• Sinh viên khoa CNTT, Toán - Tin, Điện tử,.... Các trường Trung cấp - Cao đẳng - Đại học.
• Học sinh các trường THPT có định hướng theo đuổi lịnh vực Quản trị và An ninh mạng.
• Tất cả các đối tượng mong muốn có nghề nghiệp vững chắc trong lịnh vực Quản trị và An ninh mạng.

• Thiết kế, lắp đặt, bảo trì hạ tầng mạng tổng thể của cơ quan, doanh nghiệp.
• Am hiểu về các thiết bị mạng của Cisco và các thiết bị Non-Cisco. 
• Thi đạt chứng chỉ Quốc tế CCNA của Cisco. 

• Thời lượng: 135 giờ/4.5 tháng (3 giờ x 3 buổi/tuần)
• Học phí: 6.400.000đ/khóa

•  Điểm thi cuối khóa phải đạt từ 5đ trở lên.

• Chứng chỉ "Kỹ thuật viên Quản trị hạ tầng mạng - CCNA" của Trung Tâm Tin Học ĐH Khoa Học Tự Nhiên Tp.HCM

1. Operation of IP Data Networks

• Recognize the purpose and functions of various network devices such as routers, switches, bridges and hubs
• Select the components required to meet a given network specification
• Identify common applications and their impact on the network
• Describe the purpose and basic operation of the protocols in the OSI and TCP/IP models
• Predict the data flow between two hosts across a network
• Identify the appropriate media, cables, ports, and connectors to connect Cisco network devices to other network devices and hosts in a LAN

• Determine the technology and media access control method for Ethernet networks
• Identify basic switching concepts and the operation of Cisco switches
  • Collision Domains
  • Broadcast Domains
  • Ways to switch
  • Store
  • Forward
  • Cut through
  • CAM Table
• Configure and verify initial switch configuration including remote access management
  • hostname
  • mgmt ip address
  • ip default-gateway
  • local user and password
  • enable secret password
  • console and VTY logins
  • exec-timeout
  • service password encryption
  • copy run start
• Verify network status and switch operation using basic utilities such as
  • ping
  • telnet
  • SSH
• Describe how VLANs create logically separate networks and the need for routing between them
  • Explain network segmentation and basic traffic management concepts
• Configure and verify VLANs
• Configure and verify trunking on Cisco switches
  • dtp (topic)
  • auto-negotiation
• Identify enhanced switching technologies
  • RSTP
  • PVSTP
  • Etherchannels
• Configure and verify PVSTP operation
  • Describe root bridge election
  • Spanning tree mode

• Describe the operation and necessity of using private and public IP addresses for IPv4 addressing
• Identify the appropriate IPv6 addressing scheme to satisfy addressing requirements in a LAN/WAN environment
• Identify the appropriate IPv4 addressing scheme using VLSM and summarization to satisfy addressing requirements in a LAN/WAN environment
• Describe the technological requirements for running IPv6 in conjunction with IPv4
  • dual stack
• Describe IPv6 addresses
  • global unicast
  • multicast
  • link local
  • unique local
  • eui 64
  • auto-configuration

• Describe basic routing concepts
  • packet forwarding
  • router lookup process
  • Process Switching/Fast Switching/CEF
• Configure and verify utilizing the CLI to set basic Router configuration
  • hostname
  • local user and password
  • enable secret password
  • console & VTY logins
  • exec-timeout
  • service password encryption
  • interface IP Address
    • loopback
  • banner
  • motd
  • copy run start
• Configure and verify operation status of a device interface
  • Serial
  • Ethernet
• Verify router configuration and network connectivity using
  • ping
    • extended
  • traceroute
  • telnet
  • SSH
  • sh cdp neighbors
• Configure and verify routing configuration for a static or default route given specific routing requirements
• Differentiate methods of routing and routing protocols
  • Static vs. dynamic
  • Link state vs. distance vector
  • next hop
  • ip routing table
  • Passive Interfaces (how they work)
  • Admin distance
  • split horizon
  • metric
• Configure and verify OSPF
  • Benefit of single area
  • Configure OSPFv2
  • Configure OSPFv3
  • Router ID
  • Passive Interface
  • Discuss multi-area OSPF
  • Understand LSA types and purpose
• Configure and verify interVLAN routing (Router on a stick)
  • sub interfaces
  • upstream routing
  • encapsulation
• Configure SVI interfaces
• Manage Cisco IOS Files
  • Boot Preferences
  • Cisco IOS Images (15)
  • Licensing
    • Show license
    • Change license
• Configure and verify EIGRP (single AS)
  • Feasible Distance/Feasible Successors/Administrative distance
  • Feasibility condition
  • Metric composition
  • Router ID
  • Auto summary
  • Path Selection
  • Load Balancing
    • Unequal
    • Equal

• Configure and verify DHCP (IOS Router)
  • Configuring router interfaces to use DHCP
  • DHCP options (Basic overview and functionality)
  • Excluded addresses
  • Lease time
• Describe the types, features, and applications of ACLs
  • standard (editing and sequence numbers)
  • extended
  • named
  • numbered
  • Log option
• Configure and verify ACLs in a network environment
  • named
  • numbered
  • Log option
• Identify the basic operation of NAT
  • purpose
  • pool
  • static
  • 1 to 1
  • overloading
  • source addressing
  • one way NAT
• Configure and verify NAT for given network requirements
• Configure and verify NTP as a client
• Recognize High availability (FHRP)
  • VRRP
  • HSRP
  • GLBP
• Configure and verify syslog
  • Utilize syslog output
• Describe SNMP v2 and v3.

• Configure and verify network device security features
  • Device password security
  • Enable secret vs. enable
  • Transport
    • disable telnet
    • SSH
  • VTYs
  • physical security
  • service password
  • Describe external authentication methods
• Configure and verify Switch Port Security
  • Sticky MAC
  • MAC address limitation
  • static/dynamic
  • violation modes
    • err disable
    • shutdown
    • protect restrict
  • Shutdown unused ports
  • err disable recovery
  • Assign unused ports in unused VLANs
  • Putting Native VLAN to other than VLAN 1
• Configure and verify ACLs to filter network traffic
• Configure and verify ACLs to limit telnet and SSH access to the router

• Troubleshoot and correct common problems associated with IP addressing and host configurations
• Troubleshoot and resolve VLAN problems
  • Identify that VLANs are configured
  • Verify port membership correct
  • Correct IP address configured
• Troubleshoot and resolve trunking problems on Cisco switches
  • Verify correct trunk states
  • Verify correct encapsulation configured
  • Correct VLANs allowed
• Troubleshoot and resolve ACL issues
  • Verify statistics
  • Verify permitted networks
  • Verify direction
  • Interface
• Troubleshoot and resolve Layer 1 problems
  • Framing
  • CRC
  • Runts
  • Giants
  • Dropped packets
  • Late collisions
  • Input/output errors
• Identify and correct common network problems
• Troubleshoot and resolve spanning tree operation issues
  • Verify root switch
  • Verify priority
  • Verify mode is correct
  • Verify port states
• Troubleshoot and resolve routing issues
  • Verify routing is enabled (sh ip protocols)
  • Verify routing table is correct
  • Verify correct path selection
• Troubleshoot and resolve OSPF problems
  • Verify neighbor adjacencies
  • Verify hello and dead timers
  • Verify OSPF area
  • Verify interface MTU
  • Verify network types
  • Verify neighbor states
  • Review OSPF topology table
• Troubleshoot and resolve EIGRP problems
  • Verify neighbor adjacencies
  • Verify AS number
  • Verify load balancing
  • Split horizon
• Troubleshoot and resolve interVLAN routing problems
  • Verify connectivity
  • Verify encapsulation
  • Verify subnet
  • Verify native VLAN
  • Port mode trunk status
• Troubleshoot and resolve WAN implementation issues
  • Serial interfaces
  • Frame relay
  • PPP
• Monitor NetFlow statistics
• TS EtherChannel problems

• Identify different WAN Technologies
  • Metro ethernet
  • VSAT
  • Cellular 3g/4g
  • MPLS
  • T1/E1
  • ISDN
  • DSL
  • Frame relay
  • Cable
  • VPN
• Configure and verify a basic WAN serial connection
• Configure and verify a PPP connection between Cisco routers
• Configure and verify frame relay on Cisco routers
• Implement and troubleshoot PPPoE

• Determine network resources needed for implementing a VLAN based solution on a network
• Create a VLAN based implementation plan
• Create a VLAN based verification plan
• Configure switch-to-switch connectivity for the VLAN based solution
• Configure loop prevention for the VLAN based solution

• Determine network resources needed for implementing a Security solution
• Create a implementation plan for the Security solution
• Create a verification plan for the Security solution
• Configure port security features
• Configure general switch security features
• Configure private VLANs
• Configure VACL and PACL
• Verify the Security based solution was implemented properly using show and debug commands
• Document results of Security implementation and verification

• Determine network resources needed for implementing a Switch based Layer 3 solution
• Create an implementation plan for the Switch based Layer 3 solution
• Create a verification plan for the Switch based Layer 3 solution
• Configure routing interfaces
• Configure Layer 3 Security
• Verify the Switch based Layer 3 solution was implemented properly using show and debug commands
• Document results of Switch based Layer 3 implementation and verification

• Introduction
• The firewall model: Dual-homed hosts, Screened hosts, Screened Subnet

• Introduction
• How to connect to the device using the Console Cable
• Configure devices using Cisco ASDM (Cisco Adaptive Security Device Manager)

• Allow all computers to access the Internet outside.
• Allow the machine from the Internet can access network services in a local network.

• Set up rules to control packet in the internal network to external network.
• Monitor system logs on firewall.

• Introduction
• The types of devices that support Load Balancing.

• Build deployment model
• Configuring Load Balancing feature on the device
• Check characteristics of Load Balancing.

• Configuration control packets on the device.
• Configure dynamic IP address allocation
• Configure VPN on the device (IPSec VPN, SSL VPN)
• Control and monitor the bandwidth of the device.
• Configure the routing device.