Table of Contents

CCNP ENARSI Syllabus: Topics You Need to Study

If you're planning to pursue CCNP Enterprise certification, then passing the CCNP Enterprise Advanced Routing and Services (ENARSI) exam is mandatory.

This certification is designed for professionals who have experience in enterprise networking solutions and want to advance their skills.

Let’s cover the CCNP ENARSI syllabus, including the topics you need to study to pass the exam.

The CCNP ENARSI certification exam focuses on advanced routing technologies and services. To earn this certification, you need to pass the ENARSI 300-410 exam, which covers the following topics:

Network Architecture

This section covers the following topics:

  • Network design principles, including the Cisco hierarchical network model and different network topologies
  • IP addressing and subnetting, including the difference between IPv4 and IPv6
  • Common network services such as Network Time Protocol (NTP), Domain Name System (DNS), and Dynamic Host Configuration Protocol (DHCP)
  • Implementing and verifying WAN technologies, including Point-to-Point Protocol (PPP), Multilink PPP, and Metro Ethernet

Virtual Private Networks (VPNs)

This section covers the following topics:

  • VPN technologies such as site-to-site VPNs, remote access VPNs, and Secure Sockets Layer (SSL) VPNs
  • Implementing and verifying remote access VPNs using Internet Protocol Security (IPsec) and SSL
  • Configuring and verifying site-to-site VPNs using IPsec and Internet Key Exchange (IKEv2)
  • Configuring and verifying SSL VPNs using AnyConnect Secure Mobility Client

Layer 3 Technologies

This section covers the following topics:

  • Advanced routing protocols such as Open Shortest Path First version 2 (OSPFv2), OSPFv3, and Border Gateway Protocol (BGP)
  • Route filtering and redistribution using access control lists (ACLs), route maps, and prefix lists
  • Configuring and verifying policy-based routing (PBR) using local policy routing and policy-based routing with IP service level agreements (SLAs)
  • Configuring and verifying VRF-lite and VRF-aware services, including multicast routing and IPv6 over IPv4 GRE tunnels

Infrastructure Security

This section covers the following topics:

  • Infrastructure security threats, such as denial-of-service (DoS) attacks and threats to Layer 2 and Layer 3 protocols
  • Implementing and verifying AAA (authentication, authorization, and accounting) using TACACS+ and RADIUS
  • Configuring and verifying device access control using local passwords, usernames, and role-based access control (RBAC)
  • Configuring and verifying control plane policing (CoPP), management plane policing (MPP), and data plane policing (DPP)

Infrastructure Services

This section covers the following topics:

  • Quality of Service (QoS) concepts and configuration, including classification, marking, policing, and shaping
  • Network Address Translation (NAT) concepts and configuration, including static NAT, dynamic NAT, and Port Address Translation (PAT)
  • Network device management protocols such as Simple Network Management Protocol (SNMP) and NetFlow
  • Implementing and verifying first-hop redundancy protocols (FHRPs) such as Hot Standby Router Protocol (HSRP) and Virtual Router Redundancy Protocol (VRRP)


In conclusion, the CCNP ENARSI certification exam is a challenging but essential step towards advancing your skills in enterprise networking solutions. With a solid understanding of the exam topics, you can confidently pursue this certification and take your career to the next level.

To help you prepare for the exam, it's highly recommended that you enroll in a reputable CCNP ENARSI course. One such course is Orhan Ergun's CCNP ENARSI training, which provides comprehensive and practical training on all the exam topics. With his years of experience in network engineering and training.

With his course, you can be confident in your ability to pass the exam and earn your CCNP ENARSI certification.

Created by
Stanley Arvey

I am a certified network engineer with over 10 years of experience in the field. I have a deep understanding of networking and IT security, and I am always looking for new challenges.

View profile