CCNA Notes

200-301 Exam Prep

Progress0/67

0% complete

Practice TestsNew
1Networking Devices2Interfaces And Cables3OSI Model and TCP/IP Suite4Intro to the CLI5Ethernet LAN Switching - Part 16Ethernet LAN Switching - Part 27IPv4 Addressing - Part 18IPv4 Addressing - Part 29Switch Interfaces10The IPv4 Header11Routing Fundamentals - Part 111Static Routing - Part 212Life of a Packet13Subnetting - Part 114Subnetting - Part 215Subnetting (VLSM) - Part 316VLANs - Part 117VLANs - Part 218VLANs - Part 319DTP / VTP20Spanning Tree Protocol - Part 121Spanning Tree Protocol - Part 222Rapid Spanning Tree Protocol23Etherchannel24Dynamic Routing25RIP / EIGRP26OSPF - Part 127OSPF - Part 228OSPF - Part 329First Hop Redundancy Protocol30TCP and UDP31IPv6 - Part 132IPv6 - Part 233IPv6 - Part 334Standard Access Control List35Extended Access Control List36CDP and LLDP37NTP - Network Time Protocol38DNS - Domain Name System39DHCP - Dynamic Host Configuration Protocol40SNMP - Simple Network Management Protocol41SYSLOG42SSH - Secure Shell43FTP and TFTP44NAT (Static) - Part 145NAT (Dynamic) - Part 246QoS (Voice VLAN) - Part 147QoS (Quality of Service) - Part 248Security Fundamentals49Port Security50DHCP Snooping51Dynamic ARP Inspection52LAN Architectures53WAN Architectures54Virtualization and Cloud - Part 154Virtualization (Containers) - Part 254Virtualization (VRF) - Part 355Wireless Fundamentals56Wireless Architectures57Wireless Security58Wireless Configuration59Introduction to Network Automation60JSON, XML, and YAML61REST APIs62Software Defined Networking63Ansible, Puppet, and Chef67CCNA Complete Cheatsheet
/CCNA Complete Cheatsheet
Topic 6719 min read

CCNA Complete Cheatsheet

/
Tip: Select text to highlight or pin your reading position

67. CCNA COMPLETE CHEATSHEET

A comprehensive summary of all CCNA topics in cheatsheet format for quick reference and exam preparation.

TABLE OF CONTENTS

  1. OSI Model & TCP/IP
  2. Network Devices & Cables
  3. CLI Fundamentals
  4. Ethernet & Switching
  5. IPv4 Addressing
  6. Subnetting
  7. Routing Fundamentals
  8. VLANs & Trunking
  9. Spanning Tree Protocol
  10. EtherChannel
  11. Dynamic Routing
  12. OSPF
  13. IPv6
  14. ACLs
  15. NAT
  16. TCP & UDP
  17. Network Services
  18. Security
  19. First Hop Redundancy
  20. Network Management
  21. QoS
  22. Wireless

OSI MODEL & TCP/IP

OSI 7 Layers (Top to Bottom)

LayerNamePDUDevicesProtocols
7ApplicationData-HTTP, HTTPS, FTP, DNS
6PresentationData-SSL, TLS
5SessionData-NetBIOS
4TransportSegment-TCP, UDP
3NetworkPacketRouterIP, ICMP, OSPF
2Data LinkFrameSwitchEthernet, 802.1Q
1PhysicalBitsHub, Cables-

Mnemonic: Please Do Not Throw Sausage Pizza Away (Bottom to Top)

TCP/IP Model (4 Layers)

TCP/IP LayerOSI Equivalent
Application7, 6, 5
Transport4
Internet3
Network Access2, 1

Encapsulation Process

Code
Data → Segment (L4 Header) → Packet (L3 Header) → Frame (L2 Header + Trailer) → Bits

NETWORK DEVICES & CABLES

Device Functions

DeviceLayerFunction
SwitchL2Connects devices within same LAN
RouterL3Connects different networks/LANs
FirewallL3/4/7Network security, traffic filtering
HubL1Simple signal repeater (obsolete)

Ethernet Standards (Copper)

SpeedNameStandardMax Distance
10 MbpsEthernet10BASE-T100m
100 MbpsFast Ethernet100BASE-T100m
1 GbpsGigabit Ethernet1000BASE-T100m
10 Gbps10 Gig Ethernet10GBASE-T100m

Cable Types

TypeUse Case
Straight-ThroughDifferent device types (PC↔Switch)
CrossoverSame device types (Switch↔Switch)
RolloverConsole connection

Note: Modern devices use Auto MDI-X to auto-detect cable type

Fiber Optic

StandardSpeedModeMax Distance
1000BASE-LX1 GbpsMulti/Single550m / 5km
10GBASE-SR10 GbpsMultimode400m
10GBASE-LR10 GbpsSingle10km
10GBASE-ER10 GbpsSingle30km

CLI FUNDAMENTALS

CLI Modes

CLI
Router>                     # User EXEC Mode
Router> enable
Router#                     # Privileged EXEC Mode
Router# configure terminal
Router(config)#             # Global Configuration Mode
Router(config)# interface g0/0
Router(config-if)#          # Interface Configuration Mode

Essential Commands

CLI
# View commands
show running-config         # Current active config
show startup-config         # Saved config
show ip interface brief     # Interface summary
show interfaces             # Detailed interface info
show vlan brief             # VLAN information
show mac address-table      # MAC table

# Save configuration
write                       # Save running to startup
copy running-config startup-config

# Password configuration
enable secret <password>    # Encrypted privileged password
service password-encryption # Encrypt all passwords

# Interface configuration
interface g0/0
ip address 10.0.0.1 255.255.255.0
no shutdown
description ## Link to SW1 ##

ETHERNET & SWITCHING

Ethernet Frame Structure

Code
| Preamble | SFD | Dest MAC | Src MAC | Type | Data | FCS |
| 7 bytes  | 1B  | 6 bytes  | 6 bytes | 2B   | 46-1500B | 4B |
  • Minimum Frame Size: 64 bytes
  • Maximum Frame Size: 1518 bytes (without 802.1Q tag)

MAC Address

  • 48 bits (6 bytes) = 12 hex characters
  • OUI: First 3 bytes (manufacturer)
  • Device ID: Last 3 bytes (unique)
  • Broadcast MAC: FFFF.FFFF.FFFF

Switch Operations

ActionDescription
LearnAdd source MAC to table
FloodForward unknown unicast to all ports
ForwardSend to known destination port
FilterDon't forward to source port

ARP (Address Resolution Protocol)

  • Purpose: Resolve IP → MAC address
  • ARP Request: Broadcast (FFFF.FFFF.FFFF)
  • ARP Reply: Unicast

IPv4 ADDRESSING

IPv4 Address Classes

ClassFirst OctetDefault MaskRange
A1-126/8 (255.0.0.0)1.0.0.0 - 126.255.255.255
B128-191/16 (255.255.0.0)128.0.0.0 - 191.255.255.255
C192-223/24 (255.255.255.0)192.0.0.0 - 223.255.255.255
D224-239-Multicast
E240-255-Experimental

127.x.x.x = Loopback addresses

Private IP Ranges (RFC 1918)

Code
10.0.0.0/8        (10.0.0.0 - 10.255.255.255)       Class A
172.16.0.0/12     (172.16.0.0 - 172.31.255.255)     Class B
192.168.0.0/16    (192.168.0.0 - 192.168.255.255)   Class C

Special Addresses

  • Network Address: Host bits all 0s (first address)
  • Broadcast Address: Host bits all 1s (last address)
  • Usable Hosts: 2^n - 2 (n = host bits)

Binary Conversion Chart

1286432168421

SUBNETTING

Subnetting Cheatsheet

CIDRSubnet MaskBlock SizeUsable Hosts
/24255.255.255.0256254
/25255.255.255.128128126
/26255.255.255.1926462
/27255.255.255.2243230
/28255.255.255.2401614
/29255.255.255.24886
/30255.255.255.25242
/31255.255.255.25422*
/32255.255.255.25511

/30 = Point-to-point links (2 usable IPs)

Subnetting Steps

  1. Find the "magic octet" where prefix lands
  2. Calculate block size: 256 - subnet mask value
  3. Find network address (multiple of block size ≤ IP)
  4. Broadcast = Network + Block Size - 1
  5. Usable range = Network+1 to Broadcast-1

Wildcard Mask

  • Inverse of subnet mask
  • 0 = must match, 1 = don't care
  • Example: 255.255.255.0 → Wildcard: 0.0.0.255

ROUTING FUNDAMENTALS

Routing Methods

TypeDescription
StaticManually configured routes
DynamicAutomatically learned via protocols
ConnectedDirectly attached networks
LocalRouter's own IP addresses (/32)

Static Route Configuration

CLI
ip route <network> <mask> <next-hop>
ip route <network> <mask> <exit-interface>
ip route 0.0.0.0 0.0.0.0 <next-hop>    # Default route

Administrative Distance (AD)

Route SourceAD
Connected0
Static1
EIGRP Summary5
eBGP20
EIGRP (Internal)90
OSPF110
IS-IS115
RIP120
EIGRP (External)170
iBGP200
Unknown255

Lower AD = More trusted

VLANs & TRUNKING

VLAN Basics

  • VLAN = Virtual LAN (separate broadcast domain)
  • Default VLAN: 1 (cannot be deleted)
  • Reserved VLANs: 1002-1005
  • Extended Range: 1006-4094

VLAN Configuration

CLI
# Create VLAN
vlan 10
name SALES

# Assign port to VLAN
interface f0/1
switchport mode access
switchport access vlan 10

# View VLANs
show vlan brief

Trunk Configuration

Code
interface g0/1
switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 10,20,30
switchport trunk native vlan 99

802.1Q Tag

  • 4 bytes inserted in Ethernet frame
  • TPID: 0x8100 (2 bytes)
  • PCP: Priority (3 bits)
  • DEI: Drop eligible (1 bit)
  • VID: VLAN ID (12 bits) = 4096 VLANs

Router on a Stick (ROAS)

Code
interface g0/0.10
encapsulation dot1q 10
ip address 192.168.10.1 255.255.255.0

SPANNING TREE PROTOCOL

STP Versions

ProtocolStandardDescription
STP802.1DOriginal, one tree for all VLANs
PVST+CiscoPer-VLAN STP
RSTP802.1wRapid convergence
Rapid PVST+CiscoRapid + Per-VLAN
MSTP802.1sMultiple instances

STP Port States

StateSend/ReceiveLearn MACForward
BlockingNoNoNo
ListeningYesNoNo
LearningYesYesNo
ForwardingYesYesYes
DisabledNoNoNo

RSTP Port States

  • Discarding = Blocking + Disabled
  • Learning = Learning
  • Forwarding = Forwarding

STP Port Roles

RoleDescription
Root PortBest path to root bridge
Designated PortBest port on segment
Non-DesignatedBlocking port
Alternate (RSTP)Backup to root port
Backup (RSTP)Backup to designated

Root Bridge Election

  1. Lowest Bridge ID (Priority + MAC)
  2. Default Priority: 32768
  3. Priority increments: 4096

STP Cost

SpeedSTP CostRSTP Cost
10 Mbps1002,000,000
100 Mbps19200,000
1 Gbps420,000
10 Gbps22,000

STP Timers

  • Hello: 2 seconds
  • Forward Delay: 15 seconds
  • Max Age: 20 seconds

STP Configuration

CLI
spanning-tree vlan 1 root primary      # Set as root
spanning-tree vlan 1 priority 4096     # Set priority
spanning-tree portfast                 # Skip listening/learning
spanning-tree bpduguard enable         # Protect portfast ports

ETHERCHANNEL

EtherChannel Protocols

ProtocolTypeModes
LACPIEEE 802.3adActive, Passive
PAgPCiscoDesirable, Auto
StaticManualOn

Mode Compatibility

ModeForms with
ActiveActive, Passive
PassiveActive
DesirableDesirable, Auto
AutoDesirable
OnOn only

Configuration

CLI
# LACP
interface range g0/0-3
channel-group 1 mode active

# Configure port-channel
interface port-channel 1
switchport mode trunk

# Verify
show etherchannel summary
show etherchannel port-channel

Load Balancing Methods

Code
port-channel load-balance src-dst-ip
show etherchannel load-balance

DYNAMIC ROUTING

Protocol Types

TypeAlgorithmProtocols
IGPDistance VectorRIP, EIGRP
IGPLink StateOSPF, IS-IS
EGPPath VectorBGP

Metrics by Protocol

ProtocolMetric
RIPHop count (max 15)
EIGRPBandwidth + Delay
OSPFCost (bandwidth)
IS-ISCost

RIP Configuration

Code
router rip
version 2
network 10.0.0.0
no auto-summary
passive-interface g0/0
default-information originate

EIGRP Configuration

Code
router eigrp 100
network 10.0.0.0 0.255.255.255
no auto-summary
passive-interface g0/0

EIGRP Terms

  • Feasible Distance (FD): Total metric to destination
  • Reported Distance (RD): Neighbor's metric
  • Successor: Best route
  • Feasible Successor: Backup route (RD < FD)

OSPF

OSPF Basics

  • Type: Link State IGP
  • Algorithm: Dijkstra's SPF
  • AD: 110
  • Multicast: 224.0.0.5 (all OSPF), 224.0.0.6 (DR/BDR)
  • Protocol: 89

OSPF Areas

  • Area 0: Backbone (required)
  • ABR: Area Border Router
  • ASBR: AS Boundary Router

OSPF Network Types

TypeDR/BDRHelloDead
BroadcastYes10s40s
Point-to-PointNo10s40s
Non-BroadcastYes30s120s

OSPF Neighbor States

  1. Down → 2. Init → 3. 2-Way → 4. ExStart → 5. Exchange → 6. Loading → 7. Full

OSPF Cost

Code
Cost = Reference Bandwidth / Interface Bandwidth
Default Reference = 100 Mbps

OSPF Configuration

CLI
router ospf 1
router-id 1.1.1.1
network 10.0.0.0 0.0.0.255 area 0
passive-interface g0/0
auto-cost reference-bandwidth 10000

# Interface method
interface g0/0
ip ospf 1 area 0
ip ospf cost 10
ip ospf priority 100

OSPF Verification

Code
show ip ospf neighbor
show ip ospf interface
show ip ospf database
show ip route ospf

DR/BDR Election

  1. Highest OSPF Priority (default 1)
  2. Highest Router ID
  • Priority 0 = Cannot be DR/BDR

IPv6

IPv6 Basics

  • 128 bits (8 groups of 4 hex digits)
  • Notation: 2001:0DB8:0000:0001:0000:0000:0000:0001
  • Shortened: 2001:DB8:0:1::1

Shortening Rules

  1. Remove leading zeros in each group
  2. Replace consecutive all-zero groups with :: (once only)

IPv6 Address Types

TypePrefixDescription
Global Unicast2000::/3Public addresses
Link-LocalFE80::/10Local link only
Unique LocalFC00::/7Private addresses
MulticastFF00::/8One-to-many
Loopback::1/128Localhost

IPv6 Configuration

Code
ipv6 unicast-routing
interface g0/0
ipv6 address 2001:db8:0:1::1/64
ipv6 address fe80::1 link-local

ACCESS CONTROL LISTS

ACL Types

TypeNumber RangeMatches
Standard1-99, 1300-1999Source IP only
Extended100-199, 2000-2699Src/Dst IP, Protocol, Port

ACL Rules

  • Processed top to bottom
  • First match wins
  • Implicit deny at end
  • Standard ACLs: Apply close to destination
  • Extended ACLs: Apply close to source

Standard ACL

Code
access-list 1 deny 10.0.0.0 0.0.0.255
access-list 1 permit any

interface g0/0
ip access-group 1 out

Extended ACL

Code
ip access-list extended BLOCK_WEB
deny tcp 10.0.0.0 0.0.0.255 any eq 443
permit ip any any

interface g0/0
ip access-group BLOCK_WEB in

Port Operators

OperatorMeaning
eqEqual to
gtGreater than
ltLess than
neqNot equal to
rangeRange of ports

NAT

NAT Types

TypeDescription
Static NAT1:1 mapping (permanent)
Dynamic NATPool of public IPs
PAT/NAT OverloadMany:1 using ports

NAT Terms

  • Inside Local: Private IP (internal)
  • Inside Global: Public IP (seen externally)
  • Outside Local: External IP (seen internally)
  • Outside Global: External public IP

NAT Configuration

CLI
# Static NAT
ip nat inside source static 192.168.1.10 203.0.113.10

# Dynamic NAT
ip nat pool POOL1 203.0.113.1 203.0.113.10 netmask 255.255.255.0
access-list 1 permit 192.168.1.0 0.0.0.255
ip nat inside source list 1 pool POOL1

# PAT (Overload)
ip nat inside source list 1 interface g0/1 overload

# Interface designation
interface g0/0
ip nat inside
interface g0/1
ip nat outside

TCP & UDP

TCP vs UDP

FeatureTCPUDP
ConnectionConnection-orientedConnectionless
ReliabilityYes (ACK)No
SequencingYesNo
Flow ControlYesNo
SpeedSlowerFaster

TCP 3-Way Handshake

Code
Client → SYN → Server
Client ← SYN-ACK ← Server
Client → ACK → Server

TCP Connection Termination

Code
FIN → ACK → FIN → ACK

Important Port Numbers

PortProtocolService
20TCPFTP Data
21TCPFTP Control
22TCPSSH
23TCPTelnet
25TCPSMTP
53TCP/UDPDNS
67UDPDHCP Server
68UDPDHCP Client
69UDPTFTP
80TCPHTTP
110TCPPOP3
123UDPNTP
143TCPIMAP
161UDPSNMP Agent
162UDPSNMP Manager
443TCPHTTPS
514UDPSyslog

NETWORK SERVICES

DHCP

DORA Process:

  1. Discover (Broadcast)
  2. Offer (Unicast/Broadcast)
  3. Request (Broadcast)
  4. Ack (Unicast/Broadcast)
CLI
# DHCP Server
ip dhcp pool POOL1
network 192.168.1.0 255.255.255.0
default-router 192.168.1.1
dns-server 8.8.8.8
ip dhcp excluded-address 192.168.1.1 192.168.1.10

# DHCP Relay
interface g0/0
ip helper-address 10.0.0.100

DNS

  • Purpose: Resolve hostname → IP
  • Port: 53 (TCP/UDP)
Code
ip dns server
ip host SERVER1 10.0.0.10
ip name-server 8.8.8.8
ip domain lookup

NTP

  • Purpose: Time synchronization
  • Port: UDP 123
  • Stratum: Distance from reference clock (0-15)
Code
ntp server 216.239.35.0
ntp master 3
ntp update-calendar
show ntp status
show ntp associations

SSH Configuration

Code
hostname R1
ip domain-name example.com
crypto key generate rsa modulus 2048
username admin secret cisco
line vty 0 15
transport input ssh
login local
ip ssh version 2

SECURITY

CIA Triad

  • Confidentiality: Only authorized access
  • Integrity: Data not tampered
  • Availability: System accessible

Common Attacks

AttackDescription
DoS/DDoSOverwhelm resources
SpoofingFake source address
Man-in-the-MiddleIntercept communications
ARP PoisoningFake ARP replies
DHCP StarvationExhaust DHCP pool

AAA

  • Authentication: Verify identity
  • Authorization: Grant permissions
  • Accounting: Log activities

AAA Protocols

ProtocolTypePort
RADIUSOpen StandardUDP 1812, 1813
TACACS+CiscoTCP 49

Port Security

CLI
interface f0/1
switchport mode access
switchport port-security
switchport port-security maximum 2
switchport port-security mac-address sticky
switchport port-security violation shutdown

# Violation modes: shutdown, restrict, protect

DHCP Snooping

Code
ip dhcp snooping
ip dhcp snooping vlan 10
interface g0/1
ip dhcp snooping trust

Dynamic ARP Inspection

Code
ip arp inspection vlan 10
interface g0/1
ip arp inspection trust

FIRST HOP REDUNDANCY PROTOCOLS

FHRP Comparison

FeatureHSRPVRRPGLBP
TypeCiscoOpenCisco
Active/StandbyActive/StandbyMaster/BackupAVG/AVF
Multicast224.0.0.2 (v1), 224.0.0.102 (v2)224.0.0.18224.0.0.102
Load BalanceNoNoYes

HSRP Configuration

Code
interface g0/0
standby version 2
standby 1 ip 192.168.1.1
standby 1 priority 110
standby 1 preempt

Virtual MAC Addresses

  • HSRP v1: 0000.0c07.acXX
  • HSRP v2: 0000.0c9f.fXXX
  • VRRP: 0000.5e00.01XX
  • GLBP: 0007.b400.XXYY

NETWORK MANAGEMENT

SNMP

  • Purpose: Monitor/manage devices
  • Versions: v1, v2c, v3 (secure)
  • Ports: UDP 161 (agent), 162 (manager)
MessageDirectionPurpose
GetNMS → AgentRequest info
SetNMS → AgentChange config
TrapAgent → NMSAlert (no ACK)
InformAgent → NMSAlert (with ACK)

Syslog

  • Purpose: Log messages
  • Port: UDP 514
LevelKeywordDescription
0EmergencySystem unusable
1AlertImmediate action
2CriticalCritical conditions
3ErrorError conditions
4WarningWarning conditions
5NoticeNormal but significant
6InformationalInformational
7DebugDebug messages

Mnemonic: Every Awesome Cisco Engineer Will Need Ice cream Daily

Code
logging host 10.0.0.100
logging trap informational
logging console warnings
logging buffered 8192

QUALITY OF SERVICE

QoS Markings

FieldLayerBitsValues
PCP/CoSL2 (802.1Q)30-7
DSCPL3 (IP)60-63
IPPL3 (IP)30-7

DSCP Values

NameDSCPUse
DF0Best Effort
EF46Voice
AF4134Video
AF3126Streaming
CS648Network Control

QoS Mechanisms

  • Classification: Identify traffic types
  • Marking: Tag packets with priority
  • Queuing: Organize packets for transmission
  • Shaping: Buffer excess traffic
  • Policing: Drop/remark excess traffic

WIRELESS

Wi-Fi Standards

StandardNameFrequencyMax Speed
802.11a-5 GHz54 Mbps
802.11b-2.4 GHz11 Mbps
802.11g-2.4 GHz54 Mbps
802.11nWi-Fi 42.4/5 GHz600 Mbps
802.11acWi-Fi 55 GHz6.9 Gbps
802.11axWi-Fi 62.4/5/6 GHz9.6 Gbps

2.4 GHz Channels

  • Non-overlapping: 1, 6, 11
  • Channel width: 22 MHz

Service Sets

TypeDescription
IBSSAd-hoc (no AP)
BSSSingle AP
ESSMultiple APs
MBSSMesh network

Wireless Terms

  • SSID: Network name
  • BSSID: AP MAC address
  • BSA: Coverage area
  • CSMA/CA: Collision avoidance

AP Modes

  • Autonomous: Standalone
  • Lightweight: Requires WLC
  • FlexConnect: Local switching

QUICK REFERENCE - SHOW COMMANDS

CLI
# General
show running-config
show startup-config
show version
show ip interface brief
show interfaces status

# Layer 2
show mac address-table
show vlan brief
show interfaces trunk
show spanning-tree
show etherchannel summary

# Layer 3
show ip route
show ip protocols
show ip ospf neighbor
show ip ospf interface
show ip ospf database

# Security
show access-lists
show ip nat translations
show port-security interface

# Services
show ip dhcp binding
show ntp status
show logging

QUICK REFERENCE - FORMULAS

Code
Usable Hosts = 2^n - 2 (n = host bits)
Subnets = 2^n (n = borrowed bits)
Block Size = 256 - Subnet Mask Value
OSPF Cost = Reference BW / Interface BW

Last Updated: CCNA 200-301 Exam Topics

PreviousAnsible, Puppet, and Chef