SkarpChapter 25 of 27
Cisco DNA Center and Telemetry-Driven Operations
Bring together SDN and APIs by looking at how Cisco DNA Center monitors, configures, and troubleshoots networks using telemetry and automation.
Cisco DNA Center in the SDN World
Cisco DNA Center as a Controller
Cisco DNA Center is Cisco's enterprise network controller for campus/branch networks. It acts as a central "brain" for switches, routers, and wireless controllers.
SDN Connection
Software-defined networking (SDN) separates control and data planes and uses controllers and APIs. DNA Center is that centralized software-based controller in Cisco enterprise designs.
Three Big Areas
DNA Center focuses on three major functions: Automation (push changes), Assurance (monitor and analyze health), and Policy (define intent like access rules and segmentation).
CCNA Relevance
For CCNA, you must conceptually place DNA Center in an SDN architecture, and explain how controllers use APIs and telemetry instead of only per-device CLI.
Northbound vs Southbound APIs in DNA Center
REST API Reminder
A REST API is a web-based interface using HTTP and resource URIs for programmatic access. DNA Center exposes REST APIs for automation and integration.
Southbound APIs
Southbound APIs are how DNA Center talks to devices below it: NETCONF/RESTCONF, SNMP, CLI, Syslog, and telemetry. Think controller-to-switch/router communication.
Southbound Uses
DNA Center uses southbound links to discover devices, push configs and policies, and collect telemetry and performance data from the network.
Northbound APIs
Northbound APIs are used by tools and scripts above the controller. DNA Center’s REST API lets Python scripts, ITSM tools, or Ansible query and control the network.
Mental Picture
Picture DNA Center in the middle: users and apps call its northbound REST API; DNA Center then uses southbound protocols to implement changes on devices.
DNA Center Functional Areas: Automation, Assurance, Policy
Automation Overview
Automation in DNA Center handles initial provisioning, config templates, and image management so you do not configure each device by hand via CLI.
Automation Benefits
Doing tasks centrally reduces human error, speeds rollouts, and lets you schedule changes instead of logging into dozens of devices one by one.
Assurance Overview
Assurance continuously collects telemetry and calculates health scores, using analytics to show whether users, devices, and apps are working well.
Policy and Intent
Policy features let you define business intent like which groups can talk, and DNA Center translates that into configs, often including ACLs and segmentation.
Key Mapping
Map the three pillars: Automation = "do", Assurance = "see and analyze", Policy = "decide intent". DNA Center ties them together in one controller.
Telemetry and Streaming Data: From Polling to Real Time
Old World: Polling
Legacy monitoring relied on SNMP polling every few minutes and syslog messages. It works but can miss fast issues and has limited detail.
Telemetry Basics
Telemetry in this context is device-initiated, push-based, structured data sent frequently to a collector like DNA Center.
Streaming Characteristics
Streaming telemetry is high-frequency, often model-based (YANG), and usually encoded in formats like JSON, making it easy for software to analyze.
Operational Value
Telemetry lets DNA Center quickly detect performance anomalies, track client journeys, and build baselines of normal behavior over time.
CCNA Takeaway
Remember: telemetry is key to Assurance and supports proactive monitoring, moving from "react to tickets" to "detect and fix before impact".
Walkthrough: How DNA Center Uses Telemetry to Troubleshoot Wi-Fi
Campus Wi-Fi Problem
Students in one building report slow, unreliable Wi-Fi. Historically, helpdesk would manually log into controllers and APs, digging through logs and CLI outputs.
Assurance View
In DNA Center Assurance, the team filters client health by building and time. They see client health scores drop in the last two hours, driven by RF issues.
Telemetry Insights
Streaming telemetry shows spikes in retransmissions and failed associations, plus heatmaps of high channel utilization on 2.4 GHz in that area.
Suggested Fix
DNA Center suggests interference as root cause and recommends moving APs to cleaner 5 GHz channels. The team applies RF changes via Automation.
Closed Loop
After the change, telemetry-driven health scores improve. This example ties Assurance (see), Automation (do), and telemetry (data) into one workflow.
Hands-On Concept: Calling DNA Center’s Northbound REST API
You do not need to code for CCNA, but seeing a simple example will solidify your understanding of northbound REST APIs.
Below is a minimal Python-style example that shows how a script could talk to Cisco DNA Center’s REST API to fetch the device inventory. This is concept code, not tied to a specific version.
Key ideas to notice:
- The script talks to DNA Center, not directly to each switch.
- It uses HTTPS and a REST API endpoint (a URL) to get data in JSON.
- This is a northbound call: an external app (your script) consuming the controller’s API.
```python
import requests
DNAC_URL = "https://dnac.example.local" # DNA Center base URL
USERNAME = "admin"
PASSWORD = "MySecurePassword" # never hardcode in real life
1. Get an authentication token (simplified example)
auth_response = requests.post(
f"{DNAC_URL}/dna/system/api/v1/auth/token",
auth=(USERNAME, PASSWORD),
verify=False # do not skip verification in production
)
authresponse.raisefor_status()
token = auth_response.json()["Token"]
headers = {
"X-Auth-Token": token,
"Content-Type": "application/json"
}
2. Call a northbound API to get network device inventory
inv_response = requests.get(
f"{DNAC_URL}/dna/intent/api/v1/network-device",
headers=headers,
verify=False
)
invresponse.raisefor_status()
3. Parse the JSON response
for device in inv_response.json()["response"]:
print(device["hostname"], device["managementIpAddress"], device["type"])
```
When you see code like this, map it to the exam concept:
- REST API over HTTPS
- Northbound API to the controller
- JSON data representing inventory
In real operations, this kind of script can be wrapped into tools like Ansible or CI/CD pipelines to automate inventory, audits, or bulk changes.
Thought Exercise: Mapping a Traditional Task into DNA Center
Use this exercise to connect your CLI knowledge with controller-based operations.
Task
Imagine you are the network admin for a mid-size company. You need to:
- Roll out a new QoS policy for voice traffic.
- Apply it consistently to 40 access switches and 2 distribution switches.
- Verify that IP phones are actually getting the expected treatment.
Step 1: Traditional Approach (Mentally List)
Pause and list in your head (or jot down) what you would do without DNA Center:
- How many devices would you log into?
- How would you ensure config consistency?
- How would you verify that QoS works end-to-end?
Step 2: DNA Center Approach (Conceptual)
Now, map the same job into DNA Center concepts:
- Automation: How could you use templates or intent-based workflows to push QoS configs to all relevant switches at once?
- Policy: How might you express "voice traffic should have higher priority" as an intent or business policy instead of per-interface CLI?
- Assurance: What telemetry or health views would you expect DNA Center to show to confirm that IP phones are treated correctly (e.g., application health, interface stats)?
Write down a short bullet list describing:
- One automation feature you would use
- One policy concept you would rely on
- One assurance/telemetry view you would check
This mental mapping is exactly how CCNA wants you to think: take a familiar task, then describe how a controller and its APIs/telemetry change how you do it.
Quick Check: APIs and DNA Center Roles
Test your understanding of northbound/southbound APIs and DNA Center’s main functions.
Which statement best describes northbound and southbound APIs in the context of Cisco DNA Center?
- Northbound APIs connect DNA Center to switches and routers, while southbound APIs connect DNA Center to Python scripts and automation tools.
- Northbound APIs are used by external applications and scripts to communicate with DNA Center, while southbound APIs are used by DNA Center to communicate with network devices.
- Northbound APIs are always CLI-based, while southbound APIs are always REST-based in Cisco DNA Center.
- Northbound and southbound APIs are two names for the same REST API, just used in different time zones.
Show Answer
Answer: B) Northbound APIs are used by external applications and scripts to communicate with DNA Center, while southbound APIs are used by DNA Center to communicate with network devices.
Northbound APIs are consumed by applications and scripts ABOVE the controller (like your Python example), while southbound APIs are used by the controller to talk to the infrastructure BELOW it (switches, routers, APs) using protocols like NETCONF, RESTCONF, SNMP, and telemetry.
Quick Check: Telemetry and Assurance
Test your understanding of telemetry and how DNA Center Assurance uses it.
Why is streaming telemetry important for Cisco DNA Center Assurance?
- It replaces the need for any configuration on network devices.
- It allows devices to push high-frequency, structured data to DNA Center, enabling proactive health monitoring and faster troubleshooting.
- It encrypts all traffic in the network by default, improving security.
- It is required for DNA Center to function as a DHCP and DNS server.
Show Answer
Answer: B) It allows devices to push high-frequency, structured data to DNA Center, enabling proactive health monitoring and faster troubleshooting.
Streaming telemetry lets devices push detailed, structured measurements to DNA Center at high frequency. Assurance uses this data to compute health scores, detect anomalies, and support proactive troubleshooting. It does not replace configuration, nor does it inherently encrypt all traffic or turn DNA Center into a DHCP/DNS server.
Key Terms Review: DNA Center and SDN Operations
Flip through these cards to reinforce the most important concepts from this module.
- software-defined networking (SDN)
- Software-defined networking (SDN) is an architectural approach that separates the control plane from the data plane, enabling centralized control of network behavior through software-based controllers and APIs.
- REST API
- A Representational State Transfer (REST) API is a web-based interface that uses HTTP methods and resource-oriented URIs to enable programmatic access to network devices and controllers.
- Cisco DNA Center: Automation
- The Automation function in Cisco DNA Center focuses on centralized provisioning, configuration templates, software image management, and executing changes at scale across many devices.
- Cisco DNA Center: Assurance
- Assurance in Cisco DNA Center uses telemetry, analytics, and baselines to continuously monitor network, client, and application health, providing insights and suggested remediation for issues.
- Cisco DNA Center: Policy
- Policy in Cisco DNA Center lets you express business intent (who can talk to whom, segmentation, QoS) and translates it into underlying configurations such as ACLs and segmentation rules.
- Northbound API (in controllers)
- A northbound API is an interface used by external applications and scripts to communicate with a controller like Cisco DNA Center, typically via REST over HTTPS.
- Southbound API (in controllers)
- A southbound API is an interface a controller uses to communicate with network devices, using protocols such as NETCONF, RESTCONF, SNMP, CLI, and streaming telemetry.
- Telemetry (in DNA Center)
- Telemetry is device-initiated, push-based, structured data sent at high frequency to DNA Center, enabling real-time visibility, baselines, and proactive troubleshooting.
- ACL
- An Access Control List (ACL) is an ordered set of permit and deny statements that control which packets are allowed or blocked based on criteria such as source, destination, and protocol.
- How DNA Center ties SDN and automation together
- DNA Center acts as the SDN controller, exposing northbound REST APIs to tools and scripts while using southbound protocols and telemetry to control and monitor devices, enabling intent-based automation and assurance.
Putting It All Together: DNA Center in Day-to-Day Operations
Start with Policy
Admins define business groups and access rules in DNA Center Policy. DNA Center translates this intent into VLANs, ACLs, QoS, and segmentation configs.
Provision with Automation
New switches and APs are discovered, then Automation applies templates and images so devices share a consistent, standardized configuration baseline.
Telemetry Feeds Assurance
Devices push telemetry to DNA Center, which computes health scores and detects anomalies in clients, devices, and applications over time.
Troubleshoot Centrally
Operators use Assurance dashboards and time-based views to find root causes, then push fixes with Automation instead of per-device CLI changes.
APIs Glue It Together
External tools and scripts use northbound REST APIs to query and control DNA Center, while DNA Center uses southbound protocols to manage devices.
Key Terms
- ACL
- An Access Control List (ACL) is an ordered set of permit and deny statements that control which packets are allowed or blocked based on criteria such as source, destination, and protocol.
- REST API
- A Representational State Transfer (REST) API is a web-based interface that uses HTTP methods and resource-oriented URIs to enable programmatic access to network devices and controllers.
- Telemetry
- Device-initiated, push-based, structured data sent at high frequency to a collector like Cisco DNA Center, providing real-time visibility for monitoring and analytics.
- Northbound API
- An interface used by external applications and scripts to communicate with a controller like Cisco DNA Center, typically using REST over HTTPS.
- Southbound API
- An interface used by a controller like Cisco DNA Center to communicate with network devices, using protocols such as NETCONF, RESTCONF, SNMP, CLI, and streaming telemetry.
- Cisco DNA Center
- Cisco's enterprise network controller and management platform for campus and branch networks, providing automation, assurance, and policy capabilities.
- Policy (DNA Center)
- Capabilities in Cisco DNA Center that let administrators define business intent (access control, segmentation, QoS) which is then translated into device-level configurations.
- Streaming telemetry
- A form of telemetry where devices continuously push high-frequency, model-based data to a collector, enabling near real-time monitoring and detailed analytics.
- Assurance (DNA Center)
- Telemetry-driven monitoring and analytics in Cisco DNA Center that evaluate the health of clients, devices, and applications, and suggest remediation for issues.
- Automation (DNA Center)
- A set of features in Cisco DNA Center that handle centralized provisioning, configuration templates, and software image management across many devices.
- software-defined networking (SDN)
- Software-defined networking (SDN) is an architectural approach that separates the control plane from the data plane, enabling centralized control of network behavior through software-based controllers and APIs.