CCNA Exam v1.0 (200-301) 

Exam Description:  CCNA Exam v1.0 (CCNA 200-301) is a 120-minute exam associated with the CCNA certification. This exam tests a candidate's knowledge and skills related to network fundamentals, network access, IP connectivity, IP services, security fundamentals, and automation and 

The course, Implementing and Administering Cisco Solutions (CCNA), helps candidates prepare for this exam. 

The following topics are general guidelines for the content likely to be included on the exam. However, 

other related topics may also appear on any specific delivery of the exam.

 To better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.


20%  Network Fundamentals 


Explain the role and function of network components 

L2 and L3 switches 

Next-generation firewalls and IPS 

Access points 

Controllers (Cisco DNA Center and WLC) 



2 tier 

Describe characteristics of network topology architectures 

3 tier 



Small office/home office (SOHO) 

On-premises and cloud 

Compare physical interface and cabling types 

Single-mode fiber, multimode fiber, copper 

Connections (Ethernet shared media and point-to-point) 

Concepts of PoE 

Identify interface and cable issues (collisions, errors, mismatch duplex, and/or speed) 

Compare TCP to UDP 

Configure and verify IPv4 addressing and subnetting 

Describe the need for private IPv4 addressing 

Configure and verify IPv6 addressing and prefix 

Compare IPv6 address types 

Global unicast 

Unique local 

Link local 



Modified EUI 64 

Verify IP parameters for Client OS (Windows, Mac OS, Linux) 

Describe wireless principles 

1.11.a Nonoverlapping Wi-Fi channels 

1.11.b SSID 

1.11.c RF 

1.11.d Encryption 

Explain virtualization fundamentals (virtual machines) 

Describe switching concepts 

1.13.a MAC learning and aging 

1.13.b Frame switching 

1.13.c Frame flooding 

1.13.d MAC address table 

20%  Network Access 

Configure and verify VLANs (normal range) spanning multiple switches 

Access ports (data and voice) 

Default VLAN 


Configure and verify interswitch connectivity 

Trunk ports 

Native VLAN 

Configure and verify Layer 2 discovery protocols (Cisco Discovery Protocol and LLDP) 

Configure and verify (Layer 2/Layer 3) EtherChannel (LACP) 

Describe the need for and basic operations of Rapid PVST+ Spanning Tree Protocol and 

identify basic operations 

Root port, root bridge (primary/secondary), and other port names 

Port states (forwarding/blocking)

 PortFast benefits 

Compare Cisco Wireless Architectures and AP modes 

 Describe physical infrastructure connections of WLAN components (AP, WLC, 

access/trunk ports, and LAG) 


Describe AP and WLC management access connections (Telnet, SSH, HTTP, HTTPS, 

console, and TACACS+/RADIUS) 


Configure the components of a wireless LAN access for client connectivity using GUI only 

such as WLAN creation, security settings, QoS profiles, and advanced WLAN settings 



25%    IP Connectivity 

3.1 Interpret the components of routing table 

3.1.a Routing protocol code 

3.1.b Prefix 

3.1.c Network mask 

3.1.d Next hop 

3.1.e Administrative distance 

3.1.f Metric 

3.1.g Gateway of last resort 


3.2 Determine how a router makes a forwarding decision by default 

3.2.a Longest match 

3.2.b Administrative distance 

3.2.c Routing protocol metric 


3.3 Configure and verify IPv4 and IPv6 static routing 

3.3.a Default route 

3.3.b Network route 

3.3.c Host route 

3.3.d Floating static 


3.4 Configure and verify single area OSPFv2 

3.4.a Neighbor adjacencies 

3.4.b Point-to-point 

3.4.c Broadcast (DR/BDR selection) 

3.4.d Router ID 


3.5 Describe the purpose of first hop redundancy protocol 


10% 4.0 IP Services 

 Configure and verify inside source NAT using static and pools 

Configure and verify NTP operating in a client and server mode 

Explain the role of DHCP and DNS within the network 

Explain the function of SNMP in network operations 

Describe the use of syslog features including facilities and levels 

Configure and verify DHCP client and relay 

Explain the forwarding per-hop behavior (PHB) for QoS such as classification, marking, 

queuing, congestion, policing, shaping  

Configure network devices for remote access using SSH 

Describe the capabilities and function of TFTP/FTP in the network 

15% Security Fundamentals 

Define key security concepts (threats, vulnerabilities, exploits, and mitigation 


Describe security program elements (user awareness, training, and physical access 


Configure device access control using local passwords 

Describe security password policies elements, such as management, complexity, and 

password alternatives (multifactor authentication, certificates, and biometrics) 

Describe remote access and site-to-site VPNs 

Configure and verify access control lists 

Configure Layer 2 security features (DHCP snooping, dynamic ARP inspection, and port 


Differentiate authentication, authorization, and accounting concepts 

Describe wireless security protocols (WPA, WPA2, and WPA3) 

Configure WLAN using WPA2 PSK using the GUI 

10%  Automation and Programmability 

Explain how automation impacts network management 

Compare traditional networks with controller-based networking 

Describe controller-based and software defined architectures (overlay, underlay, and 




Separation of control plane and data plane 

North-bound and south-bound APIs 

Compare traditional campus device management with Cisco DNA Center enabled device 


Describe characteristics of REST-based APIs (CRUD, HTTP verbs, and data encoding) 

Recognize the capabilities of configuration management mechanisms Puppet, Chef, and 


Interpret JSON encoded data

0 coment�rios:

Post a Comment

100 Web Vulnerabilities you should know as a Web application Penetration Tester

100 Web Vulnerabilities you should know as a Web application Penetration Tester If you are working as web application penetration testing en...