• Have any questions?
  • info.zbook.org@gmail.com

Ccna 200 301 Book Volume 2 Pdf - Uploads.strikinglycdn

3m ago
70 Views
12 Downloads
1.06 MB
24 Pages
Last View : 1d ago
Last Download : 1d ago
Upload by : Abram Andresen
Share:
Transcription

Continue

Ccna 200 301 book volume 2 pdfCCNA 200-301 Official Cert Guide, Volume 2Wendell Odom, Best-selling Cisco Press author, expert trainer, and Cisco Certified Internetwork Expert (CCIE No. 1624) Best-selling Cisco Press author, expert trainer, and Cisco Certified Internetwork Expert (CCIE No. 1624) productFormatCode C32 productCategory 2statusCode 5 isBuyable true subType path/ProductBean/courseSmarttrue ISBN-10: 1587147130 ISBN-13: 978158714713597815871471359780135262733 2020 Cisco Press Cloth Bound with Access Card, 624 pp Published 12/22/2019 Out of Stock Net price: 44.99? prodCategory : 2 statusCode : 5CCNA 200301 Official Cert Guide enables students to succeed on the exam the first time and is the only self-study resource approved by Cisco.Best-selling author and expert instructor Wendell Odom shares preparation hints and test-taking tips, helping students identify areas of weakness and improve both conceptual knowledge andhands-on skills.Well regarded for its level of detail, study plans, assessment features, challenging review questions and exercises, video instruction, and hands-on labs, this official study guide helps students master the concepts and techniques that ensure exam success. FeaturesRevised edition of the #1 selling CCNApreparation self-study guideBook content is fully updated to align to the new CCNA 200-301 exam objectivesBooks and online materials are packed with features to help candidates master difficult testing methods on actual examsPractice tests contain scenario-based questions that closely mimic the difficulty of the actualexamIn-depth expert explanations of all protocols, commands, and technologies on the CCNA examOnline ancillary materials such as lecture slides, instructor's notes, and test bank reinforce concepts discussed in this text Table of Contents Part I IP Access Control Lists 1 Introduction to TCP/IP Transport and Applications 2Basic IPv4 Access Control Lists 3 Advanced IPv4 Access Control Lists Part II Security Services 4 Security Architectures 5 Securing Network Devices 6 Implementing Switch Port Security 7 Implementing DHCP 8 DHCP Snooping and ARP Inspection Part III IP Services 9 Device Management Protocols 10 Network AddressTranslation 11 Quality of Service (QoS) 12 Miscellaneous IP Services Part IV Network Architecture 13 LAN Architecture 14 WAN Architecture 15 Cloud Architecture Part V Network Automation 16 Introduction to Controller-Based Networking 17 Cisco Software-Defined Access (SDA) 18 Understanding REST and JSON 19Understanding Ansible, Puppet, and Chef Part VI Final Review 20 Final Review Part VII Appendixes Appendix A Numeric Reference Tables Appendix B CCNA 200-301 Volume 2 Exam Updates Appendix C Answers to the "Do I Know This Already?" Quizzes Glossary Wendell Odom, CCIE No. 1624 Emeritus, has been inthe networking industry since 1981. He has worked as a network engineer, consultant, systems engineer, instructor, and course developer; he currently works writing and creating certification study tools. This book is his 29th edition of some product for Pearson, and he is the author of all editions of the CCNA Cert Guidesabout Routing and Switching from Cisco Press. He has written books about topics from networking basics, certification guides throughout the years for CCENT, CCNA R&S, CCNA DC, CCNP ROUTE, CCNP QoS, and CCIE R&S. He maintains study tools, links to his blogs, and other resources at www.certskills.com.CCNA 200-301 Official Cert Guide enables students to succeed on the exam the first time and is the only self-study resource approved by Cisco.Best-selling author and expert instructor Wendell Odom shares preparation hints and test-taking tips, helping students identify areas of weakness and improve both conceptualknowledge and hands-on skills.Well regarded for its level of detail, study plans, assessment features, challenging review questions and exercises, video instruction, and hands-on labs, this official study guide helps students master the concepts and techniques that ensure exam success. Revised edition of the #1 sellingCCNA preparation self-study guide Book content is fully updated to align to the new CCNA 200-301 exam objectives Books and online materials are packed with features to help candidates master difficult testing methods on actual exams Practice tests contain scenario-based questions that closely mimic the difficulty of theactual exam In-depth expert explanations of all protocols, commands, and technologies on the CCNA exam Online ancillary materials such as lecture slides, instructor's notes, and test bank reinforce concepts discussed in this text Assessment, review, and practice for the CCNA 200-301 exam Revised edition of the #1selling CCNA preparation self-study guide Book content is fully updated to align to the new CCNA 200-301 exam objectives Books and online materials are packed with features to help candidates master difficult testing methods on actual exams Practice tests contain scenario-based questions that closely mimic the difficultyof the actual exam In-depth expert explanations of all protocols, commands, and technologies on the CCNA examCoursesCCNA 200-301 Official Cert Guide, Volume 2, (OASIS)OdomISBN-10: 0135262704 ISBN-13: 9780135262702 2020 Digital Access Code AvailableMore infoGive your students choices!PearsonChoices products are designed to give your students more value and flexibility by letting them choose from a variety of text and media formats to best match their learning style and their budget.Pearson Higher Education offers special pricing when you choose to package your text with other student resources. Ifyou're interested in creating a cost-saving package for your students, see the Packages tab.CCNA 200-301 Official Cert Guide, Volume 2OdomISBN-10: 0135262739 ISBN-13: 9780135262733 2020 ePub, 624 pp AvailableMore info Students, buy accessPearson eText for CCNA 200-301 Official Cert Guide, Volume 2-- Instant AccessOdomISBN-10: 0137459955 ISBN-13: 9780137459957 2020 Electronic Book Estimated Availability: 02/01/2021More infoThis product is a member of the following series. Click on the series name to see the full list of products in the series. Pearson Higher Education offers special pricing when youchoose to package your text with other student resources. If you're interested in creating a cost-saving package for your students contact your Pearson Higher Education representative. Nobody is smarter than you when it comes to reaching your students. You know how to convey knowledge in a way that is relevant andrelatable to your class. It's the reason you always get the best out of them. And when it comes to planning your curriculum, you know which course materials express the information in the way that’s most consistent with your teaching. That’s why we give you the option to personalize your course material using just thePearson content you select. Take only the most applicable parts of your favorite materials and combine them in any order you want. You can even integrate your own writing if you wish. It's fast, it's easy and fewer course materials help minimize costs for your students. For more r-education Or download our brochure (PDF). Explore our course catalogues and see how you can customize your own textbooks.Custom LibraryOur library is vast, and it's all at your fingertips. Create a custom book by selecting content from any of our course-specific collections.Here, you'll find chapters from Pearson titles, carefully-selected third-party content with copyright clearance, and pedagogy. Once you're satisfied with your customized book, you will have a print-on-demand book that can be purchased by students in the same way they purchase other course material.CustomPublicationsBrowse through our list of published titles. These books are examples of original manuscripts created in partnership with local Custom Field Editors. They have been authored by instructors at specific campuses, but are readily available for adoption.Pearson Learning Solutions offers a broad range of courses andcustom solutions for web-enhanced, blended and online learning. Our course content is developed by a team of respected subject matter experts and experienced eLearning instructional designers. All course content is designed around specific learning objectives. For more r-education/customizable-online-courseware Or download our brochure (PDF). REPORT THIS PDF Download CCNA 200-301 Official CERT Guide Volume 2 PDF for free from drive.google.com using the direct download link given below. CCNA 200-301 Official CERT GuideVolume 2 Trust the best-selling Official Cert Guide series from Cisco Press to help you learn, prepare, and practice for exam success. They are built with the objective of providing assessment, review, and practice to help ensure you are fully prepared for your Cisco Certified Network Associate certification exam. Downloadcomplete CCNA 200-301 Official CERT Guide Volume 2 pdf file or read online for free using link provided below. REPORT THISIf the download link of CCNA 200-301 Official CERT Guide Volume 2 PDF is not working or you feel any other problem with it, please REPORT IT by selecting the appropriate action such ascopyright material / promotion content / link is broken etc. If CCNA 200-301 Official CERT Guide Volume 2 is a copyright material we will not be providing its PDF or any source for downloading at any cost. Sorry to interruptCSS Error CCNA 200-301, Volume 2 Official Cert Guide In addition to the wealth of updated content,this new edition includes a series of free hands-on exercises to help you master several real-world configuration activities. These exercises can be performed on the CCNA 200-301 Network Simulator Lite, Volume 2 software included for free on the companion website that accompanies this book. This software, whichsimulates the experience of working on actual Cisco routers and switches, contains the following 13 free lab exercises, covering ACL topics in Part I: 1. ACL I 2. ACL II 3. ACL III 4. ACL IV 5. ACL V 6. ACL VI 7. ACL Analysis I 8. Named ACL I 9. Named ACL II 10. Named ACL III 11. Standard ACL Configuration Scenario 12.Extended ACL I Configuration Scenario 13. Extended ACL II Configuration Scenario If you are interested in exploring more hands-on labs and practice configuration and troubleshooting with more router and switch commands, go to www.pearsonitcertification.com/ networksimulator for demos and to review the latestproducts for sale. CCNA 200-301 Network Simulator Lite, Volume 2 system requirements: Windows system requirements (minimum): Mac system requirements (minimum): W indows 10 (32/64-bit), Windows 8.1 (32/64-bit), or Windows 7 (32/64-bit) macOS 10.15, 10.14, 10.13, 10.12, or 10.11 1 gigahertz (GHz) or faster32-bit (x86) or 64-bit (x64) processor Intel core Duo 1.83 GHz 512 MB RAM (1 GB recommended) 1 GB RAM (32-bit) or 2 GB RAM (64-bit) 1.5 GB hard disk space 1 6 GB available hard disk space (32-bit) or 20 GB (64-bit) 32-bit color depth at 1024 x 768 resolution D irectX 9 graphics device with WDDM 1.0 orhigher driver Adobe Acrobat Reader version 8 and above Adobe Acrobat Reader version 8 and above CCNA 200-301 Official Cert Guide, Volume 2 WENDELL ODOM, CCIE No. 1624 Emeritus Cisco Press ii CCNA 200-301 Official Cert Guide, Volume 2 CCNA 200-301 Official Cert Guide, Volume 2 Wendell OdomCopyright 2020 Pearson Education, Inc. Published by: Cisco Press All rights reserved. No part of this book may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying, recording, or by any information storage and retrieval system, without written permission from thepublisher, except for the inclusion of brief quotations in a review. ScoutAutomatedPrintCode Library of Congress Control Number: 2019949625 ISBN-13: 978-1-58714-713-5 ISBN-10: 1-58714-713-0 Warning and Disclaimer This book is designed to provide information about the Cisco CCNA 200-301 exam. Every effort hasbeen made to make this book as complete and as accurate as possible, but no warranty or fitness is implied. The information is provided on an “as is” basis. The authors, Cisco Press, and Cisco Systems, Inc. shall have neither liability nor responsibility to any person or entity with respect to any loss or damages arising fromthe information contained in this book or from the use of the discs or programs that may accompany it. The opinions expressed in this book belong to the author and are not necessarily those of Cisco Systems, Inc. Trademark Acknowledgments All terms mentioned in this book that are known to be trademarks or servicemarks have been appropriately capitalized. Cisco Press or Cisco Systems, Inc., cannot attest to the accuracy of this information. Use of a term in this book should not be regarded as affecting the validity of any trademark or service mark. Microsoft and/or its respective suppliers make no representations about the suitability ofthe information contained in the documents and related graphics published as part of the services for any purpose. All such documents and related graphics are provided “as is” without warranty of any kind. Microsoft and/ or its respective suppliers hereby disclaim all warranties and conditions with regard to this information,including all warranties and conditions of merchantability, whether express, implied or statutory, fitness for a particular purpose, title and non-infringement. In no event shall Microsoft and/or its respective suppliers be liable for any special, indirect or consequential damages or any damages whatsoever resulting from loss ofuse, data or profits, whether in an action of contract, negligence or other tortious action, arising out of or in connection with the use or performance of information available from the services. The documents and related graphics contained herein could include technical inaccuracies or typographical errors. Changes areperiodically added to the information herein. Microsoft and/or its respective suppliers may make improvements and/or changes in the product(s) and/or the program(s) described herein at any time. Partial screenshots may be viewed in full within the software version specified. Microsoft and Windows are registeredtrademarks of the Microsoft Corporation in the U.S.A. and other countries. Screenshots and icons reprinted with permission from the Microsoft Corporation. This book is not sponsored or endorsed by or affiliated with the Microsoft Corporation. iii Special Sales For information about buying this title in bulk quantities, or forspecial sales opportunities (which may include electronic versions; custom cover designs; and content particular to your business, training goals, marketing focus, or branding interests), please contact our corporate sales department at [email protected] or (800) 382-3419. For government sales inquiries, please contact[email protected] For questions about sales outside the U.S., please contact [email protected] Feedback Information At Cisco Press, our goal is to create in-depth technical books of the highest quality and value. Each book is crafted with care and precision, undergoing rigorous development that involves the unique expertiseof members from the professional technical community. Readers’ feedback is a natural continuation of this process. If you have any comments regarding how we could improve the quality of this book, or otherwise alter it to better suit your needs, you can contact us through email at [email protected] Please make sure toinclude the book title and ISBN in your message. We greatly appreciate your assistance. Editor-in-Chief: Mark Taub Technical Editor: Elan Beer Business Operation Manager, Cisco Press: Ronald Fligge Editorial Assistant: Cindy Teeters Director, ITP Product Management: Brett Bartow Cover Designer: Chuti PrasertsithManaging Editor: Sandra Schroeder Composition: Tricia Bronkella Development Editor: Christopher Cleveland Indexer: Ken Johnson Senior Project Editor: Tonya Simpson Proofreader: Debbie Williams Copy Editor: Chuck Hutchinson iv CCNA 200-301 Official Cert Guide, Volume 2 About the Author Wendell Odom, CCIENo. 1624 Emeritus, has been in the networking industry since 1981. He has worked as a network engineer, consultant, systems engineer, instructor, and course developer; he currently works writing and creating certification study tools. This book is his 29th edition of some product for Pearson, and he is the author of alleditions of the CCNA Cert Guides about Routing and Switching from Cisco Press. He has written books about topics from networking basics, certification guides throughout the years for CCENT, CCNA R&S, CCNA DC, CCNP ROUTE, CCNP QoS, and CCIE R&S. He maintains study tools, links to his blogs, and otherresources at www.certskills.com. v About the Contributing Author David Hucaby, CCIE No. 4594, CWNE No. 292, is a network engineer for University of Kentucky Healthcare. He has been authoring Cisco Press titles for 20 years, with a focus on wireless and LAN switching topics. David has bachelor of science and masterof science degrees in electrical engineering. He lives in Kentucky with his wife, Marci, and two daughters. About the Technical Reviewer Elan Beer, CCIE No. 1837, is a senior consultant and Cisco instructor specializing in data center architecture and multiprotocol network design. For the past 27 years, Elan has designednetworks and trained thousands of industry experts in data center architecture, routing, and switching. Elan has been instrumental in large-scale professional service efforts designing and troubleshooting internetworks, performing data center and network audits, and assisting clients with their short- and long-term designobjectives. Elan has a global perspective of network architectures via his international clientele. Elan has used his expertise to design and troubleshoot data centers and internetworks in Malaysia, North America, Europe, Australia, Africa, China, and the Middle East. Most recently, Elan has been focused on data centerdesign, configuration, and troubleshooting as well as service provider technologies. In 1993, Elan was among the first to obtain the Cisco Certified System Instructor (CCSI) certification, and in 1996, he was among the first to attain the Cisco System highest technical certification, the Cisco Certified Internetworking Expert.Since then, Elan has been involved in numerous large-scale data center and telecommunications networking projects worldwide. vi CCNA 200-301 Official Cert Guide, Volume 2 Acknowledgments Brett Bartow continues to be the backbone of the Cisco Press brand, guiding the entire author team through the big transition in2019–2020 with all the changes Cisco introduced to its certifications. Simply the best! Thanks for all you do, Brett! Dave Hucaby teamed up again to write this book, contributing one chapter here to go along with his four chapters in the CCNA Volume 1 book. It’s such a joy to review his work and see such polished materialfrom the first draft. It’s been a joy to work with such a consummate professional—thanks, Dave! Chris Cleveland developed the book—again—and made it much better—again—and did it with more juggling than ever before, I think. Five months, roughly 50 technology chapters and another 50 other book elements, andcountless online elements, all done with apparent ease. Kudos to Chris, yet again! I so look forward to reading Elan Beer’s tech edits of the chapters. That may seem strange to hear, but Elan has truly amazing technical editing skills. His insights range from the details of technology, to the mind of the new learner, to wordingand clarity, to holes in networking logic as compared to the wording, to tiny typos that impact the meaning. Thanks again Elan for improving the chapters so much! Tonya Simpson managed this book, along with the CCNA Volume 1 book, all in that same compressed timeframe again. As usual, on both projects, Tonya haskept the production processes rolling along and getting through the idiosyncrasies of the content. Thanks for shepherding the book through the wild again, Tonya! As always, thanks to the production team that works with Tonya. From fixing all my grammar and passive-voice sentences to pulling the design and layouttogether, they do it all; thanks for putting it all together and making it look easy. And Tonya got to juggle two books of mine at the same time (again)— thanks for managing the whole production process again. Mike Tanamachi, illustrator and mind reader, did a great job on the figures again. Mike came through again withsome beautiful finished products. Thanks again, Mike. I could not have made the timeline for this book without Chris Burns of Certskills Professional. Chris owns much of the PTP question support and administration process, works on the labs we put on my blog, and then catches anything I need to toss over my shoulder soI can focus on the books. Chris, you are the man! A special thank you to you readers who write in with suggestions and possible errors, and especially those of you who post online at the Cisco Learning Network and at my blog ( ). Without question, the comments I receive directly and overhear by participating at CLN madethis edition a better book. Thanks to my wonderful wife, Kris, who helps make this sometimes challenging work lifestyle a breeze. I love walking this journey with you, doll. Thanks to my daughter Hannah, who actually helped a bit with the book this summer before heading off to college (go Jackets!). And thanks to JesusChrist, Lord of everything in my life. vii Contents at a Glance Introduction xxvii Part I IP Access Control Lists Chapter 1 Introduction to TCP/IP Transport and Applications Chapter 2 Basic IPv4 Access Control Lists Chapter 3 Advanced IPv4 Access Control Lists Part I Review 3 24 44 64 Part II Security Services Chapter 4Security Architectures Chapter 5 Securing Network Devices Chapter 6 Implementing Switch Port Security Chapter 7 Implementing DHCP Chapter 8 DHCP Snooping and ARP Inspection Part II Review 67 68 86 106 122 144 168 Part III IP Services Chapter 9 Device Management Protocols Chapter 10 Network AddressTranslation Chapter 11 Quality of Service (QoS) Chapter 12 Miscellaneous IP Services Part III Review 171 172 202 226 254 284 Part IV Network Architecture Chapter 13 LAN Architecture Chapter 14 WAN Architecture Chapter 15 Cloud Architecture Part IV Review 287 288 302 328 352 Part V Network Automation 355Chapter 16 Introduction to Controller-Based Networking Chapter 17 Cisco Software-Defined Access (SDA) 382 356 4 viii CCNA 200-301 Official Cert Guide, Volume 2 Chapter 18 Understanding REST and JSON 406 Chapter 19 Understanding Ansible, Puppet, and Chef 428 Part V Review 444 Part VI Final Review 447Chapter 20 Final Review 448 Part VII Appendixes 467 Appendix A Numeric Reference Tables Appendix B CCNA 200-301, Volume 2 Exam Updates Appendix C Answers to the “Do I Know This Already?” Quizzes 469 476 478 Glossary 494 Index 530 Online Appendixes Appendix D Topics from Previous Editions Appendix EPractice for Chapter 2: Basic IPv4 Access Control Lists Appendix F Previous Edition ICND1 Chapter 35: Managing IOS Files Appendix G Exam Topics Cross-Reference ix Reader Services To access additional content for this book, simply register your product. To start the registration process, go towww.ciscopress.com/register and log in or create an account*. Enter the product ISBN 9781587147135 and click Submit. After the process is complete, you will find any available bonus content under Registered Products. *Be sure to check the box that you would like to hear from us to receive exclusive discounts on futureeditions of this product. x CCNA 200-301 Official Cert Guide, Volume 2 Icons Used in This Book Access Point PC Laptop Server IP Phone Router Switch Layer 3 Switch Hub Bridge Cable (Various) Serial Line Virtual Circuit Ethernet WAN SDN Controller Network Cloud vSwitch Cable Modem IPS ASA Wireless FirewallDSLAM Command Syntax Conventions The conventions used to present command syntax in this book are the same conventions used in the IOS Command Reference. The Command Reference describes these conventions as follows: Boldface indicates commands and keywords that are entered literally as shown. Inactual configuration examples and output (not general command syntax), boldface indicates commands that are manually input by the user (such as a show command). Italic indicates arguments for which you supply actual values. Vertical bars ( ) separate alternative, mutually exclusive elements. Square brackets ([ ])indicate an optional element. Braces ({ }) indicate a required choice. Braces within brackets ([{ }]) indicate a required choice within an optional element. xi Contents Introduction xxvii Part I IP Access Control Lists 3 Chapter 1 Introduction to TCP/IP Transport and Applications “Do I Know This Already?” Quiz FoundationTopics 4 4 6 TCP/IP Layer 4 Protocols: TCP and UDP Transmission Control Protocol 6 7 Multiplexing Using TCP Port Numbers 7 Popular TCP/IP Applications 10 Connection Establishment and Termination 12 Error Recovery and Reliability 13 Flow Control Using Windowing 15 User Datagram Protocol 16 TCP/IPApplications 16 Uniform Resource Identifiers 17 Finding the Web Server Using DNS Transferring Files with HTTP 18 20 How the Receiving Host Identifies the Correct Receiving Application 21 Chapter Review Chapter 2 22 Basic IPv4 Access Control Lists “Do I Know This Already?” Quiz Foundation Topics 24 24 26 IPv4Access Control List Basics 26 ACL Location and Direction 26 Matching Packets 27 Taking Action When a Match Occurs Types of IP ACLs 28 28 xii CCNA 200-301 Official Cert Guide, Volume 2 Standard Numbered IPv4 ACLs 29 List Logic with IP ACLs 29 Matching Logic and Command Syntax 31 Matching the Exact IPAddress 31 Matching a Subset of the Address with Wildcards 31 Binary Wildcard Masks 33 Finding the Right Wildcard Mask to Match a Subnet 33 Matching Any/All Addresses 34 Implementing Standard IP ACLs 34 Standard Numbered ACL Example 1 35 Standard Numbered ACL Example 2 36 Troubleshooting andVerification Tips 38 Practice Applying Standard IP ACLs 39 Practice Building access-list Commands 39 Reverse Engineering from ACL to Address Range 40 Chapter Review 41 Chapter 3 Advanced IPv4 Access Control Lists 44 “Do I Know This Already?” Quiz 44 Foundation Topics 46 Extended Numbered IP AccessControl Lists 46 Matching the Protocol, Source IP, and Destination IP 46 Matching TCP and UDP Port Numbers 48 Extended IP ACL Configuration 51 Extended IP Access Lists: Example 1 51 Extended IP Access Lists: Example 2 53 Practice Building access-list Commands 54 Named ACLs and ACL Editing 54 Named IPAccess Lists 54 Editing ACLs Using Sequence Numbers 56 Numbered ACL Configuration Versus Named ACL Configuration 58 ACL Implementation Considerations 59 Additional Reading on ACLs Chapter Review 61 Part I Review 64 60 xiii Part II Security Services 67 Chapter 4 Security Architectures 68 “Do I Know ThisAlready?” Quiz Foundation Topics 68 70 Security Terminology 70 Common Security Threats 72 Attacks That Spoof Addresses Denial-of-Service Attacks 72 73 Reflection and Amplification Attacks Man-in-the-Middle Attacks 76 Address Spoofing Attack Summary Reconnaissance Attacks 77 Buffer Overflow Attacks 78 75 77Malware 78 Human Vulnerabilities 79 Password Vulnerabilities 80 Password Alternatives 80 Controlling and Monitoring User Access 82 Developing a Security Program to Educate Users 83 Chapter Review 84 Chapter 5 Securing Network Devices 86 “Do I Know This Already?” Quiz 86 Foundation Topics 88 Securing IOSPasswords 88 Encrypting Older IOS Passwords with service password-encryption 89 Encoding the Enable Passwords with Hashes 90 Interactions Between Enable Password and Enable Secret Making the Enable Secret Truly Secret with a Hash Improved Hashes for Cisco’s Enable Secret Encoding the Passwords for LocalUsernames Controlling Password Attacks with ACLs 95 92 94 91 90 xiv CCNA 200-301 Official Cert Guide, Volume 2 Firewalls and Intrusion Prevention Systems Traditional Firewalls 95 96 Security Zones 97 Intrusion Prevention Systems (IPS) 99 Cisco Next-Generation Firewalls Cisco Next-Generation IPS 100 102 ChapterReview 103 Chapter 6 Implementing Switch Port Security 106 “Do I Know This Already?” Quiz 106 Foundation Topics 108 Port Security Concepts and Configuration 108 Configuring Port Security 109 Verifying Port Security 112 Port Security MAC Addresses 113 Port Security Violation Modes 114 Port Security ShutdownMode 115 Port Security Protect and Restrict Modes 117 Chapter Review 119 Chapter 7 Implementing DHCP 122 “Do I Know This Already?” Quiz 122 Foundation Topics 124 Dynamic Host Configuration Protocol 124 DHCP Concepts 125 Supporting DHCP for Remote Subnets with DHCP Relay 126 Information Stored atthe DHCP Server 128 Configuring DHCP Features on Routers and Switches Configuring DHCP Relay 130 Configuring a Switch as DHCP Client 130 Configuring a Router as DHCP Client 132 Identifying Host IPv4 Settings 133 Host Settings for IPv4 133 Host IP Settings on Windows 134 129 xv Host IP Settings on macOSHost IP Settings on Linux 136 138 Chapter Review 140 Chapter 8 DHCP Snooping and ARP Inspection 144 “Do I Know This Already?” Quiz 144 Foundation Topics 146 DHCP Snooping 146 DHCP Snooping Concepts 146 A Sample Attack: A Spurious DHCP Server 147 DHCP Snooping Logic 148 Filtering DISCOVERMessages Based on MAC Address Filtering Messages that Release IP Addresses 150 DHCP Snooping Configuration 152 Configuring DHCP Snooping on a Layer 2 Switch Limiting DHCP Message Rates 152 154 DHCP Snooping Configuration Summary 155 Dynamic ARP Inspection 156 DAI Concepts 156 Review ofNormal IP ARP 156 Gratuitous ARP as an Attack Vector Dyna

CCNA 200-301 Official Cert Guide enables students to succeed on the exam the first time and is the only self-study resource approved by Cisco.Best-selling author and expert instructor Wendell Odom shares preparation hints a