CompTIA Network+ N10-009 Video Bootcamp

Networks enable global device communication as internet-connected devices rise from 17 to 62 billion. Explore client–server concepts, end and infrastructure devices, and wired and wireless media for video conferencing.

Explore various network types such as local area networks, wide area networks, metropolitan area networks, wireless LANs, campus networks, storage area networks, and personal area networks.

Explore how protocols govern computer communications and how port numbers enable multiple services—FTP on 20, Telnet on 23, and HTTP on 80—via the client–server model.

Explore unicast, broadcast, and multicast delivery, and how protocol data units and MTU influence packet transmission. Understand collision domains, broadcast domains, and CSMA/CD and CSMA/CA in Ethernet networks.

Explore the OSI model, a seven-layer ISO reference framework guiding interoperation of devices from physical to application, detailing each layer’s roles, protocols, and data flow.

Explore network protocols and ports, including http/https with tls, dns, dhcp, smtp with pop3/imap, ftp, sftp, ssh, ntp, snmp, rdp, ldap and ldaps, h.323 and sip.

Explore the precision time protocol (ptp) for sub-microsecond synchronization in a master-slave network with delay compensation, and learn network time security (nts) to protect time data from spoofing and attacks.

Learn how SNMP uses MIBs to define accessible parameters and how OIDs uniquely identify managed objects in an MIB tree, with traps reporting events to the SNMP manager.

Explore IMAP over SSL and POP3 over SSL, noting how SSL/TLS secures these protocols and changes their ports, then review SQL, SQL Net, and MySQL and their ports.

explore wired topologies, including physical lan layouts—ring, bus, and star—and wide area networks—point-to-point, hub-and-spoke, and full or partial mesh—plus the concept of logical topology and ip addressing.

Learn wifi topology modes, including ad hoc direct device communication without an access point and infrastructure mode with an access point, plus extended service set for larger areas.

Explore the three tier network architecture, detailing the access, distribution, and core layers, and how switches, routers, and QoS, filtering, and routing enable high speed, reliable enterprise connectivity.

Describe spine and leaf architecture, two-tier network where leaf connects to every spine in full mesh, distributing traffic and preserving latency with copper inside racks and fiber to racks.

Explore how data moves inside a data center through east-west traffic between servers and how north-south traffic transfers data to and from external systems.

Learn how virtual local area networks segment a single switch into logical networks, improve security and efficiency, and implement data and voice vlans with vlan ids, trunking, and security considerations.

Mac addresses are unique network interface identifiers, 48 bits in hexadecimal. ARP maps IP addresses to MAC addresses on networks via broadcast requests and replies, stored in an ARP table.

Learn how a LAN switch builds a MAC address table to forward unicast frames, learns addresses to avoid flooding, and uses store-and-forward, cut-through, and fragment-free methods.

Explains spanning tree protocol, elects a root bridge, defines root, designated, and blocked ports, and blocks redundant paths to create a loop-free Ethernet topology.

Explore IPv4 addressing formats, dotted decimal notation, octets, subnet masks, network IDs, and host ranges, plus Vlsm, private/public ranges, and an introduction to IP version six concepts.

Learn to calculate a network ID using a subnet mask, identify the first and last usable addresses and the broadcast address, and understand total addresses in a /24 network.

Explore IPv6 integration with IPv4, including migration with tunneling and dual stack. Learn about 6to4, ISATAP, Teredo, dual stack, and router solicitation/advertisement for autoconfiguration and network information.

Routers are layer three devices that connect networks and perform ip routing using routing tables, while memory types such as ram, rom, nvram, and flash support operation.

Routing directs traffic by network ID: same IDs send directly; different IDs forward to the default gateway, guided by the router’s routing table, next hop, and outgoing interface.

Learn static and dynamic routing, configure default routes and next-hop decisions, and compare administrative distance and metrics across RIP, OSPF, IS-IS, and BGP.

Explore dynamic routing protocols that update routing tables as network topology changes, covering IGP and EGP options like OSPF, EIGRP, and BGP in enterprise networks from HQ to internet edge.

Explore access control lists: standard and extended IPv4/IPv6 ACLs, wildcard masks, and implicit deny, filtering traffic on inbound or outbound router interfaces.

Contrast packet switched and circuit switched networks, highlighting channels and voice needs in circuit switching, and with addresses guiding routing and congestion in packet switching, driving efficiency, flexibility, and scalability.

Explore how network address translation remaps private IP addresses to public ones, conserving address space and adding a security layer, using static NAT, dynamic NAT, and PAT with port numbers.

Discover how QoS prioritizes voice and video traffic, manages bandwidth, latency, jitter, and reliability, and uses classification, marking, and queuing with Diffserv, RSVP, and LLQ.

Port mirroring copies traffic from source ports to a destination port for real-time monitoring. Local span monitors within one switch; remote span forwards across switches to a monitoring device.

GRE is a Cisco-created tunneling protocol that encapsulates data for secure transmission over VPNs or point-to-point links. mGRE extends GRE to dynamically create multipoint tunnels without explicit mapping entries.

Explore data center location types and how cost, connectivity, and management influence the choice between on premises data centers and co-location for branch offices.

Explore desktop as a service (DaaS), where providers deliver virtual desktops over the internet under a per-user subscription and manage backend tasks like maintenance, backups, data storage, security, and applications.

Explore cloud computing models—saas, paas, and iaas—and cloud types—private, public, and hybrid—plus virtualization and hypervisors, with practical, real-world examples.

Explore cloud connectivity options, including IPsec VPN and direct connection, emphasizing encrypted data flow, a managed VPN endpoint with multi-data center redundancy and failover, and combining links with hardware VPN.

Understand multi-tenancy and its data protection implications in cloud computing. Examine rapid elasticity with provisioned and released resources that appear unlimited, and scalable autonomic auto scaling to meet demand.

Describe the community cloud as an exclusive-use cloud infrastructure for a specific group of organizations with shared concerns, potentially owned or managed by members or a third party.

Explore virtual private cloud (vpc) as a secure, isolated network to launch and manage resources with controlled ip ranges, subnets, route tables, internet gateway, nat gateway, security groups, and ACLs.

Explore infrastructure as code to provision data centers with machine readable definitions in version control. Compare push and pull methods, and see how automation enhances reliability and supports DevOps culture.

Learn how infrastructure as code uses machine-readable configurations, playbooks, templates, and source control to automate, standardize, and manage upgrades with drift control and dynamic inventories.

Explore software defined networking as a dynamic, centralized approach that automates provisioning and configuration across the application, control, and infrastructure layers with a management plane and a software controller.

Sd-wan extends software defined networking to the wide area, using a virtual WAN architecture and multiple transport services to connect users to applications while reducing costs and increasing scalability.

Learn how sd-wan uses software to manage wide area networks by abstracting traffic across multiple connections, enabling application-aware routing, zero touch provisioning, transport-agnostic links, and centralized policy management.

Explore how SASE and SSE deliver cloud-delivered security and secure access to apps and data from anywhere, using SD-WAN, SWG, CASB, firewall as a service, and ZTNA with posture checks.

Explore how vxlan encapsulates layer two Ethernet frames in udp to extend a scalable layer two network over a layer three infrastructure and enable vm mobility across data centers.

Embrace zero trust architecture to enforce never trust, always verify through policy-based authentication and context-driven authorization, with least privilege access.

Configure dhcp server services to auto assign dynamic IP addresses. Manage scopes, scope options, reservations, leases, and exclusions for efficient network parameter delivery.

Compare static versus dynamic address assignment, including DHCP processes, DHCP relay, and IPv6 options, and explore IPAM and APIPA for network address management.

Explore how the domain name system maps hostnames to IP addresses, uses port 53, and employs forward and reverse lookups, with A, MX, TXT, CNAME, NS, SRV, and PTR records.

Secure the DNS with DNSSEC to verify responses and defend against cache poisoning, while DNS over HTTPS and DNS over TLS encrypt queries, with DoT using port 853.

Explains why wireless networks enable mobility, flexibility, and cost efficiency for IoT and guest access, and outlines security options from WPA2 to WPA3 and channel saturation mitigation.

Learn about Wi-Fi 6 (802.11ax), its 2.4 and 5 GHz bands, and how radio channels enable wireless communication. Compare Wi-Fi 4, 5, and 6 with speeds up to 10 Gbps.

Autonomous access points operate independently without a central controller, suitable for small networks, while lightweight access points rely on a wireless LAN controller for centralized management in larger networks.

Explore cellular network concepts, base stations, cells, and frequency reuse that enable efficient wide-area coverage for voice and data, with GSM 2G, TDMA, and CDMA technologies.

Explore cellular technologies from 3g to 5g, including 4g and lte, and how each generation advances frequency bands and data rates for mobile broadband and IoT devices.

The dmz separates the internal lan from untrusted networks and hosts facing services, such as web, mail, dns, and ftp, accessible from the internet while the internal network remains unreachable.

Explore how CDN uses distributed servers called points of presence to deliver web content with lower latency, faster load times, reliability, and security features including DDoS protection.

Explore the technologies that enable the internet of things, including Z-Wave, BLE, NFC, Wi-Fi, RFID, and ANT+, and learn how they support device connectivity and data sharing.

Explore copper and fiber optic media, their cables, connectors, and bandwidth implications, and compare single-mode and multi-mode fibers for high-speed network transmission.

Explore the Cat8 cable as the standard, designed for short distances, delivering up to 40 gigabit per second at 2000 MHz over up to 30 m for a Soho network.

Describe twinaxial cable, with two center conductors, insulation, and an outer ground with insulation, used for short distances of seven meters or less and with SFP transceivers.

Explore fiber standards for gigabit and 10 gigabit Ethernet, including 1000BASE-LX/X and 1000BASE-SX for single- and multimode fiber, plus 10GBASE-LR and 10GBASE-SR for long- and short-range links.

Identify copper and fiber optic connector types, including RJ-45, RJ-11, BNC, DB-9, DB-25, F type, and LC, SC, ST, MT-RJ, with APC and UPC classifications.

Discover how transceivers transmit and receive signals, from built-in network interface cards and external modules. Explore gbic, sfp, sfp+, and qsfp options, copper and fiber, diplexers, and wdm for communication.

Explore cable termination points such as 66 blocks, 110 blocks, patch panels, and fiber distribution panels, used in telephone and computer networks, with wire sizes, punch down methods, and protection.

Explore Ethernet deployment standards from 100 base T fast Ethernet to 10 G base T, detailing copper cabling and fiber options like 1000 base LX and 1000 base SX.

Explore advanced networking devices, including layer two and layer three switches, wireless controllers, load balancers, ids/ips, proxies, vpn concentrators, radius, and utm, next generation firewalls, voip gateways, and content filtering.

Explore how networked devices like VoIP phones, printers, IP cameras, physical access controls, and IoT sensors use IP addresses, Bluetooth, or NFC, including ICS, SCADA, and in-vehicle systems.

Explore virtual networking components—virtual switches, routers, vnics, firewalls, virtual network adapters, and hypervisors—covering bare metal type 1 and hosted type 2 virtualization for flexible networks.

Explore network storage types such as nas and san and the connection protocols including iscsi, fibre channel, fibre channel over ethernet, nfs, and infiniband that govern data access and transfer.

Explore the wide area network service types, from ISDN and PRI to T-carrier and E1, and compare optical carrier (OC-3 to OC-192), dial-up, DSL, cable, and Metro Ethernet offerings.

Learn the characteristics of wide area network services, including MPLS, ATM, frame relay, DSL, and T-1. Explore DMVPN, PPTP, IPsec encryption, and SIP trunking for VoIP and unified communications.

Explore wide-area network termination and demarcation point, detailing how CSU/DSU devices connect the public network to on premises wiring, and how smart jacks, NIDs, and T1 links manage handoff.

Explore network availability concepts, including fault tolerance and high availability, focusing on redundancy, failover, load balancing, server clusters. Examine how NIC teaming, port aggregation, and etherchannel enhance throughput and reliability.

Implement uninterruptible power supplies to maintain data availability and prevent data loss during power events, while using generators, redundant circuits, dual power supplies, and intelligent PDUs to support fault tolerance.

Monitor interface errors and alerts with a network management system, detect changes in raw data values via CRC values, and react to packets discarded for size or encapsulation errors.

Monitor interface statistics to keep links up, detect down conditions quickly, and allow reroute of traffic with scripts while tracking errors, utilization, discards, drops, resets, and speed/duplex issues.

Explore network recovery strategies to restore operations after failures, minimize downtime and data loss, and compare hot, warm, and cold disaster recovery sites, backups, and snapshot backups.

Analyze MTTR, MTBF, and SLA to see how repair time, failure intervals, and service agreements impact reliability and service quality.

Explore NDAs, SLAs, and MOUs that secure confidentiality, define service performance expectations with vendors, and outline relationships or preludes to contracts within organizations.

Review logs to detect suspicious activity and reduce impact, adjusting frequency by system criticality. Scan ports and monitor traffic, perform vulnerability scans and rollbacks to restore integrity and prevent exploits.

Monitor, analyze, and respond to network events to ensure performance and reliability. Use notifications for information and alerts for immediate action, with siem and snmp enabling data aggregation and management.

Explore key metric values in IT networks, including error rate, utilization, packet loss, and bandwidth, and understand how each affects reliability, traffic, and data transfer speed.

Explores remote access methods, detailing ipsec site-to-site and ssl remote access vpn, plus rdp, ssh, telnet, vnc, ftp/sftp/tftp, and out-of-band management.

Cover essential policies and best practices for securing networks and data, including privileged access, password policy, onboarding and offboarding, licensing, export controls, DLP, and incident response.

Learn the CIA triad—confidentiality, integrity, and availability—and how encryption, access control, and backups safeguard data, integrity via hashing and digital signatures, and availability through disaster recovery.

Explore physical security devices that deter unauthorized access and protect facilities, equipment, and personnel. Explore detection and prevention tools such as motion detection, video surveillance, asset tracking, tamper alerts, badges.

Explore the triple A framework: authentication, authorization, and accounting, and learn radius, tacacs+, local authentication, kerberos, single sign-on, ldap, and auditing and logging for access control.

Explore how multifactor authentication requires two or more factors including knowledge, possession, inherence, location, and actions to login, with examples like usernames, passwords, tokens, biometrics, and signatures.

Explore SAML authentication, an XML-based framework for exchanging authentication and authorization data between an identity provider and a service provider to enable single sign-on across apps.

Explore access control concepts, including 802.1x port-based network access control, posture assessment, port security with mac address limits, captive portals, and access control lists.

Examine common wireless attacks, including evil twins and rogue access points, bluejacking, bluesnarfing, blue bugging, disassociation attacks, and jamming, and discuss mitigations like frequency hopping and intrusion detection systems.

Explore wireless security fundamentals, from WEP to WPA3, detailing TKIP and AES-CCMP, 802.1X with Radius server, various EAP types, open vs pre-shared keys, MAC filtering, and geofencing.

WPA3 strengthens Wi-Fi security with enhanced encryption and mutual authentication via SAE, delivers forward secrecy and opportunistic encryption for open networks, and protects IoT devices against dictionary attacks.

Identify external and internal threats, including disgruntled insiders, and monitor vulnerabilities on the CVS list. Understand zero-day attacks and the need to turn off the service to protect the network.

Explore common network attacks that threaten confidentiality, integrity, and availability, including man-in-the-middle, DNS spoofing, DNS tunneling, domain hijacking, DNS poisoning, credential replay, and DDoS.

Explore the range of malware, from ransomware to rootkits, and learn how each type maintains access and spreads. Identify prevention strategies such as safe downloads, updates, and reliable security tools.

Explore mitigation techniques for secure network architecture, including signature-based IDS/IPS, hardening practices, VLAN and STP defenses, DHCP snooping, network segmentation, file integrity monitoring, role separation, honeypots, and penetration testing.

Apply network hardening through secure SNP, router advertisement guard, port security, Dynamic ARP inspection, and control plane policing; disable unused ports, rotate keys, and enforce firmware updates and access controls.

Recognize and acknowledge risks, then decide how to respond, including accepting risk when protection costs exceed benefits. Explore mitigation, transference, and risk assessments of threats and vulnerabilities.

Penetration testers mimic hackers to find security flaws, using passive reconnaissance (public databases, social engineering) and active reconnaissance, with scope and permission, covering black, white, and gray box testing.

Explore data locality, PCI DSS, and GDPR to understand regulatory compliance and data protection across borders.

Identify symptoms and isolate the problem using diagnostic tools. Analyze traffic, validate fixes, and document outcomes.

Explore hardware troubleshooting tools, including crimpers for RJ45 and RJ11 cables, cable testers, punch down tools, fiber light meters, tone generators, loopback plugs, multimeters, and spectrum analyzers to verify connectivity.

Explore software troubleshooting tools such as packet sniffers, port scanners, and protocol analyzers like Wireshark to diagnose network issues; use a Wi‑Fi analyzer and speed testers like speedtest.net for validation.

Learn common troubleshooting commands for network diagnostics, including ping, tracert, nslookup, ipconfig, pathping, netstat, arp, and tcpdump across Windows and Unix-like systems.

Explore common wired connectivity and performance issues, including attenuation, latency, and jitter affecting copper cabling. Address EMI, crosstalk, faulty cables, duplex mismatches, and VLAN misconfigurations.

Explore common wireless connectivity issues and performance factors, including reflection, refraction, absorption, latency, jitter, attenuation, interference, antenna types, channel planning with non-overlapping 1, 6, 11, power levels, passphrase, and SNR.

Learn to diagnose common network service issues, including dns name resolution failures, gateway and dhcp problems, ip conflicts, rogue dhcp, untrusted ssl errors, blocked ports, service unavailability, and hardware failures.

Master the fundamentals of cybersecurity, protecting data and devices from threats like phishing, malware, ransomware, and social engineering for individuals and businesses using firewalls, encryption, and strong passwords.

Explore core cybersecurity principles, including the cia triad of confidentiality, integrity, and availability, and the attacker triad of disclosure, alteration, and denial. Learn authentication, authorization, and accounting, and how defense in depth protects data and systems.