New Cisco CCNA (200-301) Volume 2: The Complete Course

Understand standard and extended ACLs, their syntax and naming, and apply traffic filtering by matching source and destination IPs and ports, with direction on interfaces and an implicit deny.

Explore hands-on access control lists in a two-router lab, applying standard, extended, and named ACLs to interfaces and lines, testing connectivity, DNS, and port-based filtering.

Explore switch port security to control which end devices may connect, learn and apply mac address policies, sticky learning, and violation modes (protect, restrict, shutdown) on access ports.

Learn to configure switch port security on Cisco devices, including max addresses, MAC sticky learning, and violation modes like shut down, with a hands-on lab.

Learn how DHCP dynamically allocates IP addresses to devices, covering scopes, leases, discover/offer/acknowledge exchanges, and the role of servers, IP helper addresses, and static reservations in a network.

Configure and test a complete DHCP lab from scratch, creating DHCP scopes, exclusions, and reservations, assigning gateway and DNS, and using IP helper to verify DHCP processes.

Learn how dhcp snooping prevents rogue dhcp servers by discarding rogue offers. Configure switches to trust only designated ports for servers and filter all other ports.

Explore a DHCP snooping lab that prevents rogue DHCP servers by enabling DHCP snooping on a switch, configuring a trusted port, and validating IP assignments.

Secure network devices by configuring privilege level passwords, enabling enable secret encryption, enabling service password encryption, and using ssh over telnet with centralized authentication (radius, tacacs+, certificates) for remote access.

Dynamic arp inspection secures layer-2 networks by inspecting arp messages on untrusted ports, using dhcp snooping data to verify source and destination ip and mac addresses and detect mac changes.

Explore how SNMP uses MIB objects and OIDs to monitor devices, configure read-only and read-write community strings, and implement SNMP v1, v2c, and v3 with user-based authentication and encryption.

Configure syslog logging on Cisco devices by setting a remote log server and traps, study severity levels zero to seven, facility codes, and the message text.

Learn how the network time protocol synchronizes devices to coordinated universal time via a stratum hierarchy from the atomic clock to higher strata, with master and peer servers.

Explore layer 2 discovery with GDP and LDP to map neighboring devices and view interfaces, subinterfaces, and trunk connections; compare show CDP neighbors and show LDP neighbors.

Explore how network address translation conserves public addresses using private IPs and a single public IP with NAT overload, and learn static, dynamic NAT and NAT pools.

Explore the Cisco proprietary HSRP redundancy protocol, its active-standby design, virtual IP and MAC, and how priority and preemption determine the active router in a lab topology.

Navigate the HSRP redundancy lab to configure a virtual IP with standby and preemption, verify connectivity using ping and traceroute, and understand active and standby router roles.

Explore quality of service (QoS) concepts, including bandwidth, delay, jitter, and loss, and how traffic classification, marking (DSCP), queuing, shaping, and policy control prioritize voice, video, and data across networks.

Learn how DSCP markings and traffic classes shape QoS for voice and video. Explore queuing, shaping, and policing at the enterprise edge to manage drift and congestion.

Learn to configure a qos lab by building class maps for dscp values (af33, ef), creating a policy map with bandwidth, and binding it to the egress interface.

Explore Metro Ethernet concepts, including access links, service provider edge, point-to-point and multipoint EVCs, VLAN tagging, and the role of fiber speeds from 100 megabits to 10 gigabits.

Explore mvpls vpn design with provider edge connections, vrfs and route targets, and the role of multi-protocol bgp and route redistribution between service provider and customer routes.

Configure a multi-protocol lab redistributing routes between OSPF and BGP, enable MPLS LDP between PE and P routers, and validate connectivity with address-family ipv4 configuration and show commands.

Explore how virtual private networks secure remote access and site-to-site connections with encryption, confidentiality, and mutual authentication, using IPsec, SSL/TLS, and VPN protocols while considering bandwidth and overhead.

Explore cloud architecture concepts, including on-demand self-service, rapid elasticity, measured service, and cloud service models (IaaS, PaaS, SaaS), plus public vs private cloud trade-offs.

Explore how sdn and controller based networks centralize control through apis and southbound interfaces, separating data plane from control and management planes.

Explore Cisco's software-defined access with fabric concepts, differentiating underlay and overlay networks, VXLAN tunnels, and the role of DNA Center and the control plane in a converged campus.

Explore rest and Jason concepts, examine client–server interactions and rest APIs, and learn caching, crud operations, and how uris and http shape api calls.

Compare chef, puppet, and Ansible as configuration management tools, noting Ruby, Puppet DSL, and YAML and Python, and how they pull configurations from servers for automated networks.