CompTIA Network+ N100-009 Study Notes

CompTIA Network+ (N100-009) Course Infrastructure and Exam Overview

• Credential Overview: The CompTIA Network+ certification is a globally recognized, vendor-neutral credential used to validate the foundational networking knowledge and skills required for IT professionals.

• Core Coverage: The certification encompasses essential networking concepts, including:     * Network architecture     * Infrastructure     * Security     * Troubleshooting     * Operations

• Career Applicability: Valuable for network administrators, IT support specialists, and help desk technicians. It is a stepping stone toward advanced certifications such as the Cisco Certified Network Associate (CCNA) or CompTIA Security+.

• Exam Domains and Weighting:     1. Networking Concepts: $23\%$ of the exam. Focuses on the Open Systems Interconnection (OSI) model, network appliances, cloud concepts, and connectivity.     2. Network Implementation: $20\%$ of the exam. Focuses on routing, physical installations, switching technologies, and wireless configurations.     3. Network Operations: $19\%$ of the exam. Focuses on monitoring and optimizing networks for business continuity.     4. Network Security: $14\%$ of the exam. Focuses on security concepts, hardening, and network attacks.     5. Network Troubleshooting: $24\%$ of the exam. Focuses on methodology and resolving issues with connectivity and software.

• Exam Details:     * Exam Code: N100-009     * Launch Date: June 20, 2024     * Retirement Date: Typically $3\,\text{years}$ post-launch.     * Question Count: Maximum of $90\,\text{questions}$.     * Question Types: Multiple-choice and performance-based.     * Duration: $90\,\text{minutes}$.     * Passing Score: $720$ out of a possible $900\,\text{points}$ ($80\,\%$).     * Prerequisites (Recommended): CompTIA A+ certification and $9$ to $12\,\text{months}$ of hands-on experience in a junior network administrator or support technician role.     * Testing Provider: Pearson VUE Testing Centers.     * Cost: Standard cost is $\$369$ at the time of recording.

The Open Systems Interconnection (OSI) Model

• Definition: Developed by the International Organization for Standardization (ISO), the OSI model is a seven-layer framework used to understand and implement network communication by breaking processes into distinct functions.

• Layer 1: Physical Layer:     * Function: Responsible for transmitting raw binary data over physical mediums.     * Key Tasks: Defines voltage levels, timing, data rates, and converts bits into signals (electrical, optical, or radio).     * Hardware: Cables (Cat 5e, Cat 6, Fiber Optics), hubs, repeaters, physical ports, and connectors (RJ45).     * Binary Data: Data is treated as bits.

• Layer 2: Data Link Layer:     * Function: Ensures reliable transmission of data over the physical layer via error detection and correction.     * Sub-layers: Logical Link Control (LLC) and Media Access Control (MAC).     * Hardware/Protocols: Ethernet ($IEEE\,802.3$), Wi-Fi ($IEEE\,802.11$), switches, bridges, and Virtual Local Area Networks (VLANs).     * Unit of Data: Frames.

• Layer 3: Network Layer:     * Function: Determines the best path for data between devices on different networks through logical addressing.     * Protocols/Hardware: $IPv4$, $IPv6$, routing protocols (OSPF, EIGRP, BGP), and routers.     * Unit of Data: Packets.

• Layer 4: Transport Layer:     * Function: Manages end-to-end communication, flow control, and error recovery.     * Protocols: Transmission Control Protocol (TCP - connection-oriented/reliable) and User Datagram Protocol (UDP - connectionless/fast).     * Unit of Data: Segments (TCP) or Datagrams (UDP).

• Layer 5: Session Layer:     * Function: Manages and controls the dialogue/sessions between two devices (establishment, maintenance, termination).     * Use Cases: Remote Procedure Calls (RPC), Network File System (NFS), and Session Initiation Protocol (SIP).

• Layer 6: Presentation Layer:     * Function: Ensures data is in a usable format through encoding, encryption, and compression.     * Standards: SSL/TLS, JPEG, MPEG, and ASCII.

• Layer 7: Application Layer:     * Function: Closest to the end-user; provides network services and software interfaces.     * Protocols: HTTP, FTP, SMTP, and DNS.

• Study Mnemonic: "Please Do Not Throw Sausage Pizza Away" (Physical, Data Link, Network, Transport, Session, Presentation, Application).

Networking Appliances: Functions and Scenarios

• Router: Connects multiple networks and forwards packets based on $IP$ addresses. Decisions involve "best path" selection.     * Virtual Router: Software-based, used in cloud and Software-Defined Networking (SDN) for scalability.

• Switch: Operates at Layer 2 to forward frames based on $MAC$ addresses.     * Managed Switch: Allows configuration of VLANs, Quality of Service (QoS), and monitoring.     * Unmanaged Switch: Simple plug-and-play with no configuration.     * Virtual Switch: Connects Virtual Machines (VMs) within virtualized environments.

• Firewall: Acts as a barrier using security rules to filter traffic.     * Physical Firewall: Dedicated hardware at the network edge.     * Virtual Firewall: Cloud-deployed to secure virtual networks.

• IDS and IPS:     * Intrusion Detection System (IDS): Monitors traffic for suspicious activity (passive).     * Intrusion Prevention System (IPS): Actively blocks identified threats (active).

• Load Balancer: Distributes traffic across multiple servers to prevent overload and ensure availability.

• Proxy Server: Intermediary between client and server; provides content filtering, caching, and anonymity.

• Storage Appliances:     * Network Attached Storage (NAS): File-based storage accessible over a network.     * Storage Area Network (SAN): High-speed block-level storage requiring specialized hardware like Fiber Channel.

• Wireless Access Point (WAP) and Controller:     * WAP: Connects wireless devices to a wired network.     * Controller: Centralized management for multiple access points.

• Content Delivery Network (CDN): Optimizes web content delivery by caching data at distributed edge servers closer to users to reduce latency. Examples: Cloudflare, Akamai, AWS CloudFront.

Core Networking Concepts and Connectivity

• Virtual Private Network (VPN): Provides secure, encrypted communication over public networks.     * Remote Access VPN: Connects a remote user to a private network.     * Site-to-Site VPN: Connects two entire networks securely.

• Quality of Service (QoS): Prioritizes traffic for critical applications (e.g., VoIP).     * Traffic Shaping: Controls the rate of outbound traffic.     * Differentiated Services (DiffServ): Uses packet marking for priority.

• Time to Live (TTL): A field in $IP$ packets that prevents infinite routing loops by discarding packets when the hop count reaches zero.

• Cloud Computing Models:     * Deployment Models:         * Public: Shared resources owned by third parties (AWS, Azure).         * Private: Dedicated to a single organization.         * Hybrid: Mix of public and private.     * Service Models:         * Infrastructure as a Service (IaaS): Offers virtualized hardware (AWS EC2).         * Platform as a Service (PaaS): Tools for development without hardware management (Google App Engine).         * Software as a Service (SaaS): Subscription-based software over the internet (Office 365).

• Cloud Concepts:     * Network Functions Virtualization (NFV): Virtualizing hardware appliances like firewalls using software.     * Virtual Private Cloud (VPC): Isolated section of a public cloud for private resources.     * Scalability vs. Elasticity:         * Scalability: The ability to grow/shrink resources (Vertical = CPU/RAM; Horizontal = more instances).         * Elasticity: Automatic provisioning/de-provisioning based on real-time demand.     * Multi-tenancy: Multiple customers sharing physical infrastructure with logical isolation.

Common Ports and Protocols (Objective 1.4)

• File and Remote Access:     * FTP: Port $20\,(\text{data})$, Port $21\,(\text{control})$. Unencrypted.     * SFTP: Port $22$. Secure file transfer over SSH.     * SSH: Port $22$. Secure remote access.     * Telnet: Port $23$. Unencrypted remote access.     * TFTP: Port $69$. Simple, lightweight file transfer for configurations.     * RDP: Port $3389$. Remote Desktop Protocol (Windows-specific).

• Web and Email:     * HTTP: Port $80$. Unencrypted web traffic.     * HTTPS: Port $443$. Encrypted web traffic ($SSL/TLS$).     * SMTP: Port $25$. Sending email.

• Infrastructure and Management:     * DNS: Port $53$. Translates domain names to $IP$ addresses.     * DHCP: Port $67\,(\text{server})$, Port $68\,(\text{client})$. Dynamic $IP$ assignment.     * NTP: Port $123$. Time synchronization.     * SNMP: Port $161\,(\text{queries})$, Port $162\,(\text{traps})$. Network management.     * Syslog: Port $514$. Logging system messages.     * LDAP: Port $389$. Directory services.     * LDAPS: Port $636$. Secure LDAP over SSL/TLS.     * SMB: Port $445$. File/printer sharing (Windows).     * SQL Server: Port $1433$.     * SIP: Ports $5060, 5061$. Session management for VoIP.

• Internet Protocol Security ($IPsec$):     * Authentication Header (AH): Integrity and authentication.     * Encapsulating Security Payload (ESP): Payloads encryption (confidentiality).     * Internet Key Exchange (IKE): Manages encryption keys.

• Traffic Types:     * Unicast: One-to-one.     * Multicast: One-to-many (specific group).     * Anycast: One-to-nearest.     * Broadcast: One-to-all on a segment.

Transmission Media and Standards

• $IEEE\,802.11$ (Wireless) Standards:     * 802.11a: $5\,GHz$, $54\,Mbps$.     * 802.11b: $2.4\,GHz$, $11\,Mbps$.     * 802.11g: $2.4\,GHz$, $54\,Mbps$.     * 802.11n: $2.4/5\,GHz$, $600\,Mbps$ (MIMO).     * 802.11ac: $5\,GHz$, Gigabit speeds (Multi-user MIMO).     * 802.11ax (Wi-Fi 6): $2.4/5/6\,GHz$, over $8\,Gbps$ (OFDMA).

• $IEEE\,802.3$ (Ethernet) PoE Standards:     * 802.3af: $15.4\,W$.     * 802.3at (PoE+): $25.5\,W$.     * 802.3bt: Up to $100\,W$.

• Fiber Optics:     * Single Mode (SMF): Narrow core ($9\,\mu m$), long-distance ($40\,km+$), yellow jacket.     * Multimode (MMF): Large core ($50-62.5\,\mu m$), short-distance ($2\,km$), aqua/orange jacket.

• Copper Cables:     * Cat 5e: $1\,Gbps$ at $100\,m$.     * Cat 6: $1\,Gbps$ at $100\,m$; $10\,Gbps$ at $55\,m$.     * Cat 6A: $10\,Gbps$ at $100\,m$.     * Plenum vs. Non-Plenum: Plenum has fire-resistant jackets for air-handling spaces.

• Transceivers and Connectors:     * Transceivers: SFP (up to $10\,Gbps$), QSFP (up to $100\,Gbps$).     * Fiber Connectors: SC (Subscriber), LC (Local - high density), ST (Straight Tip - bayonet), MPO (Multi-fiber Push On).     * Copper Connectors: RJ45 (8-pin Ethernet), RJ11 (4-6 pin Phone), F-Type (Coaxial/TV), BNC (Legacy video/RF).

Network Topologies and Architectures

• Topologies:     * Mesh: High redundancy. Full mesh = every node connected to every other node ($Expensive$).     * Star: All devices connected to a central hub/switch (Simplest, but has a single point of failure).     * Spine-and-Leaf: Modern data center design; low latency, horizontal scaling.     * Hybrid: Combination of two or more topologies.

• Three-Tier Hierarchical Model:     1. Core Layer: High-speed backbone, focuses on fast switching.     2. Distribution Layer: Aggregates traffic and implements policies (Routing/QoS/ACLs).     3. Access Layer: Connects end devices (PC, printers); entry point to the network.

• Collapsed Core: Combines core and distribution for smaller environments.

• Traffic Flows:     * North-South: Incoming/Outgoing (Client to Data Center/Cloud).     * East-West: Intra-network (Server to Server).

$IPv4$ Addressing and Subnetting

• Structure: $32\,\text{bit}$ address expressed in dotted decimal notation, divided into four $8\,\text{bit}$ octets.

• Private Address Ranges (RFC 1918):     * Class A: $10.0.0.0$ – $10.255.255.255$ ($16.7\,\text{million addresses}$).     * Class B: $172.16.0.0$ – $172.31.255.255$ ($1\,\text{million addresses}$).     * Class C: $192.168.0.0$ – $192.168.255.255$ ($65,536\,\text{addresses}$).

• Special Addresses:     * Loopback: $127.0.0.1$ (Self-testing).     * APIPA: $169.254.0.0$ to $169.254.255.255$ (Self-configured when DHCP is unreachable).

• Binary Conversions: Use positional values ($128, 64, 32, 16, 8, 4, 2, 1$). Bits are "on" ($1$) or "off" ($0$).

• CIDR Notation: Slash notation (e.g., $/24$) indicates the number of "on" bits in the subnet mask.

• Subnetting Benefits: Reduces broadcast traffic, enhances security, and optimizes address space.

• Variable Length Subnet Mask (VLSM): Method of allocating subnet masks of different sizes within the same network to maximize efficiency.

• IPv6 Foundation: $128\,\text{bits}$, hexadecimal format, $8\,\text{hextets}$ of $16\,\text{bits}$. Standard subnet is $/64$. Provides roughly $18\,\text{million trillion addresses}$ per subnet.

Modern Use Cases and Evolving Use Technologies

• Software-Defined Networking (SDN): Centralized management and control. Features include Zero-Touch Provisioning (ZTP) and transport agnostic routing (MLPS, LTE, Satellite).

• Virtual Extensible LAN (VXLAN): Extends traditional VLANs ($4,096\,\text{IDs}$) to over $16\,\text{million IDs}$ by encapsulating Layer 2 frames in Layer 3 UDP packets.

• Zero Trust Architecture (ZTA): Security principle of "Never Trust, Always Verify." Uses policy-based authentication, granular authorization, and least privilege.

• SASE and SSE:     * Secure Access Service Edge (SASE): Combines SD-WAN with security services in the cloud.     * Security Service Edge (SSE): Subset of SASE focused strictly on security (Web gateways, ZTNA).

• Infrastructure as Code (IaC): Provisioning infrastructure via code (Playbooks/Templates) to reduce manual work and ensure consistency.

• IPv6 Migration:     * Dual Stack: Running $IPv4$ and $IPv6$ simultaneously.     * Tunneling (6to4): IPv6 traffic traversing IPv4 networks.

Routing and Switching Technologies

• Dynamic Routing Protocols:     * BGP: Primary protocol of the internet (path vector).     * OSPF: Link-state, uses cost based on bandwidth; fast convergence.     * EIGRP: Hybrid, Cisco proprietary, uses composite metrics.

• Route Selection Criteria:     * Longest Prefix Match: Prioritized first.     * Administrative Distance (AD): Directly connected ($0$), Static route ($1$), External BGP ($20$), EIGRP ($90$), OSPF ($110).

• Address Translation:     * NAT: One-to-one or many-to-one.     * PAT (NAT Overload): Uses unique port numbers to allow multiple private IPs to share one public IP.

• High Availability (FHRP): HSRP (Cisco), VRRP (Open Standard), GLBP (Load Balancing).

• Switching Features:     * STP (Spanning Tree Protocol): Prevents Layer 2 loops. Variants include RSTP (Rapid) and MSTP.     * 802.1Q: Standard for VLAN tagging on trunks.     * LACP (Link Aggregation): Groups physical links into one logical link (IEEE\,802.3ad$).</p></li></ul><h3 id="40c3c067-a80f-40f2-be99-9e1de8e23521" data-toc-id="40c3c067-a80f-40f2-be99-9e1de8e23521" collapsed="false" seolevelmigrated="true">Troubleshooting Methodology ($7\,\text{Steps})

  1. Identify the Problem: Gather info, question users, find symptoms, find recent changes.

  2. Establish a Theory: Question the obvious, consider multiple approaches (OSI bottom-up/top-down).

  3. Test the Theory: Confirm the theory; if fail, establish a new theory or escalate.

  4. Establish a Plan of Action: Resolve the problem while identifying potential side effects.

  5. Implement the Solution: Perform the fix or escalate to higher support.

  6. Verify Functionality: Ensure full system recovery and implement preventative measures.

  7. Document Findings: Record the problem, actions taken, outcome, and lessons learned.

  Questions & Discussion (Check on Learning)

  • Q: Which OSI layer manages dialogue between devices?     * A: Session Layer (Layer 5).

  • Q: At which layer do switches primarily operate based on MAC addresses?     * A: Data Link Layer (Layer 2).

  • Q: Which protocol utilizes Port 22 for secure remote access?     * A: SSH.

  • Q: What is the purpose of an APIPA address?     * A: Assigned when a DHCP$server is unreachable ($169.254.x.x).

  • Q: Which fiber type is best for long-distance communication?     * A: Single mode fiber (SMF).

  • Q: What describes automatic scaling of resources in real-time?     * A: Elasticity.

  • Q: Which technology optimizes web traffic delivery by caching content near the user?     * A: Content Delivery Network (CDN).

  • Q: Which routing value ranks the trustworthiness of a source?     * A: Administrative Distance (AD$$).

  • Q: What is a "honeypot" system?     * A: A decoy system designed to lure and analyze attackers.

  • Q: Which attack tricks a switch into acting like a hub?     * A: MAC Flooding.

  • Q: What is the first step of the official troubleshooting methodology?     * A: Identify the problem.

  • Q: What environment is a "Capture Portal" typically used for?     * A: Authenticating users on a Guest Network.