Cisco CCNA Study Guide 2026 (200-301)
The Cisco Certified Network Associate (CCNA) 200-301 exam is the gateway to a rewarding career in network administration and engineering. Rather than pursuing multiple specialist certifications, CCNA consolidates essential networking knowledge into a single, industry-recognized credential. This study guide breaks down each exam domain with specific topics to master, key concepts to understand, and proven study strategies to help you pass confidently.
Table of Contents
Domain 1: Network Fundamentals (20%)
Network fundamentals form the foundation of all CCNA knowledge. You must understand how data moves across networks, the layers that govern this movement, and the protocols that enable communication. This domain tests your conceptual understanding before moving into hands-on configuration.
Key Topics and Concepts
The OSI Reference Model is your starting point. You need to know all seven layers by name and function: Physical, Data Link, Network, Transport, Session, Presentation, and Application. More importantly, understand which protocols operate at each layer and how data is packaged (encapsulation) as it moves down the stack.
TCP/IP Model and Comparison matters because it is the practical foundation of modern networks. Know the four layers of the TCP/IP model, how they map to the OSI model, and why the TCP/IP model is used in practice despite the OSI model's educational value.
IP Addressing Basics includes IPv4 and IPv6. For IPv4, master binary notation, decimal to binary conversion, and classful vs. classless addressing (CIDR). Understand subnet masks, network addresses, broadcast addresses, and usable host ranges. For IPv6, know the address structure, types of addresses (unicast, multicast, anycast), and the difference between link-local and global unicast addresses.
Network Types and Topologies test whether you recognize LAN, WAN, MAN, and WLAN characteristics. You should understand physical topologies (star, ring, mesh, bus) and logical topologies, and how they relate to modern switched networks.
Ethernet Fundamentals cover Media Access Control (MAC) addressing, the Ethernet frame structure, and collision domains. Know how switches use MAC address tables to forward frames and why switches reduce collision domains compared to hubs.
Network Devices includes routers, switches, access points, firewalls, and their functions. Understand the difference between Layer 2 and Layer 3 devices, and which devices operate at which layers.
Study Strategy for Domain 1
Start by memorizing the OSI layers with a mnemonic device (All People Seem To Need Data Processing). Draw the OSI model repeatedly until it becomes automatic. Create a reference chart showing which protocols belong to each layer (HTTP, HTTPS, DNS at Application; TCP, UDP at Transport; IP at Network; Ethernet, PPP at Data Link and Physical).
For IP addressing, use online subnet calculators while you learn, then practice conversions by hand until you can quickly identify subnet boundaries. Create a study sheet with common subnet masks and their CIDR equivalents. For IPv6, focus on the structure and common link-local address format (fe80::/10) rather than trying to memorize the entire address space.
Use flashcards for device functions and terminology. Group concepts by layer to reinforce the hierarchical nature of networking.
Domain 2: Network Access (20%)
Domain 2 focuses on how devices actually connect to networks and communicate at Layer 2 and the lower portions of Layer 3. This is where theory meets physical reality, and you must understand switching, virtual LANs, and link layer protocols.
Key Topics and Concepts
Switching and Switch Operation is central to this domain. Understand MAC address learning, the MAC address table (also called the Content Addressable Memory or CAM table), frame forwarding, flooding, and filtering. Know the difference between known unicast, unknown unicast, multicast, and broadcast frames. Learn about port security, which prevents unauthorized devices from connecting by limiting the number of MAC addresses per port.
VLANs (Virtual Local Area Networks) allow you to segment a single physical switch into multiple logical networks. Master VLAN concepts including VLAN IDs, trunk ports, access ports, and VLAN tagging (802.1Q). Understand why VLANs improve security, reduce broadcast domains, and simplify network management. Know the difference between native VLAN and tagged VLAN traffic.
Spanning Tree Protocol (STP) prevents loops in redundant network topologies. Understand bridge IDs, root bridge election, bridge protocol data units (BPDUs), and port roles (root port, designated port, non-designated port). Know the port states (blocking, listening, learning, forwarding) and how STP converges. Rapid Spanning Tree Protocol (RSTP) is faster and uses fewer states; understand the improvements RSTP makes over classic STP.
Link Aggregation allows multiple physical links to be bundled into a single logical link using Port Channel (EtherChannel in Cisco terms). Know the benefits (increased bandwidth, redundancy) and the configuration concepts (channel groups, protocols like LACP and PAgP).
First Hop Redundancy Protocols (FHRP) such as HSRP (Hot Standby Router Protocol), VRRP (Virtual Router Redundancy Protocol), and GLBP (Gateway Load Balancing Protocol) provide gateway redundancy. Understand virtual IP addresses, priority values, and failover mechanisms.
Wireless Fundamentals cover Wi-Fi standards (802.11 family), authentication methods (open, WEP, WPA, WPA2, WPA3), and the role of access points in extending network coverage. Know SSID, channels, and basic troubleshooting concepts for wireless connectivity.
Study Strategy for Domain 2
Draw network diagrams showing switch topologies and VLAN assignments. Practice creating VLAN configurations on paper, including access and trunk port assignments. Create a visual comparison chart of STP, RSTP, and MST, highlighting the key differences and improvements in each version.
For spanning tree, draw the topology, identify the root bridge, and trace the spanning tree you would expect to see. Repeat this for multiple topologies until STP path selection becomes intuitive. Use mnemonic devices for port roles and states.
Study the Cisco documentation on Spanning Tree Protocol to understand the protocol depth required for the exam.
For wireless, focus on authentication evolution and why WPA3 is more secure than WPA2. Create a table comparing wireless standards by year, data rates, and frequency bands.
Domain 3: IP Connectivity (25%)
Domain 3 is the largest and most important domain, covering IP routing, configuration of routers and interfaces, and the protocols that enable end-to-end communication. This domain requires both conceptual understanding and practical knowledge of routing protocols.
Key Topics and Concepts
Static Routing is the foundation. Understand default routes, summary routes, and how to configure static routes with next-hop IP addresses or exit interfaces. Know the purpose of administrative distance and how it affects route selection when multiple routing protocols are present.
Dynamic Routing Protocols automatically discover and maintain routes. You must know three categories:
- Distance Vector Protocols (RIPv1, RIPv2, EIGRP) make routing decisions based on hop count or other metrics. RIPv1 is classful and rarely seen today; RIPv2 is classless but slow to converge. EIGRP is Cisco proprietary, fast, and efficient, using bandwidth and delay as metrics by default.
- Link State Protocols (OSPF, IS-IS) use Dijkstra's algorithm to calculate shortest paths. OSPF is open standard and widely used. Understand concepts like LSA (Link State Advertisement), SPF calculations, and areas in OSPF.
- Path Vector Protocols (BGP) used for routing between autonomous systems. BGP is outside the scope of detailed CCNA study but you should know its general purpose.
OSPF in Depth is critical because it is heavily tested. Know single-area OSPF, area types (backbone, normal, stub, totally stubby, NSSA), router types (backbone router, area border router, autonomous system border router), and adjacency formation. Understand the OSPF metric (cost), how it is calculated from interface bandwidth, and how to modify it. Know the timers (hello, dead) and their default values.
EIGRP in Depth focuses on Cisco's advanced protocol. Understand feasible successor, feasible distance, advertised distance, and how EIGRP avoids loops. Know the DUAL (Diffusing Update Algorithm) concept at a high level. Understand metric components (bandwidth, delay, reliability, load, MTU) and the K-values that weight them.
Router Interface Configuration covers enabling interfaces, assigning IP addresses (both IPv4 and IPv6), setting interface descriptions, and configuring bandwidth for metric calculation. Know how to bring interfaces up and troubleshoot when they remain down.
Routing Table Analysis requires you to read and interpret show ip route output, understanding route sources (C for connected, S for static, O for OSPF, D for EIGRP, etc.), administrative distance values, and metrics.
IP Forwarding Logic explains how a router makes forwarding decisions based on the longest prefix match, checks the routing table, and selects the next hop. Understand what happens when no matching route exists (packets are dropped).
Study Strategy for Domain 3
This domain requires the most study time. Start with static routing and master the concepts of next-hop selection and route summarization. Create multiple network scenarios and plan static routes on paper before attempting configuration.
For OSPF, draw network diagrams, identify areas and area types, and manually calculate OSPF costs. Understand why certain routers become the Designated Router (DR) and why this matters. Create a reference sheet with OSPF defaults: hello interval (10 seconds on point-to-point, 10 seconds on broadcast), dead interval (40 seconds, 4x hello), cost formula (100,000,000 / bandwidth in bps).
For EIGRP, focus on the metric calculation and the concept of feasible successors. Understand why EIGRP converges faster than OSPF and the trade-off in complexity. Create a comparison table of OSPF and EIGRP including convergence time, scalability, metric calculation, and protocol type.
Refer to Cisco Learning Network resources on routing protocols for deeper study.
Practice reading routing tables from various scenarios. Build mental models of how packets flow through multi-router networks. Use network simulation tools to visualize how routing protocols converge.
Domain 4: IP Services (15%)
Domain 4 covers the services that operate above Layer 3, providing functionality that applications and users depend on daily. These protocols are essential for modern networks to function.
Key Topics and Concepts
DHCP (Dynamic Host Configuration Protocol) automatically assigns IP addresses to clients, eliminating manual configuration. Understand the DHCP process (DISCOVER, OFFER, REQUEST, ACKNOWLEDGE), DHCP pools, lease times, and the purpose of DHCP relay agents. Know the difference between DHCP server and relay agent roles. For IPv6, understand DHCPv6 and Stateless Address Autoconfiguration (SLAAC).
DNS (Domain Name System) translates human-readable domain names into IP addresses. Understand recursive queries (client to resolver), iterative queries (resolver to authoritative servers), DNS record types (A, AAAA, MX, CNAME, NS, SOA), and the role of DNS caching. Know the purpose of DNS forwarding and conditional forwarding in networks.
NAT and PAT (Network Address Translation and Port Address Translation) allow private IP addresses to communicate with public networks. Understand the inside local, inside global, outside local, and outside global address types. Know static NAT, dynamic NAT, and PAT, and how they differ in functionality and use cases. Understand why NAT is both beneficial (security, address preservation) and problematic (application issues, complexity).
SNMP (Simple Network Management Protocol) enables monitoring and management of network devices. Know the three versions (SNMPv1, SNMPv2c, SNMPv3), the difference between read-only (get) and write (set) operations, and why SNMPv3 is more secure. Understand the concept of SNMP communities and OIDs (Object Identifiers).
Syslog centralizes logging from network devices, improving troubleshooting and compliance. Understand syslog severity levels (Emergency, Alert, Critical, Error, Warning, Notice, Informational, Debug) and how to configure devices to send logs to a centralized server.
NTP (Network Time Protocol) ensures all network devices have synchronized time, critical for logging, security, and coordinated operations. Understand NTP stratum levels and the concept of NTP servers and clients.
QoS (Quality of Service) prioritizes network traffic to ensure critical applications receive necessary bandwidth and low latency. Understand classification, marking, queuing, and policing. Know the difference between best-effort delivery and QoS-enabled networks.
Study Strategy for Domain 4
Create a reference table for each protocol listing its purpose, port numbers, whether it uses TCP or UDP, and key configuration points. For DHCP, draw the four-step process and label each step. For DNS, create a diagram showing the recursive query path from client to authoritative server.
For NAT and PAT, use examples to distinguish between the two. Create scenarios where you identify which type would be appropriate. Understand the limitations NAT imposes on applications like VoIP or gaming.
Study syslog severity levels until you can recall them in order. Understand when to use each level in a monitoring context. For NTP, focus on why synchronization matters rather than the protocol details.
Review the DHCP RFC 2131 for protocol depth, though exam questions focus on practical application.
Domain 5: Security Fundamentals (10%)
Domain 5 introduces security concepts and technologies, though in-depth security knowledge is reserved for the CompTIA Security+ certification. CCNA focuses on basic security principles and configurations.
Key Topics and Concepts
Access Control Lists (ACLs) filter traffic based on source IP, destination IP, protocol, and port. Understand standard ACLs (filter by source IP only, numbered 1-99, 1300-1999) and extended ACLs (filter by source, destination, protocol, port, numbered 100-199, 2000-2699). Know the implicit deny at the end of every ACL and how to use the any and host keywords. Understand wildcard masks (inverse of subnet masks) and how they differ from subnet masks.
AAA (Authentication, Authorization, Accounting) controls user access and tracks activity. Know the difference between the three A's: Authentication (who you are), Authorization (what you are allowed to do), Accounting (what you did). Understand TACACS+ and RADIUS as AAA protocols and their differences (TACACS+ uses TCP, RADIUS uses UDP; TACACS+ encrypts entire packet, RADIUS encrypts only password).
Threat Landscape and Basic Security Concepts includes understanding common attacks (viruses, worms, trojans, ransomware, phishing, social engineering) and basic defense principles. Know why security requires multiple layers (defense in depth) and the principle of least privilege.
Firewalls and IDS/IPS are mentioned at a conceptual level. Know that firewalls filter traffic based on rules, stateless firewalls examine each packet independently, and stateful firewalls track connection states. Understand that IDS (Intrusion Detection System) alerts on suspicious traffic while IPS (Intrusion Prevention System) blocks it.
Encryption and VPN Basics provide secure communication over untrusted networks. Understand symmetric encryption (same key to encrypt and decrypt) versus asymmetric encryption (public and private keys). Know that VPNs create encrypted tunnels and provide confidentiality, but not necessarily authenticity or integrity alone.
Study Strategy for Domain 5
Create a detailed ACL reference guide with examples of standard and extended ACLs. Practice reading and writing ACLs on paper. The most common mistake is forgetting the implicit deny or placing deny statements before permit statements that should be allowed.
Create a comparison table of TACACS+ and RADIUS, highlighting differences in protocol, encryption, and use cases. Understand why organizations choose one over the other.
For threats and defenses, create a threat-defense matrix matching common attacks to defensive technologies. For example, Social Engineering Defense includes User Awareness Training. Keep this conceptual rather than memorizing specific attack details.
Domain 6: Automation and Programmability (10%)
Domain 6 reflects the industry shift toward software-defined networking and programmatic management. CCNA introduces coding concepts and network automation basics, preparing you for modern network careers.
Key Topics and Concepts
APIs and REST enable programmatic communication with network devices. Understand HTTP methods (GET to retrieve, POST to create, PUT to update, DELETE to remove), status codes (200 OK, 404 Not Found, 500 Server Error), and JSON/XML data formats. Know that REST APIs use standard HTTP, making them widely accessible. The key concept is that APIs allow automation of tasks that would normally require CLI access.
Network Programmability Concepts include configuration management, Infrastructure as Code (IaC), and version control. Understand why programmatic configuration is superior to manual CLI work in large networks. Know that tools like Ansible, Terraform, and Chef automate configuration deployment across multiple devices.
Python Basics for Networking includes fundamental programming concepts: variables, data types, loops, conditionals, functions, and libraries. You do not need to write complex Python code on the exam, but you must understand what code snippets do. Focus on understanding simple scripts that interact with network devices via APIs.
Cisco DNA Center and SD-WAN Basics represent Cisco's intent-based networking vision. DNA Center provides centralized management and network analytics. SD-WAN (Software-Defined WAN) simplifies WAN management by decoupling control from forwarding. You need basic awareness rather than implementation knowledge.
YAML and Configuration Files are used in Ansible and other automation tools. YAML uses indentation and key-value pairs to represent data structures. You should be able to read and understand simple YAML files.
Study Strategy for Domain 6
If you have no programming background, focus on understanding concepts rather than writing code. Read through simple Python scripts and annotate what each line does. Use Python's official tutorial as a reference for basic syntax.
Create a reference guide for HTTP methods and status codes. Understand REST principles: stateless communication, resource-based URLs, standard HTTP methods. Practice identifying whether a code snippet or API call is correct based on REST principles.
Watch demonstrations of Ansible playbooks and understand how YAML structure translates to task execution. Focus on the logic flow rather than specific syntax.
Study JSON format by reviewing simple examples. Understand key-value pairs, arrays, and nested objects. Most exam questions present code snippets and ask what they would accomplish, rather than asking you to write code from scratch.
Study Strategies for Success
Develop a Study Timeline with 8-12 weeks of preparation. Allocate more time to larger domains (Domain 3 deserves 30% of your study time). Schedule study in 90-minute blocks, with breaks between sessions. Avoid cramming; distributed learning over weeks is far more effective than massed practice the week before the exam.
Master Terminology and Acronyms early. Create flashcards for every acronym and concept. The exam uses terminology precisely, and confusion between similar terms (like advertised distance vs. feasible distance in EIGRP) will cost points. As you study each domain, add new terms to your growing reference library.
Use Multiple Learning Methods to reinforce knowledge. Read official study materials, watch video explanations, create visual diagrams, and review practice questions. Different learning styles require different approaches, and redundancy strengthens memory. Consider CCNP Enterprise certification materials as advanced supplemental resources once you solidify CCNA foundations.
Practice Scenario-Based Thinking by working through network diagrams. Given a topology, identify which routes would be preferred, which devices would become DRs, or how traffic would flow. This mirrors the exam's scenario-based questions and develops the intuition required for success. Aim for 50% of your study time on active problem-solving rather than passive reading.
Track Your Progress using practice exams. Take a diagnostic exam early to identify weak areas, then use subsequent practice exams to track improvement. Aim for 85%+ on practice exams before scheduling the real exam. Review every question you miss, understanding not just the correct answer but why the other options were wrong.
Join Study Groups either in-person or online. Explaining concepts to others and hearing different perspectives strengthens understanding. Teaching someone else is often the best way to identify gaps in your own knowledge.
Create a Concept Map showing how domains relate. For example, understand how OSPF (Domain 3) is used within VLANs (Domain 2), how ACLs (Domain 5) are applied to interfaces configured in Domain 3, and how APIs (Domain 6) can automate the deployment of these configurations. Seeing the big picture prevents studying in isolation.
Use Official Cisco Resources like the Cisco Learning Network and study guides from Cisco Press. These materials are written by exam developers and reflect what is actually tested.
The DiviTrain Advantage
Prepare for CCNA 200-301 with comprehensive courses designed for real success. DiviTrain provides everything you need to pass confidently.
- Expert tutor support available 24/7 to answer your questions
- MeasureUp Practice Exams with 60 days of access to multiple full-length exams
- 365 days of course access, allowing you to study at your pace
- Structured curriculum covering all six domains with actionable study strategies
- Content developed by Skillsoft, the global leader in enterprise learning
Frequently Asked Questions
Q1: How long does it take to prepare for the CCNA 200-301 exam?
A: Most candidates require 8-12 weeks of dedicated study. The timeline depends on your networking background, study intensity, and how much hands-on experience you have. If you already work in IT support roles, you may need less time. Allocate at least 10-15 hours per week for effective preparation. Start with a diagnostic practice exam to identify gaps, then adjust your timeline accordingly.
Q2: What is the passing score for the CCNA 200-301 exam?
A: Cisco does not publish the exact passing score, but it is typically around 825 out of 1000 points. This means you need approximately 82-83% accuracy across all questions. However, do not aim for the minimum passing score, target 85% or higher on practice exams to ensure you pass on test day. Build a buffer for unexpected difficulties.
Q3: Can I take the CCNA 200-301 exam online from home?
A: Yes, Cisco offers online proctored exam options through Pearson OnVUE. You must have a reliable internet connection, a webcam, microphone, and a quiet room. You will go through identity verification and environmental checks before the exam begins. Some candidates prefer testing centers for familiarity with exam environments, while others appreciate the convenience of home-based testing. Choose whatever helps you feel most confident.
Q4: What is the difference between CCNA and CCNP certifications?
A: CCNA is the entry-level Cisco certification requiring knowledge of networking fundamentals and basic configuration. CCNP Enterprise is advanced, building on CCNA knowledge with deeper expertise in routing, switching, and network architecture. CCNA is a prerequisite for most CCNP tracks. CCNA takes 8-12 weeks to prepare; CCNP typically requires 12-16 weeks or more. CCNP is appropriate after gaining real-world experience with CCNA-level topics. For career advancement, consider the CCNP Enterprise certification after CCNA success.
Q5: Is coding knowledge required for CCNA 200-301?
A: No, advanced coding skills are not required. Domain 6 (Automation and Programmability) includes basic Python concepts and API fundamentals, but you will not need to write complex code on the exam. The focus is understanding what code snippets do and how APIs enable network automation. If you have no programming background, dedicate 1-2 hours to learning Python basics and REST API concepts. Understanding is more important than implementation skills at the CCNA level.
Q6: How often are questions about each domain represented on the CCNA exam?
A: The exam allocates questions proportionally to domain weights: Network Fundamentals 20%, Network Access 20%, IP Connectivity 25%, IP Services 15%, Security Fundamentals 10%, and Automation and Programmability 10%. This means on a 120-question exam, expect roughly 24 questions on Network Fundamentals, 24 on Network Access, 30 on IP Connectivity, 18 on IP Services, 12 on Security, and 12 on Automation. However, these are approximate; focus on mastering all domains rather than trying to predict exact distributions.
Q7: What resources should I use to prepare for CCNA 200-301?
A: Use a combination of resources: official Cisco study guides from Cisco Press, video training from platforms like DiviTrain's CCNA 200-301 course, and practice exams from MeasureUp or Cisco. Supplement with official Cisco documentation and whitepapers on specific topics like OSPF or EIGRP. Do not rely on a single resource; different sources explain concepts in ways that resonate differently. Join the Cisco Learning Network community for discussion and guidance from others preparing for the exam.
Q8: How often is the CCNA 200-301 exam updated, and will it change by 2026?
A: Cisco typically updates major certifications every 3-5 years. The current CCNA 200-301 was released in 2020. While minor content updates are possible, a major refresh by 2026 is unlikely but possible. Before scheduling your exam, check the official Cisco certification page for any announced updates. Even if the exam number changes, the foundational networking knowledge you gain will remain relevant. Prepare with current materials and stay aware of Cisco announcements regarding future changes.
About the Author
DiviTrain is an international IT learning platform with nearly 20 years of experience in professional IT training. Our courses are developed by Skillsoft, the global leader in enterprise learning, ensuring high-quality, industry-relevant content. You get access to hands-on practice labs (where applicable), expert tutor support available 24/7, and official MeasureUp practice exams, all backed by DiviTrain's commitment to your certification success. Whether you are pursuing your first certification or advancing your career in networking and infrastructure, DiviTrain provides the complete tools, guidance, and support you need to succeed.
