CCNA v1.1 (200-301) – Exam Overview
- Duration: 120 minutes
- Domains & Weighting:
- 1.0 Network Fundamentals – 20%
- 2.0 Network Access – 20%
- 3.0 IP Connectivity – 25%
- 4.0 IP Services – 10%
- 5.0 Security Fundamentals – 15%
- 6.0 Automation & Programmability – 10%
1.0 Network Fundamentals (20%)
1.1 Role and Function of Network Components
- Routers
- Layer 2 and Layer 3 switches
- Next-generation firewalls and IPS
- Access points
- Controllers
- Endpoints
- Servers
- PoE
1.2 Network Topology Architectures
- Two-tier
- Three-tier
- Spine-leaf
- WAN
- SOHO
- On-premises and cloud
1.3 Physical Interface and Cabling Types
- Single-mode fiber, multimode fiber, copper
- Ethernet shared media vs point-to-point connections
1.4 Identify Interface and Cable Issues
- Collisions, errors, duplex mismatch, speed issues
1.5 Compare TCP vs UDP
1.6 Configure and Verify IPv4 Addressing and Subnetting
1.7 Private IPv4 Addressing
1.8 Configure and Verify IPv6 Addressing and Prefix
1.9 IPv6 Address Types
- Unicast (global, unique local, link local)
- Anycast
- Multicast
- Modified EUI-64
1.10 Verify IP Parameters for Client OS
- Windows, macOS, Linux
1.11 Wireless Principles
- Nonoverlapping Wi-Fi channels
- SSID
- RF
- Encryption
1.12 Virtualization Fundamentals
- Server virtualization, containers, VRFs
1.13 Switching Concepts
- MAC learning and aging
- Frame switching
- Frame flooding
- MAC address table
2.0 Network Access (20%)
2.1 VLAN Configuration and Verification
- Access ports (data and voice)
- Default VLAN
- InterVLAN connectivity
2.2 Interswitch Connectivity
- Trunk ports
- 802.1Q
- Native VLAN
2.3 Layer 2 Discovery Protocols
- CDP
- LLDP
2.4 EtherChannel (LACP) – Layer 2/Layer 3 configuration and verification
2.5 Rapid PVST+ Spanning Tree Protocol
- Root port, root bridge
- Port states and roles
- PortFast
- Root guard, loop guard, BPDU filter, BPDU guard
2.6 Cisco Wireless Architectures and AP Modes
2.7 WLAN Physical Infrastructure Connections
- AP, WLC, access/trunk ports, LAG
2.8 Network Device Management Access
- Telnet, SSH, HTTP, HTTPS
- TACACS+/RADIUS
- Cloud-managed
2.9 Wireless LAN GUI Configuration
- WLAN creation, security settings, QoS profiles, advanced settings
3.0 IP Connectivity (25%)
3.1 Routing Table Components
- Routing protocol code
- Prefix
- Network mask
- Next hop
- Administrative distance
- Metric
- Gateway of last resort
3.2 Router Forwarding Decisions
- Longest prefix match
- Administrative distance
- Routing protocol metric
3.3 IPv4 and IPv6 Static Routing
- Default route
- Network route
- Host route
- Floating static
3.4 Single Area OSPFv2
- Neighbor adjacencies
- Point-to-point
- Broadcast (DR/BDR selection)
- Router ID
3.5 First Hop Redundancy Protocols (FHRP) – Purpose, functions, and concepts
4.0 IP Services (10%)
4.1 Configure and verify NAT (inside source, static, pools)
4.2 Configure and verify NTP (client/server mode)
4.3 Explain DHCP and DNS roles
4.4 Function of SNMP in network operations
4.5 Syslog features (facilities, severity levels)
4.6 Configure and verify DHCP client and relay
4.7 Explain QoS PHB: classification, marking, queuing, congestion, policing, shaping
4.8 Configure devices for remote access using SSH
4.9 TFTP/FTP capabilities and functions
5.0 Security Fundamentals (15%)
5.1 Define security concepts: threats, vulnerabilities, exploits, mitigation
5.2 Security program elements: user awareness, training, physical access control
5.3 Configure and verify device access control using local passwords
5.4 Password policy elements: complexity, management, alternatives (MFA, certificates, biometrics)
5.5 IPsec VPNs: remote access, site-to-site
5.6 Configure and verify Access Control Lists (ACLs)
5.7 Configure and verify Layer 2 security: DHCP snooping, DAI, port security
5.8 Compare AAA concepts (Authentication, Authorization, Accounting)
5.9 Wireless security protocols: WPA, WPA2, WPA3
5.10 Configure and verify WLAN using WPA2 PSK via GUI
6.0 Automation and Programmability (10%)
6.1 Impact of automation on network management
6.2 Compare traditional vs controller-based networking
6.3 Controller-based, software-defined architecture
- Overlay, underlay, fabric
- Separation of control plane and data plane
- Northbound and Southbound APIs
6.4 AI and Machine Learning in network operations
6.5 REST-based API characteristics
- Authentication types
- CRUD operations
- HTTP verbs
- Data encoding
6.6 Configuration management mechanisms: Ansible, Terraform
6.7 Recognize JSON-encoded data components
Changes in CCNA v1.1 (200-301)
- Artificial Intelligence and Machine Learning
A new objective was added under Automation and Programmability: explaining generative and predictive AI and machine learning in network operations. - Terraform
Terraform is now listed alongside Ansible as a configuration management tool to recognize. - Spanning Tree Protocol
Rapid PVST+ now specifically includes features such as root guard, loop guard, BPDU filter, and BPDU guard. - Cloud References
Cloud has been added as part of existing areas, for example:
- “On-premises and cloud” in network topology architectures
- “Cloud managed” in device management access methods
- “On-premises and cloud” in network topology architectures
- Terminology Refinements
Minor clarifications include separating Layer 2 and Layer 3 switches, explicitly listing PoE, and refining some descriptions of topologies and components.