Senior Acquisitions Editor: Kenyon Brown Development Editor: Kim Wimpsett

Senior Acquisitions Editor: Kenyon Brown

Development Editor: Kim Wimpsett

Technical Editor: Todd Montgomery

Production Editor: Christine O'Connor

Copy Editor: Judy Flynn

Editorial Manager: Mary Beth Wakefield

Production Manager: Kathleen Wisor

Executive Publisher: Jim Minatel

Book Designers: Judy Fung and Bill Gibson

Proofreader: Josh Chase, Word One New York

Indexer: Johnna vanHoose Dinse

Project Coordinator, Cover: Brent Savage

Cover Designer: Wiley

Cover Image: Getty Images Inc./Jeremy Woodhouse

Copyright © 2016 by John Wiley & Sons, Inc., Indianapolis, Indiana

Published simultaneously in Canada

ISBN: 978-1-119-28828-2

ISBN: 978-1-119-28830-5 (ebk.)

ISBN: 978-1-119-28829-9 (ebk.)

Manufactured in the United States of America

No part of this publication may be reproduced, stored in a retrieval system or transmitted in any

form or by any means, electronic, mechanical, photocopying, recording, scanning or otherwise,

except as permitted under Sections 107 or 108 of the 1976 United States Copyright Act, without

either the prior written permission of the Publisher, or authorization through payment of the

appropriate per-copy fee to the Copyright Clearance Center, 222 Rosewood Drive, Danvers, MA

01923, (978) 750-8400, fax (978) 646-8600. Requests to the Publisher for permission should be

addressed to the Permissions Department, John Wiley & Sons, Inc., 111 River Street, Hoboken, NJ

07030, (201) 748-6011, fax (201) 748-6008, or online at

http://www.wiley.com/go/permissions

.

Limit of Liability/Disclaimer of Warranty: The publisher and the author make no representations

or warranties with respect to the accuracy or completeness of the contents of this work and

specifically disclaim all warranties, including without limitation warranties of fitness for a

particular purpose. No warranty may be created or extended by sales or promotional materials.

The advice and strategies contained herein may not be suitable for every situation. This work is

sold with the understanding that the publisher is not engaged in rendering legal, accounting, or

other professional services. If professional assistance is required, the services of a competent

professional person should be sought. Neither the publisher nor the author shall be liable for

damages arising herefrom. The fact that an organization or Web site is referred to in this work as a

citation and/or a potential source of further information does not mean that the author or the

publisher endorses the information the organization or Web site may provide or

recommendations it may make. Further, readers should be aware that Internet Web sites listed in

this work may have changed or disappeared between when this work was written and when it is

read.

For general information on our other products and services or to obtain technical support, please

contact our Customer Care Department within the U.S. at (877) 762-2974, outside the U.S. at

(317) 572-3993 or fax (317) 572-4002.

Wiley publishes in a variety of print and electronic formats and by print-on-demand. Some

material included with standard print versions of this book may not be included in e-books or in

print-on-demand. If this book refers to media such as a CD or DVD that is not included in the

version you purchased, you may download this material at

http://booksupport.wiley.com

. For

more information about Wiley products, visit

www.wiley.com

.

Library of Congress Control Number: 2016950861

TRADEMARKS: Wiley, the Wiley logo, and the Sybex logo are trademarks or registered

trademarks of John Wiley & Sons, Inc. and/or its affiliates, in the United States and other

countries, and may not be used without written permission. CCNA is a registered trademark of

Cisco Technology, Inc. All other trademarks are the property of their respective owners. John

Wiley & Sons, Inc. is not associated with any product or vendor mentioned in this book.

Acknowledgments

There are many people who work to put a book together, and as an

author, I dedicated an enormous amount of time to write this book, but it

would have never been published without the dedicated, hard work of

many other people.

Kenyon Brown, my acquisitions editor, is instrumental to my success in

the world of Cisco certification. Ken, I look forward to our continued

progress together in both the print and video markets! My technical

editor, Todd Montgomery, was absolutely amazing to work with and he

was always there to check my work and make suggestions. Thank you!

Also, I've worked with Kim Wimpsett, the development editor, for years

now and she coordinated all the pages you hold in your hands as they

flew from thoughts in my head to the production process.

Christine O'Connor, my production editor, and Judy Flynn, my

copyeditor, were my rock and foundation for formatting and intense

editing of every page in this book. This amazing team gives me the

confidence to help keep me moving during the difficult and very long

days, week after week. How Christine stays so organized with all my

changes as well as making sure every figure is in the right place in the

book is still a mystery to me! You're amazing, Christine! Thank you! Judy

understands my writing style so well now, after doing at least a dozen

books with me, that she even sometimes finds a technical error that may

have slipped through as I was going through the material. Thank you,

Judy, for doing such a great job! I truly thank you both.

About the Author

Todd Lammle is the authority on Cisco certification and

internetworking and is Cisco certified in most Cisco certification

categories. He is a world-renowned author, speaker, trainer, and

consultant. Todd has three decades of experience working with LANs,

WANs, and large enterprise licensed and unlicensed wireless networks,

and lately he's been implementing large Cisco Firepower networks. His

years of real-world experience are evident in his writing; he is not just an

author but an experienced networking engineer with very practical

experience working on the largest networks in the world, at such

companies as Xerox, Hughes Aircraft, Texaco, AAA, Cisco, and Toshiba,

among many others. Todd has published over 60 books, including the

very popular CCNA: Cisco Certified Network Associate Study Guide,

CCNA Wireless Study Guide, CCNA Data Center Study Guide, and

SSFIPS (Firepower), all from Sybex. He runs an international consulting

and training company based in Colorado, Texas, and San Francisco.

You can reach Todd through his forum and blog at

www.lammle.com/ccna

.

CONTENTS

Introduction

Assessment Test

Answers to Assessment Test

Part 1 ICND1

Chapter 1 Internetworking

Internetworking Basics

Internetworking Models

The OSI Reference Model

Summary

Exam Essentials

Written Labs

Review Questions

Chapter 2 Ethernet Networking and Data Encapsulation

Ethernet Networks in Review

Ethernet Cabling

Data Encapsulation

The Cisco Three-Layer Hierarchical Model

Summary

Exam Essentials

Written Labs

Review Questions

Chapter 3 Introduction to TCP/IP

Introducing TCP/IP

TCP/IP and the DoD Model

IP Addressing

IPv4 Address Types

Summary

Exam Essentials

Written Labs

Review Questions

Chapter 4 Easy Subnetting

Subnetting Basics

Summary

Exam Essentials

Written Labs

Review Questions

Chapter 5 VLSMs, Summarization, and Troubleshooting TCP/IP

Variable Length Subnet Masks (VLSMs)

Summarization

Troubleshooting IP Addressing

Summary

Exam Essentials

Written Lab 5

Review Questions

Chapter 6 Cisco’s Internetworking Operating System (IOS)

The IOS User Interface

Command-Line Interface (CLI)

Administrative Configurations

Router and Switch Interfaces

Viewing, Saving, and Erasing Configurations

Summary

Exam Essentials

Written Lab 6: IOS Understanding

Hands-on Labs

Review Questions

Chapter 7 Managing a Cisco Internetwork

The Internal Components of a Cisco Router and Switch

Backing Up and Restoring the Cisco Configuration

Configuring DHCP

Syslog

Network Time Protocol (NTP)

Exploring Connected Devices Using CDP and LLDP

Using Telnet

Resolving Hostnames

Checking Network Connectivity and Troubleshooting

Summary

Exam Essentials

Written Labs 7

Hands-on Labs

Review Questions

Chapter 8 Managing Cisco Devices

Managing the Configuration Register

Backing Up and Restoring the Cisco IOS

Summary

Exam Essentials

Written Lab 8

Hands-on Labs

Review Questions

Chapter 9 IP Routing

Routing Basics

The IP Routing Process

Configuring IP Routing

Configuring IP Routing in Our Network

Dynamic Routing

Routing Information Protocol (RIP)

Summary

Exam Essentials

Written Lab 9

Hands-on Labs

Review Questions

Chapter 10 Layer 2 Switching

Switching Services

Configuring Catalyst Switches

Summary

Exam Essentials

Written Lab 10

Hands-on Labs

Review Questions

Chapter 11 VLANs and Inter-VLAN Routing

VLAN Basics

Identifying VLANs

Routing between VLANs

Configuring VLANs

Summary

Exam Essentials

Written Lab 11

Hands-on Labs

Review Questions

Chapter 12 Security

Perimeter, Firewall, and Internal Routers

Introduction to Access Lists

Standard Access Lists

Extended Access Lists

Monitoring Access Lists

Summary

Exam Essentials

Written Lab 12

Hands-on Labs

Review Questions

Chapter 13 Network Address Translation (NAT)

When Do We Use NAT?

Types of Network Address Translation

NAT Names

How NAT Works

Testing and Troubleshooting NAT

Summary

Exam Essentials

Written Lab 13

Hands-on Labs

Review Questions

Chapter 14 Internet Protocol Version 6 (IPv6)

Why Do We Need IPv6?

The Benefits and Uses of IPv6

IPv6 Addressing and Expressions

How IPv6 Works in an Internetwork

IPv6 Routing Protocols

Configuring IPv6 on Our Internetwork

Configuring Routing on Our Internetwork

Summary

Exam Essentials

Written Labs 14

Hands-on Labs

Review Questions

PART II ICND 2

Chapter 15 Enhanced Switched Technologies

VLAN Review

VLAN Trunking Protocol (VTP)

Configuring VTP

Spanning Tree Protocol (STP)

Types of Spanning-tree Protocols

Modifying and Verifying the Bridge ID

Spanning-Tree Failure Consequences

PortFast and BPDU Guard

EtherChannel

Summary

Exam Essentials

Written Lab 15

Hands-on Labs

Review Questions

Chapter 16 Network Device Management and Security

Mitigating Threats at the Access Layer

External Authentication Options

Client Redundancy Issues

Introducing First Hop Redundancy Protocols (FHRPs)

Hot Standby Router Protocol (HSRP)

Summary

Exam Essentials

Written Lab 16

Review Questions

Chapter 17 Enhanced IGRP

EIGRP Features and Operations

Configuring EIGRP

Verifying and Troubleshooting EIGRP

EIGRPv6

Summary

Exam Essentials

Written Lab 17

Hands-on Labs

Review Questions

Chapter 18 Open Shortest Path First (OSPF)

Open Shortest Path First (OSPF) Basics

Configuring OSPF

OSPF and Loopback Interfaces

Verifying OSPF Configuration

Summary

Exam Essentials

Written Lab 18

Hands-on Labs

Review Questions

Chapter 19 Multi-Area OSPF

OSPF Scalability

Categories of Multi-area Components

Basic Multi-area Configuration

Verifying and Troubleshooting Multi-area OSPF Networks

Troubleshooting OSPF Scenario

OSPFv3

Summary

Exam Essentials

Written Lab 19

Hands-on Labs

Review Questions

Chapter 20 Troubleshooting IP, IPv6, and VLANs

Troubleshooting IP Network Connectivity

Troubleshooting IPv6 Network Connectivity

Troubleshooting VLAN Connectivity

Summary

Exam Essentials

Written Lab 20

Review Questions

Chapter 21 Wide Area Networks

Introduction to Wide Area Networks

Cabling the Serial Wide Area Network

High-Level Data-Link Control (HDLC) Protocol

Point-to-Point Protocol (PPP)

Virtual Private Networks

GRE Tunnels

Single-Homed EBGP

Summary

Exam Essentials

Written Lab 21

Hands-on Labs

Review Questions

Chapter 22 Evolution of Intelligent Networks

Switch Stacking

Cloud Computing and Its Effect on the Enterprise Network

Overview of Network Programmability in Enterprise Network

Application Programming Interfaces (APIs)

Cisco APIC-EM

Cisco Intelligent WAN

Quality of Service

Trust Boundary

QoS Mechanisms

Summary

Exam Essentials

Written Lab 22

Review Questions

Appendix A Answers to Written Labs

Chapter 1: Internetworking

Chapter 2: Ethernet Networking and Data Encapsulation

Chapter 3: Introduction to TCP/IP

Chapter 4: Easy Subnetting

Chapter 5: VLSMs, Summarization and Troubleshooting

TCP/IP

Chapter 6: Cisco’s Internetworking Operating System (IOS)

Chapter 7: Managing a Cisco Internetwork

Chapter 8: Managing Cisco Devices

Chapter 9: IP Routing

Chapter 10: Layer 2 Switching

Chapter 11: VLANs and InterVLAN Routing

Chapter 12: Security

Chapter 13: Network Address Translation (NAT)

Chapter 14: Internet Protocol Version 6 (IPv6)

Chapter 15: Enhanced Switched Technologies

Chapter 16: Network Device Management and Security

Chapter 17: Enhanced IGRP

Chapter 18: Open Shortest Path First (OSPF)

Chapter 19: Multi-Area OSPF

Chapter 20: Troubleshooting IP, IPv6, and VLANs

Chapter 21: Wide Area Networks

Chapter 22: Evolution of Intelligent Networks

Appendix B Answers to Review Questions

Chapter 1: Internetworking

Chapter 2: Ethernet Networking and Data Encapsulation

Chapter 3: Introduction to TCP/IP

Chapter 4: Easy Subnetting

Chapter 5: VLSMs, Summarization, and Troubleshooting

TCP/IP

Chapter 6: Cisco’s Internetworking Operating System (IOS)

Chapter 7: Managing a Cisco Internetwork

Chapter 8: Managing Cisco Devices

Chapter 9: IP Routing

Chapter 10: Layer 2 Switching

Chapter 11: VLANs and InterVLAN Routing

Chapter 12: Security

Chapter 13: Network Address Translation (NAT)

Chapter 14: Internet Protocol Version 6 (IPv6)

Chapter 15: Enhanced Switched Technologies

Chapter 16: Network Device Management and Security

Chapter 17: Enhanced IGRP

Chapter 18: Open Shortest Path First (OSPF)

Chapter 19: Multi-Area OSPF

Chapter 20: Troubleshooting IP, IPv6, and VLANs

Chapter 21: Wide Area Networks

Chapter 22: Evolution of Intelligent Networks

Appendix C Disabling and Configuring Network Services

Blocking SNMP Packets

Disabling Echo

Turning off BootP and Auto-Config

Disabling the HTTP Interface

Disabling IP Source Routing

Disabling Proxy ARP

Disabling Redirect Messages

Disabling the Generation of ICMP Unreachable Messages

Disabling Multicast Route Caching

Disabling the Maintenance Operation Protocol (MOP)

Turning Off the X.25 PAD Service

Enabling the Nagle TCP Congestion Algorithm

Logging Every Event

Disabling Cisco Discovery Protocol

Disabling the Default Forwarded UDP Protocols

Cisco’s auto secure

Advert

EULA

List of Tables

Introduction

Table I.1

Table I.2

Table I.3

Table I.4

Table I.5

Table I.6

Table I.7

Table I.8

Table I.9

Table I.10

Table I.11

Table I.12

Table I.13

Table I.14

Table I.15

Table I.16

Table I.17

Chapter 2

Table 2.1

Table 2.2

Table 2.3

Chapter 3

Table 3.1

Table 3.2

Table 3.3

Table 3.4

Table 3.5

Chapter 4

Table 4.1

Table 4.2

Table 4.3

Chapter 5

Table 5.1

Chapter 6

Table 6.1

Table 6.2

Table 6.3

Chapter 7

Table 7.1

Table 7.2

Table 7.3

Chapter 8

Table 8.1

Table 8.2

Table 8.3

Chapter 9

Table 9.1

Table 9.2

Chapter 12

Table 12.1

Chapter 13

Table 13.1

Table 13.2

Table 13.3

Chapter 14

Table 14.1

Table 14.2

Chapter 15

Table 15.1

Chapter 17

Table 17.1

Table 17.2

Chapter 18

Table 18.1

Table 18.2

Table 18.3

Chapter 19

Table 19.1

Chapter 21

Table 21.1

List of Illustrations

Introduction

Figure I.1 The Cisco certification path.

Chapter 1

Figure 1.1 A very basic network

Figure 1.2 A switch can break up collision domains.

Figure 1.3 Routers create an internetwork.

Figure 1.4 Internetworking devices

Figure 1.5 Switched networks creating an internetwork

Figure 1.6 Other devices typically found in our internetworks

today.

Figure 1.7 The upper layers

Figure 1.8 The lower layers

Figure 1.9 OSI layer functions

Figure 1.10 Establishing a connection-oriented session

Figure 1.11 Transmitting segments with flow control

Figure 1.12 Windowing

Figure 1.13 Transport layer reliable delivery

Figure 1.14 Routing table used in a router

Figure 1.15 A router in an internetwork. Each router LAN

interface is a broadcast domain. Routers break up broadcast

domains by default and provide WAN services.

Figure 1.16 Data Link layer

Figure 1.17 A switch in an internetwork

Figure 1.18 A hub in a network

Figure 1.19 Physical vs. Logical Topolgies

Chapter 2

Figure 2.1 Legacy collision domain design

Figure 2.2 A typical network you’d see today

Figure 2.3 A router creates broadcast domain boundaries.

Figure 2.4 CSMA/CD

Figure 2.5 Half-duplex example

Figure 2.6 Full-duplex example

Figure 2.7 Ethernet addressing using MAC addresses

Figure 2.8 Typical Ethernet frame format

Figure 2.9 Category 5 Enhanced UTP cable

Figure 2.10 Straight-through Ethernet cable

Figure 2.11 Crossover Ethernet cable

Figure 2.12 Typical uses for straight-through and cross-over

Ethernet cables

Figure 2.13 UTP Gigabit crossover Ethernet cable

Figure 2.14 Rolled Ethernet cable

Figure 2.15 Configuring your console emulation program

Figure 2.16 A Cisco 2960 console connections

Figure 2.17 RJ45 UTP cable question #1

Figure 2.18 RJ45 UTP cable question #2

Figure 2.19 Typical fiber cable.

Figure 2.20 Multimode and single-mode fibers

Figure 2.21 Data encapsulation

Figure 2.22 PDU and layer addressing

Figure 2.23 Port numbers at the Transport layer

Figure 2.24 The Cisco hierarchical model

Chapter 3

Figure 3.1 The DoD and OSI models

Figure 3.2 The TCP/IP protocol suite

Figure 3.3 Telnet

Figure 3.4 Secure Shell

Figure 3.5 FTP

Figure 3.6 TFTP

Figure 3.7 SNMP

Figure 3.8 HTTP

Figure 3.9 NTP

Figure 3.10 DNS