CompTIA® Network+® N10-009 Certification Guide
Description
Looking to pass the CompTIA Network+ N10-009 exam and advance your IT career? Employers seek certified professionals who can design, secure, and troubleshoot modern networks. Memorizing concepts won't cut it-you need a practical grasp of networking concepts, and this guide helps you build exactly that. Ian Neil, bestselling author of some of the most trusted CompTIA certification resources and a world-class CompTIA trainer, provides 100% coverage of all N10-009 exam objectives.
You'll start with the networking fundamentals, including the OSI model, topologies, ports, and protocols, then progress to configuring IPv4/IPv6 addressing, routing, switching, VLANs, and wireless networks. You'll master transmission media and transceivers and strengthen your security expertise with VPNs, IPSec, NAC, IDS/IPS, Zero Trust, and firewalls.
Beyond exam prep, this book explores cloud, virtualization, IoT, SDN, and SD-WAN, ensuring you're prepared for modern IT environments. It helps build your troubleshooting skills using tools such as SNMP, NetFlow, Wireshark, log analysis, and traceroute.
With practice questions across 25 chapters, 2 full-length online mock exams, 400 exam-style questions, and a 12% exam discount voucher, this guide equips you with the knowledge, experience, and confidence to earn your Network+ certification on the first try.
All prices
More details
Content
- Cover
- Discount Coupon
- Title Page
- Copyright Page
- Contributors
- Table of Contents
- Preface
- Domain 1: Networking Concepts
- Chapter 1: Explain Concepts Related to the Open System Interconnection (OSI) Reference Model
- What is the OSI model?
- Layer 1: Physical layer
- Layer 2: Data link layer
- Layer 3: Network layer
- Layer 4: Transport layer
- Layer 5: Session layer
- Layer 6: Presentation layer
- Layer 7: Application layer
- Why do we use the OSI model?
- Summary
- Exam objective 1.1
- Chapter review questions
- Chapter 2: Compare and Contrast Networking Appliances, Applications, and Functions
- Physical and virtual appliances
- Hub
- Switch
- Router
- Firewall
- Intrusion detection system (IDS)/Intrusion prevention system (IPS)
- Load balancer
- Proxy server
- Network-attached storage (NAS)
- Storage area network (SAN)
- Wireless
- Applications
- Content delivery network
- Functions
- Virtual private networks
- IPSec Security Association
- Quality of service (QoS)
- Time to live
- Summary
- Exam objective 1.2
- Chapter review questions
- Chapter 3: Summarize Cloud Concepts and Connectivity Options
- Network functions virtualization
- Virtual private cloud
- Network security groups
- Network security lists
- Comparing NSGs and NSLs
- Cloud gateways
- Cloud connectivity options
- Direct Connect
- Cloud deployment models
- Public cloud
- Private cloud
- Hybrid cloud
- Community cloud
- Cloud service models
- Software as a service (SaaS)
- Infrastructure as a service (IaaS)
- Platform as a service (PaaS)
- Scalability
- Elasticity
- Multitenancy
- Summary
- Exam objective 1.3
- Chapter review questions
- Chapter 4: Explain Common Networking Ports, Protocols, Services, and Traffic Types
- Protocols and ports
- Port numbers
- Protocols
- Internet protocol types
- Internet Control Message Protocol
- Transmission Control Protocol
- User Datagram Protocol
- Generic Routing Encapsulation
- Traffic types
- Summary
- Exam objective 1.4
- Chapter review questions
- Chapter 5: Compare and Contrast Transmission Media and Transceivers
- Wireless
- 802.11 standards
- Cellular
- Long Term Evolution (LTE)
- Narrowband-IoT (NB-IoT)
- Global System for Mobile Communications (GSM)
- Satellite
- Wired
- Fiber Ethernet and OM standards
- Single-mode versus multimode fiber
- Direct attach copper cables
- Coaxial cable
- Cable speeds
- Plenum versus non-plenum cable
- Transceivers
- Protocols
- Form factors
- Connector types
- Summary
- Exam objective 1.5
- Chapter review questions
- Chapter 6: Compare and Contrast Network Topologies, Architectures, and Types
- Mesh
- Star/hub and spoke
- Token ring topology
- Hybrid
- Spine and leaf
- Point to point
- Three-tier hierarchical model
- Collapsed core
- Traffic flows
- Summary
- Exam objective 1.6
- Chapter review questions
- Chapter 7: Given a Scenario, Use Appropriate IPv4 Network Addressing
- Binary
- IP addresses
- Public versus private
- Automatic private IP addressing (APIPA)
- Loopback/Localhost
- IPv4 address classes
- Hosts
- Networks
- Subnet masks
- Subnetting
- Advantages of subnetting
- Devising subnets
- Classless Inter-Domain Routing (CIDR)
- Variable length subnet mask (VLSM)
- Summary
- Exam objective 1.7
- Chapter review questions
- Chapter 8: Summarize Evolving Use Cases for Modern Network Environments
- Software-defined network (SDN)
- Software-defined wide area network
- Key benefits of SDNs and SD-WANs
- Virtual extensible local area network (VXLAN)
- Zero-trust architecture
- Policy-based authentication
- Authorization
- Least privilege access
- Secure access service edge/security service edge
- Infrastructure as code
- IPv6 addressing
- Mitigating address exhaustion
- Compatibility requirements
- Summary
- Exam objective 1.8
- Chapter review questions
- Domain 2: Network Implementation
- Chapter 9: Explain Characteristics of Routing Technologies
- Introduction
- Static routing
- Key characteristics of static routing
- Dynamic routing
- Autonomous systems
- Border Gateway Protocol (BGP)
- Enhanced Interior Gateway Routing Protocol (EIGRP)
- Open Shortest Path First
- Route selection
- Address translation
- NAT
- Port address translation (PAT)
- First Hop Redundancy Protocol (FHRP)
- Virtual IP (VIP)
- Subinterfaces
- Summary
- Exam objective 2.1
- Chapter review questions
- Chapter 10: Given a Scenario, Configure Switching Technologies and Features
- Trunk ports/links
- Switch virtual interface (SVI)
- Interface configuration
- Native VLAN
- Voice VLAN
- Private VLAN
- 802.1Q tagging
- Link aggregation
- Speed
- Duplex
- Spanning Tree Protocol (STP)
- STP variants and modern usage
- Maximum transmission unit
- Sliding window
- Standard Ethernet frame
- Jumbo frames
- Summary
- Exam objective 2.2
- Chapter review questions
- Chapter 11: Given a Scenario, Select and Configure Wireless Devices and Technologies
- Channels
- Channel width
- Non-overlapping channels
- Wider channel widths
- Regulatory impacts
- Frequency options
- Band steering
- Service set identifier (SSID)
- Basic service set identifier (BSSID)
- Extended service set identifier (ESSID)
- Network types
- Mesh network
- Ad hoc network
- Point to point
- Infrastructure wireless network
- Encryption
- Wi-Fi Protected Access 2 (WPA2)
- Wi-Fi Protected Access 3 (WPA3)
- Guest networks
- Authentication
- Enterprise wireless authentication
- Antennas
- Autonomous versus lightweight access points
- Summary
- Exam objectives 2.3
- Chapter review questions
- Chapter 12: Explain Important Factors of Physical Installations
- Important installation implications
- Locations
- Rack size
- Port-side exhaust/intake
- Cabling
- T568A and T568B wiring standards
- Different types of cables and their uses
- Lockable parts of the network
- Power
- Power load
- Voltage
- Environmental factors
- Summary
- Exam objective 2.4
- Chapter review questions
- Domain 3: Network Operations
- Chapter 13: Explain the Purpose of Organizational Processes and Procedures
- Documentation
- Physical diagrams versus logical diagrams
- Network diagrams
- Asset inventory
- IP address management
- Service-level agreements (SLAs)
- Wireless survey
- Life-cycle management
- Software management
- Decommissioning
- Change management
- Configuration management
- Summary
- Exam objective 3.1
- Chapter review questions
- Chapter 14: Given a Scenario, Use Network Monitoring Technologies
- Methods
- SNMP
- Flow data
- Packet capture
- Baseline metrics
- Log aggregation
- Application programming interface (API) integration
- Port mirroring
- Solutions
- Network discovery
- Traffic analysis
- Performance monitoring
- Availability monitoring
- Configuration monitoring
- Summary
- Exam objective 3.2
- Chapter review questions
- Chapter 15: Explain Disaster Recovery Concepts
- Disaster recovery metrics
- Disaster recovery sites
- High-availability approaches
- Testing
- Summary
- Exam objective 3.3
- Chapter review questions
- Chapter 16: Given a Scenario, Implement IPv4 and IPv6 Network Services
- Dynamic addressing
- Dynamic Host Configuration Protocol
- Name resolution
- DNS
- DNS record types
- Time protocols
- Precision Time Protocol
- Network Time Security
- Summary
- Exam objective 3.4
- Chapter review questions
- Chapter 17: Compare and Contrast Network Access and Management Methods
- VPNs
- IPSec modes of operation
- Site-to-site VPN
- Types of site-to-site VPN tunnels
- Client-to-site VPNs
- Clientless VPNs
- Split tunnel and full tunnel VPNs
- Connection methods
- SSH (Secure Shell)
- Graphical user interface (GUI)
- APIs
- Console
- Jump box/host
- In-band vs. out-of-band (OOB) management
- Summary
- Exam objective 3.5
- Chapter review questions
- Domain 4: Network Security
- Chapter 18: Explain the Importance of Basic Network Security Concepts
- Logical security
- Encryption
- Certificates
- Identity and access management (IAM)
- Geofencing
- Physical security
- Camera
- Locks
- Deception technologies
- Honeypot, honeynets, and honeyfiles
- Common security terminology
- Confidentiality, integrity, and availability triad
- Audits and regulatory compliance
- Payment Card Industry Data Security Standards (PCI DSS)
- General Data Protection Regulation (GDPR)
- Network segmentation enforcement
- Internet of Things (IoT) and Industrial Internet of Things (IIoT)
- Supervisory control and data acquisition, industrial control systems, and operational technology
- Guest networks and devices
- Bring your own device (BYOD)
- Choose your own device (CYOD)
- Corporate-owned, personally enabled (COPE)
- Zones
- Logical segmentation
- Summary
- Exam objective 4.1
- Chapter review questions
- Chapter 19: Summarize Various Types of Attacks and Their Impact on the Network
- Denial-of-service (DoS)/distributed denial-of-service (DDoS)
- VLAN hopping
- Media access control flooding
- Poisoning
- ARP spoofing
- Domain name system (DNS) attacks
- DNS name resolution
- DNS cache poisoning
- DNS spoofing
- Rogue devices and services
- Rogue access points
- Rogue DHCP servers
- Evil twin
- On-path attacks
- Social engineering
- Phishing
- Dumpster diving
- Shoulder surfing
- Tailgating
- Malware
- Summary
- Exam objective 4.2
- Chapter review questions
- Chapter 20: Given a Scenario, Apply Network Security Features, Defense Techniques, and Solutions
- Device hardening
- Unused ports
- Default passwords
- Network access control (NAC)
- Port security
- Key management
- Security rules
- Access control lists (ACLs)
- Proxy server
- Zones
- Trusted versus untrusted zones
- Screened subnet
- Summary
- Exam objective 4.3
- Chapter review questions
- Domain 5: Network Troubleshooting
- Chapter 21: Explain the Troubleshooting Methodology
- Identify the problem
- Gather information
- Question users
- Identify symptoms
- Determine if anything has changed
- Duplicate the problem, if possible
- Approach multiple problems individually
- Establish a theory of probable cause
- Question the obvious
- Consider multiple approaches
- Test the theory to determine the cause
- If the theory is confirmed, determine next steps to resolve the problem
- If the theory is not confirmed, establish a new theory or escalate
- Establish a plan of action to resolve the problem and identify potential effects
- Implement the solution or escalate as necessary
- Verify full system functionality and implement preventive measures if applicable
- Document findings, actions, outcomes, and lessons learned throughout the process
- Summary
- Exam objective 5.1
- Chapter review questions
- Chapter 22: Given a Scenario, Troubleshoot Common Cabling and Physical Interface Issues
- Cable issues
- Incorrect cable
- Signal degradation
- Improper termination
- Transmitter (TX) transposed
- Receiver (RX) transposed
- Cable testing tools
- Interface issues
- Increasing interface counters
- Port status
- Hardware issues
- Power over Ethernet (PoE)
- Transceiver issues
- Summary
- Exam objectives 5.2
- Chapter review questions
- Chapter 23: Given a Scenario, Troubleshoot Common Issues with Network Services
- Troubleshooting
- Switching issues
- Spanning Tree Protocol (STP)
- Access control lists
- Incorrect VLAN assignment
- Route selection
- Routing table
- Default routes
- Address pool exhaustion
- Incorrect default gateway
- Incorrect IP address
- Duplicate IP addresses
- Duplicate MAC addresses
- Incorrect subnet mask
- Summary
- Exam objective 5.3
- Chapter review questions
- Chapter 24: Given a Scenario, Troubleshoot Common Performance Issues
- Congestion/contention
- Bottlenecking
- Bandwidth
- Throughput capacity
- Latency
- Packet loss
- Jitter
- Measuring Jitter
- Reducing jitter
- Wireless
- Interference
- Signal degradation or loss
- Insufficient wireless coverage
- Roaming misconfiguration
- Summary
- Exam objective 5.4
- Chapter review questions
- Chapter 25: Given a Scenario, Use the Appropriate Tool or Protocol to Solve Networking Issues
- Software tools
- Protocol analyzer
- Command-line tools
- Network mapper (nmap)
- Hardware tools
- Toner and probe tool
- Basic networking device commands
- show mac-address-table
- show route
- show interface
- show config
- show arp
- show vlan
- show power
- Summary
- Exam objective 5.5
- Chapter review questions
- Chapter 26: Accessing the Online Practice Resources
- How to Access These Materials
- Purchased from Packt Store (packtpub.com)
- Purchased from Amazon and Other Sources
- Troubleshooting Tips
- Share Feedback
- Other Books You May Enjoy
- About Packt
- Index
- Coupon Code for CompTIA Network+ N10-009 Exam Vouchers
1
Explain Concepts Related to the Open System Interconnection (OSI) Reference Model
As of 2025, 5.56 billion people worldwide use the internet regularly, meaning that more than two-thirds of the global population is connected to a computer network in one way or another. In the information age, everything from phones to servers, lightbulbs to cameras, and laptops to cars is intertwined through cables and radio waves.
Although the growth of global communication has been largely organic, building a modern network that is stable, secure, and efficient requires careful planning, regular maintenance, and expert troubleshooting. Today's IT networks come in many forms and are constantly evolving. To be an effective network engineer, you need the skills and knowledge to analyze, manage, and operate an almost infinite variety of network setups.
The CompTIA Network+ exam is designed to validate those skills and that knowledge. Earning this certification gives prospective clients and employers confidence that you can navigate the complexity of modern network engineering. It will also give you the confidence that you have the tools to progress in a vital, rewarding career.
This book covers everything you need to know to become CompTIA Network+ certified. Over the following chapters, you will learn about the core concepts, implementation strategies, operational practices, security essentials, and troubleshooting methodologies necessary for success in the exam.
However, before diving into the details of network functions, components, risks, and solutions, it's important to first understand what a network actually is. The Open Systems Interconnection (OSI) reference model provides a conceptual framework for understanding and standardizing the functions of a network. Rather than focusing on cables and hardware, the OSI model takes an abstract, layered approach that applies to all networks, regardless of their internal structure or underlying technologies. Developed by the International Organization for Standardization (ISO), the OSI model establishes a common language for describing and designing networks.
This chapter covers the first objective in Domain 1: 1.1 Explain concepts related to the Open System Interconnection (OSI) reference model.
Note
A full breakdown of objective 1.1 will be given at the end of the chapter.
What is the OSI model?
Modern IT networks can range from a small setup with just a few computers sharing a printer to vast infrastructures spanning multiple offices, continents, and cloud resources. No matter the size, architecture, or geographical spread, the job of the network engineer is to keep information flowing through that network reliably, efficiently, and securely. To do this, there is a range of physical and virtual appliances, protocols, techniques, and standards. The following chapters will cover these, but before doing so, it's worth looking at what a network is conceptually.
When you think of a network, you can break it down into its individual components, such as a router or a virtual private network (VPN). You can also consider it in terms of different functions, such as data routing, user interaction, or a mobile device connecting wirelessly. Often, when troubleshooting a problem, you won't start by identifying which piece of equipment has failed but rather by understanding how something isn't working. A user is more likely to complain that they can't access certain resources than to say that a routing table needs to be updated.
So, what does thinking about a network in terms of functions mean? This is where the OSI model comes in. The OSI model divides the process of network communication into seven distinct layers, with layer 1 being the physical layer, and layer 7 being the application layer. Each layer is dependent on the layer beneath it and serves the layer above, and each has its own specific functions and protocols. These layers, from top to bottom, are shown in Table 1.1.
Layer
Title
Function
Protocol/Devices
7
Application
Provides user access to network services. Examples include web browsers and email clients.
HTTP, HTTPS, Domain Name System (DNS), Simple Mail Transfer Protocol (SMTP), File Transfer Protocol (FTP), Post Office Protocol version 3 (POP3), Internet Message Access Protocol (IMAP), Telnet, Secure Shell (SSH), Secure Sockets Layer (SSL)/Transport Layer Security (TLS), web application firewalls (WAFs), intrusion prevention systems (IPSs), and sophisticated load balancers.
6
Presentation
Ensures that data is in a usable format and is where data encryption occurs.
ASCII, Unicode, SSL/TLS.
5
Session
Manages sessions between applications. Establishes, manages, and terminates connections between local and remote applications.
Logging in and creating a session, and logging out to terminate the session. Establishes connections.
4
Transport
End-to-end error communication, recovery, and flow control. Protocols such as TCP and UDP operate at this layer.
Datagrams: basic load balancers, transport layer firewall (also known as a Layer 4 firewall).
3
Network
Addressing and routing of data. Manages packet forwarding, including routing through intermediate routers.
Packets and IP addresses - routers, firewalls, packet filtering.
2
Data Link
Manages the reliable transmission of data frames over a physical medium, ensuring error-free communication between directly connected devices.
Frames, media access control (MAC) addresses - switch and bridge. Defines the format of the data on the network.
1
Physical
Connects devices using cables, wireless communication, hubs, and repeaters.
Bits: hubs and repeaters
Cables: coax, Ethernet, fiber, Wi-Fi, and Bluetooth
Table 1.1: The OSI layers, functions, protocols, and devices.
Table 1.1 gives an overview of what each of the layers does. Understanding the order and function of the layers is important for the exam. One way of learning the model is with the mnemonic shown in Figure 1.1.
Figure 1.1: A mnemonic for the functions of the seven layers of the OSI model
Note
When you prepare for the exam, you must know the function and the order of the layers. The mnemonic in Figure 1.1 can help you.
The following section will go into each layer in more detail.
Layer 1: Physical layer
The devices that operate at the physical layer are hubs, repeaters, and network cables. These cables can be Ethernet cables made out of copper, which transmit electrical signals, or fiber-optic cables, which transmit light pulses. The quality and type of cable determine how far and fast data can travel. Wireless also operates at this layer. Electronic devices that can connect to a local area network (LAN) using an Ethernet cable are known as Ethernet devices.
A hub is a basic...
