📡 CCNA 200-301 v1.1

From Zero to Cisco Certified

A free, hands-on course that takes you from "what's an IP?" to passing the CCNA exam — with theory, interactive labs, and auto-graded quizzes.

Start Module 1 → View Curriculum
6
Modules
20+
Labs
150+
Practice Qs
100%
Free

📈 Your progress

0%

📚 Curriculum

Following the official Cisco 200-301 blueprint. Each module mixes theory, a hands-on lab, and an auto-graded quiz.

1

Network Fundamentals

OSI & TCP/IP, devices, IPv4/IPv6, subnetting, ports, cables. The bedrock.

20% of exam✅ Ready
2

Network Access

VLANs, trunking, STP, EtherChannel, CDP/LLDP, wireless fundamentals.

20% of exam🔜 Coming
3

IP Connectivity

Routing tables, static routes, OSPFv2 single-area, FHRP/HSRP.

25% of exam🔜 Coming
4

IP Services

DHCP, DNS, NAT/PAT, NTP, SNMP, Syslog, QoS, SSH.

10% of exam🔜 Coming
5

Security Fundamentals

AAA, ACLs, port security, DHCP snooping, VPN concepts, wireless security.

15% of exam🔜 Coming
6

Automation & Programmability

SDN concepts, REST APIs, JSON/YAML, Ansible, Python for networks.

10% of exam🔜 Coming

🛠 How this course works

Three things, in this exact order, every module.

📖

1. Theory

Clear, no-fluff explanations with diagrams and real-world context. Read in 20-30 minutes.

🧪

2. Hands-On Lab

Copy-paste configs for Cisco Packet Tracer (free). Build the topology, type the commands, see it work.

3. Auto-Graded Quiz

20+ exam-style questions. Get instant feedback with explanations. Your score is saved.

🧠

Cheatsheets

One-page review for each module. Perfect for the day before the exam.

💾

Progress Tracking

Your quiz scores save in your browser. Pick up exactly where you left off.

🆓

100% Free, Forever

No login, no email, no upsell. Just the course.

Module 1 · 20% of exam

Network Fundamentals

The bedrock of everything else. By the end of this module you'll understand how data moves across networks and you'll have configured your first Cisco router.

Theory Lab Quiz Cheatsheet

1.1 What is a network?

A network is two or more devices that share data over a medium (copper, fiber, or radio waves). The smallest network is two laptops connected by one cable. The biggest is the Internet — a network of networks.

Why we need them: share resources, communicate, and centralize services.

1.2 Network components

DeviceJobOSI Layer
HubDumb repeater — sends every signal to every port. Obsolete.1
SwitchForwards Ethernet frames based on MAC addresses. The LAN workhorse.2
RouterForwards IP packets between different networks.3
FirewallInspects traffic against security policy.3–7
Access PointBridges wireless clients into the wired LAN.1–2
Wireless LAN ControllerCentrally manages many APs.2–7
   [PC]---\                                 /---[Server]
           \---[Switch]---[Router]---[ISP]---
   [PC]---/                                 \---[Internet]

Topologies

  • Star — every device connects to a central switch (most common LAN)
  • Mesh — every device connects to every other (resilient WANs)
  • Bus / Ring — legacy, rare today
  • Hybrid — mix of the above (most real networks)

1.3 The OSI model (memorize!)

Mnemonic: "Please Do Not Throw Sausage Pizza Away" (bottom→top)

#LayerJobExamples
7ApplicationUser-facing protocolsHTTP, DNS, SSH
6PresentationFormat/encrypt dataTLS, JPEG, ASCII
5SessionOpen/close conversationsNetBIOS, RPC
4TransportEnd-to-end delivery, portsTCP, UDP
3NetworkLogical addressing, routingIP, ICMP, OSPF
2Data LinkPhysical addressing on a linkEthernet, MAC, ARP
1PhysicalBits on the wireCables, Wi-Fi radio

Encapsulation & PDU names

Data going down the stack gets wrapped in headers. The Protocol Data Unit (PDU) at each layer has a name:

[ App data ]                                  (Layer 7)
[ TCP hdr | App data ]                        (Layer 4 — "Segment")
[ IP hdr | TCP hdr | App data ]               (Layer 3 — "Packet")
[ Eth hdr | IP hdr | TCP hdr | App data | FCS ] (Layer 2 — "Frame")
[ 10101010101010101... ]                      (Layer 1 — "Bits")

Drill: Data → Segment → Packet → Frame → Bits.

1.4 Cables & physical layer

CableUseMax distance
Cat 5e / Cat 6 UTPStandard Ethernet copper, RJ-45100 m
Straight-throughPC↔switch, switch↔router
CrossoverSwitch↔switch, PC↔PC (rare; auto-MDIX)
Console (rollover, light blue)Laptop ↔ Cisco console port
Multimode Fiber (orange/aqua)Short campus runs~550 m @ 1G
Single-mode Fiber (yellow)Long haul40+ km

1.5 IPv4 addressing

32 bits, written as 4 octets in dotted decimal: 192.168.1.10.

Every IP has a network portion and a host portion, defined by the subnet mask. CIDR notation puts the number of network bits after a slash: /24 = 255.255.255.0.

Powers of 2 (memorize)

2¹=2   2²=4   2³=8   2⁴=16   2⁵=32   2⁶=64   2⁷=128   2⁸=256

Private (RFC 1918) ranges

  • 10.0.0.0/8
  • 172.16.0.0/12 (172.16.0.0 – 172.31.255.255)
  • 192.168.0.0/16

Special addresses

  • 127.0.0.0/8 — loopback
  • 169.254.0.0/16 — APIPA (when DHCP fails)
  • 255.255.255.255 — limited broadcast
  • 0.0.0.0 — "any" / default route

1.6 Subnetting (the topic everyone fears — let's kill it)

The magic number trick: for any /N mask, the "interesting octet" jumps in increments of 256 − mask value.

Example: 192.168.10.0/26

  • /26 mask = 255.255.255.192 → interesting octet = 4th, value 192
  • Magic number = 256 − 192 = 64
  • Subnets: .0, .64, .128, .192
  • For .64 subnet: network = .64, broadcast = .127, hosts = .65–.126

Hosts per subnet

Hosts = 2^(host bits) − 2 (network + broadcast addresses don't count).

Common masks (memorize)

CIDRMaskHosts
/24255.255.255.0254
/25255.255.255.128126
/26255.255.255.19262
/27255.255.255.22430
/28255.255.255.24014
/29255.255.255.2486
/30255.255.255.2522

1.7 IPv6 essentials

  • 128 bits, written as 8 groups of 4 hex digits
  • Drop leading zeros in each group
  • Replace ONE run of all-zero groups with :: (only once per address)

Example: 2001:0db8:0000:0000:0000:0000:0000:00012001:db8::1

Address types

  • 2000::/3 — Global Unicast (public)
  • fe80::/10 — Link-Local (auto, never routed)
  • fc00::/7 — Unique Local (like RFC1918)
  • ff00::/8 — Multicast (no broadcast in IPv6!)
  • ::1 — Loopback

1.8 TCP vs UDP

FeatureTCPUDP
Connection3-way handshake (SYN, SYN-ACK, ACK)Connectionless
ReliabilityACKs, retransmits, orderingNone
SpeedSlowerFast
UseHTTP, SSH, SMTP, FTPDNS, DHCP, VoIP, video, SNMP

Well-known ports (memorize)

PortProtocolPortProtocol
20/21FTP110POP3
22SSH123NTP
23Telnet143IMAP
25SMTP161/162SNMP
53DNS443HTTPS
67/68DHCP514Syslog
69TFTP80HTTP

1.9 Wireless basics

  • SSID — the network name
  • 2.4 GHz — longer range, more interference, only 3 non-overlapping channels (1, 6, 11)
  • 5 GHz — shorter range, faster, many channels
  • 6 GHz — Wi-Fi 6E
  • Security: WEP (broken) → WPA → WPA2 → WPA3 (current best)
✅ Self-check: Can you name every OSI layer? Convert /27 to dotted-decimal? List 10 well-known ports? If yes, hit the lab.

🧪 Lab: Your First Cisco Network

Tool: Cisco Packet Tracer (free with NetAcad account). GNS3 / CML also work — commands are identical.
Time: ~45 minutes.

🎯 Goals: Build a 2-LAN routed network, configure a Cisco router via CLI, verify with ping/traceroute, and save the config.

Topology

 PC1 (192.168.1.10/24)                       PC2 (192.168.2.10/24)
        |                                          |
   [ Switch1 ]                                [ Switch2 ]
        |                                          |
   ----G0/0--- [ Router R1 ] ---G0/1----
   192.168.1.1                       192.168.2.1

Build it

  1. Drag two 2960 switches, one 2911 router, two PCs onto the canvas.
  2. Cable with copper straight-through:
    • PC1 ↔ Switch1 (Fa0 ↔ Fa0/1)
    • PC2 ↔ Switch2 (Fa0 ↔ Fa0/1)
    • Switch1 Fa0/2 ↔ R1 Gi0/0
    • Switch2 Fa0/2 ↔ R1 Gi0/1

Step 1 — Configure the PCs

Click PC1 → DesktopIP Configuration:

IP Address:       192.168.1.10
Subnet Mask:      255.255.255.0
Default Gateway:  192.168.1.1

Repeat for PC2 with 192.168.2.10 and gateway 192.168.2.1.

Step 2 — Configure R1 (the CCNA core skill)

Click R1 → CLI tab → press Enter:

enable
configure terminal

hostname R1
no ip domain-lookup
enable secret Cisco123!

! ----- Console line -----
line console 0
 password ConPass!
 login
 logging synchronous
 exit

! ----- SSH setup -----
ip domain-name lab.local
crypto key generate rsa modulus 1024
username admin secret AdminPass!
line vty 0 4
 login local
 transport input ssh
 exit

service password-encryption

! ----- Interfaces -----
interface GigabitEthernet0/0
 description LAN-to-Switch1
 ip address 192.168.1.1 255.255.255.0
 no shutdown
 exit

interface GigabitEthernet0/1
 description LAN-to-Switch2
 ip address 192.168.2.1 255.255.255.0
 no shutdown
 exit

banner motd #Authorized access only!#

end
write memory          ! SAVE — without this you lose everything on reboot

Step 3 — Verify

From R1's CLI:

show ip interface brief    ! all interfaces — both should be up/up
show running-config        ! the live config
show ip route              ! routing table — should show two connected /24 routes
show version               ! IOS version, uptime, model

From PC1's Desktop → Command Prompt:

ping 192.168.1.1       # gateway — must work
ping 192.168.2.1       # router's far interface — must work
ping 192.168.2.10      # PC2 — the moment of truth
tracert 192.168.2.10   # should show 1 hop (R1) then PC2
✅ If the last ping replies, you just routed your first packet between two networks. Congratulations.

🧯 Troubleshooting checklist

  1. show ip interface brief — interface up/up?
  2. Correct default gateway on the PC?
  3. IPs in the same subnet as their gateway?
  4. Forgot no shutdown?
  5. Cable wired correctly? (green dots in PT)

🎁 Bonus challenges

  1. Add a third LAN 192.168.3.0/24 on R1's loopback (interface loopback 0) and ping it from PC1.
  2. SSH into R1 from PC2. Use admin / AdminPass!.
  3. Use show mac address-table on Switch1 — see PC1's MAC learned dynamically.

❓ Module 1 Quiz

20 exam-style questions. Pick answers, hit Submit, get instant feedback with explanations. Score saves automatically.

0%

🧠 Module 1 Cheatsheet

OSI (top → bottom)

7 App · 6 Pres · 5 Sess · 4 Trans · 3 Net · 2 DLL · 1 Phy
PDUs: Data → Segment → Packet → Frame → Bits

Powers of 2

2 4 8 16 32 64 128 256

Subnet masks

/NMaskHosts
/24255.255.255.0254
/25.128126
/26.19262
/27.22430
/28.24014
/29.2486
/30.2522

Magic number

MN = 256 − mask. Subnets jump by MN in the interesting octet.

RFC 1918 private ranges

10.0.0.0/8 · 172.16.0.0/12 · 192.168.0.0/16

Specials

127/8 loopback · 169.254/16 APIPA · 255.255.255.255 broadcast

Top ports

22 SSH · 23 Telnet · 25 SMTP · 53 DNS · 67/68 DHCP · 69 TFTP · 80 HTTP · 123 NTP · 161 SNMP · 443 HTTPS · 514 Syslog

IPv6

128 bits hex · :: collapses ONE zero run · fe80::/10 link-local · 2000::/3 global · ::1 loopback · ff00::/8 multicast

Essential router commands

enable
configure terminal
hostname X
interface gi0/0
 ip address A.B.C.D MASK
 no shutdown
end
copy running-config startup-config   ! save!
show ip interface brief
show running-config
show ip route
← Home Module 2: Network Access →
Coming soon

This module isn't built yet

🔜 Module 1 is the only fully built module. The remaining modules follow the same template — say "build module 2" (etc.) and I'll generate the full theory + lab + 20-question quiz.

What every module includes

  • 📖 Theory — concepts, diagrams, exam-relevant detail
  • 🧪 Lab — hands-on Packet Tracer walkthrough
  • Quiz — 20 auto-graded questions with explanations
  • 🧠 Cheatsheet — one-page review
← Home Go to Module 1 →