CCNA Security, Automation, and Protocols Flashcards
Cisco CCNA 200-301 Flashcards
| Front | Back |
| Automation tool commonly used with Cisco devices? | Ansible |
| Command to enable BPDU Guard on an interface? | spanning-tree bpduguard enable |
| Command to enable DHCP Snooping on a switch? | ip dhcp snooping |
| Command to enable HTTPS access to a device? | ip http secure-server |
| Command to enable IPv6 on a router? | ipv6 enable |
| Command to generate cryptographic keys for SSH? | crypto key generate rsa |
| Command to verify SSH version? | show ip ssh |
| Command to view NAT statistics? | show ip nat statistics |
| Default administrative distance of EIGRP? | 90 |
| Default administrative distance of OSPF? | 110 |
| Default Dead interval for OSPF? | 40 seconds |
| Default Hello interval for OSPF? | 10 seconds |
| Default port for SNMP? | Port 161 |
| Difference between standard and extended ACLs? | Standard ACLs filter by source IP; extended ACLs filter by source/destination and protocol |
| Key difference between RADIUS and TACACS+? | RADIUS combines authentication and authorization; TACACS+ separates them |
| Primary difference between IPv4 and IPv6 addressing? | IPv6 uses 128-bit addresses; IPv4 uses 32-bit addresses |
| Primary purpose of 802.11 standards? | Wireless LAN communications |
| Primary purpose of 802.1X? | Port-based access control |
| Protocol that encrypts web traffic? | HTTPS |
| Protocol that prevents switching loops? | Spanning Tree Protocol (STP) |
| Protocol that replaces Telnet for secure remote management? | SSH |
| Protocol to prevent rogue DHCP servers? | DHCP Snooping |
| Protocol used for network automation? | RESTCONF or NETCONF |
| Protocol used for securing communication between devices? | IPSec |
| Protocol used to synchronize device clocks? | NTP (Network Time Protocol) |
| Purpose of a wildcard mask in ACLs? | Specifies IP ranges for filtering |
| Purpose of HSRP? | Provides gateway redundancy |
| Purpose of PortFast in STP? | Allows a port to bypass listening/learning states |
| Role of a Next-Hop in routing? | Indicates where to send a packet next |
| Role of TACACS+ in a network? | Centralized authentication and authorization |
| Tools for multi-device automation workflows? | Python or Ansible |
| What does AAA stand for in network security? | Authentication, Authorization, Accounting |
| What does PoE stand for? | Power over Ethernet |
| What does SNMP stand for? | Simple Network Management Protocol |
| What is a BPDU? | Bridge Protocol Data Unit |
| What is a virtual LAN (VLAN) trunking protocol? | 802.1Q |
| What is RSTP? | Rapid Spanning Tree Protocol |
| What is the primary purpose of EIGRP? | Internal gateway routing |
| What port does HTTPS use? | Port 443 |
| What protocol does SYSLOG use? | UDP (usually on port 514) |
About the Flashcards
Flashcards for the Cisco CCNA exam reinforce essential networking knowledge, from Layer 2 switching control to Layer 3 routing decisions. Review how STP prevents loops, compare OSPF and EIGRP metrics and administrative distances, and recall HSRP, VLAN trunking, and DHCP Snooping features that keep campus networks stable and resilient.
Security and management concepts are equally covered, including AAA models, RADIUS vs TACACS+, IPSec, HTTPS, SSH key generation, SNMP, SYSLOG, and 802.1X port-based access control. Practical CLI commands, NAT verification, IPv6 enablement, NTP synchronization, and modern automation tools like RESTCONF, NETCONF, and Ansible help you translate theory into real device configuration.
Topics covered in this flashcard deck:
- Switching and STP concepts
- OSPF and EIGRP routing
- AAA RADIUS TACACS+
- IPv4 IPv6 NAT
- RESTCONF NETCONF Ansible