CCNA 200-301 Exam Topic

CS/CCNA

CCNA 200-301 Exam Topic

햄키 2025. 4. 1. 22:20

728x90

Network Fundamentals (20%)

1.1 Explain the role and function of network components

1.1.a Routers

1.1.b Layer 2 and Layer 3 switches

1.1.c Next-generation firewalls and IPS

1.1.d Access points

1.1.e Controllers (Cisco DNA Center and WLC)

1.1.f Endpoints

1.1.g Servers

1.1.h PoE

1.2 Describe characteristics of network topology architectures

1.2.a Two-tier

1.2.b Three-tier

1.2.c Spine-leaf

1.2.d WAN

1.2.e Small office/home office (SOHO)

1.2.f On-premise and cloud

1.3 Compare physical interface and cabling types

1.3.a Single-mode fiber, multimode fiber, copper

1.3.b Connections (Ethernet shared media and point-to-point)

1.4 Identify interface and cable issues (collisions, errors, mismatch duplex, and/or speed)

1.5 Compare TCP to UDP

1.6 Configure and verify IPv4 addressing and subnetting

1.7 Describe private IPv4 addressing

1.8 Configure and verify IPv6 addressing and prefix

1.9 Describe IPv6 address types

1.9.a Unicast (global, unique local, and link local)

1.9.b Anycast

1.9.c Multicast

1.9.d Modified EUI 64

1.10 Verify IP parameters for Client OS (Windows, Mac OS, Linux)

1.11 Describe wireless principles

1.11.a Nonoverlapping Wi-Fi channels

1.11.b SSID

1.11.c RF

1.11.d Encryption

1.12 Explain virtualization fundamentals (server virtualization, containers, and VRFs)

1.13 Describe switching concepts

1.13.a MAC learning and aging

1.13.b Frame switching

1.13.c Frame flooding

1.13.d MAC address table

Network Access (20%)

2.1 Configure and verify VLANs (normal range) spanning multiple switches

2.1.a Access ports (data and voice)

2.1.b Default VLAN

2.1.c InterVLAN connectivity

2.2 Configure and verify interswitch connectivity

2.2.a Trunk ports

2.2.b 802.1Q

2.2.c Native VLAN

2.3 Configure and verify Layer 2 discovery protocols (Cisco Discovery Protocol and LLDP)

2.4 Configure and verify (Layer 2/Layer 3) EtherChannel (LACP)

2.5 Interpret basic operations of Rapid PVST+ Spanning Tree Protocol

2.5.a Root port, root bridge (primary/secondary), and other port names

2.5.b Port states (forwarding/blocking)

2.5.c PortFast

2.5.d Root guard, loop guard, BPDU filter, and BPDU guard

2.6 Describe Cisco Wireless Architectures and AP modes

2.7 Describe physical infrastructure connections of WLAN components (AP, WLC, access/trunk ports, and LAG)

2.8 Describe network device management access (Telnet, SSH, HTTP, HTTPS, console, TACACS+/RADIUS, and cloud managed)

2.9 Interpret the wireless LAN GUI configuration for client connectivity, such as WLAN creation, security settings, QoS profiles, and advanced settings

IP Connectivity (25%)

3.1 Interpret the components of routing table

3.1.a Routing protocol code

3.1.b Prefix

3.1.c Network mask

3.1.d Next hop

3.1.e Administrative distance

3.1.f Metric

3.1.g Gateway of last resort

3.2 Determine how a router makes a forwarding decision by default

3.2.a Longest prefix match

3.2.b Administrative distance

3.2.c Routing protocol metric

3.3 Configure and verify IPv4 and IPv6 static routing

3.3.a Default route

3.3.b Network route

3.3.c Host route

3.3.d Floating static

3.4 Configure and verify single area OSPFv2

3.4.a Neighbor adjacencies

3.4.b Point-to-point

3.4.c Broadcast (DR/BDR selection)

3.4.d Router ID

3.5 Describe the purpose, functions, and concepts of first hop redundancy protocols

IP Services (10%)

4.1 Configure and verify inside source NAT using static and pools

4.2 Configure and verify NTP operating in a client and server mode

4.3 Explain the role of DHCP and DNS within the network

4.4 Explain the function of SNMP in network operations

4.5 Describe the use of syslog features including facilities and levels

4.6 Configure and verify DHCP client and relay

4.7 Explain the forwarding per-hop behavior (PHB) for QoS, such as classification, marking, queuing, congestion, policing, and shaping

4.8 Configure network devices for remote access using SSH

4.9 Describe the capabilities and functions of TFTP/FTP in the network

Security Fundamentals (15%)

5.1 Define key security concepts (threats, vulnerabilities, exploits, and mitigation techniques)

5.2 Describe security program elements (user awareness, training, and physical access control)

5.3 Configure and verify device access control using local passwords

5.4 Describe security password policies elements, such as management, complexity, and password alternatives (multifactor authentication, certificates, and biometrics)

5.5. Describe IPsec remote access and site-to-site VPNs

5.6 Configure and verify access control lists

5.7 Configure and verify Layer 2 security features (DHCP snooping, dynamic ARP inspection, and port security)

5.8 Compare authentication, authorization, and accounting concepts

5.9 Describe wireless security protocols (WPA, WPA2, and WPA3)

5.10 Configure and verify WLAN within the GUI using WPA2 PSK

Automation and Programmability (10%)

6.1 Explain how automation impacts network management

6.2 Compare traditional networks with controller-based networking

6.3 Describe controller-based, software defined architecture (overlay, underlay, and fabric)

6.3.a Separation of control plane and data plane

6.3.b Northbound and Southbound APIs

6.4 Explain AI (generative and predictive) and machine learning in network operations

6.5 Describe characteristics of REST-based APIs (authentication types, CRUD, HTTP verbs, and data encoding)

6.6 Recognize the capabilities of configuration management mechanisms, such as Ansible and Terraform

6.7 Recognize components of JSON-encoded data

CCNA 200-301 Exam Index

1. Networking Fundamentals

OSI & TCP/IP Models
IPv4 & IPv6 Addressing
Subnetting & VLSM
MAC Address & ARP
Switching Concepts (MAC Learning, Frame Forwarding)
Routing Concepts (Static & Dynamic Routing)
Common Network Topologies
Network Troubleshooting Methodologies

2. Network Access

Ethernet Standards (IEEE 802.3)
VLANs & Trunking (802.1Q)
Inter-VLAN Routing
Spanning Tree Protocol (STP, RSTP)
Wireless LANs (802.11 Standards, WPA, WPA2, WPA3)
Wireless Security & Configuration

3. IP Connectivity

Routing Table Components
Static Routing & Default Routes
Dynamic Routing Protocols (RIP, OSPF)
First Hop Redundancy Protocols (HSRP, VRRP, GLBP)
IPv6 Routing Basics

4. IP Services

DHCP (Dynamic Host Configuration Protocol)
DNS (Domain Name System)
NAT (Network Address Translation)
NTP (Network Time Protocol)
SNMP (Simple Network Management Protocol)
Syslog & Logging
QoS Basics
IP SLA

5. Security Fundamentals

Common Security Threats
Access Control Lists (ACLs)
Port Security
DHCP Snooping
Dynamic ARP Inspection (DAI)
VLAN Attack Mitigation
VPN Basics (IPSec, SSL VPN)

6. Automation & Programmability

SDN (Software-Defined Networking) Concepts
REST APIs & JSON
Network Automation Basics (Python, Ansible)
Cisco DNA Center

1️⃣ 네트워크 기본 개념 (Network Fundamentals)

📌 학습 포인트: 네트워크의 기본 구조와 프로토콜을 이해하는 게 핵심!
🔹 OSI 모델 & TCP/IP 모델

OSI 7계층 (Physical, Data Link, Network, Transport 등)
TCP/IP 모델 및 차이점

🔹 네트워크 장비 및 역할

스위치 vs. 라우터 vs. 허브 vs. 방화벽
L2 vs. L3 스위치
PoE (Power over Ethernet) 개념

🔹 IPv4 & IPv6 주소 체계

서브넷팅 & 서브넷 마스크
IPv6 주소 유형 (Unicast, Multicast, Anycast)

🔹 네트워크 연결 기술

이더넷, WLAN, WAN, MPLS 개념
케이블 유형 (UTP, Fiber) 및 사용 사례

✅ 추천 학습 방법:
📌 네트워크 개념 + OSI 모델 → 장비별 역할 → IP 주소 체계 순서로 공부
👉 Packet Tracer 같은 시뮬레이션 툴로 실습 병행 추천!

2️⃣ 네트워크 접근 계층 & 스위칭 (Network Access & Switching)

📌 학습 포인트: 스위치 작동 원리와 VLAN 개념을 익히는 게 중요!

🔹 이더넷 프레임 구조

MAC 주소 & ARP (Address Resolution Protocol)
MTU (Maximum Transmission Unit) 개념

🔹 스위칭 기술

MAC 주소 학습 과정 & CAM 테이블
Collision Domain & Broadcast Domain
STP (Spanning Tree Protocol) & Loop 방지

🔹 VLAN & 트렁킹

VLAN 생성 & 포트 할당 (Access vs. Trunk)
VTP (VLAN Trunking Protocol) 개념
Inter-VLAN 라우팅

✅ 추천 학습 방법:
📌 스위칭 기초 → VLAN 설정 → STP 개념 → 트렁크 & Inter-VLAN 라우팅 순으로 공부
👉 실습으로 VLAN 구성 및 STP 설정 연습하기!

3️⃣ 라우팅 & IP 연결 (IP Connectivity & Routing)

📌 학습 포인트: 라우팅 원리와 각 프로토콜의 차이를 이해해야 함.

🔹 라우팅 기본 개념

정적 라우팅 vs. 동적 라우팅
기본적인 ip route 명령어 실습

🔹 라우팅 프로토콜 (IGP vs. EGP)

IGP (내부 라우팅): OSPF, EIGRP, RIP
EGP (외부 라우팅): BGP 개념

🔹 라우트 테이블 분석

show ip route 명령어 해석
Administrative Distance & Metric 개념

🔹 NAT (Network Address Translation) & PAT

NAT 개념 및 역할
Static, Dynamic, Overload (PAT) 차이점

✅ 추천 학습 방법:
📌 정적 라우팅부터 시작 → 동적 라우팅 (OSPF/EIGRP) 개념 익히기 → BGP 기본 개념까지 확장
👉 GNS3 또는 Packet Tracer에서 OSPF 설정 실습하기!

4️⃣ 네트워크 보안 (Network Security & Automation)

📌 학습 포인트: 기본적인 보안 개념과 자동화 기술을 이해하는 게 목표!

🔹 보안 개념

ACL (Access Control List) 기본 개념
Stateful vs. Stateless 방화벽 차이

🔹 보안 프로토콜

VPN & IPsec 개념
AAA (Authentication, Authorization, Accounting)

🔹 자동화 & SDN

SDN (Software-Defined Networking) 기본 개념
REST API & JSON 개념
Ansible, Python을 이용한 네트워크 자동화

✅ 추천 학습 방법:
📌 기본 보안 개념 (ACL, VPN) → AAA & 방화벽 설정 → SDN 개념 → 자동화 실습 순으로 공부
👉 Python 기본 문법을 익혀두면 자동화 개념을 이해하는 데 도움 됨!

5️⃣ 트러블슈팅 & 실전 대비 (Troubleshooting & Practical Skills)

📌 학습 포인트: 다양한 네트워크 이슈를 해결할 수 있도록 실전 감각 익히기!

🔹 기본 네트워크 트러블슈팅

ping, traceroute, show 명령어 활용법
기본적인 L1~L3 문제 해결

🔹 라우팅 & 스위칭 문제 해결

VLAN & Trunk 문제 해결
OSPF/EIGRP 라우팅 문제 해결

🔹 실전 네트워크 디자인

기업 네트워크 아키텍처 설계
IP 주소 계획 & 서브넷 디자인

✅ 추천 학습 방법:
📌 기본 명령어 익히기 → 시뮬레이션으로 문제 해결 연습 → 네트워크 설계 연습
👉 여러 개의 네트워크 장비를 연결하는 복합적인 실습 진행 추천!

📚 효율적인 공부 순서 & 묶는 방법

1️⃣ 네트워크 기본 개념 (OSI 모델, IP 주소, 장비 역할)
2️⃣ 스위칭 & VLAN (MAC 주소, VLAN 구성, STP)
3️⃣ 라우팅 & IP 연결 (정적/동적 라우팅, OSPF, BGP)
4️⃣ 보안 & 자동화 (ACL, VPN, SDN, Python)
5️⃣ 트러블슈팅 & 실전 대비 (문제 해결 & 디자인 실습)

🎯 효과적인 학습 방법

✅ 이론 + 실습 병행: GNS3, Packet Tracer, Cisco DevNet 활용
✅ 공부 기록 남기기: 설정 명령어 & 트러블슈팅 과정 정리
✅ 시험 대비 문제 풀이: 기출 문제 풀면서 개념 정리