Cisco

CCNA

Cisco Certified Network Associate

Associate 200-301 Content Available

The industry's most recognised entry-level networking certification.

Practice CCNA Questions Study Notes Exam Topics
Exam Code
200-301
Duration
120 minutes
Questions
90–110
Passing Score
825 / 1000
Validity
3 years
Exam Cost
$330 USD
Overview

About CCNA

The Cisco CCNA (200-301) certification validates your ability to install, configure, operate, and troubleshoot small to medium-sized enterprise networks. It covers a broad range of fundamentals — from IPv4/IPv6 routing and switching to wireless, security, and network automation. Whether you're starting a networking career or refreshing your foundational knowledge, CCNA is the globally recognised benchmark for entry-level networking professionals.

Prerequisites
Basic computer literacy Familiarity with IP addressing (helpful but not required)
Exam Domains

What you need to know

6 domains, 53 objectives. Click a domain to expand its topics.

🌐
Network Fundamentals
OSI model, TCP/IP stack, network topologies, cabling, and core switching concepts.
20%
  • Explain the role and function of network components (routers, L2/L3 switches, firewalls, APs, WLCs)
  • Describe characteristics of network topology architectures (2-tier, 3-tier, spine-leaf, WAN, SOHO, on-premise vs cloud)
  • Compare physical interface and cabling types (single-mode fibre, multimode fibre, copper, RJ-45)
  • Identify interface and cable issues (collisions, errors, mismatch duplex and/or speed)
  • Compare TCP to UDP (reliability, ordering, connection-oriented vs connectionless)
  • Configure and verify IPv4 addressing and subnetting
  • Describe the need for private IPv4 addressing (RFC 1918)
  • Configure and verify IPv6 addressing and prefix
  • Compare IPv6 address types (global unicast, unique local, link-local, multicast, anycast)
  • Verify IP parameters for client OS (Windows, macOS, Linux)
  • Describe wireless principles (nonoverlapping Wi-Fi channels, SSID, RF, encryption)
  • Explain virtualisation fundamentals (server virtualisation, containers, VRFs)
  • Describe switching concepts (MAC learning, ageing, frame switching, frame flooding, MAC address table)
🔌
Network Access
VLANs, trunking, STP, EtherChannel, wireless architectures, and AP management.
20%
  • Configure and verify VLANs (normal range) spanning multiple switches
  • Configure and verify interswitch connectivity (trunk ports, 802.1Q encapsulation)
  • Configure and verify Layer 2 discovery protocols (Cisco CDP and LLDP)
  • Configure and verify EtherChannel (LACP — static, active, passive)
  • Interpret basic operations of Rapid PVST+ Spanning Tree Protocol (root election, port states, port roles)
  • Compare Cisco Wireless Architectures and AP modes (local, FlexConnect, autonomous)
  • Describe physical infrastructure connections of WLAN components (AP, WLC, access/trunk ports, LAG)
  • Describe AP and WLC management access connections (Telnet, SSH, HTTP, HTTPS, console, TACACS+/RADIUS)
  • Configure the components of a wireless LAN access for client connectivity (WLAN creation, security settings, QoS profiles)
🗺️
IP Connectivity
Routing table interpretation, static routing, OSPFv2, and first-hop redundancy.
25%
  • Interpret the components of a routing table (routing protocol code, prefix, network mask, next hop, admin distance, metric, gateway of last resort)
  • Determine how a router makes a forwarding decision (longest prefix match, admin distance, routing protocol metric)
  • Configure and verify IPv4 and IPv6 static routing (default route, floating static, summary route, host route)
  • Configure and verify single-area OSPFv2 (neighbour adjacencies, point-to-point, broadcast, router ID)
  • Describe the purpose, functions, and concepts of first hop redundancy protocols (HSRP, VRRP)
⚙️
IP Services
DHCP, NAT, NTP, QoS, SNMP, Syslog, SSH, and TFTP/FTP fundamentals.
10%
  • Configure and verify inside source NAT using static and pool-based mappings
  • Configure and verify NTP operating in client and server mode
  • Explain the role of DHCP and DNS in the network
  • Explain the function of SNMP in network operations (versions 2c and 3)
  • Describe the use of Syslog features including facilities and severity levels
  • Configure and verify DHCP client and relay agent
  • Explain forwarding per-hop behaviour (PHB) for QoS (classification, marking, queuing, congestion, policing, shaping)
  • Configure network devices for remote access using SSH
  • Describe the capabilities and function of TFTP/FTP in the network
🔒
Security Fundamentals
Threat concepts, ACLs, Layer 2 security features, AAA, VPNs, and wireless security.
15%
  • Define key security concepts (threats, vulnerabilities, exploits, and mitigation techniques)
  • Describe security programme elements (user awareness, training, and physical access control)
  • Configure device access control using local passwords
  • Describe security password policies (MFA, password complexity, password managers)
  • Describe remote access and site-to-site IPsec VPNs
  • Configure and verify access control lists (standard and extended IPv4 ACLs)
  • Configure Layer 2 security features (DHCP snooping, dynamic ARP inspection, port security)
  • Differentiate authentication, authorisation, and accounting (AAA) concepts
  • Describe wireless security protocols (WPA, WPA2, WPA3) and their mechanisms
  • Configure WLAN using WPA2 PSK using the GUI
🤖
Automation and Programmability
Network automation, controller-based architectures, REST APIs, and configuration management.
10%
  • Explain how automation impacts network management
  • Compare traditional networks with controller-based networking
  • Describe controller-based and software-defined architectures (overlay, underlay, fabric)
  • Compare traditional campus device management with Cisco DNA Center enabled device management
  • Describe characteristics of REST-based APIs (CRUD, HTTP verbs, data encoding — JSON and XML)
  • Recognise the capabilities of configuration management mechanisms (Puppet, Chef, Ansible, NETCONF, RESTCONF)
  • Interpret JSON encoded data
Resources

Study & Practice

Practice CCNA Questions Official Cisco Exam Page Exam Topics PDF (Cisco) Official Cisco Exam Tutorial Official Cisco Certification Tracking Book your Officail Cisco Certification Exam