N10-009 Networking Concepts
Networking Concepts
Detailed list of N10-009 knowledge points
Networking Concepts Detailed Explanation
1. OSI Model (Open Systems Interconnection Model)
The OSI model is like a "blueprint" that helps us understand how data travels across networks. It breaks down the complex process into seven layers, each with a specific task. This makes it easier to understand the different functions and how they work together.
The Seven Layers of the OSI Model:
Each layer works independently but relies on the layers beneath it to function properly. Let's go through each layer:
Physical Layer:
What it does: This is the first layer and it’s all about transmitting raw data through physical devices.
How it works: It handles the electrical, mechanical, and procedural aspects of data transmission. Think of this as the "wires and signals" part.
Examples:
- Cables (Ethernet cables, fiber optics)
- Wireless signals (Wi-Fi)
- Network interface cards (NICs)
Key point: The physical layer is responsible for turning digital data (bits) into signals that can travel across a network. These could be electrical signals (for copper cables) or light signals (for fiber optic cables).
Data Link Layer:
What it does: This layer ensures error-free data transfer between two devices on the same network.
How it works: It takes the data from the physical layer and groups it into frames. These frames are sent between devices like switches or network cards.
Examples:
- MAC addresses: Every device has a unique Media Access Control (MAC) address at this layer.
- Protocols: Ethernet, PPP (Point-to-Point Protocol).
Key point: It also ensures that the data frames reach the right device by using MAC addresses (unique hardware addresses) and handles error detection to prevent corrupted data from being sent.
Network Layer:
What it does: This layer is responsible for routing data from one network to another, across different networks.
How it works: It breaks the data into packets, attaches the necessary information (like source and destination IP addresses), and ensures the data gets from one place to another.
Examples:
- IP (Internet Protocol): The most common protocol here. It provides each device with an IP address.
- Routers work at this layer to route packets based on IP addresses.
Key point: The network layer is where the IP addresses come in. It's responsible for making sure the data can go through multiple networks (internet, local networks, etc.) and reach the right destination.
Transport Layer:
What it does: This layer ensures that the data reaches the correct application on the receiving end, and that it's sent in a reliable way.
How it works: It provides end-to-end communication services like error detection and correction. It breaks data into segments and sends it to the destination application.
Examples:
- TCP (Transmission Control Protocol): It guarantees that data is delivered correctly and in order, using checks and retransmissions.
- UDP (User Datagram Protocol): This one is faster than TCP but doesn’t guarantee delivery or order, useful for things like video streaming.
Key point: If the transport layer uses TCP, it will make sure data packets arrive in order, without any errors, and in the correct sequence.
Session Layer:
What it does: This layer manages the communication sessions between two devices.
How it works: It establishes, maintains, and terminates connections between devices for communication.
Examples:
- When you connect to a server to access a website, a session is created. This layer ensures that your session (your connection) stays active until you close the browser.
Key point: It makes sure that two systems can communicate with each other, manage their communication over time, and handle errors that might arise during communication.
Presentation Layer:
What it does: This layer focuses on data formatting, encryption, and compression.
How it works: It translates the data from the format that the application understands into a common format for transmission over the network, and vice versa when the data reaches the other end.
Examples:
- Encryption: Ensures that data is secure, for example, using SSL/TLS for secure browsing (HTTPS).
- Compression: Reduces the amount of data sent, improving speed (e.g., sending compressed images).
Key point: The presentation layer makes sure that the data can be correctly interpreted by both the sending and receiving devices.
Application Layer:
What it does: This is the top layer, where users and applications interact with the network. It's the layer closest to the user.
How it works: It provides services and protocols that allow applications to communicate over the network.
Examples:
- HTTP (Hypertext Transfer Protocol): Used by web browsers to access websites.
- FTP (File Transfer Protocol): Used to transfer files.
- SMTP (Simple Mail Transfer Protocol): Used to send emails.
Key point: This is where the "real work" happens. It's where you interact with applications like web browsers or email clients, and the protocols ensure that your communication with these services happens smoothly.
2. IP Addressing and Subnetting
IP Addressing is essential for devices to communicate over a network, and Subnetting helps divide networks into smaller, manageable parts.
IPv4 and IPv6:
IPv4:
- Uses 32-bit addresses (4 sets of 8 bits).
- Example:
192.168.1.1. - IPv4 is widely used, but its address space is limited (around 4 billion addresses), so we run out of IPs.
IPv6:
- Uses 128-bit addresses (8 sets of 16 bits).
- Example:
2001:0db8:85a3:0000:0000:8a2e:0370:7334. - IPv6 offers a massive number of addresses, designed to solve the shortage problem of IPv4.
Subnetting:
What is Subnetting?: It is the process of dividing a larger network into smaller networks (subnets). This helps improve network performance and security.
- Subnet Mask: This is used to define which part of an IP address represents the network and which part represents the device (host).
- Example:
255.255.255.0(common subnet mask) tells you that the first three parts (24 bits) are used for the network, and the last part (8 bits) is used for devices.
CIDR Notation: Instead of using a subnet mask like
255.255.255.0, CIDR uses a slash (/) to indicate the number of network bits. Example:192.168.1.0/24means 24 bits are used for the network portion of the IP address.
Private vs. Public IPs:
- Private IPs: These are reserved for internal networks and cannot be accessed from the internet. They are typically used in home or company networks. Examples:
192.168.x.x,10.x.x.x. - Public IPs: These are unique addresses used on the internet. Devices with public IPs can communicate with other devices on the internet.
3. Common Network Protocols
Protocols are rules that define how data is sent and received across a network.
TCP/IP Protocol Suite:
- TCP: Reliable, connection-based protocol. It ensures data arrives intact, in the correct order, and without errors.
- UDP: Faster, connectionless protocol, but it doesn't guarantee the delivery of packets. Ideal for streaming applications.
ARP (Address Resolution Protocol):
- ARP helps map an IP address to a MAC address. This way, devices can find each other on the same network.
DNS (Domain Name System):
- DNS translates domain names like www.example.com into IP addresses like
192.168.1.1. It allows users to access websites by name instead of by numeric IP.
DHCP (Dynamic Host Configuration Protocol):
- DHCP automatically assigns IP addresses to devices on a network, so you don’t have to manually assign one to each device.
NAT (Network Address Translation):
- NAT allows multiple devices on a private network to share a single public IP address when accessing the internet, helping conserve IP addresses.
These concepts are the foundational building blocks of networking. As you learn more, you'll build on these ideas to understand more advanced topics and troubleshoot networks effectively.
Networking Concepts (Additional Content)
1. Common Protocol and Port Number Pairings
In the Network+ exam, you are expected to memorize well-known protocols and their associated TCP/UDP port numbers, as these are commonly tested in both straightforward recall and applied scenario questions.
Key Protocol-to-Port Mappings:
| Protocol | Port | Transport Layer Protocol | Description |
|---|---|---|---|
| HTTP | 80 | TCP | Used for unsecured web traffic |
| HTTPS | 443 | TCP | Used for encrypted web traffic |
| FTP (File Transfer Protocol) | 20 (data), 21 (control) | TCP | Used to transfer files between systems |
| DNS (Domain Name System) | 53 | TCP/UDP | Resolves domain names to IP addresses |
| SMTP (Simple Mail Transfer Protocol) | 25 | TCP | Sends email between servers |
| POP3 (Post Office Protocol v3) | 110 | TCP | Retrieves emails from mail servers |
| IMAP (Internet Message Access Protocol) | 143 | TCP | Retrieves and manages emails on the server |
| Telnet | 23 | TCP | Remote command-line access (unsecured) |
| SSH (Secure Shell) | 22 | TCP | Secure remote command-line access |
| RDP (Remote Desktop Protocol) | 3389 | TCP | Remote desktop access for Windows systems |
| SNMP (Simple Network Management Protocol) | 161 | UDP | Used for monitoring network devices |
| TFTP (Trivial File Transfer Protocol) | 69 | UDP | Lightweight file transfers, usually in booting |
| DHCP (Dynamic Host Configuration Protocol) | 67/68 | UDP | Assigns IP configuration dynamically |
| LDAP (Lightweight Directory Access Protocol) | 389 | TCP/UDP | Accessing and managing directory services |
Tip for Exam:
You may encounter questions like:
“A technician is troubleshooting an email server that is unable to send outbound messages. Which port should they verify is open?”
Correct answer: TCP port 25 (SMTP).
2. Network Performance Metrics
Understanding basic network performance terminology is essential for both troubleshooting and network design questions.
Key Terms and Definitions:
Bandwidth:
Definition: The maximum capacity of a network link to transmit data, usually measured in Mbps or Gbps.
Exam Insight: It does not reflect actual usage, only the maximum theoretical rate.
Throughput:
Definition: The actual data rate achieved during communication, affected by congestion, hardware, etc.
Example: Even with a 1 Gbps link, throughput might be 750 Mbps due to interference or overhead.
Latency:
Definition: The time delay between sending and receiving data, typically measured in milliseconds (ms).
Exam Insight: Real-time services like VoIP or gaming require low latency.
Jitter:
Definition: The variation in packet delay, especially problematic in streaming and real-time communication.
Exam Insight: Even with acceptable average latency, high jitter can cause call drops or video glitches.
Packet Loss:
Definition: When packets are dropped or discarded during transmission, often due to congestion or errors.
Impact: Can seriously degrade performance for video, voice, or file transfers.
3. Network Topologies
Although topologies may seem basic, they are frequently referenced in troubleshooting and design-related exam scenarios.
Common Network Topologies:
Star Topology:
Description: All devices connect to a central device (usually a switch).
Pros: Easy to manage and isolate failures.
Cons: Central point of failure.
Example: Most modern LANs use this design.
Bus Topology:
Description: All devices share a single communication line.
Pros: Simple layout.
Cons: Difficult to isolate faults; prone to collisions.
Usage: Largely outdated.
Ring Topology:
Description: Devices form a logical or physical ring, each forwarding data to the next.
Pros: Predictable data flow.
Cons: Failure in one link can disrupt the entire network unless dual-ring is used.
Example: Token Ring (legacy); some Metro Ethernet setups.
Mesh Topology:
Description: Every device connects to multiple others, providing redundancy.
Full Mesh: Every device is connected to every other.
Partial Mesh: Only some devices are interconnected.
Pros: High fault tolerance.
Cons: Complex and expensive.
Usage: Backbone or WAN environments.
Hybrid Topology:
Description: Combination of two or more topologies.
Example: A star topology LAN inside a mesh-connected WAN.
4. Network Types (LAN, WAN, MAN, PAN)
Understanding the classification of network types by size and scope is foundational for both design and operations questions.
Network Types and Use Cases:
LAN (Local Area Network):
Scope: Covers a small, localized area (e.g., office, building).
Tech: Ethernet, Wi-Fi.
Control: Typically owned and managed by one organization.
WAN (Wide Area Network):
Scope: Spans large geographic areas; connects multiple LANs.
Example: The Internet; private MPLS networks.
Control: Often involves service providers.
MAN (Metropolitan Area Network):
Scope: Spans a city or large campus.
Example: University or hospital campuses with fiber links.
Tech: Metro Ethernet, fiber rings.
PAN (Personal Area Network):
Scope: Very short-range, personal devices.
Example: Bluetooth connections between phone and headset, or USB tethering.
Tech: Bluetooth, infrared, USB.
WLAN (Wireless LAN):
Scope: A LAN implemented using wireless (Wi-Fi) instead of cables.
Note: Often grouped under LAN, but explicitly tested in some questions.
Frequently Asked Questions
A network administrator must determine which OSI layer is responsible for routing packets between networks. Which OSI layer performs this function?
The Network layer (Layer 3) is responsible for routing packets between networks.
The OSI Network layer handles logical addressing and routing decisions. Devices operating at this layer—such as routers and Layer-3 switches—analyze IP addresses to determine the optimal path for data between networks. Unlike Layer 2 devices (switches), which only forward frames within the same network segment using MAC addresses, Layer 3 devices use routing tables and routing protocols to forward packets across different networks.
A common mistake is confusing the Data Link layer with routing functions because switches also move traffic between ports. However, Data Link devices operate only within a single broadcast domain, while routing requires logical addressing and inter-network communication. Understanding this distinction helps when analyzing connectivity problems across multiple subnets.
Demand Score: 85
Exam Relevance Score: 90
An administrator must design a subnet capable of supporting at least 50 hosts. Which subnet mask would best meet this requirement?
A subnet mask of 255.255.255.192 (/26) supports up to 62 usable hosts and meets the requirement.
Subnetting determines how many hosts can exist within a network segment. With a /26 subnet mask, 6 bits remain for host addressing (32 − 26 = 6). This produces 64 total addresses per subnet. After subtracting the network and broadcast addresses, 62 usable host addresses remain.
Since the requirement is at least 50 hosts, /26 provides sufficient capacity while minimizing wasted address space. Using a /25 would provide 126 hosts but would allocate significantly more addresses than required.
A frequent mistake is selecting a subnet based only on familiarity rather than calculating host capacity. Network+ questions often test whether you can match subnet sizes with specific host requirements efficiently.
Demand Score: 83
Exam Relevance Score: 92
Which network topology provides redundancy by allowing multiple paths between devices, reducing the impact of a single link failure?
A mesh topology provides redundancy through multiple communication paths.
In a mesh topology, devices connect to several other devices, creating multiple possible paths for data transmission. If one link fails, traffic can be rerouted through alternate paths, improving fault tolerance and reliability.
There are two types: full mesh (every node connects to every other node) and partial mesh (only critical nodes have multiple connections). While mesh topologies increase network resilience, they also require more cabling and configuration compared to simpler topologies such as star or bus.
Exam scenarios often ask administrators to choose a topology based on requirements like redundancy, cost, or scalability. Mesh designs are typically selected when reliability and availability outweigh infrastructure costs.
Demand Score: 80
Exam Relevance Score: 88
Which protocol uses port 443 and is designed to provide secure communication over the web?
HTTPS (Hypertext Transfer Protocol Secure) uses port 443.
HTTPS is the secure version of HTTP and encrypts data exchanged between clients and servers using TLS (Transport Layer Security). This encryption protects sensitive information such as login credentials, payment details, and session cookies from interception during transmission.
Port numbers are important because they allow multiple services to operate on a single device simultaneously. When a client connects to port 443, the server recognizes the request as HTTPS traffic and initiates encrypted communication.
Many Network+ scenarios test recognition of common ports and protocols. A common mistake is confusing HTTPS (443) with HTTP (80) or other secure protocols like SSH (22). Understanding these mappings helps identify services running on a host during troubleshooting or network analysis.
Demand Score: 84
Exam Relevance Score: 90
Which addressing type allows a single packet to be delivered to every device within the same broadcast domain?
Broadcast addressing allows delivery to every device within a broadcast domain.
Broadcast traffic sends packets to all devices in the same Layer-2 network segment. In IPv4 networks, the broadcast address typically ends with all host bits set to 1 (for example, 192.168.1.255 in a /24 network). Devices receiving broadcast traffic process the packet if it applies to them or discard it otherwise.
Protocols such as ARP rely on broadcast communication to discover MAC addresses associated with IP addresses. However, excessive broadcast traffic can cause congestion, which is why large networks are segmented into VLANs or subnets to limit broadcast domains.
In troubleshooting scenarios, understanding broadcast behavior helps diagnose issues such as ARP failures or excessive broadcast storms.
Demand Score: 78
Exam Relevance Score: 87
