Chapter 6
Chapter 26
Chapter 6
Chapter 6
Chapter 11
Chapter 6
Chapter 26
Chapter 8 - Security Services Design (Designing Firewalls)
Cisco Press: Network Security Architectures
Chapter 10 - IPsec VPN Design Considerations
Chapter 9 - IPsec and SSL VPN Design
Chapter 7
Chapter 10
Chapter 7
Cisco Docs: FMC - Understanding Traffic Decryption

Cisco Press: Cisco ISE for BYOD and Secure Unified Access, 2nd Edition
Chapter 7
Cisco Docs: Cisco SD-WAN Security Configuration Guide, Configure Geolocation-Based Firewall Rules for Network Ac
Chapter 7
Cisco Guide: A Cisco Guide to Defending Against Distributed Denial of Service Attacks
Cisco Design Guide: Network Security Baseline

Chapter on Network Policy Enforcement
Chapter 6
Chapter 1, 2, 3, 4, 5, 12, 13, 15, 16
Chapter 15
Cisco Press: Network Security Technologies and Solutions (CCIE Professional Development Series)
Chapter 10
Chapter 17
Chapter 1, 5, 6, 11
Chapter 9
Chapter 8
Chapter 8
Cisco Press: CCIE WIreless v3 Study Guide
Chapter 4
Chapter 6, 10
Cisco Press: CCIE WIreless v3 Study Guide
Chapter 4
DevNet: Zero-Touch Provisioning
Chapter 29
DevNet: Learn Network Prgrammability Basics
DevNet: Intro to Coding Fundamentals
Cisco Live on-demand presentations
Cisco Live: BRKCRS-3900 - Ethernet Evolving - Ethernet at New Speeds, in New Places, and Power over Everything!
Cisco Live: DWDM 101 and Technology Advances
Cisco Live: BRKSPM-2129 - Deploying 5G and LTE for Enterprise and IoT Last Mile
Cisco Live: BRKRST-2041 - WAN Architectures and Design Principles (2018 Barcelona)
Cisco Live: BRKCRS-2031 - Multilayer Campus Architectures and Design Principles (2017 Berlin)
Cisco Live: BRKRST-2336 - EIGRP Deployment in Modern Networks (2017 Berlin)

Cisco Live: BRKRST-2337 - OSPF Deployment in Modern Networks (2017 Berlin)
Cisco Live: BRKRST-2338 - IS-IS Deployment in Modern Networks (2015 San Diego) - Presentation ONLY
Cisco Live: BRKRST-3371 - Advances in BGP (2015 Milan) - Presentation ONLY
Cisco Live: BRKRST-3321 - Advanced - Scaling BGP
Cisco Live: BRKRST-2619 - Troubleshooting Routing Protocols (2019 Melbourne) - BGP/OSPF/EIGRP
Cisco Live: BRKRST-2041 - WAN Architecture and Design Principles (2019 San Diego)
Cisco Live: BRKRST-3363 - Routed Fast Convergence (Webcast)

Cisco Live: BRKRST-3020 - IP LFA: Architecture and Troubleshooting
Cisco Live: BRKSPG-2602 - IPv4 Exhaustion: NAT and Transition to IPv6 for Service Providers (2019 San Diego)
Cisco Live: BRKCRT-1000 - Zen and the Art of Binary Math (2019 San Diego)
Cisco Live: BRKRST-2667 - How to write an IPv6 Addressing Plan (2016 Berlin)
Cisco Live: BRKRST-2041 - WAN Architectures and Design Principles (2018 Barcelona)
Cisco Live: BRKRST-2045 - Advanced Technologies and Concepts for Extrending L3 VPN Over IP-Based WAN Transpor
Cisco Live: BRKCRT-8001 - CCDE : The Cisco Certified Design Expert (Session 1)
Cisco Live: BRKCRT-8002 - CCDE : The Cisco Certified Design Expert (Session 2)
Cisco Live: BRKEWN-2006 - Advancements in Wireless Security
Cisco Live: DEVNET-1296 - Build a NetDevOpsCICD Pipeline
Configuration guides
Cisco Doc: Understanding and Tuning Spanning Tree Protocol Timers

Cisco configuration Guide: Policy-Based Routing on ASA
FlexConfig Policies for Firepower Threat Defense
Cisco Configuration Guide: Firepower Management Center Configuration Guide, Version 6.6
Training courses
Course: Designing Cisco Enterprise Wireless Networks (ENWLSD) 1.1

Training Course: Configuring BGP on Cisco Routers (BGP) 4.0
Training Course: Implementing Cisco MPLS (MPLS) 3.0
Training Course: Implementing Cisco MPLS (MPLS) 3.0

Cisco DIgital Learning: Implementing CIsco MPLS (MPLS) 3.0
Securing Networks with Cisco Firepower Next-Generation IPS (SSFIPS) v4.0
Available as intructor-led training and in Cisco Digital Learning
Other
CWNPTV: Stephen Orr - WPA3 - Evolution of Wireless Security
Cisco DevNet YouTube: SE NetDevOps CICD Pipelines Can Develop, Test, and Deploy Network Configurations
Technologies for CCDEv3 Large-Scale Networks Area of Expertise module
ID Technology
1.0 Transport Technologies
1.1 Carrier Ethernet
1.2 Ring-based (such as SONET/SDH, OTU)
1.3 Frame relay (migration only)

1.4 Wireless (including satellite links, microwave links)
1.5 Optical
2.1 Loop detection protocols and loop-free topology mechanisms
2.1.a REP
2.2 Transport mechanisms and their interaction with routing protocols over different
link types
3.1 Factors affecting convergence
3.1.a Transport
3.2 Generic routing and addressing concepts

3.2.a Large-scale NAT
3.3 Multicast routing concepts
3.3.a Multicast delivery/implementation models
3.3.b mVPN
4.1 Multiprotocol Label Switching
4.1.a Segment Routing
4.1.b LDP and SR Interworking
4.1.c MPLS Traffic Engineering
4.2 QoS techniques and strategies

4.2.a End-user requirements
4.2.b DiffServ
4.2.c IntServ
4.3 EVPN
4.3.a Management plane
4.3.b Control plane
4.3.c Data plane (such as VXLAN, MPLS, PBB)
4.3.d Segmentation
4.3.e Policy
4.3.e.i Security
4.3.e.ii Topologies
4.3.e.iii Multiple site strategy
5.0 Security
5.1 Infrastructure security
5.1.a Data plane protection techniques
5.1.a.i uRPF
5.1.a.ii RTBH
6.0 Automation
6.1 Lifecycle management/closed-loop automation
tise module
Self
evaluation
e
Cisco Press: Optical Network Design and Implementation

Chapter 1, 5, 6, 7
Cisco Press: DWDM Network Designs and Engineering Solutions
Cisco Docs: Resilient Ethernet Protocol Overview
Chapter 7, 8, 11
Cisco Press: IP Multicast, Volume II: Advanced Multicast Concepts and Large-Scale Multicast Design
Chapter 12, 13, 14, 15
Cisco Content Hub: Introduction to Segment Routing
Cisco Press. Traffic Engineering with MPLS

Chapter 3, 4, 5, 6, 7, 8, 9, 10
Cisco Press: End-to-End QoS Network Design: Quality of Service for Rich-Media & Cloud Networks, 2nd Edition
Chapter 3, 4, 5, 6, 7
Cisco Whitepaper: Ethernet VPN (EVPN) and Provider Backbone Bridging-EVPN

Cisco Whitepaper: Unicast Reverse Path Forwarding Enhancements For The Internet Service Provider - Internet Serv
Cisco Whitepaper: Remotey Triggered Black Hole FIltering - Destination Based and Source Based
Cisco Live: BRKSPG-2542 - Building Dynamic, Agile, and Orchestrated Services over Automated Networks with MEF 3
CIsco Live: BRKSPG-2602 - IPv4 Exhaustion - NAT and Transition to IPv6 for Service Providers
Cisco Live: BVRKIPM-3017 - mVPN Deployment Models
Cisco Live: DGTL-BRKRST-2124 - Introduction to Segment Routing
Cisco Live: IOS-XR EVPN Hands On Lab

Cisco Live: BRKMPL-3333: Network Virtualization for Next Generation Enterprise DCs, DC Interconnections, and SPD
Configuration guides
Cisco Doc: Wide-Area Networking Configuration Guide: Frame Relay
Configure Segment Routing Mapping Server

Courses
Other
Technologies for CCDEv3 On-Prem and Cloud Services Area of Expertise module
Self
ID Technology evaluation
1.0 Transport Technologies
1.1 Data Center Interconnect options

2.1 Inter-fabric connectivity, such as Multipod, Multisite
2.2 External connectivity for on-prem and cloud

2.3 Multi-cloud Network Architecture

3.1 Overlay
3.1.a Management plane
3.1.b Control plane
3.1.c Data plane (such as VXLAN, MPLS)
3.1.d Segmentation
3.1.e Policy
3.1.e.i Security
3.1.e.ii Topologies
3.1.e.iii Data Center interconnect
3.1.e.iv Multiple site strategy
3.1.e.v Service insertion
3.2 Virtual Networking

4.0 Automation
4.1 Deployment Models
4.1.a Bare Metal
4.1.b VM
4.1.c Microservices
5.0 Data Center
5.1 Storage
5.1.a Physical topology
5.1.b QoS requirements
5.1.c FC and FCoE
5.1.c.i Zoning
5.1.c.ii Trunking
5.1.c.iii Link aggregation
5.1.c.iv Load balancing
5.1.d iSCSI
5.1.d.i Authentication
5.1.d.ii Multipathing
5.2 Application delivery
5.2.a Load balancer deployment modes
5.3 Compute
5.3.a UCS blade integration
5.3.b UCS rack server integration
5.3.c HyperFlex integration
5.4 Compute connectivity
5.4.a SAN/LAN uplinks
5.4.b Port modes
Expertise module
Cisco Whitepaper: NextGen DCI with VXLAN EVPN Multi-Site Using vPC Border Gateways
Cisco Doc: Data Center Interconnect Design Guide for Virtualized Workload Mobility with Cisco, EMC, and VMware
Cisco Press: Building Data Centers with VXLAN BGP EVPN: A Cisco NX-OS Perspective
Chapter 9
Cisco Whitepaper: ACI Fabric L3Out Guide
Cisco Whitepaper: Cisco Cloud ACI on AWS
Chapter 2, 3, 4, 5, 6, 7, 8
Cisco Live: BRKMPL-3333: Network Virtualization for Next Generation Enterprise DCs, DC Interconnections, and SPD
Cisco Whitepaper: VXLAN EVPN Multi-Site Design and Deployment
Chapter 9, 10
Cisco ACI Virtualization Guide
Cisco Press: Cisco Certified DevNet Associate DEVASC 200-901 Official Cert Guide
Chapter 13
Cisco Press: Storage Networking Protocol Fundamentals

Chapter 9
Chapter 3, 5
Cisco Press: I/O Consolidation in the Data Center
Cisco Doc: Configuring Zoning
Cisco Doc: Configuring Trunking
Cisco Doc: Cisco MDS 9000 Family NX-OS Interfaces Configuration Guide - Configuring Port Channels
Chapter 11
Cisco Doc: Understanding Load Balancing
Cisco Live: BRKINI-1200: HyperFlex iSCSI Designs
Chapter 12
Cisco Doc: iSCSI Overview
Cisco Doc: Cisco APIC Layer 4 to Layer 7 Services Deployment Guide - Configuring Direct Server Return
Cisco Doc: Server Integration with UCS Manager
Cisco Doc: UCS Manager Network Management Guide

Cisco Doc: UCS Manager Network Management Guide
Cisco Live: Design and Implementation of DCI Networks
Cisco Live: DGTL-BRKCLD-2931: Cisco Multicloud: The How!

Cisco Live: DGTL-BRKCLD-2020: 20/20 Vision and Security for Workloads in a Multicloud Environment
Cisco Live: BRKDCN-1121 - Fiber Channel Networking for the IP Network Engineer and SAN Core Edge Design Best Pr
Cisco Live: BRKDCN-1121 - Fiber Channel Networking for the IP Network Engineer and SAN Core Edge Design Best Pr
Cisco Live: DGTL-BRKINI-2963: HyperFlex Application Platform Deep Dive
Courses
Cisco DIgital Learning: Deploying Cloud Connect Solutions with Cisco Cloud Services Router 1000V (CLDCSR) v1.0
Other
Technologies for CCDEv3 Workforce Mobility Area of Expertise module
Self
ID Technology evaluation
1.0 Security
1.1 Network control and identity Management
1.1.a Cisco ISE
2.0 Wireless
2.1 Enterprise wireless network
2.1.a WLAN architectures

2.1.a.i Centralized
2.1.a.ii Distributed
2.1.b Roaming optimizations
2.1.c Mesh network architecture
2.1.d RF and radio design

2.1.d.i Channel planning
2.1.d.ii Channel width
2.1.d.iii Spatial streams
2.1.d.iv Radio Resource Management
2.1.d.v Client considerations, such as transmit power, RSSI, SNR
2.1.e Antenna types
2.2 Regulatory domains
2.3 Site survey

2.3.a Floor maps
2.3.b Coverage requirements
2.3.c Building materials
2.3.d Attenuation
2.3.e Interferences
2.3.f Capacity planning
2.3.g AP cell areas
2.3.h Wired network
2.3.h.i PoE
2.3.h.ii Switch port capacity
2.3.h.iii Uplink capacity
2.3.i Outdoor/indoor locations
2.3.j Survey types
2.3.j.i Walkthrough
2.3.j.ii Predictive
2.3.j.iii Active
2.3.j.iv Passive
2.3.k Heat maps
2.4 Requirement gathering and analysis
2.4.a Areas of coverage
2.4.a.i Expected coverage per area
2.4.a.ii Client density
2.5 Multicast over wireless
2.6 mDNS
2.7 Location services and solutions
2.7.a RTLS
2.7.b DNA Spaces
2.7.b.i Analytics
2.8 Automation, Assurance, Insights, and Telemetry (Legacy and DNAc)
2.8.a AVC/NetFlow
2.8.b DNAc
module
Chapter 1
Part 1 (ENWLSD), Chapter 9, Part 2 (ENWLSI), Chapter 10
Part 1 (ENWLSD), Chapter 8
Part 1 (ENWLSD), Chapter 2, 3, 4, 5, 7
Part 2 (ENWLSI), Chapter 12
Part 2 (ENWLSI), Chapter 13, 14
Part 2 (ENWLSI), Chapter 16
CIsco Live: BRKCOC-2257 - Inside Cisco IT: Enterprise Wireless Design and Assurance with Cisco IT
Cisco Live: BRKEWN-2026: Wireless Network Automation with Cisco DNA Center
Courses
Implementing and Configuring Cisco Identity Services Engine (SISE) v3.0

Digital Learning
Instructor-led / Virtual Classroom
Designing Cisco Enterprise Wireless Networks (ENWLSD) v1.0

Digital Learning
Instructor-led / Virtual Classroom
Implementing Cisco Enterprise Wireless Networks (ENWLSI) v1.1
Digital Learning
Instructor-led / VIrtual Classroom

CCDEv3 Learning Matrix

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

CCDEv3 Learning Matrix

Uploaded by

Copyright:

Available Formats

CCDEv3 Learning Matrix Last updated 7/15/2021

prepare for the exam.

2.0 Control, data, management plane and operational design

2.5 Software-defined architecture and controller-based solution design

4.2 Cloud/hybrid solutions based on business-critical operations

Cisco DevNet: Network Automation Delivery Model

Cisco Press: Optimal Routing Design

Cisco CVD: Cisco Software-Defined Access Design Guide

1.6 Physical mediums, such as fiber and copper

2.1.b Interface convergence characteristics

2.2.b Spanning tree tuning techniques

2.2.d Switch clustering

2.3 Loop detection and mitigation

2.4 Multicast switching

2.4.b IGMP/MLD Snooping

3.1.a Layers and their purposes in various environments

3.1.b Network topology hiding

3.2.a Neighbor relationships

3.2.b Loop-free paths

3.2.c Flooding domains

3.2.e Routing policy

3.3 Fast convergence techniques and mechanism

3.3.d Loop-free alternates

3.4 Factors affecting convergence

3.5.a When to leak routes / avoid suboptimal routing

3.5.c Aggregation location and techniques

3.8 Generic routing and addressing concepts

3.8.d RIB-FIB relationships

3.9 Multicast routing concepts

4.0 Network Virtualization

4.1.b MP-BGP and related address families

4.2 Layer 2 and 3 VPN and tunneling technologies

4.2.f Route path selection

4.2.h Infrastructure segmentation methods

4.6 QOS techniques and strategies

4.7 Network management techniques

4.7.a Traditional (such as SNMP, SYSLOG)

5.1.c Data plane protection techniques

5.1.d.iii STP security

5.1.e Wireless security technologies

5.2.b Data plane protection

5.3 Perimeter security and intrusion prevention

5.3.b.ii Application inspection

5.3.b.v TLS inspection

6.2.b Controller-based mobility and controller placement

6.2.c L2/L3 roaming

6.2.d Tunnel traffic optimization

7.3 CI/CD Pipeline

Cisco Press: Optimal Routing Design

Cisco Press: IP Multicast, Volume 1: Cisco IP Multicast Networking

Cisco Press: The Art of Network Architecture: Business-Driven Design

Cisco Press: Optimal Routing Design

Cisco Press: Optimal Routing Design

Cisco Press: Optimal Routing Design

Cisco Press: Routing TCP/IP, Volume 1, 2nd Edition

Cisco Press: Optimal Routing Design

Cisco Press: Optimal Routing Design

Cisco Press: Optimal Routing Design

Cisco Press: MPLS Fundamentals

Cisco Press: Layer 2 VPN Architectures

Cisco Press: Definitive MPLS Network Designs

Cisco Docs: FMC - Understanding Traffic Decryption

Cisco Design Guide: Network Security Baseline