CompTIA N10-007 Network+ Exam Objectives

All of the new or modified objectives since the N10-006 Network+ exam are highlighted.

CompTIA N10-007 Network+ Exam Domains

Domain 1.0 – Networking Concepts
Domain 2.0 – Infrastructure
Domain 3.0 – Network Operations
Domain 4.0 – Network Security
Domain 5.0 – Network Troubleshooting and Tools


Domain 1.0 – Networking Concepts

  • 1.1 – Explain the purposes and uses of ports and protocols.
    • Protocols and ports
      • SSH 22
      • DNS 53
      • SMTP 25
      • SFTP 22
      • FTP 20,21
      • TFTP 69
      • TELNET 23
      • DHCP 67, 68
      • HTTP 80
      • HTTPS 443
      • SNMP 161
      • RDP 3389
      • NTP 123
      • SIP 5060, 5061
      • SMB 445
      • POP 110
      • IMAP 143
      • LDAP 389
      • LDAPS 636
      • H.323 1720
    • Protocol types
      • ICMP
      • UDP
      • TCP
      • IP
    • Connection-oriented vs. connectionless
  • 1.2 – Explain devices, applications, protocols, and services at their appropriate OSI layers.
    • Layer 1 – Physical
    • Layer 2 – Data link
    • Layer 3 – Network
    • Layer 4 – Transport
    • Layer 5 – Session
    • Layer 6 – Presentation
    • Layer 7 – Application
  • 1.3 – Explain the concepts and characteristics of routing and switching.
    • Properties of network traffic
      • Broadcast domains
      • CSMA/CD
      • CSMA/CA
      • Collision domains
      • Protocol data units
      • MTU
      • Broadcast
      • Multicast
      • Unicast
    • Segmentation and interface properites
      • VLANs
      • Trunking (802.1Q)
      • Tagging and untagging ports
      • Port mirroring
      • Switching loops/spanning tree
      • PoE and PoE+ (802.3af, 802.3at)
      • DMZ
      • MAC address table
      • ARP table
    • Routing
      • Routing protocols (IPv4 and IPv6)
        • Distance-vector routing protocols
          • RIP
          • EIGRP
        • Link-state routing protocols
          • OSPF
        • Hybrid
          • BGP
      • Routing types
        • Static
        • Dynamic
        • Default
    • IPv6 concepts
      • Addressing
      • Tunneling
      • Dual stack
      • Router advertisement
      • Neighbor discovery
    • Performance concepts
      • Traffic shaping
      • QoS
      • Diffserv
      • CoS
    • NAT/PAT
    • Port forwarding
    • Access control list
    • Distributed switching
    • Packet-switched vs. circuit-switched network
    • Software-defined networking
  • 1.4 – Given a scenario, configure the appropriate IP addressing components.
    • Private vs. public
    • Loopback and reserved
    • Default gateway
    • Virtual IP
    • Subnet mask
    • Subnetting
      • Classful
        • Classes A, B, C, D, and E
      • Classless
        • VLSM
        • CIDR notation (IPv4 vs. IPv6)
    • Address assignments
      • DHCP
      • DHCPv6
      • Static
      • APIPA
      • EUI64
      • IP reservations
  • 1.5 – Compare and contrast the characteristics of network topologies, types, and technologies.
    • Wired topologies
      • Logical vs. physical
      • Star
      • Ring
      • Mesh
      • Bus
    • Wireless topologies
      • Mesh
      • Ad hoc
      • Infrastructure
    • Types
      • LAN
      • WLAN
      • MAN
      • WAN
      • CAN
      • SAN
      • PAN
    • Technologies that facilitate the Internet of Things (IoT)
      • Z-Wave
      • Ant+
      • Bluetooth
      • NFC
      • IR
      • RFID
      • 802.11
  • 1.6 – Given a scenario, implement the appropriate wireless technologies and configurations.
    • 802.11 standards
      • a
      • b
      • g
      • n
      • ac
    • Cellular
      • GSM
      • TDMA
      • CDMA
    • Frequencies
      • 2.4 GHz
      • 5.0 GHz
    • Speed and distance requirements
    • Channel bandwidth
    • Channel bonding
    • MIMO/MU-MIMO
    • Unidirectional/omnidirectional
    • Site surveys
  • 1.7 – Summarize cloud concepts and their purposes
    • Types of services
      • SaaS
      • PaaS
      • IaaS
    • Cloud delivery models
      • Private
      • Public
      • Hybrid
    • Connectivity methods
    • Security implications/considerations
    • Relationship between local and cloud resources
  • 1.8 – Explain the functions of network services
    • DNS service
      • Record types
        • A, AAAA
        • TXT (SPF, DKIM)
        • SRV
        • MX
        • CNAME
        • NS
        • PTR
      • Internal vs. external DNS
      • Third-party/cloud-hosted DNS
      • Hierarchy
      • Forward vs. reverse zone
    • DHCP service
      • MAC reservations
      • Pools
      • IP exclusions
      • Scope options
      • Lease time
      • TTL
      • DHCP relay/IP helper
    • NTP
    • IPAM


Domain 2.0 – Infrastructure

  • 2.1 – Given a scenario, deploy the appropriate cabling solution.
    • Media types
      • Copper
        • UTP
        • STP
        • Coaxial
      • Fiber
        • Single-mode
        • Multimode
    • Plenum vs. PVC
    • Connector types
      • Copper
        • RJ-45
        • RJ-11
        • BNC
        • DB-9
        • DB-25
        • F-type
      • Fiber
        • LC
        • ST
        • SC
          • APC
          • UPC
        • MTRJ
    • Transceivers
      • SFP
      • GBIC
      • SFP+
      • QSFP
      • Characteristics of fiber transceivers
        • Bidirectional
        • Duplex
    • Termination points
      • 66 block
      • 110 block
      • Patch panel
      • Fiber distribution panel
    • Copper cable standards
      • Cat 3
      • Cat 5
      • Cat 5e
      • Cat 6
      • Cat 6a
      • Cat 7
      • RG-6
      • RG-59
    • Copper termination standards
      • TIA/EIA 568a
      • TIA/EIA 568b
      • Crossover
      • Straight-through
    • Ethernet deployment standards
      • 100BASE-T
      • 1000BASE-T
      • 1000BASE-LX
      • 1000BASE-SX
      • 10GBASE-T
    • 2.2 – Given a scenario, determine the appropriate placement of networking devices on a network and install/configure them.
      • Firewall
      • Router
      • Switch
      • Hub
      • Bridge
      • Modems
      • Wireless access point
      • Media converter
      • Wireless range extender
      • VoIP endpoint
  • 2.3 – Explain the purposes and use cases for advanced networking devices.
    • Multilayer switch
    • Wireless controller
    • Load balancer
    • IDS/IPS
    • Proxy server
    • VPN concentrator
    • AAA/RADIUS server
    • UTM appliance
    • NGFW/Layer 7 firewall
    • VoIP PBX
    • VoIP gateway
    • Content filter
  • 2.4 – Explain the purposes of virtualization and network storage technologies.
    • Virtual networking components
      • Virtual switch
      • Virtual firewall
      • Virtual NIC
      • Virtual router
      • Hypervisor
    • Network storage types
      • NAS
      • SAN
    • Connection type
      • FCoE
      • Fibre Channel
      • iSCSI
      • InfiniBand
    • Jumbo frame
  • 2.5 – Compare and contrast WAN technologies.
    • Service type
      • ISDN
      • T1/T3
      • E1/E3
      • OC-3 – OC-192
      • DSL
      • Metropolitan Ethernet
      • Cable broadband
      • Dial-up
      • PRI
    • Transmission mediums
      • Satellite
      • Copper
      • Fiber
      • Wireless
    • Characteristics of service
      • MPLS
      • ATM
      • Frame relay
      • PPPoE
      • PPP
      • DMVPN
      • SIP trunk
    • Termination
      • Demarcation point
      • CSU/DSU
      • Smart jack


Domain 3.0 – Network Operations

  • 3.1 – Given a scenario, use appropriate documentation and diagrams to manage the network.
    • Diagram symbols
    • Standard operating procedures/work instructions
    • Logical vs. physical diagrams
    • Rack diagrams
    • Change management documentation
    • Wiring and port locations
    • IDF/MDF documentation
    • Labeling
    • Network configuration and performance baselines
    • Inventory management
  • 3.2 – Compare and contrast business continuity and disaster recovery concepts.
    • Availability concepts
      • Fault tolerance
      • High availability
      • Load balancing
      • NIC teaming
      • Port aggregation
      • Clustering
      • Power management
        • Battery backup/UPS
        • Power generators
        • Dual power supplies
        • Redundant circuits
    • Recovery
      • Cold sites
      • Warm sites
      • Hot sites
      • Backups
        • Full
        • Differential
        • Incremental
      • Snapshots
    • MTTR
    • MTBF
    • SLA requirments
  • 3.3 – Explain common scanning, monitoring and patching processes and summarize their expected outputs.
    • Processes
      • Log reviewing
      • Port scanning
      • Vulnerability scanning
      • Patch management
        • Rollback
      • Reviewing baselines
      • Packet/traffic analysis
    • Event management
      • Notifications
      • Alerts
      • SIEM
    • SNMP monitors
      • MIB
    • Metrics
      • Error rate
      • Utilization
      • Packet drops
      • Bandwidth/throughput
  • 3.4 – Given a scenario, use remote access methods.
    • VPN
      • IPsec
      • SSL/TLS/DTLS
      • Site-to-site
      • Client-to-site
    • RDP
    • SSH
    • VNC
    • Telnet
    • HTTPS/management URL
    • Remote file access
      • FTP/FTPS
      • SFTP
      • TFTP
    • Out-of-band management
      • Modem
      • Console router
  • 3.5 – Identify policies and best practices.
    • Privileged user agreement
    • Password policy
    • On-boarding/off-boarding procedures
    • Licensing restrictions
    • International export controls
    • Data loss prevention
    • Remote access policies
    • Incident response policies
    • BYOD
    • AUP
    • NDA
    • System life cycle
      • Asset disposal
    • Safety procedures and policies


Domain 4.0 – Network Security

  • 4.1 – Summarize the purposes of physical security devices.
    • Detection
      • Motion detection
      • Video surveillance
      • Asset tracking tags
      • Tamper detection
    • Prevention
      • Badges
      • Biometrics
      • Smart cards
      • Key fob
      • Locks
  • 4.2 – Explain authentication and access controls.
    • Authorization, authentication, and accounting
      • RADIUS
      • TACACS+
      • Kerberos
      • Single sign-on
      • Local authentication
      • LDAP
      • Certificates
      • Auditing and logging
    • Multifactor authentication
      • Something you know
      • Something you have
      • Something you are
      • Somewhere you are
      • Something you do
    • Access control
      • 802.1X
      • NAC
      • Port security
      • Captive portal
      • Access control lists
  • 4.3 – Given a scenario, secure a basic wireless network.
    • WPA
    • WPA2
    • TKIP/RC4
    • CCMP/AES
    • Authentication and Authorization
      • EAP
      • PEAP
      • EAP-FAST
      • EAP-TLS
      • Shared or open
      • Preshared key
      • MAC filtering
    • Geofencing
  • 4.4 – Summarize common networking attacks.
    • DoS
      • Reflective
      • Amplified
      • Distributed
    • Social engineering
    • Insider threat
    • Logic bomb
    • Rogue access point
    • Evil twin
    • War-driving
    • Phishing
    • Ransomware
    • DNS poisoning
    • ARP poisoning
    • Spoofing
    • Deauthentication
    • Brute force
    • VLAN hopping
    • Man-in-the-middle
    • Exploits vs. vulnerabilities
  • 4.5 – Given a scenario, implement network device hardening.
    • Changing default credentials
    • Avoiding common passwords
    • Upgrading firmware
    • Patching and updates
    • File hashing
    • Disabling unnecessary services
    • Using secure protocols
    • Generating new keys
    • Disabling unused ports
      • IP ports
      • Device ports (physical and virtual)
  • 4.6 – Explain common mitigation techniques and their purposes
    • Signature management
    • Device hardening
    • Change native VLAN
    • Switch port protection
      • Spanning tree
      • Flood guard
      • BPDU guard
      • Root guard
      • DHCP snooping
    • Network segmentation
      • DMZ
      • VLAN
    • Privileged user account
    • File integrity monitoring
    • Role separation
    • Restricting access via ACLs
    • Honeypot/honeynet
    • Penetration testing


Domain 5.0 – Network Troubleshooting and Tools

  • 5.1 – Explain the network troubleshooting methodology.
    • Identify the problem
      • Gather information
      • Duplicate the problem, if possible
      • Question users
      • Identify symptoms
      • Determine if anything has changed
      • Approach multiple problems individually
    • Establish a theory of probable cause
      • Question the obvious
      • Consider multiple approaches
        • Top-to-bottom/bottom-to-top
        • OSI model
        • Divide and conquer
    • Test the theory to determine the cause
      • Once the theory is confirmed, determine the next steps to resolve the problem
      • If the theory is not confirmed, reestablish a new theory or escalate
    • Establish a plan of action to resolve the problem and identify potential effects
    • Implement the solution or escalate as necessary
    • Verify full system functionality and, if applicable, implement preventive measures
    • Document findings, actions, and outcomes
  • 5.2 – Given a scenario, use the appropriate tool.
    • Hardware tools
      • Crimper
      • Cable tester
      • Punchdown tool
      • OTDR
      • Light meter
      • Tone generator
      • Loopback adapter
      • Multimeter
      • Spectrum analyzer
    • Software tools
      • Packet sniffer
      • Port scanner
      • Protocol analyzer
      • WiFi analyzer
      • Bandwidth speed tester
      • Command line
        • ping
        • tracert, traceroute
        • nslookup
        • ipconfig
        • ifconfig
        • iptables
        • netstat
        • tcpdump
        • pathping
        • nmap
        • route
        • arp
        • dig
  • 5.3 – Given a scenario, troubleshoot common wired connectivity and performance issues.
    • Attenuation
    • Latency
    • Jitter
    • Crosstalk
    • EMI
    • Open/short
    • Incorrect pin-out
    • Incorrect cable type
    • Bad port
    • Transceiver mismatch
    • TX/RX reverse
    • Duplex/speed mismatch
    • Damaged cables
    • Bent pins
    • Bottlenecks
    • VLAN mismatch
    • Network connection LED status indicators
  • 5.4 – Given a scenario, troubleshoot common wireless connectivity and performance issues.
    • Reflection
    • Refraction
    • Absorption
    • Latency
    • Jitter
    • Attenuation
    • Incorrect antenna type
    • Interference
    • Incorrect antenna placement
    • Channel overlap
    • Overcapacity
    • Distance limitations
    • Frequency mismatch
    • Wrong SSID
    • Wrong passphrase
    • Security type mismatch
    • Power levels
    • Signal-to-noise ratio
  • 5.5 – Given a scenario, troubleshoot common network service issues.
    • Names not resolving
    • Incorrect gateway
    • Incorrect netmask
    • Duplicate IP addresses
    • Duplicate MAC addresses
    • Expired IP address
    • Rogue DHCP server
    • Untrusted SSL certificate
    • Incorrect time
    • Exhausted DHCP scope
    • Blocked TCP/UDP ports
    • Incorrect host-based firewall settings
    • Incorrect ACL settings
    • Unresponsive service
    • Hardware failure





Ready to study?
Click here to watch the N10-007 Network+ training course.