CCENT Cisco Certified Entry Networking Technician Study Guide (Exam 640-822) (Study Guide Book & CD)

CCENT Cisco Certifi ed Entry Networking Technician

Study Guide (Exam 640-822)

This page intentionally left blank

CCENT Cisco Certifi ed Entry Networking Technician

Study Guide(Exam 640-822)

Matthew WalkerAngie Walker

New York Chicago San Francisco Lisbon London Madrid Mexico City Milan New Delhi San Juan Seoul Singapore Sydney Toronto

This study/training guide and/or material is not sponsored by, endorsed by, or affiliated with Cisco Systems, Inc. in any manner. Cisco, Cisco Systems, CCDA, CCNA, CCDP, CCNP, CCIE, CCIP, CCSP, CCVP, CCDETM, CCENTTM, the Cisco Systems logo, and the Cisco Certified Internetwork Expert logo are trademarks or registered trademarks of Cisco Systems, Inc., in the United States and certain other countries. All other trademarks are trademarks of their respective owners. This publication and CD may be used in assisting students to prepare for an exam. Neither The McGraw-Hill Companies nor Boson Software warrant that use of this publication and CD will ensure passing any exam.

Copyright 2008 by The McGraw-Hill Companies. All rights reserved. Manufactured in the United States of America. Except as permitted under the United States Copyright Act of 1976, no part of this publication may be reproduced or distributed in any form orby any means, or stored in a database or retrieval system, without the prior written permission of the publisher.

0-07-164378-8

The material in this eBook also appears in the print version of this title: 0-07-159114-1.

All trademarks are trademarks of their respective owners. Rather than put a trademark symbol after every occurrence of a trademarkedname, we use names in an editorial fashion only, and to the benefit of the trademark owner, with no intention of infringement of thetrademark. Where such designations appear in this book, they have been printed with initial caps.

McGraw-Hill eBooks are available at special quantity discounts to use as premiums and sales promotions, or for use in corporate training programs. For more information, please contact George Hoare, Special Sales, at [email protected] or (212) 904-4069.

TERMS OF USE

This is a copyrighted work and The McGraw-Hill Companies, Inc. (McGraw-Hill) and its licensors reserve all rights in and to thework. Use of this work is subject to these terms. Except as permitted under the Copyright Act of 1976 and the right to store and retrieveone copy of the work, you may not decompile, disassemble, reverse engineer, reproduce, modify, create derivative works based upon,transmit, distribute, disseminate, sell, publish or sublicense the work or any part of it without McGraw-Hills prior consent. You may usethe work for your own noncommercial and personal use; any other use of the work is strictly prohibited. Your right to use the work maybe terminated if you fail to comply with these terms.

THE WORK IS PROVIDED AS IS. McGRAW-HILL AND ITS LICENSORS MAKE NO GUARANTEES OR WARRANTIES ASTO THE ACCURACY, ADEQUACY OR COMPLETENESS OF OR RESULTS TO BE OBTAINED FROM USING THE WORK,INCLUDING ANY INFORMATION THAT CAN BE ACCESSED THROUGH THE WORK VIA HYPERLINK OR OTHERWISE,AND EXPRESSLY DISCLAIM ANY WARRANTY, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO IMPLIEDWARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. McGraw-Hill and its licensors do notwarrant or guarantee that the functions contained in the work will meet your requirements or that its operation will be uninterrupted orerror free. Neither McGraw-Hill nor its licensors shall be liable to you or anyone else for any inaccuracy, error or omission, regardlessof cause, in the work or for any damages resulting therefrom. McGraw-Hill has no responsibility for the content of any informationaccessed through the work. Under no circumstances shall McGraw-Hill and/or its licensors be liable for any indirect, incidental, special,punitive, consequential or similar damages that result from the use of or inability to use the work, even if any of them has been advisedof the possibility of such damages. This limitation of liability shall apply to any claim or cause whatsoever whether such claim or causearises in contract, tort or otherwise.

DOI: 10.1036/0071591141

This book is dedicated to my father, Ronald Walker (19472008). We miss you, Dad.

ABOUT THE AUTHORS

Matthew Walker is the IA Training Instructor Supervisor and a Sr. IA Analyst at Dynetics, Inc., in Huntsville, Alabama. An IT education professional for over 15 years, Matt served as the Director of the Network Training Center and the Curriculum Lead and Senior Instructor for the local Cisco Networking Academy on Ramstein AB, Germany. After leaving the US Air Force, Matt served as a Network Engineer for NASAs Secure Network Systems, designing and maintaining secured data, voice, and video networking for the agency. He has written and contributed to numerous technical training books for Air Education and Training Command, United States Air Force, and continues to train, and write, certification and college-level IT and IA Security courses. Matt holds numerous commercial certifications, including Cisco Certified Network Professional (CCNP), Microsoft Certified System Engineer (MCSE), CEH (Certified Ethical Hacker), CNDA (Certified Network Defense Architect), and Certified Pen Test Specialist (CPTS).

Angie Walker is currently the Chief Information Security Officer for the University of North Alabama, located in beautiful Florence, Alabama. Among the many positions she has filled over the course of her 20-plus years in Information Technology and Information Assurance are Manager of the Information Systems Security (ISS) Office for the Missile Defense Agency (MDA) South, as well as the lead for the MDA Alternate Computer Emergency Response Team (ACERT). She served as Superintendent of the United States Air Forces in Europe (USAFE) Communications and Information Training Center, Superintendent of the 386 Communications Squadron on Ali Al Saleem AB, Kuwait, and Senior Information Security Analyst for Army Aviation Unmanned Aircraft Systems. Angie holds several industry certifications, including CISSP, Network+ and Security+, and a masters degree in Information Systems Management. With over nine years of IT and IA educational experience, she has developed and taught courseware worldwide for the US Air Force, as well as several computer science courses as an instructor for the University of Alabama in Huntsville, and Kaplan University in Fort Lauderdale, Florida.

Copyright 2008 by The McGraw-Hill Companies. Click here for terms of use.

About the Tech EditorBobby E. Rogers is a Senior Information Assurance Analyst for Dynetics, Inc., in Huntsville, Alabama. In addition to working in the Certification and Accreditation process for the U.S. government, Bobby also leads penetration testing teams for Dynetics. Bobby recently retired from the United States Air Force after almost 21 years, serving as a computer networking and security specialist, and has designed and managed networks all over the world. He has held several positions of responsibility overseeing network security in both the Department of Defense and private company networks. His duties have included perimeter security, client-side security, security policy development, security training, penetration testing, and computer crime investigation.

As a trainer, he has taught a wide variety of IT-related subjects in both makeshift classrooms in tents in the desert and formal training centers. He also has taught a wide variety of courses as a part-time contractor for several nationally known training centers and a major university. Bobby is an accomplished author, having written numerous IT articles in various publications and training materials for the U.S. Air Force, and has authored several training videos on a wide variety of IT security topics. He is also a regular security article contributor for several online IT sites.

He has a Bachelor of Science degree in Computer Information Systems from Excelsior College, and two Associates in Applied Science degrees from the Community College of the Air Force. Bobbys professional IT certifications include: A+, Security+, ACP, CCNA, CCAI, CIW, CIWSA, MCP+I, MCSA (Windows 2000 & 2003), MCSE (Windows NT4, 2000, & 2003), MCSE: Security (Windows 2000 & 2003), CISSP, CHFI, CIFI, CPTS, and CEH.


ix

CONTENTS AT A GLANCE

1 Networking 101 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1

2 TCP/IP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31

3 Network Media and Devices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69

4 Ethernet Fundamentals . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101

5 Switching: Moving Data Inside Your Network . . . . . . . . . . . . . . . . . . . . . . . . . . . 129

6 Routing Essentials and IP Addressing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 155

7 IP Address Subnetting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 191

8 Interfacing with Cisco Devices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 229

9 Cisco Switch Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 271

10 Cisco Router Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 315

11 WANs and WLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 363

12 Applications, Security, and Troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 403

A About the CD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 455

Glossary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 461

Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 495

xi

CONTENTS

Foreword . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xviiPreface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xixAcknowledgments . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxvIntroduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . xxvii

1 Networking 101 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1Network Essentials . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2

Network Definitions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2Network Topologies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5Network Categories . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8

The OSI Reference Model . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11Functions and Advantages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11The Layers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12Network Components . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17Protocol Data Units . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19

Two-Minute Drill . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23 Q&A Self Test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25

Self Test Answers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28

2 TCP/IP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31TCP/IP and OSI Reference Model Comparison . . . . . . . . . . . . . . . . . . . . . . . . . . 32

TCP/IP History . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32Comparing the Models . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33

Application Layer Functions and Protocols . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34DNS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34DHCP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37Other Protocols . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39Exercise 2-1: Viewing TCP/IP Protocols in Action . . . . . . . . 42

Transport Layer Functions and Protocols . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46TCP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47UDP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 50Port Numbers and Multiplexing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51

For more information about this title, click here

xii CCENT Cisco Certifi ed Entry Networking Technician Study Guide

Internet and Network Access Layer Functions and Protocols . . . . . . . . . . . 53IP and ICMP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54Network Access Layer Protocols . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 56



3 Network Media and Devices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69Network Media . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70

Media Terminology . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70Copper Cabling . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71Fiber Cabling . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77

Network Devices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79NICs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79Transceivers, Repeaters, and Hubs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80Bridges and Switches . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81Routers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85Security Devices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 87Putting It All Together . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 88



4 Ethernet Fundamentals . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101Ethernet History . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 102Ethernet Characteristics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 103

Frame Types and Addressing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 103Media Access . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107Data Flow . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 112

Ethernet Standards . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 116 Two-Minute Drill . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 121 Q&A Self Test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 122


5 Switching: Moving Data Inside Your Network . . . . . . . . . . . . . 129Switch Fundamentals . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 130

Physical Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 130Switch Initialization Functions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 133

Contents xiii

Duplex and Speed . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 136Switch Modes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 137

Switch Design Considerations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 139Switch Installation and Connections . . . . . . . . . . . . . . . . . . . . . . . . . . . . 139Looping and STP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 140VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 142



6 Routing Essentials and IP Addressing . . . . . . . . . . . . . . . . . . . . . . 155Routing Fundamentals . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 156

Routing Logic and Data Flow . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 157Routed and Routing Protocols . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 162

An Introduction to IP Addressing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 168IP Address Construction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 168IP Address Classes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 171IP Address Technologies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 174



7 IP Address Subnetting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 191Foundation Skills . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 192

Binary Math . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 192Boolean AND Operations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 197Exercise 7-1: Binary Math Skills . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 198

Subnet Essentials . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 199Subnet Definition and Construction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 200Subnet Mask Creation Steps . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 202

Subnet Masks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 206Decoding Subnet Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 206Applying Subnet Masks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 208Subnetting Tips . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 210Exercise 7-2: Decoding and Applying Subnet Information . . . 214



xiv CCENT Cisco Certifi ed Entry Networking Technician Study Guide

8 Interfacing with Cisco Devices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 229The IOS and Configuration Files . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 230

The Boot Process . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 230The Cisco IOS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 234Configuration Files . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 238Access Methods . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 241Exercise 8-1: Router Connection

MethodsHyperTerminal and Telnet . . . . . . . . . . . . . . . . . . . . . . . . 244The CLI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 249

CLI Modes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 249CLI Help Features . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 252Exercise 8-2: Basic CLI Usage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 257Comparing the Router and Switch CLI . . . . . . . . . . . . . . . . . . . . . . . . . 258



9 Cisco Switch Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 271About Cisco Switches . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 272

Models . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 272Physical Characteristics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 274

Initial Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 275Using the System Configuration Dialog . . . . . . . . . . . . . . . . . . . . . . . . . 276Basic Configuration Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 278

Securing the Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 281Passwords . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 282exec-timeout . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 285Exercise 9-1: Basic Switch Configuration . . . . . . . . . . . . . . . . . . . . 285Configuring SSH . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 287Exercise 9-2: SSH Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 289

Interface Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 290VLAN1 and the Switch IP Address . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 291Speed, Duplex, and Descriptions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 292VLAN Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 294Exercise 9-3: Interface and VLAN Configuration . . . . . . . . . . 297Port Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 299

Contents xv



10 Cisco Router Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 315First Steps . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 316

About Cisco Routers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 316Physical Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 321

Configuration Fundamentals . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 324Initial Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 325Exercise 10-1: Basic Router Configuration . . . . . . . . . . . . . . . . . . 327Configure Routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 329Exercise 10-2: Static Route Configuration . . . . . . . . . . . . . . . . . . 333Dynamic Routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 334

Routing Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 336Configuring RIPv2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 337Exercise 10-3: Configuring RIP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 341Configuring an Internet Access Router . . . . . . . . . . . . . . . . . . . . . . . . . . 342



11 WANs and WLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 363Wide Area Networking . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 364

WAN Fundamentals . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 365Point-to-Point Technologies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 368Packet Switched Technologies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 371Remote Access Technologies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 374WAN Configuration Extras . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 378

Wireless Networking . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 380Fundamentals . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 380Installing Wireless Networks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 384Wireless Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 386



xvi CCENT Cisco Certifi ed Entry Networking Technician Study Guide

12 Applications, Security, and Troubleshooting . . . . . . . . . . . . . . . 403Application Fundamentals . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 404

Application Needs and Quality . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 404telnet (SSH) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 407Exercise 12-1: telnet Sessions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 409

Network Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 410Threats and Attacks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 410Mitigations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 414

Troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 417Troubleshooting Basics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 418Host Troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 423Switch and Router Troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 426Exercise 12-2: Using CDP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 430



A About the CD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 455System Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 456Installing and Running the Boson NetSim LE and BEE . . . . . . . . . . . . . . . . . 456

Boson NetSim LE . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 456BEE and Practice Exams . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 457

Electronic Book . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 458CertCams . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 458Help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 458Removal Installation(s) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 459Book Technical Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 459Boson Software Technical Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 459

Glossary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 461

Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 495

xvii

FOREWORD

From Boson SoftwareThe Cisco CCENT certification requires that you learn and master a number of skills. As you read this book, incorporating Boson NetSim into your learning process will help you successfully complete the CCENT certification. The Boson NetSim Limited Edition (LE) included with this book will get you started on your way, and additional capability from the full edition is available after purchasing an upgrade.

Boson NetSim will help you with the practical hands-on portion of your education, and it ensures that you not only understand the concepts of routing and switching but that you can actually configure and implement routing and switching on Cisco devices. Once you feel you have mastered both the theory and the practical labs, you can test your knowledge using the exams included with this book and the CD. You may also purchase ExSim-Max practice exams from Boson, available at http://www.boson.com. ExSim-Max is the most realistic practice exam on the market with questions that are well-written, technically accurate, and completely representative of those on the actual exam. With ExSim-Max, you can be sure you are ready to pass the real exam.

Boson NetSim is the most advanced network simulator on the market for learning how to configure a Cisco router and Catalyst switch. Boson NetSim will not only help you become CCENT certified, it will actually help you learn and understand how to configure routers, switches, and networks.

The Boson NetSim LE can be upgraded to the full edition for CCENT at any time at http://www.boson.com/mcgrawhill (with a valid activation code from your qualifying McGraw-Hill book). Upgrading enables all other Boson NetSim labs, commands, telnet, and advanced features. Dont forget to complete your study with ExSim-Max practice exams. Thank you very much, and best wishes in your future studies!

Boson Softwarehttp://www.boson.com


xix

PREFACE

Of course, the primary focus of our book is to help you achieve the Cisco Certified Entry-level Network Technician certificationbut theres more to it than that. Weve provided all the background and technical knowledge in this book that youll need to be successful on the exam, as well as a few exercises and hands-on projects to increase your odds. Hopefully, though, well also succeed in two other, secondary but just as important, goals.

First, after reading through this wed be happy to see you emboldened with confidence. Yes, we whole-heartedly believe, and would like to make sure you know, YOU CAN DO IT! Sure, certifications are hardtheyre supposed to be; if they were easy, everyone would do itbut this isnt something youre not capable of. This book was written in the same manner we learned the informationin a simple, easy and, yes, fun fashion. Look at it this way: If a couple of yahoos from Alabama, with four kids and two full-time jobs, can figure this stuff out, you should do just fine.

Secondly, after all is said and done, we sure hope you dont stop. CCENT is a great certification, but its not the end-all be-all. Instead, it should be a great beginning for you. After you passand you know you willfollow it up with personal practice, hands-on experience, and study. Put into play what youve been studying for all this time and prove you know it. Then, of course, start on your next certificationthe CCNA.

After youve completed the CCENT certification by passing the Interconnecting Cisco Network Devices (ICND) v1 640-822 exam, youll be (literally) halfway to a CCNA certification. The ICNDv2 640-816 exam covers the second half of the CCNA body of knowledge and is more Cisco IOS configuration-, and device-, centric. An excellent resource for studying for part 2 is the Cisco Certified Network Associate (CCNA) Study Guide (McGraw-Hill) by Richard Deal.

In This BookThis book covers all the exam objectives posted on Ciscos web site concerning the CCNA 640-822 exam. Each chapter explores one or more of the main objectives in this list. Youll also find much repetition from chapter to chapter since some objectives are covered across multiple chapters. The Introduction offers a breakdown of Ciscos objectives and which chapter of this book covers each objective.


xx CCENT Cisco Certifi ed Entry Networking Technician Study Guide

In Every ChapterEach chapter has several components designed to effectively communicate the information youll need for the exam:

Every chapter begins with the Certification Objectives. These identify the major topics within each section on the exam, dealing with the chapter topic. Using these objective headings will help you keep track of where you are with your studies.

Practice Exercises, step-by-step exercises providing hands-on experience, are found in chapters with configuration objectives. While some chapters require only knowledge and comprehension levels, other objectives require you to know how a specific configuration option is entered into the switch or router. These practice exercises are designed to reinforce the chapter verbiage and provide insight into the skills that are likely to be an area of focus on the exam. The information covered in these exercises is not simply for reading purposesyoull be required to perform configuration on a variety of scenario and simulation questions on the exam. Dont fail to prepare for them by simply reading over the practice exercisespractice them and be very, very comfortable with their focus. These exercises will always work with the simulator product, produced by Boson and provided with this book, but they can be used anywhere. Practice as much as you can with the simulator and with real equipment, should you have the opportunity.

On the Job entries are found throughout all the chapters and are designed to point out information and tips that will be helpful both in your day-to-day responsibilities and in studying for the exam. Please note that while these notes provide insights, tips, and otherwise interesting tidbits of information, they are also sometimes used to reinforce testable material. Dont dismiss them as simply neatsome of the mistakes and real-world issues described in these notes may prove the difference in correctly answering a question or two on the exam!

Exam Watch notes highlight specific information within the section on which to focus your studies. Do not rely on them totally, but be sure to read over them before the exam.

An Inside the Exam entry is provided at the end of each chapter and basically summarizes the important aspects of the chapter in regards to the exam. Tips and tricks mentioned in this section will definitely help you understand what to expect on the test.

Remember the benefi ts and disadvantages of static routing, and commit Table 6-2 to memory.

Preface xxi

The Two-Minute Drill is a full summary of the chapter, condensed and organized for quick last-minute review.

The Self Test section at the end of each chapter offers questions similar to those found on the certification exams. Answers and explanations of both correct and incorrect choices are provided to assist in understanding the material.

Some PointersThis may seem strange to say, since we wrote this book and hope everyone in the networking arena gets a copy, but well say it anyway: First and foremost, do not rely on this book alone to pass your CCENT exam. Theres not a book on the planet that, by itself, will fully prepare you for the test. Read this book, using the pointers we provide here to guide your study, but never forget to practice, practice, practice. The benefit of hands-on real-world experience in preparing you for the exam is immeasurable. This book is, we humbly feel, a great guide to follow in preparing for the exam, but youll definitely need plenty of practice outside its pages to succeed. Once you finish reading this book, be sure to do a thorough review of everything:

1. Reread all the Two-Minute Drills. These will serve as an excellent cram session just before the exam.

2. Reread all the Exam Watch notes. Knowing the information to satisfy each knowledge objective is one thing, but its only part of the battle. To be truly successful, youll need to know what to expect on the exam itself. Reading the Exam Watch notes will give you insights into how the information will be presented on the exam, and what to expect. If you know this upfront, you wont be surprised on the exam, and your confidence will contribute to your success.

3. Retake the Self Test sections at the back of each chapter. Immediately after reading the chapter, give the accompanying Self Test a shot. Then, after youre done with the entire book, go back and take each Self Test again. Facing all the questions at one time is very similar to the exam itself, and will help with your study. Please note that simply memorizing these questions and answers will NOT help you on the exam. The Self Test questions are similar to what youll see, but theyre not exact replicas.

4. Use the Exam Test Engine on the CD. The test engine, provided by Boson Software on the CD accompanying this book, provides plenty of questions to prepare you for the exam. You can choose to quiz yourself on all questions, much like the exam itself, or target your study by focusing on a single category.

Q&A

xxii CCENT Cisco Certifi ed Entry Networking Technician Study Guide

Categories roughly match the chapter outline of the book, to help mark your progression. Additionally, you can also purchase extra tests from Boson Software at their web site (www.boson.com).

5. Do all the Practice Exercises in each of the chapters. You will be required to perform configuration and troubleshooting on simulators during the exam. While CCENT doesnt go overboard with these, youll definitely need to be familiar with all the configuration commands and steps included in this text. Use the exercises in the book to reinforce concepts and prepare for the exam. Additionally, feel free to experiment on your ownespecially if you have access to equipment. Interject problems to working environments and note various troubleshooting techniques you can use to fix the problem. The configuration of devices is a big part of the exam, but troubleshooting and examining configuration files for errors will play a large role in your success or failure.

6. There may be some simulation questions on the CCENT exam. In simulation questions, youll be required to perform basic configuration and troubleshooting tasks on a Cisco router and/or switch. Therefore, it is important that you have good configuration skills. Use the Practice Exercises to hone your configuration skills! You may come across a simulation scenario presenting a flawed configuration on the exam. The more you practice with the exercises and Bosons NetSim, the easier it will be to spot these configuration errors right off the bat.

Practice Exams and the SimulatorHands-on practice and real-world experience are essential in your preparation for the exam. The practice exercises and simulator built for this book are designed with exactly that in mindgiving you hands-on experience and an opportunity to practice to your hearts delight. The network provided in the simulator should allow you ample opportunity to see all the command and configuration options in action. The network is displayed in Figure 1, with addressing for all exercises spelled out in Figure 2.

This network provides every configuration option covered in the book. As you go through the practice exercises, refer to Figures 1 and 2 to see how your configuration should be applied. Additionally, dont just rely on the exercises, as written, for your study. Feel free to create your own configurations on each device. Use all the show and debug commands you want to see the IOS in action. Finally, after configuring the network to function, purposely change configuration options to see the results. Using the practice exercises and your own creativity on this network will greatly increase your odds of passing the exam.

Preface xxiii

FIGURE 1

A simulator network for practice exercises

PC-1

PC-2

PC-4

PC-3

FastEthernet

FastEthernet

FastEthernet

FastEthernet

FastEthernetFast

Ethernet

Serial Point-to-Point(T-line or Direct-

Connected in a Lab)Fast

Ethernet

2960-2 Switch

2960-3Switch

2800-1Router

2960-4Switch

2800-2Router

2960-1Switch

FIGURE 2

Addressing for the network topology used for the practice exercises

PC-1

FastEthernet

PC-3

PC-2 PC-4

FastEthernet

2800-1

2960-3192.168.1.3/24

2800-22960-2

2960-1192.168.1.2/24

2960-4192.168.2.2/24

FA0/1FA0/1

FA0/3FA0/2

FA0/2FA0/3

FA0/1

FA0/3

FA0/0: 192.168.1.1/24S1/0: 172.16.0.1/24 (DCE)

FA0/0: 192.168.2.1/24S1/0: 172.16.0.254/24 (DTE)

FA0/1

FA0/3

FA0/2FA0/2

192.168.1.4/24

IP: 192.168.1.11Mask: 255.255.255.0Gateway: 192.168.1.1

MAC: 00-00-11-AA-BB-CC

IP: 192.168.2.10Mask: 255.255.255.0Gateway: 192.168.3.1


IP: 192.168.1.10Mask: 255.255.255.0Gateway: 192.168.1.1


IP: 192.168.2.11Mask: 255.255.255.0Gateway: 192.168.3.1


xxv

ACKNOWLEDGMENTS

We would like to thank the following people: This book would not have been possible without the support of Dynetics, Inc., and Matts supervisor, Paul Clark. Pauls willingness to helpno matter what was asked nor whenwas critical throughout this entire process. Balancing work, family, and writing is a tough business, and without the willingness displayed by Dynetics to support the effort, we never would have finished.

A special thanks to Bobby Rogers for providing excellent technical insight on editing this book. Bobbys acerbic wit and his attention to details we simply didnt think about proved vital to the success of this project.

The team at McGraw-Hill (Jennifer Housh, Tim Green, Vasundhara Sawhney, and Jody McKenzie) is due several toasts at the local establishment of their choice. The unbelievable patience and support they displayed throughout every stage of this process was nothing short of amazing. Its been an honor and a privilege to work with such an outstanding, professional, and fun group of people.

Finally, there is no way this book could have ever even been started, much less completed, without a lot of understanding and patience from our children. Faith, Hope, Charity, and Christianthanks for putting up with us. All those nights of, Not right now, Daddys writing, are finally over! At least for now


xxvii

INTRODUCTION

How to Take a Cisco Certification ExaminationThis introduction offers a host of information on your CCENT certification and prepares you for taking the actual examination. In this section, youll find a brief overview of Ciscos certification program, and some guidelines on methods of preparing and studying for the exam, including what to expect on the exam itself and some simple things you can do on test day to increase your chances of passing.

Ciscos Certification ProgramCisco now has a number of certifications, ranging from entry level (CCENT) and advanced routing and switching (CCIE) to network security, wireless, and VoIP. Cisco recommends a variety of classes as training for these individual certifications, but they are not mandatoryall one need do to hold the certification is pass the appropriate test(s). With the right experience, study materials, and a good work ethic, youll pass any Cisco exam without necessarily attending the recommended course.

Cisco is constantly changing and updating their certification requirements. For more information about Cisco certifications and exams, visit Cisco on the Web at www.cisco.com/web/learning/index.html.

Ciscos web site is a veritable gold mine of information regarding your certifi cation. Not only will you be referring to it for certifi cation tracking purposes after your exam, but you can also fi nd plenty of information to help you achieve the certifi cation in the

fi rst place. In addition to the objectives being tested for each exam, you will fi nd exam-specifi c information, sample test questions, information on becoming certifi ed, demonstration tutorial videos, and the latest news on Cisco certifi cation.


xxviii CCENT Cisco Certifi ed Entry Networking Technician Study Guide

Computer-Based TestingI know youd probably prefer to be told that a certification exam actually tests your skills in a real-world hands-on environment, but unfortunately this just isnt true. Imagine trying to ensure that a stable, secured, unchanging network is available at every test center, worldwide, for candidates attempting a certification. It simply couldnt besuch logistics would preclude anyone from ever offering a certificationespecially those as far reaching as Ciscos certifications. To get around this, Cisco (and most vendors, for that matter) relies on a computer-based testing service, operated by Pearson Vue. Pearson Vue provides a secured testing environment in a number of facilities around the world (theres probably a Pearson Vue test center in your own town).

Tests on a Vue system are relatively straightforward and are similar from vendor to vendor. Cisco is unique in that they do not make use of the adaptive testing format (thank goodness). Cisco instead relies on a more traditional format, simply providing test questions in a random order and scoring participants according to their success or failure on each question. However, there is another characteristic of a Cisco test you will not find on any other vendor: Cisco does not allow you to mark a question for further review. In other words, whether you answer the question or not, once you press the Next button to move on, you are no longer allowed to view that question.

Each test consists of a random set of questions pulled from an enormous pool of them. During the beta testing of the exam, Cisco will compile and refine a huge amount of questions for this pool. Thus, when you receive your test, it simply retrieves a unique combination of these questions to test your ability. Some are

I cannot stress this point enough: You are not allowed to skip questions and return to them later on a Cisco exam! Most test-takers will tell you a good strategy on any exam is to skip the questions you dont know and return to them later since many times

a question later in the exam will provide insight into those you dont know. On a Cisco test, though, if you skip it, you miss it. Sometimes you may need to pass one over for time purposes. Just keep in mind that once its gone, youll never see it again!

Introduction xxix

straightforward multiple-choice questions, while others are based on a simulator (forcing you to use your hands-on experience as well as your book knowledge).

Cisco exams are also timedlasting usually 75 to 90 minutes, depending on the number of questions and the particular test. The time you have remaining for your specific exam will be displayed in a small box on the corner of the computer screen. If your time elapses, the exam will be scored based on what you have answered up to that point (of course, all unanswered questions will be counted as incorrect answers).

Lastly, the scoring of the test, and the feedback youll receive after an attempt, warrant some discussion. As soon as the exam is over, your score will be calculated and displayed onscreen for your review. It will also be passed on electronically to Cisco, for tracking purposes. Whether you pass or fail, youll receive a printed report from the test administrator, showing your overall score and a score for each objective the exam covered. Unfortunately, you will not receive a list of the questions you marked incorrectly.

Question TypesCisco uses many different question formats in their exams, most of which should be covered here in this section. While youll find a brief overview of what to expect here, your best resource on any particular exam is to talk things over with other test-takers. No, it wont do you much good to ask exactly whats on the exam, since each is different, but you can get an idea of what types of questions to expect. Check with Ciscos web site for something called the Cisco Network Professionals Connection. Between this and other forums on the site, you can get a good idea of what the CCENT exam makeup will be like.

True/FalseOh, I know what youre thinking. I can sense it a mile away, and although I dont like the idea of shattering your hopes on anything, anywhere, I am going to shut the door on this one. The simple 50-percent-chance classic true-or-false question will not be found anywhere on a Cisco exam. This is not to say that Cisco doesnt employ true or false logic on their testsin fact, youll find quite a few questions like thisjust that Cisco will test your ability to determine a true or false statement or scenario using a multiple-choice question format. An example would be, Choose the true (or false) statements from the following.

xxx CCENT Cisco Certifi ed Entry Networking Technician Study Guide

Multiple ChoiceMultiple choice is the primary format for questions in Cisco exams. These questions may be posed in a variety of ways; however, no matter which way the question is presented, one tip will always apply on these questions: ALWAYS read the question very, very carefully. Sometimes you may understand the intent of the question perfectly, and know well what the answer is, only to wind up missing it because of a technicality. For example, if the question asks you to choose two answers, choose two ONLY.

Choose the Correct Answer Celebrate every time you receive one of these multiple-choice questions on the exam. This is the classic format, requiring you to choose one correct option from the four or five presented. In addition to the wording Choose the Correct Answer, indicating a single response, these single-answer questions will display Windows radio buttonsallowing only a single response to be entered. One final tip: If the question states, Select the best answer, its also a single-answer multiple-choice question.

Choose X Correct Answers This type of multiple-choice question appears differently than the single-choice version listed earlier. On these, the question will ask you to choose X number of options, where X will be a number from 2 to (sometimes) 4. Instead of the radio buttons used before, youll find checkboxes used for marking answers. Its very important to keep in mind that these questions are all-or-nothing: All the correct answers must be selected, otherwise the entire question is marked as incorrect. Additionally, the testing software prevents too many answers from being selected; if the question asks for two responses, you cannot choose three.

Choose All that Apply Easily the most difficult, and unfortunately relatively common, multiple-choice question youll see on the exam, the choosing-all-that-apply type lets the candidate choose as many, or as few, answers as they wish. Since you dont know how many answers the exam expects, you are at a distinct disadvantage. Its important to note on these questions that they, too, are all or nothing enterprises: If too few, or too many, answers are given, you will miss the question.

Freeform ResponseYou should not see any freeform response type questions on the CCENT exam. However, Cisco has surprised us from time to time on other issues, so you should at least know what to expect should they slip one in on you. A freeform response

Introduction xxxi

question provides no choices (or help) at all. You are simply given a scenario with an empty text box and asked which command to enter. You must then type the command, precisely as it should be, into the freeform textbox provided.

Obviously this is challenging and is the reason this type of question usually isnt found on entry-level certifications. If you see one, however, be sure to type the entire command indo not use a truncated version that would work just fine on a real router.

ExhibitsWhile not actually a test question type in and of themselves, exhibits are a big part of the exam, and you should know about them upfront. Youll find exhibits used constantly throughout your exam, with several questions sometimes referring to a single exhibit. These diagrams and pictures will normally appear in a separate window, which you can enlarge or minimize as you see fit, using a button on the screen.

ScenariosScenario questions generally consist of one to two short paragraphs that describe a specific circumstance, network, or event, requiring you to pick the correct choice from a variety of answers. Additionally, you may sometimes find several questions referring to a single scenario (sometimes referred to as a testlet question). On any scenario question, pay close attention to the wording of the problem (if troubleshooting) and apply simple logic. Oftentimes, reading the question first, and then returning to the scenario, proves a useful practice in navigating the exam.

SimulationsSimulation questions require you to enter a basic configuration on a Cisco switch or router, given a specific set of instructions and settings required. Youll need to know how to access the device, navigate through the various IOS modes, enter commands, and save configurations. Additionally, sometimes these simulators have existing configurations with built-in errors that require you to troubleshoot and fix the problem. The context-sensitive help functions within the IOS are supposed to be available for you within the simulator, but dont be surprised if it does not work exactly as youd see it on a live router. For example, the simulator may force you to type certain commands completely, while allowing TAB and auto-complete on others.

xxxii CCENT Cisco Certifi ed Entry Networking Technician Study Guide

An important note here with this style of question is your ability to manipulate the simulator itself. In other words, knowing what configuration to enter does you no good if you cannot figure out how to enter the commands into the simulator in the first place. Before the exam begins, you will be presented with a screen asking if youd like to become familiar with the simulator before the exam starts. Do not skip this. It does not affect your time for the exam and ensures you wont be wasting valuable time during it figuring out how the simulator works. Additionally, for a demonstration of what the simulator is like, you can also visit www.cisco.com and browse to the certification section to find the demo. This example is very similar, but not exactly the same, as the simulator you would see on the real exam.

Studying TechniquesWhen Im asked, How do I study for a Cisco exam?, my first response seems almost out of place: To effectively study for the exam, first schedule the exam. Youre probably thinking thats lunacy, but trust me, its the only way. Once your exam is scheduled, youll have a deadline and will be forced into studying for it. I cant count the number of times Ive heard students say they were planning on scheduling the exam, after Ive had time to study for it, only to greet me months later with the same excuse. Let me assure you, soon-to-be fellow Cisco networking professional, youll never think youre ready for it without some kind of deadline to push you. Sure, take some time to read this book (and encourage everyone you know to pick up a copy and do the same) and practice on your own, but schedule the exam as soon as you can. After reading through this book, schedule your exam no more than a month out. Spend that time studying, using the tips provided here, then just go knock it out!

There are a million study tips out there, and just as many people willing to give them to you. Our suggestions are pretty simple, straightforward, and easy: Make the best use of your time available and practice, practice, practice. Time scheduling, for focused study, is the easy part30 minutes of focused study time a day should do it. Any more than 30 minutes a day will, most likely, burn you outany less and youre just not willing to work for this.

Additionally, youll be amazed at how easy it is to study during times when youd least expect it. The principle is known as stealing time, and works very simply: While youre accomplishing one task, make use of the slack time to work on another. For example, create an audio tape (or CD) of yourself asking questions and providing answers. Pop this into your vehicle on the drive to work and voil, youve just added some free study time. Want another example? How about creating a cheat

Introduction xxxiii

sheet, or a few flash cards, to keep handy in your jacket or wallet? While waiting for your lunch, sitting in the airport, or taking a break from work, bring it out and take a quick peek. There are a thousand ways to do this, but the point is simple: You can find ways to study during your day-to-day activities if you really look for them.

Secondly, practice, practice, and practice some more. Experiment with both live equipment (if available) and the simulator provided with this book. Just memorizing facts and commands might, might, be enough to make it through a single exam, but its certainly not going to be enough in the real world. Your best bet, on both the exam and your job, is to not only know the what but the how and why. The best way to do this is to apply what youve read in this book on a system. Try commands out. Set up configurations that work, and then break them. Throw in weird configurations a college guy might try on Saturday night after the big game (and a celebratory adult beverage or two). Of course theres a little humor here, but you get the point: The more you see the configuration, commands, and traffic in use, the better youll know how they work and why you need them.

One last note on studying deals with the dark side of the network certification world. A wide variety of study guides and braindumps are available on the Internet. Many of these are legitimate vendors wishing to provide helpful insight on making you a better network professional. Others are charlatans, hoping to take your money at any cost (pardon the pun). Do not rely on a single study guide or braindump downloaded from the Internet. I can promise you, its NOT a copy of the Cisco exam and will do more harm than good to your studying. If you do find a practice test or study guide on the Internet, verify the answers through your own research. Simply memorizing test questions, from any resource, will NOT result in a passing score.

Scheduling Your ExamYou can schedule any Cisco exam by calling Pearson Vue, or visiting their online registration web site at www.vue.com (if calling outside the United States, go to Vues web site to find your local number). Exams can be scheduled up to a year in advance, and can be rescheduled with 24 hours notice. If you miss your test date/time, or fail to provide appropriate notice, you will lose your test fee.

Payment for the exam is due upon registration with Vue and is accepted through a variety of means, credit cards being the most convenient. Vue e-mails a receipt and confirmation of your testing date, which typically arrives the same day you schedule the exam. If you need to cancel or reschedule an exam, remember to call at least one day before your exam, otherwise youll lose your test fee.

xxxiv CCENT Cisco Certifi ed Entry Networking Technician Study Guide

If this is the first time youve ever attempted a Cisco exam, Vue will provide a unique number for testing with Cisco. Be sure to keep this number handy and use it for every Cisco test for which you register. Additionally, address information provided when you first register is also used by Cisco to ship certificates and other related material, so make sure you get it right! You will also be required to give a valid e-mail address when registering. If you do not have an e-mail address that works, you will not be able to schedule the exam. Once you are registered, you will receive an e-mail notice containing your registration information for your scheduled exam. Examine it closely to make sure its correct.

Arriving at the ExamYou should always arrive early for your exam, giving yourself time to relax and review last-minute key facts. While waiting for your exam, take the time to review notes, read over the Exam Watch sections of this book, and look over any cheat sheets and practice cards you have handy. Generally speaking, so long as a computer system is available, you can start your test any time before your scheduled test time. So, after your last-minute cram session, when youre ready, you can begin.

Be sure to bring two sets of identification with you to the testing center. Acceptable forms include government-issued IDs (for example, a passport or drivers license) and credit cards. One form of ID must include a photograph. After the identification, though, you wont need anything else. In fact, testing centers do not allow you to take anything else with you into the exam area: no books, papers, notepads, PDAs, cell phones, nothing.

The test administrator will, however, provide you with a paper and pencil, or a small erasable marker board. These are to let you write notes and perform calculations during the exam. A helpful tip, though, is to hurriedly jot down any last-minute tidbits you looked at just before the exam, as soon as the administrator allows you to write. In other words, you can download everything in your brain directly to the paper or marker board before your exam ever starts. Just remember thats the only material youll have to write on during the test, so leave a little room! Youll have to return the paper (marker board) to the administrator immediately upon completion of the test.

In the exam room, the exam administrator logs you in to your exam, and you have to verify that your name and exam number are correct. If this is the first time youve taken a Cisco test, you can select a brief tutorial for the exam software (which we mentioned before, and you should not skip). Additionally, youll be asked to take a survey before the exam. This does NOT count against your time, so take advantage of it and write down your notes during this survey.

Introduction xxxv

Before the test begins, you will be provided with facts about the exam, including the duration, the number of questions, and the score required for passing. Once you click Begin Test, the clock starts ticking. The test will appear full screen, with a single question per screen. Navigation buttons allow you to move forward to the next question but, as discussed earlier, not back. The time countdown will appear in the corner and a variety of buttons may be available depending on the question asked (a Display Exhibit button, for example). Periodically check to ensure youre budgeting your time wisely. Remember, once you pass over a question, it is scored immediately (you cannot return to it). Nevertheless, you dont want to waste too much time on any one test question.

Generally speaking, youll receive between 55 and 65 questions and will need to get at least 8285% of them correct. Cisco does not provide specifics on either the number of questions, or the passing percentile, so youll never really know until the exam is finished.

The Grand FinaleAs soon as your exam is completed, it will be graded automatically. The actual real time that elapses between when you press Score Exam and when the results appear on the screen is just under ten seconds. In your mind, it will most likely seem like an eternity. The result of your exam is displayed showing the minimum passing score, your score, and a PASS/FAIL indicator. With some Cisco tests, the actual score isnt displayed on the screen, only on the printed version of your test results.

If youre curious, you can review the statistics of your score at this time. Normally, though, candidates are either so elated they cant sit still or too dejected to bother looking at the screen. Keep in mind, whether you pass or fail, Cisco does not show you the individual questions answered right or wrong. Instead, youll get a generic list, showing categories and your results within each one. This is also provided on the report thats automatically printed at the exam administrators desk.

Keep your results in a safe place and check back with Ciscos web site over the next 48 hours to make sure your results are posted. After some time (a week or so), youll receive a folder in the mail from Cisco containing your official certificate and other goodies.

RetestingIf you dont pass the exam, dont worry about it. Certification tests are, by design, very difficult and the vast majority of people who take them fail the first time.

xxxvi CCENT Cisco Certifi ed Entry Networking Technician Study Guide

Simply jot down those things you remember and go into the next attempt a little more educated on format and content. Additionally, the score report will help guide your study efforts, showing those areas you were weakest in.

Cisco makes you wait five business days before you can sign up for another exam. During this time, continue with the study tips from before, but focus on those areas that need the most attention. When youre ready, contact Vue and schedule another exam. You can track your current certification status by going to www.cisco.com/go/certifications/login. Youll need to use your Cisco testing ID number to log in.

Introduction xxxvii

CCENT 640-822

Exam Readiness Checklist

Beg

inne

r

Inte

rmed

iate

Adv

ance

d

Official Objective Study Guide Coverage Ch#

Describe the operation of data networks

Describe the purpose and functions of various network devices

Network EssentialsNetwork DevicesSwitch FundamentalsRouting FundamentalsWireless Networking

125611

Select the components required to meet a given network specification

Network EssentialsAbout Cisco SwitchesRouting Fundamentals

196

Use the OSI and TCP/IP models and their associated protocols to explain how data flows in a network

OSI Reference ModelTCP/IP and OSI Reference Model ComparisonNetwork Devices

1

22

Describe common networking applications, including web applications

Application Layer Functions and ProtocolsApplication Fundamentals

212

Describe the purpose and basic operation of the protocols in the OSI and TCP models

Application Layer Functions and ProtocolsTransport Layer Functions and ProtocolsInternet and Network Access Layer Functions and Protocols

2

2

2

Describe the impact of applications (Voice over IP and Video over IP) on a network

Application Fundamentals 12

Interpret network diagrams Network Devices 3

xxxviii CCENT Cisco Certifi ed Entry Networking Technician Study Guide


Beg

inne

r

Inte

rmed

iate

Adv

ance

d


Determine the path between two hosts across a network

TCP/IP and OSI Reference Model ComparisonApplication Layer Functions and ProtocolsTransport Layer Functions and ProtocolsInternet and Network Access Layer Functions and ProtocolsNetwork Devices

2

2

2

23

Describe the components required for network and Internet communications

Network EssentialsTCP/IP and OSI Reference Model ComparisonNetwork DevicesWAN FundamentalsWireless Networking

1

231111

Identify and correct common network problems at layers 1, 2, 3, and 7 using a layered model approach

OSI Reference ModelTCP/IP and OSI Reference Model ComparisonTroubleshooting

1

212

Differentiate between LAN/WAN operation and features

Network EssentialsWAN Fundamentals

111

Implement a small switched network

Select the appropriate media, cables, ports, and connectors to connect switches to other network devices and hosts

Physical MediaNetwork DevicesSwitch Fundamentals

335

Explain the technology and media access control method for Ethernet technologies

Ethernet CharacteristicsEthernet Standards

44

Explain network segmentation and basic traffic management concepts

Switch FundamentalsSwitch Design ConsiderationsRouting Fundamentals

556

Explain the operation of Cisco switches and basic switching concepts

Switch FundamentalsInitial ConfigurationAbout Cisco Switches

599

Introduction xxxix


Beg

inne

r

Inte

rmed

iate

Adv

ance

d


Perform, save, and verify initial switch configuration tasks, including remote access management

The IOS and Configuration FilesThe CLIInitial ConfigurationSecuring the Configuration

8899

Verify network status and switch operation using basic utilities (including ping, traceroute, telnet, SSH, arp, ipconfig), SHOW, and DEBUG commands

The IOS and Configuration FilesThe CLISecuring the ConfigurationFirst StepsTroubleshooting

8891012

Implement and verify basic security for a switch (port security, deactivate ports)

Initial ConfigurationSecuring the ConfigurationInterface Configuration

999

Identify, prescribe, and resolve common switched network media issues, configuration issues, autonegotiation, and switch hardware failures

Initial ConfigurationSecuring the ConfigurationInterface ConfigurationTroubleshooting

99912

Implement an IP addressing scheme and IP services to meet network requirements for a small branch office

Describe the need and role of addressing in a network

Routing FundamentalsIntroduction to IP AddressingSubnet Tasks Subnet Essentials

6677

Create and apply an addressing scheme to a network

Routing FundamentalsIntroduction to IP AddressingSubnet Tasks Subnet Essentials

6677

Assign and verify valid IP addresses to hosts, servers, and networking devices in a LAN environment

Subnet EssentialsSubnet Tasks

77

Explain the basic uses and operation of NAT in a small network connecting to one ISP

WAN FundamentalsRouting Configuration

1110

xl CCENT Cisco Certifi ed Entry Networking Technician Study Guide


Beg

inne

r

Inte

rmed

iate

Adv

ance

d


Describe and verify DNS operation Application Layer Functions and Protocols 2

Describe the operation and benefits of using private and public IP addressing

Introduction to IP AddressingSubnet Essentials

67

Enable NAT for a small network with a single ISP connection using SDM and verify operation using CLI and ping


1110

Configure, verify, and troubleshoot DHCP and DNS operation on a router (including CLI/SDM)


1110

Implement static and dynamic addressing services for hosts in a LAN environment

Application Layer Functions and ProtocolsIntroduction to IP AddressingWAN Fundamentals

2611

Identify and correct IP addressing issues Introduction to IP AddressingTroubleshooting

612

Implement a small routed network

Describe basic routing concepts (including packet forwarding and the router lookup process)

Introduction to IP AddressingRouting FundamentalsRouting ConfigurationSubnet Tasks

61077

Describe the operation of Cisco routers (including router bootup process, POST, and router components)

Routing FundamentalsFirst StepsConfiguration FundamentalsRouting ConfigurationWAN Fundamentals

610101011

Select the appropriate media, cables, ports, and connectors to connect routers to other network devices and hosts

Network EssentialsPhysical MediaNetwork DevicesConfiguration FundamentalsRouting ConfigurationWireless Networking

133101011

Introduction xli


Beg

inne

r

Inte

rmed

iate

Adv

ance

d


Configure, verify, and troubleshoot RIPv2 Routing Configuration 10

Access and utilize the router CLI to set basic parameters

The IOS and Configuration FilesFirst StepsConfiguration Fundamentals

81010

Connect, configure, and verify the operation status of a device interface

Routing ConfigurationTroubleshooting

1012

Verify device configuration and network connectivity using ping, traceroute, telnet, SSH, or other utilities


8891012

Perform and verify routing configuration tasks for a static or default route given specific routing requirements

Routing FundamentalsConfiguration FundamentalsRouting ConfigurationWAN Fundamentals

6101011

Manage IOS configuration files (including save, edit, upgrade, and restore)

The IOS and Configuration FilesThe CLI

88

Manage Cisco IOS The IOS and Configuration FilesThe CLI

88

Implement password and physical security The IOS and Configuration FilesThe CLISecuring the Configuration

889

Verify network status and router operation using basic utilities (including ping, traceroute, telnet, SSH, arp, ipconfig), and the SHOW and DEBUG commands


8891012

Explain and select the appropriate administrative tasks required for a WLAN

Describe standards associated with wireless media (including IEEE WI-FI Alliance and ITU/FCC)

Ethernet StandardsWireless Networking

411

xlii CCENT Cisco Certifi ed Entry Networking Technician Study Guide


Beg

inne

r

Inte

rmed

iate

Adv

ance

d


Identify and describe the purpose of the components in a small wireless network (including SSID, BSS, and ESS)

Wireless Networking 11

Identify the basic parameters to configure on a wireless network to ensure that devices connect to the correct access point


Compare and contrast the wireless security features and capabilities of WPA security (including open, WEP, and WPA-1/2)


Identify common issues with implementing wireless networks


Identify security threats to a network and describe general methods to mitigate those threats

Explain todays increasing network security threats and the need to implement a comprehensive security policy to mitigate those threats

Network DevicesNetwork Security

312

Explain general methods to mitigate common security threats to network devices, hosts, and applications


312

Describe the functions of common security appliances and applications


312

Describe security recommended practices, including initial steps to secure network devices

Network DevicesSwitch Design ConsiderationsInitial ConfigurationSecuring the ConfigurationFirst StepsConfiguration FundamentalsNetwork Security

3599101012

Introduction xliii


Beg

inne

r

Inte

rmed

iate

Adv

ance

d


Implement and verify WAN links

Describe different methods for connecting to a WAN

WAN Fundamentals 11

Configure and verify a basic WAN serial connection

Configuration FundamentalsRouting ConfigurationWAN Fundamentals

101011

1Networking 101

CERTIFICATION OBJECTIVES

1.01 Network Essentials

1.02 The OSI Reference Model

Two-Minute DrillQ&A Self Test


2 Chapter 1: Networking 101

You cannot begin learning any aspect of technology or industry without first mastering the basics. This chapter covers the building blocks youll need to be successful in the rest of your study. The first half explores some basic terminology and definitions, what networks look and act like, and the components that make up the network, while the second halfthrough an examination of the OSI Reference Modellooks at how data is treated as it moves through your network. A thorough understanding of this chapter should provide a great bedrock upon which to build the rest of your study!

CERTIFICATION OBJECTIVE 1.01

Network EssentialsAny text on networking should begin by defining what, exactly, a network is. In its simplest terms, a network is a collection of systems and devices exchanging data over some form of media. The systems provide an interface for users to easily share, store, and access a variety of data, the network devices provide a means to control and regulate the traffic between the systems, while the media provides a pathway for the data to travel across. It sounds simple (and it really is), but it can get complicated in a hurry. Lets keep it simple and start with the definitions and terminology youll need to know.

Network Defi nitionsThe world of networking has more than its share of terminology and jargon. In this section, well introduce some terms and concepts youll need to be familiar with as you move forward. Well cover things in a logical order, hitting terms that range from what makes up a network and how data is transmitted on the wire, to how far the network reaches.

When thinking about what components make up a network, most observers pick the obviousthe devices they can see or touch. As youll see, theres more to it than that. A network is first made up of hosts. A host is defined as any device that holds a logical address on your network. Most commonly, this address is an Internet Protocol (IP) address, which well cover later in the book. Hosts can be workstations, servers, printers, connection devices, or routers. Apprentice network technicians generally do a good job keeping track of the computers and printers on the network, but

Network Essentials 3

sometimes forget to include the connection devices and routers in their overall address plan. Its important to remember that, even though you do not necessarily interact with them daily (as you would a workstation or server), switches and routers need attention, too.

The next major term commonly left out in a discussion of networking is the information itself. After all, what would a network be without data to transmit? Information transmitted across a network can include voice, video, or data (text, presentations, pictures, and so on). Each of these requires special attention and functionality to traverse the network correctly. While we cover actual data types and terms later in this chapter, keep in mind that networking isnt just data anymore. Modern networks are charged with delivering our phone calls and, soon, our television and entertainment options. Datano matter what its formis transmitted in the form of bits. A single bit is a 1 or a 0 (based on the binary number system of two digits versus the typically used decimal numbering system based on the digits 09). An arrangement of eight bits in a specific order is known as a byte. Bits can also be arranged to signify a hex digit. Hex digits are always four bits in length and are expressed to the human eye as the numerals and alpha characters 09 or AF. Depending on the specific combination of bits, bytes, and hex digits received, a host will respond accordingly. Some bit streams, for example, tell the host, A message is coming and it is intended for you. Please process the information contained inside.

After the hosts and connection devices are in place, you need something for the data to travel on between them. Transmission media is the physical pathway over which the data travels. A wide variety of media choices are available in networking and can b

CCENT Cisco Certified Entry Networking Technician Study Guide (Exam 640-822) (Study Guide Book & CD)

Documents

Transcript of CCENT Cisco Certified Entry Networking Technician Study Guide (Exam 640-822) (Study Guide Book & CD)