Unlock hundreds more features
Save your Quiz to the Dashboard
View and Export Results
Use AI to Create Quizzes and Analyse Results

Sign inSign in with Facebook
Sign inSign in with Google

Free CCNA Practice Exam: Challenge Your Networking Skills

Ready for a CCNA router configuration quiz? Tackle IP addressing and security protocols now!

Difficulty: Moderate
2-5mins
Learning OutcomesCheat Sheet
Paper art scene showing a router with network nodes and shield icons on sky blue background for CCNA practice exam quiz

This Free CCNA Practice Exam helps you check your skills in router configuration, IP addressing/subnetting, and core security protocols through realistic questions. Use it to spot gaps before the exam; if you want a shorter set, try the quick quiz .

Which OSI layer is responsible for routing packets across networks?
Data Link
Transport
Network
Physical
The Network layer (Layer 3) handles logical addressing and path determination for packet forwarding. Routers operate at this layer to route packets between different networks. It also manages IP addressing and traffic control. .
What is the default subnet mask for a Class C IPv4 network?
255.0.0.0
255.255.255.0
255.255.255.252
255.255.0.0
Class C networks use a default subnet mask of 255.255.255.0, which allows for 256 IP addresses and 254 usable hosts. This mask dedicates 24 bits to the network portion and 8 bits to hosts. It is commonly used for small to medium-sized LANs. .
Which Cisco IOS command displays a brief summary of all interfaces and their IP addresses?
show ip interface brief
show version
show interfaces
show ip route
The 'show ip interface brief' command provides a concise list of interfaces, their IP addresses, and status. It's widely used for quickly verifying interface configurations. The output includes interface name, IP address, OK status, method, and status. .
Which of the following IPv4 addresses is private?
8.8.8.8
1.1.1.1
192.168.10.1
172.32.0.1
The address 192.168.10.1 falls within the private IPv4 range 192.168.0.0/16. Private addresses are not routable on the public Internet. They are used for internal networks and require NAT for Internet access. .
Which protocol provides secure encrypted remote access to network devices?
SSH
FTP
Telnet
HTTP
SSH (Secure Shell) encrypts all session traffic, which prevents eavesdropping and tampering. It replaces Telnet for secure CLI access to network devices. SSH uses TCP port 22 by default. .
Which device primarily operates at the Data Link layer of the OSI model?
Switch
Hub
Server
Router
Switches operate at Layer 2 (Data Link) to forward frames based on MAC addresses. They learn MAC addresses on each port to build a CAM table. This allows for efficient traffic segmentation within a LAN. .
What is the purpose of the ARP protocol in an IPv4 network?
Encapsulate data for transport
Provide secure remote access
Resolve DNS names to IP addresses
Resolve IP addresses to MAC addresses
ARP (Address Resolution Protocol) maps IPv4 addresses to MAC addresses within a local network. It uses broadcast requests and unicast replies. This mapping is essential for frame delivery at Layer 2. .
Which type of cable is traditionally used to connect two Cisco switches directly?
Rollover
Straight-through
Crossover
Console
A crossover cable swaps transmit and receive pairs, allowing like devices (switch-to-switch) to communicate without an uplink port. Modern switches often support Auto-MDIX, but crossover is the traditional method. .
What is the role of a default gateway in a local network?
Route traffic to other networks
Translate private IPs to public IPs
Perform DNS lookups
Filter inbound packets
A default gateway routes traffic from a host to destinations outside its local subnet. It is typically the IP address of a router interface. Without it, hosts cannot communicate with external networks. .
Which TCP port number is used by HTTP?
443
21
22
80
HTTP uses TCP port 80 for unencrypted web traffic. HTTPS uses port 443 for encrypted sessions. Port numbers help route requests to the correct application on a server. .
Which protocol typically uses UDP as its transport layer?
HTTP
SMTP
SSH
DNS
DNS primarily uses UDP port 53 for name resolution queries to minimize overhead. It falls back to TCP for larger responses or zone transfers. UDP's connectionless nature reduces latency for simple queries. .
How many usable host addresses are in a /30 subnet?
6
2
8
4
A /30 mask (255.255.255.252) provides 4 IPs: network, broadcast, and 2 usable hosts. It's often used for point-to-point links. The small host count conserves addressing space. .
What does VLAN stand for?
Validated Local Area Network
Validated LAN Access Node
Virtual Link Aggregation Node
Virtual Local Area Network
VLAN stands for Virtual Local Area Network, which segments a physical switch into multiple logical networks. Each VLAN has its own broadcast domain. VLANs improve security and traffic management. .
Which command saves the running configuration to NVRAM on a Cisco router?
write memory
save config
store config
copy running-config startup-config
The command 'copy running-config startup-config' writes the current in-memory configuration to NVRAM for persistent storage. This ensures settings persist after a reboot. 'write memory' is an older alias on some IOS versions. .
Which IP address class does 10.0.0.1 belong to?
Class D
Class A
Class B
Class C
10.0.0.1 is in the Class A private range (10.0.0.0/8). Class A addresses span 1.0.0.0 - 127.255.255.255. The first octet (10) identifies it as Class A. .
Which statement best describes a broadcast address in IPv4?
Network and host bits both zero
First host address in the subnet
All host bits set to 1
All host bits set to 0
An IPv4 broadcast address has all host bits set to 1, reaching all devices in the subnet. For example, in 192.168.1.0/24, 192.168.1.255 is the broadcast. Hosts listen for packets addressed this way. .
Which command enters privileged EXEC mode on a Cisco device?
configure terminal
privilege
enable
exec
The 'enable' command elevates a user from user EXEC mode to privileged EXEC mode, granting access to all show and debug commands. It may prompt for a password. It's the standard method on Cisco IOS. .
Which routing protocol uses the Diffusing Update Algorithm (DUAL)?
EIGRP
RIP
OSPF
BGP
EIGRP uses DUAL to provide loop-free and efficient routing. DUAL calculates the best path and backup paths before using them. It ensures fast convergence. .
What is the administrative distance of OSPF in Cisco routers?
120
110
100
90
OSPF has an administrative distance of 110, which ranks its trustworthiness relative to other protocols. Lower AD values are preferred. BGP external is 20, RIP is 120. .
Which OSPF network type will form an adjacency with all neighbors on a multiaccess network?
Point-to-Point
Point-to-Multipoint
Broadcast
Non-Broadcast
OSPF Broadcast network type discovers neighbors via multicast on Ethernet and forms adjacencies through DR/BDR election. It supports multiple routers on the same segment. Other types behave differently. .
Which command enables RIPv2 on a Cisco router?
router rip enable version2
router rip v2
router rip version 2
router rip mode 2
The configuration 'router rip' followed by 'version 2' in router config mode enables RIPv2. This sets the protocol to send classless updates. RIPv1 is classful by default. .
Which IPv6 address type starts with 'FE80::'?
Multicast
Global Unicast
Link-Local
Unique Local
Link-local IPv6 addresses begin with FE80::/10 and are used for local segment communication only. They are automatically assigned. Routers do not forward these addresses. .
In ACLs, what does the 'permit 10.0.0.0 0.255.255.255 any' statement allow?
All traffic from 10.0.0.0/8 to any destination
Only ICMP from any source to 10.0.0.0/8
All traffic to network 10.0.0.0/8
Only HTTP from 10.0.0.0/8
The ACL wildcard mask 0.255.255.255 matches network 10.0.0.0/8, permitting any traffic from that network to any destination. Wildcards invert mask bits. 'any' denotes all destinations. .
Which spanning-tree port state discards frames and learns MAC addresses but does not forward?
Listening
Forwarding
Learning
Blocking
In the Learning state, a switch port learns MAC addresses but does not forward frames. This helps populate the MAC table before forwarding. Blocking and Listening do not learn addresses. .
Which NAT type translates multiple private IPs to a single public IP with different ports?
NAT Overload
Static NAT
NAT Pool
Dynamic NAT
NAT Overload (PAT) maps multiple private addresses to one public IP using unique ports. It conserves public IPs. Dynamic NAT uses a pool but no port translation. .
Which command displays OSPF neighbor relationships on a Cisco router?
show ospf interface
show ip ospf database
show ip protocols
show ip ospf neighbors
The 'show ip ospf neighbors' command lists OSPF neighbors and their state. It helps verify adjacency formation. It shows neighbor ID, address, state, and timers. .
What is the purpose of HSRP in Cisco networks?
Encrypt routing updates
Dynamic routing protocol
High availability for default gateway
Load balancing across equal-cost paths
HSRP (Hot Standby Router Protocol) provides a virtual default gateway for hosts, ensuring high availability. One router is active and another in standby. It uses a virtual IP and MAC address. .
Which DHCP message type does a client send to find available DHCP servers?
DHCPDISCOVER
DHCPREQUEST
DHCPACK
DHCPOFFER
A DHCP client broadcasts a DHCPDISCOVER to locate DHCP servers on the network. Servers respond with DHCPOFFER messages. This initiates the four-step DHCP leasing process. .
Which command disables automatic route summarization in EIGRP?
no auto-advertise
no summary-address
eigrp summary disable
no auto-summary
In EIGRP router configuration mode, 'no auto-summary' disables automatic summarization of networks at major network boundaries. This ensures classless behavior. It prevents unintended routing issues. .
In OSPF, what is the router ID used for?
Calculating metric costs
Forming adjacencies
Electing the DR
Identifying the router in LSAs
The OSPF router ID uniquely identifies each router in LSAs and database interactions. It is chosen from the highest IP address on a loopback or active interface. It remains constant for the process lifecycle. .
Which BGP attribute is used to prefer a specific path?
AS_PATH
LOCAL_PREF
MED
NEXT_HOP
The LOCAL_PREF attribute is used within an AS to prefer one path over another. Higher local preference is preferred. It is propagated to all internal BGP neighbors. .
In QoS, what does the term 'policing' refer to?
Classifying traffic by DSCP
Reshaping traffic bursts with buffers
Dropping excess packets beyond a rate
Encrypting sensitive data
Policing enforces a maximum rate by dropping or remarking packets that exceed the defined bandwidth. Unlike shaping, it does not buffer excess traffic. It's used for strict rate enforcement. .
Which mechanism provides redundancy by sharing MAC addresses between two switches?
VRRP
GLBP
HSRP
PAgP
GLBP (Gateway Load Balancing Protocol) allows multiple routers to share a virtual MAC address and provide load balancing and redundancy. Clients use different virtual MACs for forwarding. .
In MPLS, what is the purpose of an LDP?
Distribute routing information
Encrypt MPLS packets
Perform QoS classification
Signaling for label distribution
Label Distribution Protocol (LDP) distributes labels between MPLS-enabled routers. It builds label-switched paths (LSPs) for forwarding. LDP uses TCP for session establishment. .
Which encryption algorithm is used by default in IPsec ESP?
DES
RSA
MD5
AES
AES is the default encryption algorithm for IPsec ESP on modern Cisco devices due to its security and performance. Older implementations supported 3DES. AES provides confidentiality and is FIPS compliant. .
Which command verifies the active HSRP group on a Cisco router?
show ip hsrp
show hsrp status
show standby active
show standby brief
The 'show standby brief' command provides a concise view of HSRP groups and their states. It lists group numbers, state, virtual IP, and active/standby routers. .
In PPP, what is the function of LCP?
Encrypt data payload
Negotiate and maintain the link
Perform dynamic routing
Map IP addresses to physical addresses
LCP (Link Control Protocol) negotiates and establishes PPP link parameters such as authentication, compression, and MRU. It ensures link quality before network protocols start. .
Which feature in Cisco IOS prevents untrusted VLAN frames on trunk ports?
Native VLAN mismatch detection
Port Security
BPDU Guard
VTP Pruning
Native VLAN mismatch detection warns of VLAN mismatches on trunk ports by comparing native VLANs. It helps prevent VLAN hopping attacks. Other features serve different purposes. .
In EtherChannel, which protocol uses LACP to negotiate links?
UDLD
LACP
PAgP
STP
LACP (Link Aggregation Control Protocol) is IEEE 802.3ad and negotiates EtherChannel links between switches. It provides active/passive modes and link monitoring. PAgP is Cisco-proprietary. .
Which BGP state indicates a successful TCP connection establishment?
Connect
OpenSent
Active
Idle
After a TCP session is established between peers, BGP enters the OpenSent state to exchange Open messages. Once peers agree on parameters, it moves to OpenConfirm and then Established. .
In OSPF multi-area networks, which route type is summarized at area borders?
Type 1 LSAs
Type 2 LSAs
Type 5 LSAs
Type 3 LSAs
Type 3 LSAs (Summary LSAs) are generated by ABRs to summarize networks between OSPF areas. They contain network reachability without detailed link-state data. Type 5 LSAs carry external routes. .
Which TCP flag combination indicates the start of a three-way handshake?
SYN only
SYN, ACK
FIN, ACK
ACK only
The first packet in the TCP three-way handshake is sent with only the SYN flag set. The server replies with SYN+ACK, and the client concludes with ACK. This establishes a reliable session. .
Which feature enables seamless Layer 2 adjacency across data centers in Cisco ACI?
VXLAN Flood and Learn
OSPF Graceful Restart
LISP
BFD
LISP (Locator/ID Separation Protocol) in ACI overlays allows Layer 2 segments to span data centers without MAC flooding. It separates endpoint identity from location. VXLAN Flood and Learn is legacy. .
In MPLS TE, what is the purpose of RSVP-TE?
Encrypt TE tunnels
Traffic path signaling and reservation
Advertise TE topology only
Label distribution
RSVP-TE signals and reserves resources along explicit MPLS traffic-engineered paths. It ensures bandwidth guarantees and path durability. It extends RSVP with TE objects. .
Which technology uses control and data plane separation in modern Cisco architectures?
SDN
NFV
SD-WAN
MPLS
SDN (Software-Defined Networking) separates the control plane from the data plane, centralizing network intelligence in controllers. Cisco's ACI and onePK are examples. This improves programmability and automation. .
0
{"name":"Which OSI layer is responsible for routing packets across networks?", "url":"https://www.quiz-maker.com/QPREVIEW","txt":"Which OSI layer is responsible for routing packets across networks?, What is the default subnet mask for a Class C IPv4 network?, Which Cisco IOS command displays a brief summary of all interfaces and their IP addresses?","img":"https://www.quiz-maker.com/3012/images/ogquiz.png"}

Study Outcomes

  1. Understand CCNA Exam Fundamentals -

    By completing this free CCNA practice exam, you will be able to identify key networking principles and terminology covered in CCNA certification quiz questions.

  2. Analyze and Configure Routers -

    Practice real-world router configuration scenarios to interpret commands, set up routing protocols, and optimize network performance effectively.

  3. Apply IP Addressing and Subnetting Techniques -

    Solve CCNA IP addressing quiz challenges to assign IP ranges accurately, calculate subnets, and manage network segments with precision.

  4. Troubleshoot Common Network Issues -

    Use diagnostic methods to pinpoint and resolve connectivity problems and misconfigurations, ensuring reliable network operations.

  5. Evaluate Network Security Protocols -

    Assess and select appropriate security measures and protocols to protect network infrastructure against threats and vulnerabilities.

Cheat Sheet

  1. IP Subnetting and VLSM Mastery -

    Review variable length subnet masks (VLSM) to optimize IP allocation by practicing binary-to-decimal conversion with the doubling trick (2^n). For example, split a /24 network into two /25 subnets (255.255.255.128) and map host ranges. This skill is a staple of CCNA practice exam scenarios drawn from Cisco's official documentation.

  2. OSI and TCP/IP Model Layers -

    Memorize the seven OSI layers with the mnemonic "All People Seem To Need Data Processing" and map them to the four-tier TCP/IP stack. Understand key functions - like segmentation at Layer 4 (Transport) - and relate each layer to real protocols (e.g., HTTP at Layer 7). University of Colorado's networking lab exercises reinforce how this model underpins CCNA certification quiz questions.

  3. Routing Protocol Characteristics -

    Compare metrics used by OSPF (cost based on bandwidth from RFC 2328) and EIGRP (composite metric including bandwidth and delay). Practice designing area-backed OSPF topologies and tuning EIGRP hello timers for faster convergence. Cisco's Learning Network articles often feature CCNA router configuration quiz examples on this topic.

  4. Cisco CLI and Configuration Modes -

    Master the transition from user EXEC (>) to privileged EXEC (#) and global configuration mode (config-terminal) to apply settings. Run "show running-config" to verify changes and save with "copy running-config startup-config." Hands-on labs from official Cisco courses simulate the CCNA practice test environment.

  5. Basic Security Protocols and ACLs -

    Always use SSH instead of Telnet for encrypted management sessions, referencing RFC 4251 for secure shell protocols. Create standard and extended access control lists (ACLs) to filter traffic by IP or protocol - e.g., "access-list 100 permit tcp any host 192.168.1.1 eq 22." Industry whitepapers from IEEE outline ACL best practices mirrored in CCNA IP addressing quiz items.

Powered by: Quiz Maker