CompTIA Network+™ Certification All-In-One Exam Guide, Eighth Edition (Exam N10-008)
By Mike Meyers and Scott Jernigan
Contents:
Acknowledgments . ………………………………………………………………. xxiii
Introduction . ……………………………………………………………………… xxv
Chapter 1 Network Models . ………………………………………………………………………. 1
Historical/Conceptual . …………………………………………………………. 2
Working with Models . …………………………………………………… 2
Biography of a Model . ………………………………………………………… 2
Network Models . ……………………………………………………………….. 3
The OSI Seven-Layer Model on a Simple Network . ……………. 4
Welcome to MHTechEd! . …………………………………………….. 5
Test Specific . ……………………………………………………………….. 6
Let’s Get Physical—Network Hardware and Layers 1–2 . . . . 6
Beyond the Single Wire—Network Software
and Layers 3–7 . 21
The OSI Seven-Layer Model and Remote Work . 35
Chapter Review . 39
Questions . 39
Answers . 40
Chapter 2 Cabling and Topology .
Test Specific . 4434
Network Topologies . 44
Bus and Ring . 44
Star . 46
Hybrid . 47
Mesh . 48
Parameters of a Topology . 49
Cabling and Connectors . 50
Copper Cabling and Connectors . 50
Fiber-Optic Cabling and Connectors . . . . . . . . . . . . . . . . . . . 59
Fire Ratings . 63
Networking Industry Standards—IEEE . 63
Chapter Review . 65
Questions . 65
Answers . 66
Chapter 3 Ethernet Basics . ………………………………………………………………………………. 67
Historical/Conceptual . 68
Ethernet . 68
802.3 Standards . 68
Test Specific . 69
Ethernet Frames . 69
Early Ethernet Standards . 71
Bus Ethernet . 71
10BASE-T . 72
10BASE-FL . 76
CSMA/CD . 79
Enhancing and Extending Ethernet Networks . 81
The Trouble with Hubs . 81
Switches to the Rescue . 81
Connecting Ethernet Segments . 84
Troubleshooting Switches . 87
Chapter Review . 87
Questions . 87
Answers . 89
Chapter 4 Ethernet Standards .
Test Specific . ……………………………………………………………………… 9911
100-Megabit Ethernet . …………………………………………………………. 91
100BASE-T . ………………………………………………………………………. 92
100BASE-FX . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94
100BASE-SX . …………………………………………………………………….. 95
Full-Duplex Ethernet . ………………………………………………………….. 95
Gigabit Ethernet . ………………………………………………………………… 97
1000BASE-SX . …………………………………………………………………… 97
1000BASE-LX . …………………………………………………………………. 98
SFF Fiber Connectors . ………………………………………………………… 98
Mechanical Connection Variations . ………………………………………. 99
Implementing Multiple Types of Gigabit Ethernet . …………………… 99
Ethernet Evolutions . …………………………………………………………… 100
10 Gigabit Ethernet . 100
Chapter Review . 107
Questions . 107
Answers . 109
Chapter 5 Installing a Physical Network .
Historical/Conceptual . 111113
Understanding Structured Cabling . 113
Cable Basics—A Star Is Born . 114
Test Specific . ……………………………………………………………………… 115
Structured Cable—Network Components . ……………………………… 115
Structured Cable—Beyond the Star . ………………………………………. 130
Installing Structured Cabling . ………………………………………………. 134
Getting a Floor Plan . ………………………………………………….. 134
Mapping the Runs . ……………………………………………………… 135
Determining the Location of the
Telecommunications Room . 136
Pulling Cable . 137
Making Connections . 141
Testing the Cable Runs . 148
NICs . 157
Buying NICs . 158
Link Lights . 160
Diagnostics and Repair of Physical Cabling . 162
Diagnosing Physical Problems . 162
Check Your Lights . 162
Check the NIC . 163
Cable Testing . 164
Problems in the Telecommunications Room . 165
Toners . 166
Chapter Review . 168
Questions . 168
Answers . 170
Chapter 6 TCP/IP Basics .
Historical/Conceptual . 117712
Test Specific . 172
The TCP/IP Protocol Suite . 172
Network Layer Protocols . 173
Transport Layer Protocols . 174
Application Layer Protocols . 176
IP and Ethernet . 177
IP Addresses . 181
IP Addresses in Action . 188
Class IDs . 197
CIDR and Subnetting . 199
Subnetting . 199
CIDR: Key Takeaways . 209
IP Address Assignment . 209
Static IP Addressing . 210
Dynamic IP Addressing . 214
Special IP Addresses . 227
Chapter Review . 228
Questions . 228
Answers . 229
Chapter 7 Routing .
Historical/Conceptual . 223312
How Routers Work . 232
Test Specific . 234
Routing Tables . 234
Freedom from Layer 2 . 243
Network Address Translation . 244
Dynamic Routing . 250
Routing Metrics . 251
Distance Vector and Path Vector . 253
Link State . 260
EIGRP . 261
Dynamic Routing Makes the Internet . 262
Route Redistribution and Administrative Distance . 262
Working with Routers . 263
Connecting to Routers . 263
Basic Router Configuration . 271
Router Problems . 273
Chapter Review . 277
Questions . 277
Answers . 279
Chapter 8 TCP/IP Applications .
Historical/Conceptual . 228812
Transport Layer and Network Layer Protocols . 282
How People Communicate . 282
Test Specific . 283
TCP . 283
UDP . 284
ICMP . 286
IGMP . 288
The Power of Port Numbers . 288
Registered Ports . 291
Connection Status . 294
Rules for Determining Good vs. Bad Communications . 296
Common TCP/IP Applications . 297
Telnet and SSH . 297
E-mail . 299
SQL . 304
FTP . 305
HTTP and HTTPS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 307
TCP/IP Applications Chart . 311
Beyond Network+ . 312
Other Layer 7 Applications . 312
Chapter Review . 314
Questions . 314
Answers . 315
Chapter 9 Network Naming .
Historical/Conceptual . 331178
Before DNS . 318
NetBIOS . 318
hosts . 320
Test Specific . 321
DNS . 321
How DNS Works . 321
Administering DNS Servers . 333
Troubleshooting DNS on Clients . 343
Diagnosing TCP/IP Network Issues . 347
Chapter Review . 350
Questions . 350
Answers . 351
Chapter 10 Securing TCP/IP .
Historical/Conceptual . 335534
Making TCP/IP Secure . 354
Encryption . 354
Integrity . 361
Nonrepudiation . 365
Test Specific . 370
Authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 370
Authorization . 371
TCP/IP Security Standards . 372
User Authentication Standards . 373
Encryption Standards . 380
Combining Authentication and Encryption . 385
Secure TCP/IP Applications . 387
HTTPS . 387
Securing E-Mail Protocols . 388
SCP . 389
SFTP . 389
SNMP . 390
LDAP . 391
NTP . 391
Chapter Review . 391
Questions . 391
Answers . 393
Chapter 11 Switch Features . ………………………………………………………………………………. 395
Test Specific . 396
Switch Management . 396
Access Management . 397
Port Configuration . 398
Port Security . 399
Virtual LANs . 400
Trunking . 401
Configuring a VLAN-Capable Switch . 402
Assigning VLANs and Tagging . 405
VLAN Trunking Protocol . 406
Inter-VLAN Routing . 407
DHCP and VLANs . 408
Voice VLANs . 409
Private VLANs . 409
Troubleshooting VLANs . 409
Multilayer Switches . 409
Load Balancing . 410
QoS and Traffic Shaping . 413
Port Bonding . 414
Network Protection . 414
Chapter Review . 421
Questions . 421
Answers . 423
Chapter 12 IPv6 .
Test Specific . 442256
IPv6 Concepts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 426
IPv6 Addresses . 426
Neighbor Discovery . 432
IPv6 Implementations . 434
Stateless Address Autoconfiguration (SLAAC) . 434
Aggregation . 438
IPv6 and DNS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 441
Moving to IPv6 . 442
IPv4 and IPv6 . 442
Transition Mechanisms . 444
Chapter Review . 446
Questions . 446
Answers . 448
Chapter 13 WAN Connectivity .
Historical/Conceptual . 444590
WAN Technologies . 450
SONET . 451
Test Specific . ……………………………………………………………………… 451
Fiber Improvements . 451
Private WANs . 452
Last-Mile Technologies . 456
DSL . 456
Broadband Cable . 459
Satellite . 460
Fiber . 461
Cellular WAN . 461
Which Connection? . 465
Remote Access . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 466
Remote Terminal . 466
Virtual Private Networks . 470
WAN Troubleshooting Scenarios . 477
Loss of Internet Connectivity . 477
Interface Errors . 477
DNS Issues . 478
Interference . 478
Chapter Review . 480
Questions . 480
Answers . 481
Chapter 14 Wireless Networking .
Historical/Conceptual . 448833
Test Specific . 484
Wi-Fi Standards . 484
802.11 . 485
802.11b . 493
802.11a . 494
802.11g . 494
802.11n . 495
802.11ac . 496
802.11ax . 496
WPS . 497
Wi-Fi Security . 497
Enterprise Wireless . 505
Implementing Wi-Fi . 509
Performing a Site Survey . 509
Installing the Client . 513
Setting Up an Ad Hoc Network . 514
Setting Up an Infrastructure Network . 515
Extending the Network . 527
Verifying the Installation . 528
Troubleshooting Wi-Fi . 528
No Connection . 528
Slow Connection . 532
Weird Connection . 535
Chapter Review . 537
Questions . 537
Answers . 539
Chapter 15 Virtualization and Cloud Computing .
Test Specific . 554412
Virtualization and Cloud Computing Concepts . 542
Virtualization . 542
Cloud Computing . 548
Infrastructure as Code . 554
Virtual Networking . 556
Putting Network Virtualization and Cloud Computing to Work . . . 563
Setting Up Rocket.Chat in a Local Hypervisor . 564
Managing Cloud Resources . 569
Setting Up Rocket.Chat on IaaS . 571
Desktop as a Service . 574
Interconnecting Local and Cloud Resources . 576
Chapter Review . 578
Questions . 578
Answers . 580
Chapter 16 Data Centers .
Test Specific . 558812
Classic Data Center Architecture and Design . 582
Tiers . 583
Traffic Flows . 585
Data Storage . 587
Where Is the Classic Data Center? . 589
The Modern Data Center . 589
Virtualization . 589
Software-Defined Networking . 590
Spine and Leaf . 590
High Availability in the Data Center . 591
Load Balancing . 591
Redundancy . 592
Facilities and Infrastructure Support . 593
Documenting the Data Center . 594
Network Diagrams . 595
Baseline Configurations . 600
Assessments . 600
Chapter Review . 602
Questions . 602
Answers . 604
Chapter 17 Integrating Network Devices .
Test Specific . 660057
Internet of Things . 607
IoT Home Automation . 607
IoT Home Security . 609
IoT Communications Technologies . 610
Hardening IoT Devices . 612
Unified Communication . 613
It Started with VoIP . 613
Unified Communication Features . 614
VTC and Medianets . 617
UCaaS . 618
ICS . 619
DCS . 620
PLC . 623
SCADA . 623
Chapter Review . 625
Questions . 625
Answers . 627
Chapter 18 Network Operations .
Test Specific . 662299
Risk Management . 629
Hardening and Security Policies . 630
Change Management . 634
Patching and Updates . 636
Training . 638
Common Agreements . 639
Security Preparedness . 640
Contingency Planning . 645
Incident Response . 645
Disaster Recovery . 646
Business Continuity . 647
Forensics . 648
Chapter Review . 651
Questions . 651
Answers . 653
Chapter 19 Protecting Your Network . ………………………………………………………………. 655
Test Specific . 655
Security Concepts . 655
CIA . 656
Zero Trust . 657
Defense in Depth . 657
Separation of Duties . 658
Network Threats . 658
Threat Terminology . 659
Spoofing . 660
Packet/Protocol Abuse . 660
Zero-Day Attacks . 661
Rogue Devices . 662
ARP Cache Poisoning . 662
Denial of Service . 666
On-Path Attack . 668
Session Hijacking . 669
Password Attacks . 669
Physical/Local Access . 669
Malware . 672
Social Engineering . 674
Common Vulnerabilities . 677
Unnecessary Running Services . 677
Unpatched/Legacy Systems . 679
Unencrypted Channels . 679
Cleartext Credentials . 679
RF Emanation . 680
Hardening Your Network . 680
Physical Security . 680
Network Security . 685
Device Hardening . 692
Host Security . 693
Firewalls . 697
Types of Firewalls . 697
Implementing and Configuring Firewalls . 699
Troubleshooting Firewalls . 702
Chapter Review . 703
Questions . 703
Answers . 705
Chapter 20 Network Monitoring .
Test Specific . ……………………………………………………………………… 770078
SNMP . …………………………………………………………………………….. 708
Monitoring Tools . 712
Packet Sniffers . 713
Protocol Analyzers . 713
Sensors . 718
Interface Monitors . 719
Performance Monitors . 720
Putting It All Together . 722
Scenario: Monitoring and Managing . 722
SIEM . 726
Chapter Review . 727
Questions . 727
Answers . 729
Chapter 21 Network Troubleshooting .
Test Specific . ……………………………………………………………………… 773312
Troubleshooting Tools . …………………………………………………………. 732
Hardware Tools . …………………………………………………………………. 732
Software Tools . …………………………………………………………………… 738
The Troubleshooting Process . ………………………………………………… 750
Identify the Problem . ………………………………………………….. 751
Establish a Theory of Probable Cause . …………………………… 753
Test the Theory to Determine the Cause . ……………………….. 754
Establish a Plan of Action and Identify Potential Effects . . . . 754
Implement the Solution or Escalate as Necessary . …………….. 755
Verify Full System Functionality and Implement Preventive Measures . ………………………………………………. 756
Document Findings, Actions, Outcomes, and Lessons Learned . 756
Resolving Common Network Service Issues . 757
“We Can’t Access Our Web Server in Istanbul!” . 757
Network Troubleshooting Considerations . 759
Hands-On Problems . 760
Nearby Problems . 763
Far-flung Problems . 769
Network Performance Issues . 772
Troubleshooting Is Fun! . 773
Chapter Review . 773
Questions . 773
Answers . 775
Appendix A Exam Objective Map . 777
Appendix B Create Your Study Plan . 799
Review Your Overall Score . 799
Review Your Score by CompTIA Network+ Exam Domain . 800
Appendix C About the Online Content . 801
System Requirements . 801
Your Total Seminars Training Hub Account . 801
Privacy Notice . 802
Single User License Terms and Conditions . 802
TotalTester Online . 803
Pre-Assessment . 803
Create Your Study Plan . 804
Playing the CompTIA Network+ Introduction Video . 804
Mike’s CompTIA Network+ Video Training Sample . 804
TotalSims Sample for CompTIA Network+ . 804
Mike’s Cool Tools . 804
Technical Support . 804
Glossary . 805
Index . ………………………………………………………………………………. 893