Arista Cloud Engineer

Level 2 Outline

ACE:L2 Data Sheet



The 5-day ACE Level 2 course expands on the ACE Level 1 course, focusing on features and skills used daily within the Arista customer network. Attendees will be exposed to the Arista Universal Cloud Network (UCN) model for Layer 2 Leaf-Spine topologies, leveraging Multi-chassis Link Aggregation (MLAG) and Virtual-ARP (VARP). This architecture is then presented in the context of the Arista Campus Network, and will introduce Arista's WiFi and campus specific features such as Power over Ethernet (PoE). All topics taught in this course are skills utilized in running an Arista network.


CloudVision Portal (CVP) Overview and Architecture

  • Introduction to Automation and CloudVision
    • Network Automation
    • DIY, DevOps, Turnkey (CV, Studio)
    • State Streaming, SysDB,NetDB, NetDL
    • CloudVision Partner Integration
    • Overview of Installation
  • CloudVision Deployment
    • Cloud-based CVaaS, Appliance, Virtual (OVA, KVM)
    • Software, Authentication and Connectivity Requirements
    • CVP Setup
    • Enabling eAPI
  • Initial Switch Behavior
    • Zero Touch Provisioning (ZTP)
    • Process, Modes, Provisioning
    • DHCP Configuration
    • ZTP Bootstrap with CVP
    • Zero Touch Replacement
  • Automating Configuration with Configlets
    • Configlet and Container Plan
    • Creating Containers
    • Creating Configlet Builder
    • Python Library
  • Change Control
    • Compliance
    • Create Change Control
    • Add/Remove Metrics
  • Day 2 Network Operations
    • Real-Time Telemetry, Analytics
    • Client to Cloud Visibility
    • Troubleshooting with CLI and CVP
    • Image Management
    • Data Plane Visibility

Universal Cloud Networking (UCN)

  • Data Center & Cloud
  • Traditional Data Center Architectures
    • 3-Tier Model Issues
    • Traffic Patterns
    • Spanning Tree Issues
  • Leaf-Spine Architecture
    • The Clos Topology
    • Universal Cloud Network - L2LS, L3LS
  • L2 Switching
    • The Need For High Availability and Redundancy
  • EOS Command Line Interface (CLI)
  • Layer 2 Redundancy
    • Transparent Bridging
    • Ethernet Loop
  • Spanning Tree Protocol (STP) – IEEE 802.1D
    • Ethernet & STP Evolution
    • Multiple Spanning Tree (MST)
  • Spanning Tree Protocols (STP)
    • VLANs and Per-VLAN Spanning Tree (PVST)
    • Multiple STP (MSTP)
  • Link Aggregation
    • LACP - Link Aggregation Control Protocol
    • Port Channel
    • MLAG - Multi-Chassis Link Aggregation
  • FHRP - First Hop Redundancy Protocols
    • Default Gateway Redundancy
    • VRRP - Virtual Router Redundancy Protocol
    • VARP – Virtual ARP

EOS CLI Troubleshooting Tools

  • TCP Dump, Iperf, SNMP, sFlow
  • show tech-support
  • Watch and Diff Commands
  • AEM - Advanced Event Management
  • Additional Useful Show Commands


  • ACL - Access Control List
    • ACL Overview, Operation, Configuration
    • IPv4 ACL, IPv6 ACL, MAC ACL
    • ACL Rules Parameters
    • IPv4/IPv6 ACL Rule Criteria
    • MAC ACL Rule Parameters
    • ACL Implementation
    • ACL Troubleshooting
    • Design and Deployment Best Practices
    • Service/Protocol ACLs
  • Arista Network Detection and Response (NDR)
    • Threat Detection & Hunting
    • Non-malware threats
    • Encrypted threats
    • Unmanaged device security
    • Attack Surface Assessment (ASA)
    • EntityIQ - Visibility
    • AVA - Autonomous Virtual Assistant
    • Case Studies

DMF - Arista DANZ Monitoring Fabric

  • Next-gen Network Packet Brokers (NPB)
    • Pervasive Visibility
    • Predictive Analytics
    • Single Switch, Fabric of Switch Clusters
    • DMF Software Solution
  • LANZ
    • Overview, Operation, Configuration
    • Reporting – View Details in CloudVision
  • Port Mirroring
    • Overview, Configuration, GRE Span
  • Advanced Mirroring
    • Overview
    • Mirroring to CPU and EOS
    • ACLs to Filter - Mirror Sessions, Individual Ports
    • Configuration
  • Packet Truncation and Timestamping
    • Overview
    • Configuration
  • TapAgg - Tap Aggregation
  • Use-case – Pervasive Monitoring

Cognitive Campus Network

  • Campus Networking Evolution
    • Traditional Campus Architectures
    • UCN Principles for Campus
    • Modern L-S Campus Architecture
  • WiFi Fundamentals and Design
    • Cognitive Cloud-based WiFi Solution for Campus
    • Centrally-managed
    • Troubleshooting
  • CloudVision Cognitive Unified Edge (CV-CUE)
  • Arista Cognitive Power over Ethernet (PoE)
  • Arista Unified Wired and Wi-Fi for Campus


The ACE Level 2 course includes diverse practical labs built on current EOS and CloudVision platforms. Labs are accessible for three weeks, one week during the instructor-led course, and two additional weeks to work on labs independently. Every student is given their own dedicated environment. Students can connect to these cloud-based labs from anywhere at any time.

Lab Activities

  • L2 Base Configuration
  • Zero Touch Provisioning (ZTP)
  • Advanced Event Manager (AEM)
  • Multi-Chassis LAG (MLAG)
  • Spanning-tree (STP)
  • Topology and Access Control Lists (ACLs)
  • CloudVision Portal - Navigating the User Interface
  • CloudVision Portal - Configlet Management
  • CloudVision - Configlet Builder
  • Snapshots and Change Control
  • CVP Dashboard and Alerts

Target Audience

The ACE Level 2 course is best suited for individuals with at least mid-level experience in the networking field and are looking to acquire the core skills required to operate Arista networks. The ACE Level 2 course is suitable for individuals looking to grow their relevance with modern network architectures.


ACE Level 2 certification requires a 4-hour practical exam. Candidates must complete the ACE Level 2 course prior to attempting the exam. The candidates will log into a lab environment, similar to the one used for the course labs, and use both CLI and CloudVision to complete the exam.