Appendix A. .

Furthermore, Cisco publishes its Certification Roadmaps at . I recommend bookmarking that page; it will give you information about Cisco’s yearly certification review process and any scheduled changes coming to the CCNA exam (and Cisco’s other exams).

The first time you read this book, I recommend following the chapters in order. However, it’s important to carefully examine the CCNA exam topics and make sure you know all of them before taking the CCNA exam. This resource should be helpful in that process; if there are any exam topics that you don’t feel confident about, refer to the table to know which chapters you should review.

Exam topic	Chapter(s)
1.0 Network fundamentals—20%
1.1 Explain the role and function of network components	2 (vol. 1)
1.1.a Routers	2 (vol. 1)
1.1.b Layer 2 and Layer 3 switches	2 (vol. 1), 12 (vol. 1)
1.1.c Next-generation firewalls and IPS	2 (vol. 1), 11 (vol. 2)
1.1.d Access points	18 (vol. 2)
1.1.e Controllers	19 (vol. 1), 22 (vol. 2)
1.1.f Endpoints	2 (vol. 1)
1.1.g Servers	2 (vol. 1)
1.1.h PoE	10 (vol. 2)
1.2 Describe characteristics of network topology architectures	15-17 (vol. 2)
1.2.a Two-tier	15 (vol. 2)
1.2.b Three-tier	15 (vol. 2)
1.2.c Spine-leaf	15 (vol. 2)
1.2.d WAN	16 (vol. 2)
1.2.e Small office/home office (SOHO)	15 (vol. 2)
1.2.f On-premises and cloud	17 (vol. 2)
1.3 Compare physical interface and cabling types	3 (vol. 1)
1.3.a Single-mode fiber, multimode fiber, copper	3 (vol. 1)
1.3.b Connections (Ethernet shared media and point-to-point)	3 (vol. 1), 8 (vol. 1)
1.4 Identify interface and cable issues (collisions, errors, mismatch duplex, and/or speed)	8 (vol. 1)
1.5 Compare TCP to UDP	22 (vol. 1)
1.6 Configure and verify IPv4 addressing and subnetting	7 (vol. 1), 11 (vol. 1)
1.7 Describe private IPv4 addressing	9 (vol. 2)
1.8 Configure and verify IPv6 addressing and prefix	20 (vol. 1)
1.9 Describe IPv6 address types	20 (vol. 1)
1.9.a Unicast (global, unique local, and link local)	20 (vol. 1)
1.9.b Anycast	20 (vol. 1)
1.9.c Multicast	20 (vol. 1)
1.9.d Modified EUI 64	20 (vol. 1)
1.10 Verify IP parameters for Client OS (Windows, Mac OS, Linux)	4 (vol. 2)
1.11 Describe wireless principles	18 (vol. 2), 20 (vol. 2)
1.11.a Nonoverlapping Wi-Fi channels	18 (vol. 2)
1.11.b SSID	18 (vol. 2)
1.11.c RF	18 (vol. 2)
1.11.d Encryption	20 (vol. 2)
1.12 Explain virtualization fundamentals (server virtualization, containers, and VRFs)	17 (vol. 2)
1.13 Describe switching concepts	6 (vol. 1)
1.13.a MAC learning and aging	6 (vol. 1)
1.13.b Frame switching	6 (vol. 1)
1.13.c Frame flooding	6 (vol. 1)
1.13.d MAC address table	6 (vol. 1)
2.0 Network access—20%
2.1 Configure and verify VLANs (normal range) spanning multiple switches	12 (vol. 1), 13 (vol. 1)
2.1.a Access ports (data and voice)	12 (vol. 1), 13 (vol. 1)
2.1.b Default VLAN	12 (vol. 1)
2.1.c InterVLAN connectivity	12 (vol. 1), 13 (vol. 1)
2.2 Configure and verify interswitch connectivity	12 (vol. 1), 13 (vol. 1)
2.2.a Trunk ports	12 (vol. 1), 13 (vol. 1)
2.2.b 802.1Q	12 (vol. 1), 13 (vol. 1)
2.2.c Native VLAN	12 (vol. 1)
2.3 Configure and verify Layer 2 discovery protocols (Cisco Discovery Protocol and LLDP)	1 (vol. 2)
2.4 Configure and verify (Layer 2/Layer 3) EtherChannel (LACP)	16 (vol. 1)
2.5 Identify basic operations of Rapid PVST+ Spanning Tree Protocol	14 (vol. 1), 15 (vol. 1)
2.5.a Root port, root bridge (primary/secondary), and other port names	14 (vol. 1), 15 (vol. 1)
2.5.b Port states and roles	14 (vol. 1), 15 (vol. 1)
2.5.c PortFast	14 (vol. 1), 15 (vol. 1)
2.5.d Root guard, loop guard, BPDU filter, and BPDU guard	14 (vol. 1), 15 (vol. 1)
2.6 Compare Cisco Wireless Architectures and AP modes	19 (vol. 2)
2.7 Describe physical infrastructure connections of WLAN components (AP, WLC, access/trunk ports, and LAG)	19 (vol. 2), 21 (vol. 2)
2.8 Describe network device management access connections (Telnet, SSH, HTTP, HTTPS, console, TACACS+/RADIUS, and cloud managed)	19 (vol. 2), 21 (vol. 2)
2.9 Interpret the wireless LAN GUI configuration for client connectivity, such as WLAN creation, security settings, QoS profiles, and advanced settings	21 (vol. 2)
3.0 IP Connectivity—25%
3.1 Interpret the components of routing table	9 (vol. 1), 17 (vol. 1), 21 (vol. 1)
3.1.a Routing protocol code	9 (vol. 1), 17 (vol. 1)
3.1.b Prefix	9 (vol. 1), 21 (vol. 1)
3.1.c Network mask	9 (vol. 1), 21 (vol. 1)
3.1.d Next hop	9 (vol. 1), 21 (vol. 1)
3.1.e Administrative distance	17 (vol. 1)
3.1.f Metric	17 (vol. 1)
3.1.g Gateway of last resort	9 (vol. 1), 21 (vol. 1)
3.2 Determine how a router makes a forwarding decision by default	9 (vol. 1), 17 (vol. 1), 21 (vol. 1)
3.2.a Longest prefix match	9 (vol. 1), 17 (vol. 1), 21 (vol. 1)
3.2.b Administrative distance	17 (vol. 1)
3.2.c Routing protocol metric	17 (vol. 1)
3.3 Configure and verify IPv4 and IPv6 static routing	9 (vol. 1), 17 (vol. 1), 21 (vol. 1)
3.3.a Default route	9 (vol. 1), 21 (vol. 1)
3.3.b Network route	9 (vol. 1), 21 (vol. 1)
3.3.c Host route	9 (vol. 1), 21 (vol. 1)
3.3.d Floating static	17 (vol. 1), 21 (vol. 1)
3.4 Configure and verify single area OSPFv2	17 (vol. 1), 18 (vol. 1)
3.4.a Neighbor adjacencies	18 (vol. 1)
3.4.b Point-to-point	18 (vol. 1)
3.4.c Broadcast (DR/BDR selection)	18 (vol. 1)
3.4.d Router ID	18 (vol. 1)
3.5 Describe the purpose, functions, and concepts of first hop redundancy protocols	19 (vol. 1)
4.0 IP Services—10%
4.1 Configure and verify inside source NAT using static and pools	9 (vol. 2)
4.2 Configure and verify NTP operating in a client and server mode	2 (vol. 2)
4.3 Explain the role of DHCP and DNS within the network	3 (vol. 2), 4 (vol. 2)
4.4 Explain the function of SNMP in network operations	6 (vol. 2)
4.5 Describe the use of syslog features including facilities and severity levels	7 (vol. 2)
4.6 Configure and verify DHCP client and relay	4 (vol. 2)
4.7 Explain the forwarding per-hop behavior (PHB) for QoS such as classification, marking, queuing, congestion, policing, shaping	10 (vol. 2)
4.8 Configure network devices for remote access using SSH	5 (vol. 2)
4.9 Describe the capabilities and functions of TFTP/FTP in the network	8 (vol. 2)
5.0 Security fundamentals—15%
5.1 Define key security concepts (threats, vulnerabilities, exploits, and mitigation techniques)	11 (vol. 2)
5.2 Describe security program elements (user awareness, training, and physical access control)	11 (vol. 2)
5.3 Configure and verify device access control using local passwords	5 (vol. 1), 5 (vol. 2), 11 (vol. 2)
5.4 Describe security password policy elements, such as management, complexity, and password alternatives (multifactor authentication, certificates, and biometrics)	11 (vol. 2)
5.5 Describe IPsec remote access and site-to-site VPNs	16 (vol. 2)
5.6 Configure and verify access control lists	23 (vol. 1), 24 (vol. 1)
5.7 Configure and verify Layer 2 security features (DHCP snooping, dynamic ARP inspection, and port security)	12-14 (vol. 2)
5.8 Compare authentication, authorization, and accounting concepts	11 (vol. 2)
5.9 Describe wireless security protocols (WPA, WPA2, and WPA3)	20 (vol. 2)
5.10 Configure and verify WLAN within the GUI using WPA2 PSK	21 (vol. 2)
6.0 Automation and Programmability—10%
6.1 Explain how automation impacts network management	22 (vol. 2)
6.2 Compare traditional networks with controller-based networking	22 (vol. 2)
6.3 Describe controller-based and software defined architecture (overlay, underlay, and fabric)	22 (vol. 2)
6.3.a Separation of control plane and data plane	22 (vol. 2)
6.3.b Northbound and Southbound APIs	22 (vol. 2)
6.4 Explain AI (generative and predictive) and machine learning in network operations	22 (vol. 2)
6.5 Describe characteristics of REST-based APIs (authentication types, CRUD, HTTP verbs, and data encoding)	23 (vol. 2)
6.6 Recognize the capabilities of configuration management mechanisms such as Ansible and Terraform	25 (vol. 2)
6.7 Recognize components of JSON-encoded data	24 (vol. 2)

Назад: Part 6. Layer 4 and IP access control lists

Дальше: index

Отправить