CCNA Certification Study Guide, Volume 2 E-Book

Volume 2

CCNACertification

Study GuideExam 200-301

Copyright © 2020 by John Wiley & Sons, Inc., Indianapolis, Indiana

Published simultaneously in Canada

ISBN: 978-1-119-65918-1ISBN: 978-1-119-66025-5 (ebk.)ISBN: 978-1-119-66020-0 (ebk.)

Manufactured in the United States of America

No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning or otherwise, except as permitted under Sections 107 or 108 of the 1976 United States Copyright Act, without either the prior written permission of the Publisher, or authorization through payment of the appropriate per-copy fee to the Copyright Clearance Center, 222 Rosewood Drive, Danvers, MA 01923, (978) 750-8400, fax (978) 646-8600. Requests to the Publisher for permission should be addressed to the Permissions Department, John Wiley & Sons, Inc., 111 River Street, Hoboken, NJ 07030, (201) 748-6011, fax (201) 748-6008, or online at http://www.wiley.com/go/permissions.

Limit of Liability/Disclaimer of Warranty: The publisher and the author make no representations or warranties with respect to the accuracy or completeness of the contents of this work and specifically disclaim all warranties, including without limitation warranties of fitness for a particular purpose. No warranty may be created or extended by sales or promotional materials. The advice and strategies contained herein may not be suitable for every situation. This work is sold with the understanding that the publisher is not engaged in rendering legal, accounting, or other professional services. If professional assistance is required, the services of a competent professional person should be sought. Neither the publisher nor the author shall be liable for damages arising herefrom. The fact that an organization or Web site is referred to in this work as a citation and/or a potential source of further information does not mean that the author or the publisher endorses the information the organization or Web site may provide or recommendations it may make. Further, readers should be aware that Internet Web sites listed in this work may have changed or disappeared between when this work was written and when it is read.

For general information on our other products and services or to obtain technical support, please contact our Customer Care Department within the U.S. at (877) 762-2974, outside the U.S. at (317) 572-3993 or fax (317) 572-4002.

Wiley publishes in a variety of print and electronic formats and by print-on-demand. Some material included with standard print versions of this book may not be included in e-books or in print-on-demand. If this book refers to media such as a CD or DVD that is not included in the version you purchased, you may download this material at http://booksupport.wiley.com. For more information about Wiley products, visit www.wiley.com.

Library of Congress Control Number: 2019953053

TRADEMARKS: Wiley, the Wiley logo, and the Sybex logo are trademarks or registered trademarks of John Wiley & Sons, Inc. and/or its affiliates, in the United States and other countries, and may not be used without written permission. CCNA is a registered trademark of Cisco Technology, Inc. All other trademarks are the property of their respective owners. John Wiley & Sons, Inc. is not associated with any product or vendor mentioned in this book.

Acknowledgments

There were many people who helped me build the new CCNA books in 2019 and 2020. First, Kenyon Brown helped me put together the direction for the books and managed the internal editing at Wiley, so thank you, Ken, for working diligently for many months keeping these books moving along. Thanks also to Christine O'Connor, my production editor at Wiley for well over a decade now, as well as Judy Flynn my go-to editor who always does an excellent job! Thanks also to Kim Wimpsett for proofreading and to Todd Montgomery for technical proofreading.

The co-author I used in this book was Donald Robb out of Canada. He helped me put together the two wireless chapters and completely wrote the three DevNet chapters (21–23). His knowledge of the subject is second to none and he blew me away! You'll love his work too. You can reach Donald through his popular blog at https://the-packet-thrower.com. He also is a top moderator and contributor at reddit: https://www.reddit.com/r/ccna/.

The top editors I used in the CCNA series included Troy McMillon, who read each chapter in the full series multiple times, making amazing discoveries both technically and editorially. Todd Montgomery was the most excellent tech editor for the complete two book CCNA Series. Also, Monica Lammle read and reread each chapter and really helped me keep the voicing in place throughout the editorial process, which isn't an easy thing to do!

About the Author

Todd Lammle is the authority on Cisco certification and internetworking and is Cisco certified in most Cisco certification categories. He is a world-renowned author, speaker, trainer, and consultant. Todd has three decades of experience working with LANs, WANs, and large enterprise licensed and unlicensed wireless networks, and lately he's been implementing large Cisco Security networks using Firepower/FTD and ISE.

His years of real-world experience are evident in his writing; he is not just an author but an experienced networking engineer with very practical experience from working on the largest networks in the world, at such companies as Xerox, Hughes Aircraft, Texaco, AAA, Cisco, and Toshiba, among many others.

Todd has published almost 100 books, including the very popular CCNA: Cisco Certified Network Associate Study Guide, CCNA Wireless Study Guide, CCNA Data Center Study Guide, SSFIPS (Firepower), and CCNP Security, all from Sybex. He runs an international consulting and training company based in Colorado, where he spends his free time in the mountains playing with his golden retrievers.

You can reach Todd through his website at www.lammle.com.

CONTENTS

Cover

Acknowledgments

About the Author

Introduction

Assessment Test

Answers to Assessment Test

Chapter 1 Network Fundamentals

Network Components

Next-Generation Firewalls and IPS

Network Topology Architectures

Physical Interfaces and Cables

Ethernet Cabling

Summary

Exam Essentials

Review Questions

Chapter 2 TCP/IP

Introducing TCP/IP

TCP/IP and the DoD Model

IP Addressing

IPv4 Address Types

Summary

Exam Essentials

Review Questions

Chapter 3 Easy Subnetting

Subnetting Basics

Summary

Exam Essentials

Review Questions

Chapter 4 Troubleshooting IP Addressing

Cisco’s Way of Troubleshooting IP

Summary

Exam Essentials

Review Questions

Chapter 5 IP Routing

Routing Basics

The IP Routing Process

Configuring IP Routing

Configuring IP Routing in Our Network

Dynamic Routing

Routing Information Protocol (RIP)

Summary

Exam Essentials

Review Questions

Chapter 6 Open Shortest Path First (OSPF)

Open Shortest Path First (OSPF) Basics

Configuring OSPF

OSPF and Loopback Interfaces

Verifying OSPF Configuration

Summary

Exam Essentials

Review Questions

Chapter 7 Layer 2 Switching

Switching Services

Configuring Catalyst Switches

Summary

Exam Essentials

Review Questions

Chapter 8 VLANs and Inter-VLAN Routing

VLAN Basics

Identifying VLANs

Routing Between VLANs

Configuring VLANs

Summary

Exam Essentials

Review Questions

Chapter 9 Enhanced Switched Technologies

Spanning Tree Protocol (STP)

Types of Spanning-Tree Protocols

Modifying and Verifying the Bridge ID

Spanning-Tree Failure Consequences

PortFast and BPDU Guard

EtherChannel

Summary

Exam Essentials

Review Questions

Chapter 10 Access Lists

Perimeter, Firewall, and Internal Routers

Introduction to Access Lists

Standard Access Lists

Extended Access Lists

Monitoring Access Lists

Summary

Exam Essentials

Review Questions

Chapter 11 Network Address Translation (NAT)

When Do We Use NAT?

Types of Network Address Translation

NAT Names

How NAT Works

Testing and Troubleshooting NAT

Summary

Exam Essentials

Review Questions

Chapter 12 IP Services

Exploring Connected Devices Using CDP and LLDP

Network Time Protocol (NTP)

SNMP

Syslog

Secure Shell (SSH)

Summary

Exam Essentials

Review Questions

Chapter 13 Security

Network Security Threats

Three Primary Network Attacks

Network Attacks

Security Program Elements

Layer 2 Security Features

Authentication Methods

Managing User Accounts

Security Password Policy Elements

User-Authentication Methods

Setting Passwords

Summary

Exam Essentials

Review Questions

Chapter 14 First Hop Redundancy Protocol (HSRP)

Client Redundancy Issues

Introducing First Hop Redundancy Protocol (FHRP)

Hot Standby Router Protocol (HSRP)

Summary

Exam Essentials

Review Questions

Chapter 15 Virtual Private Networks (VPNs)

Virtual Private Networks

GRE Tunnels

Summary

Exam Essentials

Review Questions

Chapter 16 Quality of Service (QoS)

Quality of Service

Trust Boundary

QoS Mechanisms

Summary

Exam Essentials

Review Questions

Chapter 17 Internet Protocol Version 6 (IPv6)

Why Do We Need IPv6?

The Benefits and Uses of IPv6

IPv6 Addressing and Expressions

How IPv6 Works in an Internetwork

IPv6 Routing Protocols

Configuring IPv6 on Our Internetwork

Configuring Routing on Our Internetwork

Summary

Exam Essentials

Review Questions

Chapter 18 Troubleshooting IP, IPv6, and VLANs

Endpoints

Servers

IP Config

Troubleshooting IP Network Connectivity

Troubleshooting IPv6 Network Connectivity

Troubleshooting VLAN Connectivity

Summary

Exam Essentials

Review Questions

Chapter 19 Wireless Technologies

Wireless Networks

Basic Wireless Devices

Wireless Principles

Nonoverlapping Wi-Fi channels

Radio Frequency (RF)

Wireless Security

Summary

Exam Essentials

Review Question

Chapter 20 Configuring Wireless Technologies

WLAN Deployment Models

Setting Up a Wireless LAN Controller (WLC)

Joining Access Points (APs)

Wireless LAN Controllers (WLC)

WLC Port Types

WLC Interface Types

AP Modes

AP and WLC Management Access Connections

Summary

Exam Essentials

Review Questions

Chapter 21 Virtualization, Automation, and Programmability

Virtual Machine Fundamentals

Virtualization Components

Virtualization Features

Virtualization Types

Virtualization Solutions

Automation Components

Summary

Exam Essentials

Review Questions

Chapter 22 SDN Controllers

Traditional Network Monitoring Systems (NMS)

Traditional Network Configuration Managers (NCMs)

Traditional Networking

Introduction to SDN

Separating the Control Plane

Controller-Based Architectures

SDN Network Components

DNA Center Overview

Summary

Exam Essentials

Review Questions

Chapter 23 Configuration Management

Team Silos

DevOps

Infrastructure as Code (IaC)

Ansible

Ansible Tower/AWX

Puppet

Chef

Summary

Exam Essentials

Review Questions

Appendix Answers to Review Questions

Chapter 1: Network Fundamentals

Chapter 2: TCP/IP

Chapter 3: Easy Subnetting

Chapter 4: Troubleshooting IP Addressing

Chapter 5: IP Routing

Chapter 6: Open Shortest Path First (OSPF)

Chapter 7: Layer 2 Switching

Chapter 8: VLANs and Inter-VLAN Routing

Chapter 9: Enhanced Switched Technologies

Chapter 10: Access Lists

Chapter 11: Network Address Translation (NAT)

Chapter 12: IP Services

Chapter 13: Security

Chapter 14: First Hop Redundancy Protocol (HSRP)

Chapter 15: Virtual Private Networks (VPNs)

Chapter 16: Quality of Service (QoS)

Chapter 17: Internet Protocol Version 6 (IPv6)

Chapter 18: Troubleshooting IP, IPv6, and VLANs

Chapter 19: Wireless Technologies

Chapter 20: Configuring Wireless Technologies

Chapter 21: Virtualization, Automation, and Programmability

Chapter 22: SDN Controllers

Chapter 23: Configuration Management

Index

End User License Agreement

List of Tables

Chapter 2

Table 2.1

Table 2.2

Table 2.3

Table 2.4

Table 2.5

Chapter 3

Table 3.1

Table 3.2

Table 3.3

Chapter 5

Table 5.1

Chapter 6

Table 6.1

Table 6.2

Chapter 9

Table 9.1

Chapter 10

Table 10.1

Chapter 11

Table 11.1

Table 11.2

Chapter 12

Table 12.1

Table 12.2

Chapter 14

Table 14.1

Chapter 17

Table 17.1

Table 17.2

Chapter 19

Table 19.1

Chapter 21

Table 21.1

Table 21.2

List of Illustrations

Introduction

Figure I.1: The Cisco certification path

Chapter 1

Figure 1.1 A very basic SOHO network

Figure 1.2 A switch can break up collision domains.

Figure 1.3 Routers create an internetwork.

Figure 1.4 Switches work at layer 2.

Figure 1.5 Physical components of a network

Figure 1.6 NGFW can stop attacks in real time.

Figure 1.7 Cisco IPS policy to the rescue!

Figure 1.8 Cisco Firepower IPS policy dropped the bad guys packets!

Figure 1.9 The Cisco hierarchical model

Figure 1.10 Real-life collapsed core (2-tier) Image

Figure 1.11 Top of Rack Network Design

Figure 1.12 Spine-leaf design

Figure 1.13 WAN terms

Figure 1.14 Category 5 Enhanced UTP cable

Figure 1.15 Straight-through Ethernet cable

Figure 1.16 Crossover Ethernet cable

Figure 1.17 Typical uses for straight-through and cross-over Ethernet cables

Figure 1.18 UTP Gigabit crossover Ethernet cable

Figure 1.19 Typical fiber cable. Dimensions are in um (10

–6

meters). Not to scale.

Figure 1.20 Multimode and single-mode fibers

Figure 1.21 NGFW ports provide PoE

Chapter 2

Figure 2.1 The DoD and OSI models

Figure 2.2 The TCP/IP protocol suite

Figure 2.3 Telnet

Figure 2.4 Secure Shell

Figure 2.5 FTP

Figure 2.6 TFTP

Figure 2.7 SNMP

Figure 2.8 HTTP

Figure 2.9 NTP

Figure 2.10 DNS

Figure 2.11 DHCP client four-step process

Figure 2.12 TCP segment format

Figure 2.13 UDP segment

Figure 2.14 Port numbers for TCP and UDP

Figure 2.15 IP header

Figure 2.16 The Protocol field in an IP header

Figure 2.17 ICMP error message is sent to the sending host from the remote router

Figure 2.18 ICMP in action

Figure 2.19 Local ARP broadcast

Figure 2.20 Summary of the three classes of networks

Figure 2.21 Local layer 2 broadcasts

Figure 2.22 Layer 3 broadcasts

Figure 2.23 Unicast address

Figure 2.24 EIGRP multicast example

Chapter 3

Figure 3.1 One network

Figure 3.2 Multiple networks connected together

Figure 3.3 Implementing a Class C /25 logical network

Figure 3.4 Implementing a class C /26 (with three networks)

Figure 3.5 Implementing a Class C /27 logical network

Chapter 4

Figure 4.1 Basic IP troubleshooting

Figure 4.2 IP address

problem 1

Figure 4.3 IP address

problem 2

Figure 4.4 Find the valid host #1.

Figure 4.5 Find the valid host #2.

Figure 4.6 Find the valid host address #3.

Figure 4.7 Find the valid subnet mask

Chapter 5

Figure 5.1 A simple routing example

Figure 5.2 IP routing example using two hosts and one router

Figure 5.3 Frame used from Host A to the Lab_A router when Host B is pinged

Figure 5.4 IP routing

example 1

Figure 5.5 IP routing

example 2

Figure 5.6 Basic IP routing using MAC and IP addresses

Figure 5.7 Testing basic routing knowledge

Figure 5.8 Configuring IP routing

Figure 5.9 Our internetwork

Chapter 6

Figure 6.1 OSPF design example. An OSPF hierarchical design minimizes routing table entrie...

Figure 6.2 The Hello protocol

Figure 6.3 Sample OSPF wildcard configuration

Figure 6.4 Our new network layout

Figure 6.5 Adding a non-OSPF network to LA router

Figure 6.6 OSPF router ID (RID)

Chapter 7

Figure 7.1 Empty forward/filter table on a switch

Figure 7.2 How switches learn hosts’ locations

Figure 7.3 Forward/filter table

Figure 7.4 Forward/filter table answer

Figure 7.5 “Port security” on a switch port restricts port access by MAC address.

Figure 7.6 Protecting a PC in a lobby

Figure 7.7 Broadcast storm

Figure 7.8 Multiple frame copies

Figure 7.9 A Cisco Catalyst switch

Figure 7.10 Our switched network

Chapter 8

Figure 8.1 Flat network structure

Figure 8.2 The benefit of a switched network

Figure 8.3 One switch, one LAN: Before VLANs, there were no separations between hosts.

Figure 8.4 One switch, two virtual LANs (

logical

separation between hosts): Still physic...

Figure 8.5 Access ports

Figure 8.6 VLANs can span multiple switches by using trunk links, which carry traffic for ...

Figure 8.7 IEEE 802.1q encapsulation with and without the 802.1q tag

Figure 8.8 Router connecting three VLANs together for inter-VLAN communication, one router...

Figure 8.9 Router on a stick: single router interface connecting all three VLANs together ...

Figure 8.10 A router creates logical interfaces.

Figure 8.11 With IVR, routing runs on the backplane of the switch, and it appears to the ho...

Figure 8.12 Configuring inter-VLAN

example 1

Figure 8.13 Inter-VLAN

example 2

Figure 8.14 Inter-VLAN

example 3

Figure 8.15 Inter-VLAN

example 4

Figure 8.16 Inter-VLAN routing with a multilayer switch

Chapter 9

Figure 9.1 A switched network with switching loops

Figure 9.2 A switched network with STP

Figure 9.3 STP operations

Figure 9.4 STP operations

Figure 9.5 STP converged

Figure 9.6 STP operations

Figure 9.7 Common STP example

Figure 9.8 PVST+ provides efficient root bridge selection.

Figure 9.9 PVST+ unique bridge ID

Figure 9.10 RSTP

example 1

Figure 9.11 RSTP example 1 answer

Figure 9.12 RSTP example 2

Figure 9.13 RSTP example 2, answer 1

Figure 9.14 RSTP

example 2

, answer 2

Figure 9.15 Our simple three-switch network

Figure 9.16 STP stopping loops

Figure 9.17 STP failure

Figure 9.18 PortFast

Figure 9.19 Before and after port channels

Figure 9.20 EtherChannel example

Chapter 10

Figure 10.1 A typical secured network

Figure 10.2 IP access list example with three LANs and a WAN connection

Figure 10.3 IP standard access list

example 2

Figure 10.4 IP standard access list

example 3

Figure 10.5 Extended ACL

example 1

Figure 10.6 Extended ACL

example 3

Chapter 11

Figure 11.1 Where to configure NAT

Figure 11.2 Basic NAT translation

Figure 11.3 NAT overloading example (PAT)

Figure 11.4 NAT example

Figure 11.5 Another NAT example

Figure 11.6 Last NAT example

Chapter 12

Figure 12.1 Cisco Discovery Protocol

Figure 12.2 Documenting a network topology using CDP

Figure 12.3 Network topology documented

Figure 12.4 Synchronizing time information

Figure 12.5 SNMP GET and TRAP messages

Figure 12.6 Cisco’s MIB OIDs

Figure 12.7 Messages sent to a syslog server

Chapter 13

Figure 13.1 Aerial view of a mantrap

Figure 13.2 Mitigating Threats at the Access Layer

Figure 13.3 DHCP Snooping

Figure 13.4 Identity-Based Networking

Figure 13.5 RSA token card

Figure 13.6 External Authentication options

Figure 13.7 The certificate authority process

Figure 13.8 PKI Encryption Process in action

Figure 13.9 The Kerberos authentication process

Chapter 14

Figure 14.1 Default gateway

Figure 14.2 Proxy ARP

Figure 14.3 FHRPs use a virtual router with a virtual IP address and virtual 
MAC address.

Figure 14.4 HSRP active and standby routers

Figure 14.5 Example of HSRP active and standby routers swapping interfaces

Figure 14.6 HSRP Hellos

Figure 14.7 Interface tracking setup

Figure 14.8 HSRP configuration and verification

Figure 14.9 HSRP load balancing per VLAN

Chapter 15

Figure 15.1 Example of using a VPN

Figure 15.2 Enterprise-managed VPNs

Figure 15.3 Provider-managed VPNs

Figure 15.4 Security Protocols

Figure 15.5 Encryption Process

Figure 15.6 Generic Routing Encapsulation (GRE) tunnel structure

Figure 15.7 Example of GRE configuration

Chapter 16

Figure 16.1 Traffic characteristics

Figure 16.2 Trust boundary

Figure 16.3 Policing and shaping rate limiters

Figure 16.4 Congestion management

Figure 16.5 Modern queuing mechanisms

Figure 16.6 LLQ queuing mechanisms

Figure 16.7 Congestion avoidance

Chapter 17

Figure 17.1 IPv6 address example

Figure 17.2 IPv6 global unicast addresses

Figure 17.3 IPv6 link local FE80::/10: The first 10 bits define the address type.

Figure 17.4 EUI-64 interface ID assignment

Figure 17.5 Two steps to IPv6 autoconfiguration

Figure 17.6 IPv6 autoconfiguration example

Figure 17.7 IPv6 header

Figure 17.8 ICMPv6

Figure 17.9 Router solicitation (RS) and router advertisement (RA)

Figure 17.10 Neighbor solicitation (NS) and neighbor advertisement (NA)

Figure 17.11 Duplicate address detection (DAD)

Figure 17.12 IPv6 static and default routing

Figure 17.13 Our internetwork

Chapter 18

Figure 18.1 Network Connections page

Figure 18.2 IPv4 Properties Page

Figure 18.3 Setting the IP and DNS addresses

Figure 18.4 Advanced tab

Figure 18.5 DNS tab

Figure 18.6 Verifying IP information

Figure 18.7 IPconfig

Figure 18.8 IPConfig /all

Figure 18.9 Powershell

Figure 18.10 MAC OS

Figure 18.11 MAC TCP/IP Screen

Figure 18.12 MAC DNS tab

Figure 18.13 MAC ifconfig

Figure 18.14 Ubuntu IP Settings

Figure 18.15 the Linux gear icon

Figure 18.16 Troubleshooting scenario

Figure 18.17 Using SPAN for troubleshooting

Figure 18.18 Extended ACLs

Figure 18.19 IPv6 troubleshooting scenario

Figure 18.20 Router solicitation (RS) and router advertisement (RA)

Figure 18.21 Neighbor solicitation (NS) and neighbor advertisement (NA)

Figure 18.22 VLAN connectivity

Chapter 19

Figure 19.1 Wireless LANs are an extension of our existing LANs

Figure 19.2 Today’s wireless networks

Figure 19.3 A wireless access point

Figure 19.4 Wireless NIC

Figure 19.5 A wireless network in ad hoc mode

Figure 19.6 Basic service set/basic service area

Figure 19.7 A network with MBSSIDs configured on an AP

Figure 19.8 Extended service set (ESS)

Figure 19.9 An AP repeater network

Figure 19.10 Typical bridge scenarios

Figure 19.11 A repeater AP bridge configured as a nonroot bridge

Figure 19.12 Typical large mesh outdoor environment

Figure 19.13 2.4GHz band 22MHz wide channels

Figure 19.14 5GHz band 20MHz wide channels

Figure 19.15 Channel overlap in the 2.4GHz range

Figure 19.16 Channel overlap in the 5GHz band

Figure 19.17 RF spectrum

Figure 19.18 Frequency

Figure 19.19 Amplitude

Figure 19.21 Absorption

Figure 19.22 Reflection

Figure 19.23 Multipath

Figure 19.24 Refraction

Figure 19.25 Diffraction

Figure 19.26 Scattering

Figure 19.27 Line of sight

Figure 19.28 Fresnel zone

Figure 19.29 SNR

Figure 19.30 Open access process

Figure 19.31 Open access process

Chapter 20

Figure 20.1 Cisco stand-alone AP

Figure 20.2 Cisco Lightweight AP

Figure 20.3 The cloud model

Figure 20.4 Meraki Wireless

Figure 20.5 Example wireless network

Figure 20.6 Configure AP with DNS

Figure 20.7 Cisco WLC

Figure 20.8 Cisco WLC Serial Port Configuration

Figure 20.9 WLC Add Route

Figure 20.10 Distribution system port

Figure 20.11 WLC interfaces

Figure 20.12 WLC management interface

Figure 20.13 WLC service port interface

Figure 20.14 WLC redundancy management interface

Figure 20.15 WLC virtual interface

Figure 20.16 WLC dynamic interface

Figure 20.17 WLC dynamic interface configuration

Figure 20.18 WLC Interface Groups

Figure 20.19 WLC interface group configuration

Figure 20.20 WLC LAN Aggregation Group

Figure 20.21 WLC reboot

Figure 20.22 WLC AP configuration screen

Figure 20.23 WLC AP IP addressing

Figure 20.24 WLC AP DNS configuration

Figure 20.25 WLC high availability

Figure 20.26 WLC finished AP configuration

Figure 20.27 WLC radio sniffer

Figure 20.28 Cisco Spectrum Expert

Figure 20.29 Metageek’s Chanalyzer

Figure 20.30 Bridge mode

Figure 20.31 FlexConnect layout

Figure 20.32 WLC CDP configuration

Figure 20.33 WLC CDP verification

Figure 20.34 Show CDP neighbors

Figure 20.35 WLC telnet configuration

Figure 20.36 WLC SSH Configuration

Figure 20.37 WLC HTTP configuration

Figure 20.38 WLC HTTPS configuration

Figure 20.39 WLC Radius configuration

Figure 20.40 WLC second Radius configuration

Figure 20.41 Radius configuration summary

Figure 20.42 WLC Radius accounting configuration

Figure 20.43 WLC Radius accounting summary

Figure 20.44 WLC TACACS+ configuration

Figure 20.45 WLC TACACS+ summary

Figure 20.46 WLC TACACS+ accounting configuration

Figure 20.47 WLC TACACS+ accounting summary

Figure 20.48 WLC authentication order

Figure 20.49 WLC WLAN creation

Figure 20.50 WLC WLAN configuration

Figure 20.51 WLC WLAN General tab

Figure 20.52 WLC WLAN Security tab

Figure 20.53 WLC WLAN PSK configuration

Figure 20.54 WLC WLAN AAA Servers tab

Figure 20.55 WLC WLAN QoS tab

Figure 20.56 WLC WLAN Advanced tab

Figure 20.57 Connect a client to the WLAN

Figure 20.58 WLAN client configuration

Figure 20.59 WLAN client verification

Chapter 21

Figure 21.1 Five servers and counting

Figure 21.2 Streamlined Servers

Figure 21.3 How a REST API is put together

Figure 21.4 Token Body Window

Figure 21.5 Device Inventory

Chapter 22

Figure 22.1 NMS network overview

Figure 22.2 NMS alert configuration

Figure 22.3 NMS alert configuration

Figure 22.4 NMS central syslog

Figure 22.5 NMS central SNMP trap

Figure 22.6 NMS interface utilization

Figure 22.7 NMS hardware health

Figure 22.8 NMS network graphs

Figure 22.9 NMS network topology

Figure 22.10 NCM config overview

Figure 22.11 NCM compare config

Figure 22.12 NCM push config

Figure 22.13 IOS-XE web interface

Figure 22.14 Fowarding traffic flow

Figure 22.15 Forwarding table

Figure 22.16 Full topology

Figure 22.17 SDN architecture

Figure 22.18 OpenDaylight topology

Figure 22.19 SDN control plane

Figure 22.20 SDN Controller

Figure 22.21 Campus fabric

Figure 22.22 CLOS topology

Figure 22.23 Underlay topology

Figure 22.24 DMVPN topology

Figure 22.25 DNA Overview

Figure 22.26 DNA discovery

Figure 22.27 DNA Network Hierarchy

Figure 22.28 DNA Network Settings

Figure 22.29 DNA Wireless Settings

Figure 22.30 DNA Switch Template

Figure 22.31 DNA topology

Figure 22.32 DNA upgrade repository

Figure 22.33 DNA upgrading devices

Figure 22.34 DNA Command Runner

Figure 22.35 DNA Network Health

Figure 22.36 DNA wireless clients

Figure 22.37 DNA Path Trace

Figure 22.38 DNA QoS Policy

Figure 22.39 DNA Service Provider Profiles

Figure 22.40 DNA LAN automation

Figure 22.41 DNA Restful API

Chapter 23

Figure 23.1 IT generalist

Figure 23.2 Silo network team

Figure 23.3 Silo systems team

Figure 23.4 Silo security team

Figure 23.5 Network services

Figure 23.6 Silo development team

Figure 23.7 DevOps team

Figure 23.8 Ansible components

Figure 23.9 Ansible topology

Figure 23.10 Puppet lab

Figure 23.11 Chef architecture

Figure 23.12 Chef lab

Figure 23.13 Chef verification

Guide

Cover

Table of Contents

Introduction

Pages

iii

iv

v

vii

xxv

xxvi

xvii

xviii

xxix

xxx

xxxi

xxxii

xxxiii

xxxiv

xxxv

xxxvi

xxxvii

xxxviii

xxxix

xl

xli

xlii

xliii

xliv

xlv

xlvi

xlvii

xlviii

xlix

l

li

lii

liii

liv

lv

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

266

267

268

269

270

271

272

273

274

275

276

277

278

279

280

281

282

283

284

285

286

287

289

290

291

292

293

294

295

296

297

298

299

300

301

302

303

304

305

306

307

308

309

310

311

312

313

314

315

316

317

318

319

320

321

322

323

324

325

326

327

328

329

330

331

332

333

334

335

337

338

339

340

341

342

343

344

345

346

347

348

349

350

351

352

353

354

355

356

357

358

359

360

361

362

363

364

365

366

367

368

369

370

371

372

373

374

375

376

377

378

379

380

381

382

383

384

385

386

387

388

389

390

391

392

393

394

395

396

397

398

399

400

401

402

403

404

405

406

407

408

409

410

411

412

413

414

415

416

417

418

419

420

421

422

423

424

425

426

427

428

429

430

431

433

434

435

436

437

438

439

440

441

442

443

444

445

446

447

448

449

450

451

452

453

454

455

456

457

458

459

460

461

462

463

465

466

467

468

469

470

471

472

473

474

475

476

477

478

479

480

481

482

483

484

485

486

487

488

489

490

491

492

493

495

496

497

498

499

500

501

502

503

504

505

506

507

508

509

510

511

512

513

514

515

516

517

518

519

520

521

522

523

524

525

526

527

528

529

530

531

532

533

534

535

536

537

538

539

540

541

542

543

544

545

546

547

548

549

550

551

552

553

554

555

556

557

558

559

560

561

562

563

564

565

566

567

568

569

570

571

572

573

574

575

576

577

578

579

580

581

582

583

584

585

586

587

588

589

590

591

592

593

595

596

597

598

599

600

601

602

603

604

605

606

607

608

609

610

611

612

613

614

615

616

617

618

619

620

621

622

623

624

625

626

627

628

629

630

631

632

633

634

635

636

637

638

639

640

641

642

643

644

645

646

647

648

649

650

651

652

653

654

655

656

657

658

659

660

661

662

663

664

665

666

667

668

669

670

671

672

673

674

675

676

677

678

679

680

681

682

683

684

685

686

687

689

690

691

692

693

694

695

696

697

698

699

700

701

702

703

704

705

706

707

708

709

710

711

712

713

714

715

716

717

718

719

720

721

722

723

724

725

726

727

728

729

730

731

732

733

734

735

736

737

738

739

740

741

743

744

745

746

747

748

749

750

751

752

753

754

755

756

757

758

759

760

761

762

763

764

765

766

767

768

769

770

771

772

773

774

775

776

777

778

779

780

781

782

783

784

785

787

788

789

790

791

792

793

794

795

796

797

798

799

800

801

802

803

804

805

806

807

808

809

810

811

812

813

814

815

816

817

818

819

820

821

822

823

824

825

826

827

828

829

830

831

832

833

834

835

836

837

838

839

840

841

Introduction

Welcome to the exciting world of Cisco certification! If you’ve picked up this book because you want to improve yourself and your life with a better, more satisfying and secure job, you’ve done the right thing. Whether your plan is to enter the thriving, dynamic IT sector or to enhance your skill set and advance your position within it, being Cisco certified can seriously stack the odds in your favor to help you attain your goals.

Cisco certifications are powerful instruments of success that also just happen to improve your grasp of all things internetworking. As you progress through this book, you’ll gain a complete understanding of networking that reaches far beyond Cisco devices. By the end of this book, you’ll comprehensively know how disparate network topologies and technologies work together to form the fully operational networks that are vital to today’s very way of life in the developed world. The knowledge and expertise you’ll gain here are essential for and relevant to every networking job. It’s why Cisco certifications are in such high demand—even at companies with few Cisco devices!

 For up-to-the-minute updates covering additions or modifications to the Cisco certification exams, as well as additional study tools, review questions, videos, and bonus materials, be sure to visit the Todd Lammle websites and forum at www.lammle.com/ccna

Cisco’s Network Certifications

Way back in 1998, obtaining the Cisco Certified Network Associate (CCNA) certification was the first pitch in the Cisco certification climb. It was also the official prerequisite to each of the more advanced levels. But that changed in 2007, when Cisco announced the Cisco Certified Entry Network Technician (CCENT) certification. Then again, in May 2016, Cisco announced new updates to the CCENT and CCNA Routing and Switching (R/S) tests. Today, things have changed dramatically again.

In July of 2019, Cisco switched up the certification process more than they have in the last 20 years! They announced all new certifications that have started in February 2020, which is probably why you’re reading this book!

So what’s changed? For starters, the CCENT course and exam (ICND1 and ICND2), 
no longer exist, nor even the terms Routing & Switching (rebranded to Enterprise). On top of that, the CCNA is no longer a prerequisite for any of the higher certifications at all, meaning that you’ll be able to jump straight to CCNP without having to take the new CCNA exam.

The new Cisco certification process will look like Figure I.1.

Figure I.1: The Cisco certification path

First, the CCT, entry-level certification just isn’t worth your time. Instead, you’ll want to head directly to CCNA, using this book and the abundant resources on www.lammle.com/ccna of course!

The Todd Lammle CCNA program, starting with this book, is a powerful tool to get you started in your CCNA studies, and it’s vital to understand that material found in this book and at www.lammle.com/ccna before you go on to conquer any other certifications!

What Does This Book Cover?

This book covers everything you need to know to pass the new CCNA exam. But regardless of which path you choose, as I’ve said, taking plenty of time to study and practice with routers or a router simulator is the real key to success.

You will learn the following information in this book:

Chapter 1: Network Fundamentals  In Chapter 1, network fundamentals, the Cisco three-layer model, and wide area network are reviewed. Ethernet cabling including fiber optic is discussed. The chapter ends with an overview of PoE. Review questions await you at the end to test your understanding of the material.

Chapter 2: TCP/IP  In this chapter, I’ll cover the protocols of TCP/IP. I’ll begin by exploring the DoD’s version of TCP/IP, then compare that version and its protocols with the OSI reference model that we discussed earlier. Lastly, I dive into the world of IP addressing and the different classes of IP addresses used in networks today. Review questions are at the end of the chapter to test your understanding of the material.

Chapter 3: Introduction to TCP/IP  This chapter will pick up right where we left off in the last chapter and continue to explore the world of IP addressing. I’ll open this chapter by showing you how to subnet an IP network. Prepare yourself because being able to subnet quickly and accurately is pretty challenging. Use the review questions to test your ability to understand subnetting; also, use the bonus tools found at www.lammle.com/ccna

Chapter 4: Troubleshooting IP Addressing  In this chapter, we’ll cover IP address troubleshooting, while focusing on the steps Cisco recommends following when troubleshooting an IP network. Working through this chapter will hone your knowledge of IP addressing and networking, while refining the essential skills you’ve attained so far.

Chapter 5: IP Routing  This chapter’s focus is on the core topic of the ubiquitous IP routing process. It’s integral to networking because it pertains to all routers and configurations that use it—easily the lion’s share. IP routing is basically the process of moving packets from one network to another network using routers, and this chapter will cover IP routing in depth.

Chapter 6: Open Shortest Path First (OSPF)  Open Shortest Path First (OSPF) is by far the most popular and important routing protocol in use today—so important, I’m devoting an entire chapter to it! Sticking with the same approach we’ve taken throughout this book, we’ll begin with the basics by completely familiarizing you with key OSPF terminology.

Chapter 7: Managing a Cisco Internetwork  In this chapter, I’m going to cover the finer points of layer 2 switching to make sure you know exactly how it works. You should already know that we rely on switching to break up large collision domains into smaller ones and that a collision domain is a network segment with two or more devices sharing the same bandwidth. Switches have changed the way networks are designed and implemented. If a pure switched design is implemented well, the result will be a clean, cost-
effective, and resilient internetwork.

Chapter 8: Virtual LANs and Inter-VLAN Routing (IVR)  This chapter discussed how we break up broadcast domains in a pure switched internetwork. We do this by creating virtual local area networks (VLANs). A VLAN is a logical grouping of network users and resources connected to administratively defined ports on a switch, and I’ll show you how to really understand the foundation and the configuration of VLANs and IVR.

Chapter 9: Enhanced Switched Technologies  This chapter will start off with STP protocols and dive into the fundamentals, covering the modes, as well as the various flavors of STP. VLANs, trunks, and troubleshooting. Lastly, PortFast will also be discussed.

Chapter 10: Access List  This chapter covers security and access lists, which are created on routers to filter the network. IP standard, extended, and named access lists are covered in detail. Written and hands-on labs, along with review questions, will help you study for the security and access-list portion of the Cisco exams.

Chapter 11: Network Address Translation (NAT)  In this chapter, we’re going to dig into Network Address Translation (NAT), Dynamic NAT, and Port Address Translation (PAT), also known as NAT Overload. Of course, I’ll demonstrate all the NAT commands.

Chapter 12: IP Services  This chapter covers how to find neighbor device information using the proprietary Cisco Discovery Protocol (CDP) and the industry-standard Link Layer Discovery protocol (LLDP). I’ll also discuss how to make sure our times are synchronized with our devices using Network Time Protocol (NTP). After that, I’ll show you the Simple Network Management Protocol (SNMP) and the type of alerts sent to the network management station (NMS). You’ll learn about the all-so-important Syslog logging and configuration, and then finally, I’ll cover how to configure Secure Shell (SSH).

Chapter 13: Security  New information, commands, troubleshooting, and detailed hands-on labs will help you nail the NAT CCENT objectives.

Chapter 14: First Hop Redundancy Protocol (HSRP)  This chapter will start off by telling you the reasons why we need a layer 3 redundancy protocol, and then move into how to build redundancy and load-balancing features into your network elegantly with routers that you might even have already. You really don’t need to buy some overpriced load-balancing device when you know how to configure and use Hot Standby Router Protocol (HSRP).

Chapter 15: Virtual Private Networks (VPNs)  We’re going to cover VPNs in depth in 
this chapter. You’ll learn some smart solutions that will help you meet your company’s off-site network access needs, and dive deep into how these networks utilize IP security to provide secure communications over a public network via the Internet using VPNs with IPSec. This chapter wraps up by demonstrating how to create a tunnel using GRE (Generic Routing Encapsulation).

Chapter 16: Quality of Service (QoS)  Quality of service (QoS) refers to the way resources are controlled so that the quality of services is maintained. In this chapter I’m going to cover how QoS solves problems by using classification and marking tools, policing, shaping and re-marking, providing congestion management and scheduling tools, and finally, link-specific tools.

Chapter 17: Internet Protocol Version 6 (IPv6)  This is a fun chapter chock-full of some great information. IPv6 is not the big, bad scary creature that most people think it is, and it’s a really important objective on the latest exam, so study this chapter carefully—don’t just skim it.

Chapter 18: Troubleshooting IP, IPv6, and VLANs  This chapter will covered detailed troubleshooting, and since this is such a major focus of the Cisco CCNA objectives, I’d be letting you down if I didn’t make sure you’ve got this important topic down. So to ensure your skills are solid, we’re going to begin by diving deep into troubleshooting with IP, IPv6, and virtual LANs (VLANs) now. You absolutely must also have the fundamentals of IP and IPv6 routing and knowledge of VLANs and trunking nailed down tight if you’re going to win at this.

Chapter 19: Wireless Technologies  Since I know you’ve crushed all of the previous 
chapters, you’re ready to dive into this one! If that’s not exactly you, just know that the two chapters on switching provide a really nice review on switching and VLANs. So, let’s start this chapter by defining a basic wireless network as well as basic wireless principles. We’ll talk about different types of wireless networks, discuss the minimum devices required to create a simple wireless network, and look at some basic wireless topologies as well. After that, I’ll get into basic security by covering WPA, WPA2, and WPA3.

Chapter 20: Configuring Wireless Technologies  After Chapter 21 you now know how wireless works, so now we’re going to guide through configuring a wireless network from beginning to end. We’ll start by telling you all about how to get a Cisco Wireless LAN controller up and running before showing you how to join access-points to our new WLC. We’ll aslo dig deep into how to configure the WLC to support wireless networks. By the end of this chapter, you’ll triumph by having an actual endpoint join your wireless LAN!

Chapter 21: Virtualization, Automation, and Programmability  In this chapter we’ll begin to address modern challenges by introducing you to virtualization basics. We’ll then walk you through its common components and features to closing the topic by comparing some of the virtualization products on the market as of this writing. After that, we’ll explore important automation concepts and components to provide you with sure footing to jump into the SDN and configuration management chapters following this one.

Chapter 22: Software Defined Networks (SDN) Controllers  Automation has gotten popular enough to be included on the CCNA exam—it even has its own Devnet certification track! Even so, most companies still aren’t keen on fully managing their network with a bunch of Python scripts on a shared drive. So a better solution is to go with something called a Software Defined Networking (SDN) controller to centrally manage and monitor the network instead of doing everything manually, and that is what this chapter is all about!

Chapter 23: DNA Center Configuration Management  In this chapter we’re going to take things to a whole new DNA Center level now, diving deeper into Configuration Management tools like Ansible, Puppet, and Chef. These great features that make it possible to automate almost everything in your infrastructure! We’ll explore Ansible, Puppet, and Chef.

Appendix: Answers to Review Questions  This appendix provides the answers to the end-of-chapter review questions.

Interactive Online Learning Environment and Test Bank

The interactive online learning environment that accompanies the CCNA Certification Study Guide provides a test bank with study tools to help you prepare for the certification exams and increase your chances of passing them the first time! The test bank includes the following elements:

Sample Tests  All of the questions in this book are provided, including the assessment test, which you’ll find at the end of this introduction, and the chapter tests that include the review questions at the end of each chapter. In addition, there are two practice exams. Use these questions to test your knowledge of the study guide material. The online test bank runs on multiple devices.

Electronic Flashcards  The flashcards are included for quick reference and are great tools for learning quick facts. You can even consider these as additional simple practice questions, which is essentially what they are.

Glossary  There is a PDF of a glossary included, which covers the terms used in this book.

 The Sybex Interactive Online Test Bank, flashcards, and glossary can be accessed at http://www.wiley.com/go/sybextestprep.

In addition to the materials we provide online as part of the test bank, you can also visit Todd Lammle’s website to access other valuable resources.

Todd Lammle Bonus Material and Labs  Be sure to check www.lammle.com/ccna for directions on how to download all the latest bonus material created specifically to help you study for your CCNA exam.

Todd Lammle Videos  I have created a full CCNA series of videos that can be purchased at www.lammle.com/ccna

CCNA Exam Overview

Cisco has designed the new CCNA program to prepare you for today’s associate-level job roles in IT technologies. The CCNA now includes security and automation and programmability, and there is even a new CCNA DevNet certification. The new CCNA program has one certification that covers a broad range of fundamentals for IT careers.

The new CCNA certification covers a huge amount of topics, including:

Network fundamentals

Network access

IP connectivity

IP services

Security fundamentals

Wireless

Automation and programmability

Are there any prerequisites to take before the CCNA exam can be taken?

Not really, but having experience is really helpful. Cisco has no formal prerequisites for CCNA certification, but you should have an understanding of the exam topics before taking the exam.

CCNA candidates often also have:

One or more years of experience implementing and administering Cisco solutions

Knowledge of basic IP addressing

A good understanding of network fundamentals

How to Use This Book

If you want a solid foundation for the serious effort of preparing for the new CCNA exam, then look no further. I’ve spent hundreds of hours putting together this book with the sole intention of helping you to pass the Cisco exams, as well as really learn how to correctly configure Cisco routers and switches!

This book is loaded with valuable information, and you will get the most out of your study time if you understand why the book is organized the way it is.

So to maximize your benefit from this book, I recommend the following study method:

Take the assessment test that’s provided at the end of this introduction. (The answers are at the end of the test.) It’s okay if you don’t know any of the answers; that’s why you bought this book! Carefully read over the explanations for any questions you get wrong and note the chapters in which the material relevant to them is covered. This information should help you plan your study strategy.

Study each chapter carefully, making sure you fully understand the information and the test objectives listed at the beginning of each one. Pay extra-close attention to any chapter that includes material covered in questions you missed.

Answer all of the review questions related to each chapter. (The answers appear in

Appendix A

.) Note the questions that confuse you and study the topics they cover again until the concepts are crystal clear. And again—do not just skim these questions! Make sure you fully comprehend the reason for each correct answer. Remember that these will not be the exact questions you will find on the exam, but they’re written to help you understand the chapter material and ultimately pass the exam!

Try your hand at the practice questions that are exclusive to this book. The questions can be found only at

http://www.wiley.com/go/sybextestprep

. Don’t forget to check out

www.lammle.com/ccna

for the most up-to-date Cisco exam prep questions, videos, hands-on labs, and Todd Lammle boot camps.

Test yourself using all the flashcards, which are also found on the download link listed in #4. These are brand-new and updated flashcards to help you prepare for the CCNA exam and a wonderful study tool!

To learn every bit of the material covered in this book, you’ll have to apply yourself regularly, and with discipline. Try to set aside the same time period every day to study, and select a comfortable and quiet place to do so. I’m confident that if you work hard, you’ll be surprised at how quickly you learn this material!

If you follow these steps and really study—doing hands-on labs every single day in addition to using the review questions, the practice exams, the Todd Lammle video sections, and the electronic flashcards, as well as all the written labs—it would actually be hard to fail the Cisco exams. But understand that studying for the Cisco exams is a lot like getting in shape—if you do not go to the gym every day, it’s not going to happen!

Where Do You Take the Exam?

You may take the CCNA Composite or any Cisco exam at any of the Pearson VUE authorized testing centers. For information, check www.vue.com or call 877-404-EXAM (3926).

To register for a Cisco exam, follow these steps:

Determine the number of the exam you want to take. (The CCNA exam number is 200-301.)

Register with the nearest Pearson VUE testing center. At this point, you will be asked to pay in advance for the exam. You can schedule exams up to six weeks in advance or as late as the day you want to take it—but if you fail a Cisco exam, you must wait five days before you will be allowed to retake it. If something comes up and you need to cancel or reschedule your exam appointment, contact Pearson VUE at least 24 hours in advance.

When you schedule the exam, you’ll get instructions regarding all appointment and cancellation procedures, the ID requirements, and information about the testing-center location.

Tips for Taking Your Cisco Exams

The Cisco exams contain about 50 or more questions and must be completed in about 90 minutes or so. It’s hard to write this information down today because it changes so often. You must get a score of about 85 percent to pass this exam, but again, each exam can be different.

Many questions on the exam have answer choices that at first glance look identical—especially the syntax questions! So remember to read through the choices carefully because close just doesn’t cut it. If you get commands in the wrong order or forget one measly character, you’ll get the question wrong. So, to practice, do the hands-on exercises at the end of this book’s chapters over and over again until they feel natural to you.

Also, never forget that the right answer is the Cisco answer. In many cases, more than one appropriate answer is presented, but the correct answer is the one that Cisco recommends. On the exam, you will always be told to pick one, two, or three options, never “choose all that apply.” The Cisco exam may include the following test formats:

Multiple-choice single answer

Multiple-choice multiple answer

Drag-and-drop

Router simulations

Cisco proctored exams will not show the steps to follow in completing a router interface configuration, but they do allow partial command responses. For example, show run, sho running, or sh running-config would be acceptable.

Here are some general tips for exam success:

Arrive early at the exam center so you can relax and review your study materials.

Read the questions

carefully

. Don’t jump to conclusions. Make sure you’re clear about

exactly

what each question asks. “Read twice, answer once,” is what I always tell my students.

When answering multiple-choice questions that you’re not sure about, use the process of elimination to get rid of the obviously incorrect answers first. Doing this greatly improves your odds if you need to make an educated guess.

You can no longer move forward and backward through the Cisco exams, so double-check your answer before clicking Next since you can’t change your mind.

After you complete an exam, you’ll get immediate, online notification of your pass or fail status, a printed examination score report that indicates your pass or fail status, and your exam results by section. (The test administrator will give you the printed score report.)

Test scores are automatically forwarded to Cisco within five working days after you take the test, so you don’t need to send your score to them. If you pass the exam, you’ll receive confirmation from Cisco, typically within two to four weeks, sometimes a bit longer.

CCNA Certification Exam 200-301 Objectives

1.0 Network Fundamentals

1, 2, 3, 4, 17, 18

1.1 Explain the role and function of network components

1

1.1.a Routers

1

1.1.b L2 and L3 switches

1

1.1.c Next-generation firewalls and IPS

1

1.1.d Access points

1.1.e Controllers (Cisco DNA Center and WLC)

20, 22

1.1.f Endpoints

1.1.g Servers

1.2 Describe characteristics of network topology architectures

1

1.2.a 2 tier

1

1.2.b 3 tier

1

1.2.c Spine-leaf

1

1.2.d WAN

1.2.e Small office/home office (SOHO)

1

1.2.f On-premises and cloud

1.3 Compare physical interface and cabling types

1

1.3.a Single-mode fiber, multimode fiber, copper

1

1.3.b Connections (Ethernet shared media and point-to-point)

1

1.3.c Concepts of PoE

1

1.4 Identify interface and cable issues (collisions, errors, mismatch duplex, and/or speed)

18

1.5 Compare TCP to UDP

2

1.6 Configure and verify IPv4 addressing and subnetting

2, 3, 4, 18

1.7 Describe the need for private IPv4 addressing

2

1.8 Configure and verify IPv6 addressing and prefix

17, 18

1.9 Compare IPv6 address types

17

1.9.a Global unicast

17

1.9.b Unique local

17

1.9.c Link local

17

1.9.d Anycast

17

1.9.e Multicast

17

1.9.f Modified EUI 64

17

1.10 Verify IP parameters for Client OS (Windows, Mac OS, Linux)

4, 18

1.11 Describe wireless principles

19

1.11.a Nonoverlapping Wi-Fi channels

19

1.11.b SSID