CCNA Exam v12
CCNA Exam v12
CCNA Exam v12
0 (200-301)
1.4 Identify interface and cable issues (collisions, errors, mismatch duplex, and/or speed)
1.5 Compare TCP to UDP
1.6 Configure and verify IPv4 addressing and subnetting
1.7 Describe the need for private IPv4 addressing
1.8 Configure and verify IPv6 addressing and prefix
2.1 Configure and verify VLANs (normal range) spanning multiple switches
2.1.a Access ports (data and voice) 2.1.c Connectivity
2.1.b Default VLAN
2.3 Configure and verify Layer 2 discovery protocols (Cisco Discovery Protocol and LLDP)
2.4 Configure and verify (Layer 2/Layer 3) EtherChannel (LACP)
2.7 Describe physical infrastructure connections of WLAN components (AP, WLC, access/trunk
ports, and LAG)
2.8 Describe AP and WLC management access connections (Telnet, SSH, HTTP, HTTPS, console,
and TACACS+/RADIUS)
2.9 Interpret the wireless LAN GUI configuration for client connectivity, such as WLAN creation,
security settings, QoS profiles, and advanced settings
25% 3 IP Connectivity
3.5 Describe the purpose, functions, and concepts of first hop redundancy protocols
10% 4 IP Services
4.1 Configure and verify inside source NAT using static and pools
4.2 Configure and verify NTP operating in a client and server mode
4.3 Explain the role of DHCP and DNS within the network
4.4 Explain the function of SNMP in network operations
4.5 Describe the use of syslog features including facilities and levels
4.6 Configure and verify DHCP client and relay
4.7 Explain the forwarding per-hop behavior (PHB) for QoS, such as classification, marking,
queuing, congestion, policing, and shaping
4.8 Configure network devices for remote access using SSH
4.9 Describe the capabilities and function of TFTP/FTP in the network
5.1 Define key security concepts (threats, vulnerabilities, exploits, and mitigation techniques)
5.2 Describe security program elements (user awareness, training, and physical access control)
5.3 Configure and verify device access control using local passwords
5.4 Describe security password policies elements, such as management, complexity, and password
alternatives (multifactor authentication, certificates, and biometrics)
5.5 Describe IPsec remote access and site-to-site VPNs
5.6 Configure and verify access control lists
5.7 Configure and verify Layer 2 security features (DHCP snooping, dynamic ARP inspection, and port
security)
6.3 Describe controller-based, software defined architecture (overlay, underlay, and fabric)
6.3.a Separation of control plane and data plane
6.3.b Northbound and Southbound APIs
6.4 Compare traditional campus device management with Cisco DNA Center enabled device
management
6.5 Describe characteristics of REST-based APIs (CRUD, HTTP verbs, and data encoding)
6.6 Recognize the capabilities of configuration management mechanisms Puppet,
Chef, and Ansible
6.7 Recognize components of JSON-encoded data