Additional Resources
====================
Although I've tried to provide references on each page, they can become
lost pretty easily. For that reason, this page includes references for
books, feature guides, solutions guides, videos, and blogs that might be
helpful when studying for the JNCIP-DC exam.
Data Center Deployment or Management
------------------------------------
The `QFX5100 Series `_
book from O'Reilly is a great resources for this section of the
blueprint. Check chapters 6 (Network Automation) and 9 (Network
Analytics) specifically.
A good blog post for ZTP is `this one from NextHeader `_.
It includes a topology diagram, switch outputs, configuration of an ISC
DHCP Server on Ubuntu, and pcaps.
As you'll see throughout this list of resources, the blog over at
``_ has a blog on ZTP: `JNCIE TECH - Zero Touch Provisioning `_.
Finally, there is an older Juniper Day One book on `Deploying Zero Touch Provisioning `_.
It's focused on the EX and SRX Series, but it should still serve as a
useful reference.
.. _mc-lag-resource:
Multichassis LAG
----------------
For MC-LAG, check out the `MX Series `_
book from O'Reilly. Chapter 9 is all about Multi-Chassis Link Aggregation.
This will cover you on the MX side, but there's still MC-LAG on the QFX
to worry about. It's very similar, so it shouldn't be too difficult.
Another great resource is the official `Multichassis Link Aggregation Feature Guide `_.
The following list of blogs can be useful, too:
- `JNCIE TECH - MC-LAG Overview `_
- `JNCIE TECH - MC-LAG Lab - Basic L2 Connectivity `_
- `JNCIE TECH - MC-LAG Lab - Advanced IRB Functionality `_
- `Christians Juniper Blog - MC-LAG on vQFX (EVE-NG) `_
Layer 2 Fabrics
---------------
For Virtual Chassis, a great resource is `Understanding Mixed EX Series and QFX Series Virtual Chassis `_.
This will help you understand some limitations of mixed mode Virtual
Chassis with EX and QFX Series switches. For configuration, check
`Configuring a QFX Virtual Chassis `_.
For a more general Virtual Chassis read, check out the `Junos Enterprise Switching `_
book, specifically Chapter 4, EX Virtual Chassis. Finally, the `Day One: EX Series Up and Running `_
book has two chapters on Virtual Chassis - Chapters 4 and 5.
For Virtual Chassis Fabric, you can read the `QFX5100 Series `_
book. Chapter 5 is dedicated to Virtual Chassis Fabric. Another good
reference is the `Day One: Data Center Fundamentals `_
book. Chapter 5 covers fabric architectures, including
:ref:`mc-lag-resource`, Virtual Chassis, and Virtual Chassi Fabric.
Finally, the `Virtual Chassis Fabric Feature Guide `_
is a great resource for all things Virtual Chassis Fabric. For a dive
into best practices, check the `Best Practices: Virtual Chassis Best Practices Guide `_.
For blogs, ``_ comes in again with `JNCIE TECH - VCF `_.
Layer 3 Fabrics
---------------
This one is a potentially large topic, and there are a number of
resources for it, including white papers, RFCs, and books.
First, there is the `Clos IP Fabrics with QFX5100 Switches `_
white paper. This is all about the layer 3 underlay with a strong focus
on BGP. Both eBGP and iBGP (with route reflectors) are covered.
Next, in terms of books, there is the `QFX5100 Series `_
book. Chapter 7 is all about IP fabrics, although its content seems to
be largely the same as the afore-mentioned white paper. Another good
reference is Chapter 6 of the `Day One: Data Center Fundamentals `_
book. This chapter is, again, completely dedicated to Layer 3 fabrics.
.. note::
For a much more in-depth treatise on BGP in the Data Center, see the
`book of the same name `_.
This book focuses on Free-Range Routing (FRR, the routing software
used in Cumulus), but 100% of the theory applies here.
Finally, there is informational `RFC 7938, Use of BGP for Routing in Large-Scale Data Centers `_.
If blogs are more your speed, the only one I've found that seems
appropriately scoped for this topic only is `JNCIE TECH - IP Fabric `_.
`Juniper QFX, IP-Fabric and VXLAN -- Part `_
may be helpful as well, but it also includes some multicast
configuration, which I generally lump in with VxLAN.
VxLAN
-----
This is a massive topic. The list of resources here will intentionally
ignore EVPN as that is listed as a separate topic in the syllabus.
For books, the `QFX5100 Series `_
is again a great resource. Chapter 8 covers Overlay Networking. `Day One: Data Center Fundamentals `_
covers VxLAN in Chapter 7, Overlay Networking.
For blogs, we have a few to choose from:
- `Juniper QFX, IP-Fabric and VXLAN -- Part 1 `_
- `Juniper QFX, IP-Fabric and VXLAN -- Part 2 `_
- `JNCIE TECH - VXLAN Multicast `_
These next two are from Cumulus, but they should still help explain
gateway placement options:
- `VXLAN Designs: 3 Ways to Consider Routing and Gateway Design (Part 1) `_
- `VXLAN Designs: 3 Ways to Consider Routing and Gateway Design (Part 2) `_
The next set are specific to Cisco, but if you're familiar with NX-OS,
you might find them helpful. They're also good for general theory.
- `The Network Times - VXLAN Part I: Why do we need VXLAN? `_
- `The Network Times - VXLAN Part III: The Underlay Network -- Multidestination Traffic: Anycast-RP with PIM `_
- `The Network Times - VXLAN Part V: Flood and Learn `_
If videos are your speed, here are a list of YouTube resources:
- `Introduction to Cloud Overlay Networks - VxLAN `_ by `David Mahler `_
- `VxLAN Playlist `_ by `Network Direction `_
- `VxLAN 101 `_ by `Ivan Pepelnjak `_
EVPN VxLAN Signaling
--------------------
For books, we start with the `Day One: Data Center Fundamentals `_
book, which covers EVPN in Chapter 9. From there, we can look to the
`QFX10000 Series `_
book. Chapter 6 covers Ethernet VPN. We also have the `This Week: Data Center Deployment EVPN/VXLAN `_
book.
.. note::
`EVPN in the Data Center `_
is a great book for learning about EVPN. Its primary focus is FRR,
but all of the theory and concepts apply to Junos as well.
The following guides will also be useful:
- `Solution Guide: Infrastructure as a Service: EVPN and VXLAN `_
- `EVPN Feature Guide `_
- `Cloud Data Center Architecture Guide `_
- `EVPN LAG Multihoming in EVPN-VXLAN Cloud Data Center Infrastructures `_
- `Juniper Networks EVPN Implementation for Next-Generation Architectures `_
For blog posts, we again have a large number of posts to dive into:
- `Christians Juniper Blog - EVPN-VXLAN on (v)QFX-Series Devices `_
- `Dan Hearty - Juniper QFX10K | EVPN-VXLAN | MAC Learning Verification | Single-Homed Endpoint `_
- `Dan Hearty - Juniper QFX10K | EVPN-VXLAN | EVPN Anycast Gateway Verification `_
- `Dan Hearty - Juniper QFX10k | EVPN-VXLAN | IRB Routing | BGP `_
- `JNCIE TECH - EVPN-VXLAN Lab - Basic L2 Switching `_
- `JNCIE TECH - EVPN-VXLAN Lab - RT Assignment Methods `_
- `JNCIE TECH - EVPN-VXLAN Lab - IRB Functionality `_
- `JNCIE TECH - MX EVPN-VXLAN Basic Config `_
- `JNCIE TECH - QFX EVPN Basic Config `_
- `JNCIE TECH - EVPN-VXLAN RT Communities `_
- `Lab on EVPN -- VXLAN on QFX5100 Switches `_
- `VXLAN Routing with EVPN: Asymmetric vs. Symmetric Model `_
(this is a Cumulus post, but it's still very helpful)
Next, some Cisco Nexus-centric blog posts:
- `The Network Times - VXLAN Part VI: VXLAN BGP EVPN -- Basic Configurations `_
- `The Network Times - VXLAN Part VII: VXLAN BGP EVPN -- Control Plane Operation `_
- `The Network Times - VXLAN Part VIII: VXLAN BGP EVPN -- External Connection `_
- `The Network Times - VXLAN Part XII: Routing Exchange -- Intra/Inter-L2VNI, EVPN-to-IP, EVPN-to-VPNv4 `_
- `The Network Times - VXLAN Part XIV: Control Plane Operation in BGP EVPN VXLAN Fabric `_
- `The Network Times - VXLAN Part XV: Analysis of the BGP EVPN Control Plane Operation `_
Some videos from YouTube that might help:
- `Juniper Networks EVPN - VXLAN Architecture `_
from Tech Field Day
- `Building Blocks in EVPN for Multi-Service Fabrics `_
from NANOG 75
Data Center Interconnect
------------------------
DCI is a pretty big topic with quite a few ways to implement. Most of
the materials I've seen so far seem to focus on straight VxLAN EVPN
connectivity. However, there's at least one blog post from JNCIE TECH
(listed below) that covers EVPN stitching.
Books that may be useful:
- `Day One: Using Ethernet VPNs for Data Center Interconnect `_
- `Day One: MPLS Up and Running `_
- `Day One: MPLS for Enterprise Engineers `_
.. note::
Two of the books above are on MPLS basics. For better or worse, it
looks like a portion of this track relies on MPLS. I've added the
two references references above in case you are coming directly from
the Enterprise track, which is a prerequisite for the DC track but
has no MPLS coverage.
Blog posts:
- `JNCIE TECH - MX EVPN-MPLS Basic Config `_
- `JNCIE TECH - MX EVPN IRB Functionality `_
- `JNCIE TECH - EVPN-VXLAN to EVPN-MPLS Stitching `_
Videos from YouTube:
- `BGP EVPN in Datacenter and Layer 3 Data Center Interconnect `_
from NANOG 66 (This is Cisco, but theory should mostly apply)
Data Center Architecture and Security
-------------------------------------
This seems to be a pretty nebulous topic. The only items in the
syllabus that are listed seem security-related, so I'm just going to
focus on that. First, a list of Day One books:
- `Day One: Configuring Junos Policies and Firewall Filters `_
- `This Week: Hardening Junos Devices, 2nd Edition `_
- `Day One: Deploying BGP Routing Security `_
Next, the `MX Series `_
book has an entire chapter dedicated to Routing Engine Protection and
DDoS Prevention (Chapter 4).
Finally, a couple of blog posts:
- `iNetZero - EVPN-VXLAN Inter-tenant Routing on Juniper QFX/MX `_
- `Dan Hearty - Using JUNOS Firewall Filters for Troubleshooting & Verification | QFX5110 `_
Miscellaneous
-------------
Some topics that are probably important but don't seem to be called out
explicitly in the syllabus:
- Oversubscription: `Day One: Data Center Fundamentals `_
has this covered in Chapter 4, while `QFX5100 Series `_
covers it in Chapter 3, Performance and Scaling.
- Virtual Machine Traffic Optimization (VMTO): `Comparing Layer 3 Gateway & Virtual Machine Traffic Optimization (VMTO) for EVPN/VXLAN and EVPN/MPLS `_.
I'm honestly not sure where this fits in, but it's listed under
``Additional Resources`` on the `JNCIP-DC Certification Page `_.