title: network-architecture

domain: networking
exam: 220-1201-02-001

Network Architecture

• Objective - N/A
o Computer networks
o Endpoints (clients, servers, peers)
o Redistribution points (switches, routers)
o Network model
 Centralized
 Client/Server
 Peer to peer
o Transmission Media
 Copper (twisted pair, coaxial)
 Fiber (multi-mode, singlemode)

Introduction

• Computer networks enable devices to share resources and data.

• This lesson explores network components that comprise basic network
architecture.
• These fundamentals are essential for IT professionals managing and designing
network systems.

Concepts
• Computer Networks
o Computer Networks - A system of interconnected devices that
communicate to share resources, data, and applications.
 Networks can range from small local area networks (LANs) to
vast wide area networks (WANs).
• Endpoints (Clients, Servers, Peers)
o Clients - Devices that request services or data from servers.
o Servers - Devices that provide services or data to clients.
o Peers - Devices in a peer-to-peer network that act as both clients and
servers, sharing resources directly.
• Redistribution Points (Switches, Routers)
o Devices that send and receive network communications on behalf of
endpoints
o Switches - Devices that connect endpoints within a LAN and forward
data based on MAC addresses.
o Routers - Devices that direct traffic between different networks and
determine the best path for data to travel.
• Network Model
o A network model defines the structure and relationship of networked
devices and resources.
o Centralized - A single point, typically a server, manages all resources
and controls communication.
o Client/Server - A hierarchical model where servers provide resources
and services to clients.
o Peer-to-Peer - A decentralized model where devices share resources
directly with one another.
• Transmission Media
o Transmission media are the physical pathways that data is transmitted in
a network.
 o Copper - bounded media that transmits data over copper conductors .
Includes:
 Twisted Pair - Widely used for Ethernet cabling (e.g., Cat5e,
Cat6).
 Coaxial - for cable internet
o Fiber - bounded network media using light to transmit data
 Multi-Mode - Shorter distance connections, often used in LANs.
 Single-Mode - Long-distance connections, commonly used in
WANs.
• Scenario or Use Cases
o Computer Networks - A technician designs a secure LAN for a small
office, connecting workstations, printers, and file servers to facilitate
resource sharing.
o Endpoints (Clients, Servers, Peers)
 Clients - A technician configures desktop PCs to access
applications hosted on a corporate server.
 Servers - An IT professional deploys a file server for centralized
document storage and access management.
 Peers - A technician sets up a peer-to-peer network for a small
team to share files without requiring a central server.
o Redistribution Points (Switches, Routers)
 Switches - A technician installs a managed switch in a business
network to segment traffic using VLANs.
 Routers - The IT team configures a router to connect the
corporate LAN to the internet while implementing firewall rules
for added security.
o Network Model
 Centralized - A technician sets up a central server for an
organization to manage resources like authentication, file sharing,
and application hosting.
  Client/Server - The IT staff designs a client/server architecture
for a hospital to provide secure access to electronic medical
records.
 Peer-to-Peer - A small office shares printers and files directly
between laptops in a peer-to-peer setup, avoiding the cost of a
server.
o Transmission Media
 Copper - A technician installs Cat6 twisted-pair cables in an
office for reliable gigabit Ethernet connectivity.
 Coaxial - A home network technician configures a cable modem
using coaxial connections for internet access.
 Fiber
 Multi-Mode - The IT department uses multi-mode fiber to
connect network switches within a campus environment.
 Single-Mode - A technician deploys single-mode fiber to
link two data centers in different cities for high-speed
connectivity over long distances.

Summary

• This lesson covered the basics of computer networks, including endpoints,

switches, routers, and transmission media like copper and fiber.
• It also explained network models such as client/server and peer-to-peer,
providing foundational knowledge for designing and managing networks
effectively.

Practice Exam Questions

• Question 1. - A technician is setting up a business network where endpoints

need to share resources and data through a single server that controls
communication. Which network model is being implemented?
 o A. Peer-to-peer
o B. Centralized
o C. Mesh
o D. Client/server
• Question 2. - A technician needs to connect multiple devices within a local area
network (LAN) and forward data based on MAC addresses. Which type of
redistribution point should they use?
o A. Router
o B. Switch
o C. Access point
o D. Firewall
• Question 3. - A company requires a long-distance, high-speed connection
between two data centers located in different cities. Which transmission
medium would best meet this need?
o A. Coaxial
o B. Twisted pair copper
o C. Multi-mode fiber
o D. Single-mode fiber

Answer Key

• Question 1. - B Centralized
o Correct Answer:
 Centralized: In a centralized network model, a single server
manages resources and communication, ensuring that endpoints
access services through a controlled, central point.
o Incorrect Answers:
  Peer-to-peer: In a peer-to-peer network, devices share resources
directly without a central server.
 Mesh: Mesh networks provide multiple interconnections between
nodes, enhancing redundancy but not central control.
 Client/server: Although similar, the centralized model
emphasizes a single server's control over all communication and
resources.
• Question 2. - B Switch
o Correct Answer:
 Switch: Switches operate within a LAN by forwarding data
between devices based on MAC addresses, efficiently managing
internal network traffic.
o Incorrect Answers:
 Router: Routers direct traffic between different networks, not
within a LAN.
 Access point: Access points extend wireless coverage but do not
handle MAC-based data forwarding like switches.
 Firewall: Firewalls monitor and control traffic based on security
rules, not MAC addresses.
• Question 3. - D Single-mode fiber
o Correct Answer:
 Single-mode fiber: Single-mode fiber is designed for long-
distance, high-speed connections, making it ideal for linking data
centers across cities.
o Incorrect Answers:
 Coaxial: Coaxial cables are primarily used for shorter distances,
such as cable internet connections.
 Twisted pair copper: Copper cables, like Cat6, are limited in
distance and not suitable for intercity connections.
 Multi-mode fiber: Multi-mode fiber is optimized for shorter
distances within a campus or building.
title: ports-and-protocols
domain: networking
exam: 220-1201-02-002

Ports and Protocols

• (220-1201)Objective 2.1 - Compare and contrast Transmission Control

Protocol (TCP) and User Datagram Protocol (UDP) ports, protocols, and their
purposes.
o Ports and protocols
 20-21 – File Transfer Protocol (FTP)
 22 – Secure Shell (SSH)
 23 – Telnet
 25 – Simple Mail Transfer Protocol (SMTP)
 53 – Domain Name System (DNS)
 67/68 – Dynamic Host Configuration Protocol (DHCP)
 80 – Hypertext Transfer Protocol (HTTP)
 110 – Post Office Protocol 3 (POP3)
 143 – Internet Mail Access Protocol (IMAP)
 137-139 Network Basic Input/Output System
(NetBIOS)/NetBIOS over TCP/IP (NetBT)
 389 – Lightweight Directory Access Protocol (LDAP)
 443 – Hypertext Transfer Protocol Secure (HTTPS)
 445 – Server Message Block (SMB)/Common Internet File
System (CIFS)
 3389 – Remote Desktop Protocol (RDP)
o TCP vs. UDP

Introduction

• Understanding ports and protocols is essential for managing network

communication and ensuring secure data flow.
• This lesson explores key network protocols, alongside their corresponding
ports. T
 • These concepts provide the foundation for configuring and troubleshooting
networked devices

Concepts

• Ports and Protocols

o Protocol
 A protocol is a set of rules that define how data is transmitted and
received across a network.
o Port
 A port is a logical endpoint for network communications that
identifies a specific process or service within a device.
o IANA
 The Internet Assigned Numbers Authority manages and
coordinates the global allocation of IP addresses and port
numbers, ensuring they are uniquely assigned and standardized
across the Internet.
o 20-21 – File Transfer Protocol (FTP)
 Used for transferring files between devices over a network
 Port 20 is for data transfer, and port 21 is for control commands
o 22 – Secure Shell (SSH)
 Provides encrypted command-line access to remote systems for
secure management
o 23 – Telnet
 Enables unencrypted remote command-line access to devices
 Largely replaced by SSH due to security concerns
o 25 – Simple Mail Transfer Protocol (SMTP)
 Facilitates email sending to and between mail servers
o 53 – Domain Name System (DNS)
 Resolves domain names into IP addresses, critical for web
browsing and other services
o 67/68 – Dynamic Host Configuration Protocol (DHCP)
 Assigns IP addresses and other network configurations to devices
dynamically
o 80 – Hypertext Transfer Protocol (HTTP)
 Used for unencrypted web traffic,
o 110 – Post Office Protocol 3 (POP3)
 Retrieves email from a mail server for local access
 o 143 – Internet Mail Access Protocol (IMAP)
 Enables access to emails stored on a mail server
 Allows synchronization across multiple devices
o 137-139 – Network Basic Input/Output System (NetBIOS)/NetBIOS
over TCP/IP (NetBT)
 Provides name resolution and network communication in legacy
Windows environments
 Port 137: NetBIOS Name Service (NBNS)
 Port 138: NetBIOS Datagram Service (NBDS)
 Port 139: NetBIOS Session Service (NBSS)
o 389 – Lightweight Directory Access Protocol (LDAP)
 Communicating with directory services, such as user
authentication and organizational resources
o 443 – Hypertext Transfer Protocol Secure (HTTPS)
 Provides encrypted web traffic for secure browsing and
communication
o 445 – Server Message Block (SMB)/Common Internet File System
(CIFS)
 Provides file and printer sharing in Windows network
environments
o 3389 – Remote Desktop Protocol (RDP)
 Allows remote desktop access to systems over a network in
Windows-based systems.
• TCP vs. UDP
o Transmission Control Protocol (TCP)
 A connection-oriented protocol that ensures reliable data delivery
through error-checking and retransmission mechanisms
 Commonly used for applications requiring high reliability, such as
email and web browsing
o User Datagram Protocol (UDP)
 A connectionless protocol that does not provide reliability. Often
used for real-time applications like video streaming and online
gaming.
• Scenario or Use Cases
o Ports and Protocols
 FTP - A technician uses FTP (ports 20/21) to transfer firmware
updates to a network device.
 SSH - An IT admin securely connects to a Linux server via SSH
(port 22) to perform system updates.
  Telnet - A technician uses Telnet (port 23) in a legacy system to
troubleshoot a network device but later recommends switching to
SSH for security.
 SMTP - A technician configures a mail server to send emails
using SMTP (port 25) with encryption enabled for security.
 DNS - The IT team configures a DNS server to resolve internal
domain names to private IP addresses for office devices (port 53).
 DHCP - A technician sets up a DHCP server (ports 67/68) to
dynamically assign IP addresses to devices in a growing office.
 HTTP - A web developer tests a staging website over HTTP (port
80) before migrating it to HTTPS for production.
 POP3 - A technician helps a user set up their email client to
retrieve emails using POP3 (port 110) for offline access.
 IMAP - A user needs access to emails across multiple devices,
and a technician configures the email client to use IMAP (port
143).
 NetBIOS - A legacy system uses NetBIOS (ports 137-139) for
file sharing, and a technician secures the network by isolating the
legacy system.
 LDAP - A technician configures an LDAP server (port 389) to
centralize user authentication for a corporate network.
 HTTPS - A technician installs an SSL certificate on a web server,
enabling secure HTTPS communication (port 443).
 SMB - A technician configures a Windows server for file sharing
using SMB (port 445), allowing users to access shared folders on
the network.
 RDP - An IT admin uses RDP (port 3389) to troubleshoot a
remote Windows workstation.
o TCP vs. UDP
 TCP - A technician configures a mail server to use TCP, ensuring
reliable data transfer when sending large email attachments.
 UDP - A technician configures a video conferencing application
to use UDP, ensuring minimal latency during real-time
communication.

Summary
 • This lesson explored key network ports and protocols, including their purposes
and practical uses, such as FTP for file transfers and HTTPS for secure web
browsing.
• It also compared TCP and UDP, highlighting their respective reliability and
speed benefits.
• Understanding these fundamentals equips IT technicians to manage, secure,
and troubleshoot network communication effectively.

Practice Exam Questions

• Question 1. - A technician needs to securely connect to a remote Linux server to

perform system updates. Which protocol and port should they use?
o A. Telnet, port 23
o B. SSH, port 22
o C. FTP, port 21
o D. RDP, port 3389

• Question 2. - A user reports that their email client is not syncing properly across
multiple devices. Which protocol and port should the technician verify?
o A. POP3, port 110
o B. SMTP, port 25
o C. IMAP, port 143
o D. HTTPS, port 443

• Question 3. - An IT administrator wants to enable secure web browsing on a

company website. Which port and protocol should they configure?
o A. HTTP, port 80
o B. LDAP, port 389
o C. HTTPS, port 443
o D. FTP, port 21

Answer Key

• Question 1. - B SSH, port 22

 o Correct Answer:
 SSH, port 22: SSH provides encrypted, secure remote command-
line access, commonly used for managing Linux servers.
o Incorrect Answers:
 Telnet, port 23: Telnet is unencrypted and insecure, making it
unsuitable for modern networks.
 FTP, port 21: FTP is used for file transfers, not remote system
access.
 RDP, port 3389: RDP is used for graphical remote desktop
access, not command-line access.
• Question 2. - C IMAP, port 143
o Correct Answer:
 IMAP, port 143: IMAP allows users to access and sync email
messages across multiple devices by keeping emails stored on the
server.
o Incorrect Answers:
 POP3, port 110: POP3 retrieves email for offline access but does
not support multi-device synchronization.
 SMTP, port 25: SMTP is used to send emails, not to retrieve or
sync them.
 HTTPS, port 443: HTTPS is used for secure web browsing, not
email synchronization.
• Question 3. - C
o Correct Answer:
 HTTPS, port 443: HTTPS encrypts web traffic, providing secure
communication between users and websites.
o Incorrect Answers:
 HTTP, port 80: HTTP transmits data in plaintext, making it
vulnerable to interception.
 LDAP, port 389: LDAP is used for directory services, not web
traffic.
 FTP, port 21: FTP is used for file transfers, not web browsing.
title: wireless-networking
domain: networking
exam: 220-1201-02-003

Wireless Networking

• (220-1201)2.2 - Explain wireless networking technologies.

o Frequencies
 2.4GHz
 5GHz
 6GHz
o Channels
 Regulations
 Channel selection
 Widths
 Frequencies
 Bands
o Bluetooth
o 802.11 standards
o NFC
o Radio-frequency identification (RFID)

Introduction

• Wireless communication technologies are the backbone of modern

connectivity, enabling seamless device interactions across various
environments.
• This lesson explores wireless frequencies, channels, Bluetooth, 802.11
standards, NFC, and RFID, highlighting their unique applications and
characteristics.
• These foundational concepts empower IT technicians to design, configure, and
optimize wireless networks and devices effectively.
Concepts

• Frequencies
o 2.4GHz - A commonly used wireless frequency band offering wider
coverage but slower speeds and more interference due to crowded usage.
o 5GHz - Provides faster data rates with less interference but a shorter
range compared to 2.4GHz.
o 6GHz - Used in Wi-Fi 6E, offering higher speeds and lower latency with
more available channels, though it has the shortest range of the three.
• Channels
o Regulations - Wireless channels are governed by regional regulations
(e.g., FCC in the U.S.), which specify allowed frequencies and channels
to avoid interference.
o Channel Selection
 Widths - a range of frequencies a signal occupies
 2.4GHz - Supports 20MHz and 40MHz channel widths but
is prone to interference because there are only three non-
overlapping channels (1, 6, 11).
 5GHz - Supports 20MHz, 40MHz, 80MHz, and 160MHz
widths, with multiple non-overlapping channels depending
on the regulatory domain.
 6GHz - Designed for 20MHz, 40MHz, 80MHz, and
160MHz widths, with significantly more channels available
(up to 59 non-overlapping channels in Wi-Fi 6E).
 Frequencies - Different frequencies offer trade-offs between
range and speed, as outlined above.
 Bands - The 2.4GHz band is best for range, while 5GHz and
6GHz excel in speed and efficiency.
• 802.11 Standards
o A family of IEEE standards for wireless networking, commonly known
as Wi-Fi
o 802.11a - Operates on 5GHz, supports up to 54 Mbps, and uses 20MHz
channels. Offers less interference but shorter range compared to 2.4GHz.
o 802.11b - Operates on 2.4GHz, supports up to 11 Mbps, and uses
20MHz channels. Susceptible to interference but provides wider
coverage.
o 802.11g - Operates on 2.4GHz, supports up to 54 Mbps, and uses
20MHz channels. Backward compatible with 802.11b.
 o 802.11n - Operates on both 2.4GHz and 5GHz, supports speeds up to
600 Mbps, and uses 20MHz or 40MHz channels. Introduced MIMO
(multiple-input, multiple-output) for improved performance.
o 802.11ac - Operates on 5GHz, supports speeds up to 1.3 Gbps, and uses
20MHz, 40MHz, 80MHz, or 160MHz channels. Introduced MU-MIMO
for better multi-user performance.
o 802.11ax (Wi-Fi 6/6E) - Operates on 2.4GHz, 5GHz, and 6GHz (Wi-Fi
6E). Supports speeds up to 9.6 Gbps and uses 20MHz, 40MHz, 80MHz,
and 160MHz channels. Optimized for high-density environments.
• Bluetooth
o A short-range wireless technology
 ~ 10 meters or 32 feet range
 Operates in the 2.4GHz band.
 Designed for connecting peripherals like headphones, keyboards,
and smartwatches.
• NFC
o Near-Field Communication - A short-range wireless communication
technology - Operates in the 13.56 MHz frequency range - A few
centimeters range - Used for contactless payments and data transfers
• Radio-frequency Identification (RFID)
o A wireless technology that uses radio waves
 Can operate in low, high, or ultra-high frequency ranges
depending on the application
 Commonly used to identify and track objects via embedded tags
• Scenarios
o Frequencies
 2.4GHz - A technician configures a Wi-Fi network in a large
office space, using the 2.4GHz band to ensure devices at the edges
of the coverage area remain connected.
 5GHz - An IT admin sets up a wireless network in a high-density
office environment, leveraging the 5GHz band for faster speeds
and reduced interference.
 6GHz - A technician deploys Wi-Fi 6E in a corporate conference
room, providing ultra-fast and low-latency connectivity for video
conferencing and presentations.
o Channels
 Regulations - A technician ensures compliance with regional Wi-
Fi channel regulations when configuring access points to prevent
interference and legal violations.
 Channel Selection
  Widths - The technician configures 40MHz-wide channels
in a residential network for improved throughput without
oversaturating the 2.4GHz band.
 Frequencies - In a crowded apartment building, the IT
team prioritizes 5GHz over 2.4GHz to avoid interference
from neighboring networks.
 Bands - A technician deploys devices on both 2.4GHz and
5GHz bands to balance compatibility, coverage and speed
for users in a small business.
o Bluetooth - A technician assists a user in pairing a Bluetooth keyboard
to a tablet, ensuring the device is in pairing mode and no other devices
are causing interference.
o 802.11 Standards
 802.11a - A technician upgrades a legacy Wi-Fi network to
802.11a to reduce interference in a high-traffic industrial
environment.
 802.11b - A technician troubleshoots an older device operating on
a legacy 802.11b network, ensuring compatibility with the
router’s configuration.
 802.11n - A technician upgrades an office network to 802.11n to
enable dual-band connectivity and support MIMO for improved
throughput.
 802.11ac - A hotel installs 802.11ac access points to provide high-
speed internet access for guests in densely populated areas of the
building.
 802.11ax (Wi-Fi 6/6E) - A technician deploys Wi-Fi 6 access
points in a university campus, improving efficiency and
supporting hundreds of simultaneous connections.
o NFC - A technician helps a user set up contactless payments on their
smartphone, ensuring NFC is enabled and properly configured for
mobile wallet functionality.
o RFID - A warehouse technician installs an RFID tracking system to
monitor inventory, using ultra-high frequency tags to ensure accurate,
long-distance scanning.

Summary
 • This lesson covered key wireless communication technologies, including
frequencies (2.4GHz, 5GHz, 6GHz), Bluetooth, NFC, and RFID, alongside Wi-
Fi standards like 802.11ac and Wi-Fi 6.
• Understanding these concepts equips IT technicians to configure wireless
networking technologies, ensuring compatibility, and optimize performance in
diverse environments.

Practice Exam Questions

• Question 1. - A technician needs to deploy a wireless network that provides ultra-

fast, low-latency connectivity for a corporate conference room. Which frequency
band should they use?
o A. 2.4GHz
o B. 5GHz
o C. 6GHz
o D. 13.56 MHz

• Question 2. - An IT administrator is configuring a wireless network in a crowded

apartment building and wants to avoid interference from neighboring networks.
Which frequency should they prioritize?
o A. 2.4GHz
o B. 5GHz
o C. 6GHz
o D. 13.56 MHz

• Question 3. - A technician is setting up a mobile payment system for a user’s

smartphone. Which wireless technology is specifically designed for secure, short-
range communication and data transfer?
o A. Bluetooth
o B. NFC
o C. RFID
o D. Wi-Fi

Answer Key
• Question 1. - C 6GHz
o Correct Answer:
 6GHz: The 6GHz band, used in Wi-Fi 6E, provides high speeds,
low latency, and more available channels, making it ideal for
environments requiring fast and efficient connectivity.
o Incorrect Answers:
 2.4GHz: Offers better range but lower speeds and higher
interference.
 5GHz: Provides fast speeds but fewer available channels and
higher interference compared to 6GHz.
 13.56 MHz: This frequency is used for NFC, not for Wi-Fi
networks.
• Question 2. - B 5GHz
o Correct Answer:
 5GHz: The 5GHz band has multiple non-overlapping channels
and experiences less interference than the crowded 2.4GHz band,
making it suitable for high-density environments.
o Incorrect Answers:
 2.4GHz: Prone to interference from neighboring networks and
other devices due to limited non-overlapping channels.
 6GHz: While effective, the 6GHz band may not be widely
supported by older devices in the apartment building.
 13.56 MHz: This is used for NFC, not for general wireless
network communication.
• Question 3. - B NFC
o Correct Answer:
 NFC: Near-field communication (NFC) operates at 13.56 MHz
and enables secure, short-range communication for applications
like contactless payments.
o Incorrect Answers:
 Bluetooth: Designed for short-range peripheral connections but
not optimized for secure mobile payments.
 RFID: Used for tracking objects, not for secure payment
transfers.
 Wi-Fi: Provides wireless internet access but is not suitable for
short-range contactless communication.
title: network-hosts-and-services
domain: networking
exam: 220-1201-02-004

Network Hosts and Services

• (220-1201) Objective 2.3 - Summarize services provided by networked hosts.

o Server roles
 DNS
 DHCP
 Fileshare
 Print servers
 Mail servers
 Syslog
 Web servers
 Authentication, Authorization, and Accounting (AAA)
 Database servers
 Network Time Protocol (NTP)
o Internet appliances
 Spam gateways
 Unified threat management (UTM)
 Load balancers
 Proxy servers
o Legacy/embedded systems
 Supervisory control and data acquisition (SCADA)
o Internet of Things (IoT) devices

Introduction

• Servers and internet appliances are essential for managing networks, providing
services like DNS, DHCP, and file sharing, while tools like spam gateways and
load balancers enhance security and performance.
• This lesson covers server roles, embedded systems, and IoT devices,
highlighting
 • Their roles and significance are essential for efficient network operations.

Concepts

• Server Roles
o Server Role
 A specific function or service that a server provides within a
network to clients.
o DNS (Domain Name System) - Resolves human-readable domain
names (e.g., [Link]) into IP addresses.
o DHCP (Dynamic Host Configuration Protocol) - Automatically
assigns IP addresses and other network configuration details to devices.
o Fileshare - Provides centralized access to shared files and directories
within a network.
o Print Servers - Manage printing tasks by centralizing access to network
printers and handling print jobs.
o Mail Servers - Handle email storage, sending, and retrieval for users
(e.g., SMTP, IMAP, POP3).
o Syslog - Collects, stores, and forwards log data from network devices for
monitoring and troubleshooting.
o Web Servers - Host websites and serve web pages to clients using
HTTP/HTTPS protocols.
o Authentication, Authorization, and Accounting (AAA) - Manage user
access, authentication, and activity logging across the network.
o Database Servers - Store, manage, and process structured data for
applications and services.
o Network Time Protocol (NTP) - Synchronizes the clocks of devices
within a network to ensure accurate timestamps.
• Internet Appliances
o Spam Gateways - Filter and block unsolicited or malicious emails
before reaching user inboxes.
o Unified Threat Management (UTM) - Combines multiple security
functions, such as firewalls, intrusion detection, and anti-virus, into one
device.
o Load Balancers - Distribute network traffic across multiple servers to
improve performance and reliability.
o Proxy Servers - Act as intermediaries between clients and external
networks, providing content caching, access control, and anonymity.
• Legacy/Embedded Systems
o Supervisory Control and Data Acquisition (SCADA) - A control
system used to monitor and manage industrial processes, often critical in
utilities and manufacturing.
• Internet of Things (IoT) Devices
o Devices connected to the internet that collect and exchange data, such as
smart thermostats, security cameras, and home automation systems.
• Scenarios
o Server Roles
 DNS - A technician sets up a DNS server to resolve internal
domain names to private IP addresses for a corporate network.
 DHCP - An IT admin configures a DHCP server to dynamically
assign IP addresses to devices on a growing office network.
 Fileshare - A technician creates shared folders on a file server,
allowing employees to collaborate on team projects.
 Print Servers - A technician configures a print server to
centralize print job management for an organization with multiple
networked printers.
 Mail Servers - An IT specialist sets up a mail server to manage
company email accounts and ensure secure email delivery using
SMTP.
 Syslog - A technician configures syslog to collect log data from
switches and firewalls, enabling easier troubleshooting of network
issues.
 Web Servers - A technician deploys a web server to host the
company’s website, ensuring HTTPS is enabled for secure
browsing.
 AAA - An admin sets up AAA services to manage access control
for employees, ensuring only authorized users can access critical
resources.
 Database Servers - A database server is deployed to support an
e-commerce platform, storing customer orders, product inventory,
and sales data.
 NTP - An IT team configures an NTP server to ensure consistent
time synchronization across all network devices, critical for
logging and troubleshooting.
o Internet Appliances
 Spam Gateways - A technician configures a spam gateway to
filter malicious emails, reducing the risk of phishing attacks in the
organization.
  UTM - A UTM appliance is installed at the network perimeter to
provide integrated security, including firewall, anti-virus, and
intrusion detection.
 Load Balancers - A technician deploys a load balancer to
distribute traffic between multiple web servers, ensuring
consistent performance during peak usage.
 Proxy Servers - A technician configures a proxy server to cache
frequently accessed content and enforce web filtering policies for
employees.
o Legacy/Embedded Systems
 SCADA - A technician ensures the security of SCADA systems in
a water treatment plant by isolating them from the corporate
network and enabling strict access controls.
o Internet of Things (IoT) Devices
 A technician integrates IoT-enabled security cameras into the
corporate network, configuring secure access for monitoring and
recording activity.

Summary

• This lesson explored key server roles, such as DNS, DHCP, file sharing, and
web hosting, alongside internet appliances like spam gateways, UTMs, and
load balancers.
• It also covered embedded systems like SCADA and IoT devices, emphasizing
their importance in streamlining network services, enhancing security, and
supporting modern infrastructure.

Practice Exam Questions

• Question 1. - A company needs to distribute incoming web traffic across multiple

servers to ensure consistent performance during peak hours. Which device should
the technician configure?
o A. Load balancer
o B. Proxy server
 o C. Spam gateway
o D. UTM

• Question 2. - A technician is tasked with managing network device logs to assist

in troubleshooting and monitoring. Which server role should be implemented to
achieve this?
o A. Web server
o B. Syslog server
o C. DHCP server
o D. Print server

• Question 3. - A technician is setting up a server to manage company emails and

ensure secure communication using SMTP. What type of server is being
configured?
o A. DNS server
o B. Mail server
o C. NTP server
o D. Database server

Answer Key

• Question 1. - A Load balancer

o Correct Answer:
 Load balancer: A load balancer distributes network traffic across
multiple servers, enhancing performance and reliability during
high usage periods.
o Incorrect Answers:
 Proxy server: Acts as an intermediary between clients and
external networks, primarily for caching and access control.
 Spam gateway: Filters malicious emails but does not manage
web traffic distribution.
 UTM: A security device that combines multiple features, such as
firewalls and anti-virus protection, not traffic balancing.
• Question 2. - B Syslog server
o Correct Answer:
 Syslog server: Collects, stores, and forwards log data from
various network devices, enabling easier troubleshooting and
performance monitoring.
 o Incorrect Answers:
 Web server: Hosts websites and serves web pages but does not
handle log data collection.
 DHCP server: Dynamically assigns IP addresses to devices but
does not manage logs.
 Print server: Manages print jobs and printer access, unrelated to
log collection.
• Question 3. - B Mail server
o Correct Answer:
 Mail server: Manages email storage, sending, and retrieval, often
using protocols like SMTP for secure communication.
o Incorrect Answers:
 DNS server: Resolves domain names to IP addresses, unrelated to
email management.
 NTP server: Synchronizes time across network devices but does
not handle email.
 Database server: Stores and manages structured data but is not
designed for email services.
title: dns-and-dhcp
domain: networking
exam: 220-1201-02-005

DNS and DHCP

• (220-1201) 2.4 - Explain common network configuration concepts.

o DNS
 A
 AAAA
 Canonical Name (CNAME)
 Mail exchanger (MX)
 Text (TXT)
 Spam management
 DomainKeys Identified Mail (DKIM)
 Sender Policy Framework (SPF)
 Domain-based Message Authentication, Reporting, and
Conformance (DMARC)
o DHCP
 Leases
 Reservations
 Scope
 Exclusions

Introduction

• Understanding network configuration concepts is essential for support modern

network environments.
• This lesson focuses on DNS and DHCP
• Foundational concepts for efficient network administration and support.

Concepts
• DNS (Domain Name System)
o A Record - Maps a domain name to an IPv4 address.
o AAAA Record - Maps a domain name to an IPv6 address.
o Canonical Name (CNAME) - Maps an alias name to host record,
simplifying DNS management.
o Mail Exchanger (MX) - Directs email traffic to the correct mail server
for a domain.
o Text (TXT) - Contains human-readable or machine-readable
information for a domain, often used for verification and security.
• Spam Management
o DomainKeys Identified Mail (DKIM) - Adds an encrypted signature to
email headers for domain authentication.
o Sender Policy Framework (SPF) - Specifies which mail servers are
authorized to send emails on behalf of a domain.
o Domain-based Message Authentication, Reporting, and
Conformance (DMARC) - Builds on the existing protocols of SPF and
DKIM to provide an additional layer of security for email
communications.
• DHCP (Dynamic Host Configuration Protocol)
o Dynamic Host Configuration Protocol (DHCP) - A network
management protocol that automatically assigns IP addresses to devices,
simplifying their connection to a network.
o Scope - Defines the range of IP addresses available for assignment
within a network.
o Leases - An assignment of an IP address to a devices for a specific
period (called a lease duration).
o Reservations - An assignment of a specific IP address to a particular
device based on its MAC address. These IP addresses are only assigned
to specific devices.
o Exclusions - Specifies IP addresses within a scope that should not be
assigned by the DHCP server, often used for static IPs.
• Virtual LAN (VLAN)
o Explanation - A VLAN is a logical segmentation of a physical network
into smaller, isolated networks for better security, performance, and
management.
• Virtual Private Network (VPN)
o Explanation - A VPN creates a secure, encrypted connection between a
user and a network over the internet, ensuring privacy and data integrity.
• Scenario or Use Cases
 o DNS
 A Record - A technician configures an A record to resolve a
company's website domain to its IPv4 address, ensuring users can
access it.
 AAAA Record - An admin sets up an AAAA record to enable
IPv6 compatibility for a corporate website.
 CNAME - A technician creates a CNAME for
"[Link]" that redirects to
"[Link]," simplifying DNS management.
 MX Record - The IT team configures an MX record to route all
email traffic to the company’s dedicated mail server.
 TXT Record - A technician adds a TXT record for Google
Workspace domain verification.
o Spam Management
 DKIM - A technician enables DKIM on the mail server to verify
that outgoing emails are not tampered with.
 SPF - An admin configures an SPF record to prevent email
spoofing by specifying authorized mail servers.
 DMARC - The IT team sets up DMARC to reject suspicious
emails and receive reports of failed SPF and DKIM checks.
o DHCP
 Leases - A technician configures the DHCP server to provide 24-
hour leases for IP addresses to reduce conflicts in a dynamic
network.
 Reservations - The IT team reserves a static IP address for a
network printer to ensure consistent connectivity.
 Scope - An admin defines a DHCP scope of [Link] to
[Link] to allocate IPs for employee devices.
 Exclusions - A technician excludes [Link] to [Link]
from the DHCP scope, reserving them for servers with static IPs.
o Virtual LAN (VLAN) - A technician creates VLANs to segment traffic
between finance, HR, and IT departments, ensuring sensitive financial
data is isolated from general network traffic.
o Virtual Private Network (VPN) - A remote worker uses a VPN to
securely access corporate resources, and the technician ensures the VPN
client is correctly configured for encryption and authentication.

Summary
 • This lesson explored DNS records, spam prevention tools like DKIM and SPF,
DHCP configurations, VLANs for network segmentation, and VPNs for secure
remote access.
• These key concepts are essential for managing and securing modern networks.

Practice Exam Questions

• Question 1. - A technician needs to map a domain name to an IPv6 address for a

corporate website. Which DNS record type should they configure?
o A. A
o B. MX
o C. TXT
o D. AAAA

• Question 2. - An IT administrator wants to prevent email spoofing by specifying

which mail servers are authorized to send emails for the company’s domain.
Which DNS record should they configure?
o A. DMARC
o B. TXT
o C. SPF
o D. CNAME

• Question 3. - A technician is configuring a DHCP server for a growing office

network. They need to prevent the DHCP server from assigning IP addresses
reserved for static devices, such as routers and servers. What configuration should
they implement?

• A. Leases
• B. Scope
• C. Exclusions
• D. Reservations

• Question 4. - A technician needs to ensure that devices on a corporate network

automatically receive IP addresses and network configuration settings. Which
service should the technician configure?
o A. DNS
 o B. DHCP
o C. VPN
o D. VLAN

• Question 5. - A technician is configuring a new DNS record to direct email traffic

to the company's mail server. Which record type should they create?
o A. A
o B. TXT
o C. MX
o D. CNAME

Answer Key

• Question 1. - D AAAA
o Correct Answer:
 AAAA: The AAAA record maps a domain name to an IPv6
address, enabling devices to access resources over an IPv6
network.
o Incorrect Answers:
 A: The A record is used for mapping domain names to IPv4
addresses.
 MX: This record directs email traffic to the appropriate mail
server, unrelated to IPv6.
 TXT: TXT records store arbitrary text data for verification or
security purposes and do not map domain names to IP addresses.
• Question 2. - C SPF
o Correct Answer:
 SPF: The Sender Policy Framework (SPF) record specifies
authorized mail servers, helping prevent domain-based email
spoofing.
o Incorrect Answers:
 DMARC: DMARC works with SPF and DKIM to define policies
for handling unauthorized emails but does not directly list
authorized servers.
 TXT: Although SPF is configured within a TXT record, the
record type itself is not called SPF.
 CNAME: CNAME records are used to create domain aliases and
do not relate to email authentication.
• Question 3. - C Exclusions
o Correct Answer:
 Exclusions: DHCP exclusions prevent the server from assigning
specific IP addresses, ensuring those addresses remain reserved
for static devices.
o Incorrect Answers:
 Leases: Leases define how long an IP address is assigned to a
device, not which addresses are excluded.
 Scope: A scope defines the range of IP addresses available for
dynamic assignment but does not exclude any addresses.
 Reservations: Reservations ensure specific devices always
receive the same IP address but do not prevent other addresses
from being assigned dynamically.
• Question 4. - B DHCP
o Correct Answer:
 DHCP: DHCP (Dynamic Host Configuration Protocol) automates
the assignment of IP addresses and other network settings to
devices, reducing manual configuration.
o Incorrect Answers:
 DNS: DNS resolves domain names to IP addresses and does not
handle IP address assignment.
 VPN: VPNs provide secure, encrypted access to remote networks
but are unrelated to IP configuration.
 VLAN: VLANs segment networks logically for security and
traffic management but do not assign IP addresses.
• Question 5. - C MX
o Correct Answer:
 MX: The MX (Mail Exchanger) record directs email traffic to the
appropriate mail server for a domain.
o Incorrect Answers:
 A: An A record maps a domain name to an IPv4 address but does
not handle email routing.
 TXT: TXT records store data for verification and security
purposes, not email routing.
 CNAME: CNAME records create aliases for domains but are not
used for email delivery.
title: vpns-and-vlans
domain: networking
exam: 220-1201-02-006

VPNs and VLANs

• (220-1201) 2.4 - Explain common network configuration concepts.

o Virtual LAN [local area network] (VLAN)
o Virtual private network (VPN)

Introduction

• In modern networks, ensuring secure communication and effective traffic

management is essential.
• Organizations face increasing cyberattack threats, especially when using
untrusted networks such as the Internet.
• IT professionals must understand key concepts like VPNs and VLANs to
protect sensitive data and maintain efficient network operations.

Concepts

• Virtual Private Network (VPN)

o Establishes a secure connection between a device and a remote network
over the Internet (untrusted networks).
o Ensures privacy and data integrity.
o Remote workers commonly use it to access company resources or
individuals to protect their online activity on public networks.
o Types of VPNs:
 Site-to-Site VPN
 Connects entire networks in different locations.
  Remote Access VPN
 Allows a single user to connect to a private network from
any location.
o Key Benefits:
 Secure communication over untrusted networks (e.g., public Wi-
Fi).
 Encrypted data transmission to prevent eavesdropping.
 Ability to bypass geographic restrictions by connecting through
servers in other regions.
• Virtual Local Area Network (VLAN)
o A logical segmentation of a physical network
o Allows devices on different parts of the network infrastructure to
communicate as though they are on the same local network.
o Isolating traffic within distinct groups (for example, separating VLAN10
and VLAN20).
o Key Benefits:
 Enhanced security by limiting access between VLANs.
 Reduced broadcast traffic, improving network performance.
 Simplified network management for large organizations.
o VLAN Tagging
 Tagging adds a tag to Ethernet frames to identify which VLAN
the traffic belongs to.
 Switches use this information to route traffic appropriately.
• Scenarios
o VPNs - A remote employee uses a VPN to securely access the
company’s internal servers while working from home.
o VLANs - A company creates separate VLANs for the finance, HR, and
guest networks to isolate sensitive financial data from general internet
traffic.

Summary

• Understanding VPNs and VLANs is crucial for securing and managing modern
networks.
• VPNs provide encrypted communication over untrusted networks, protecting
privacy and data integrity for remote users and those on public networks.
• VLANs enhance security and performance by logically segmenting network
traffic, isolating sensitive data, and reducing broadcast traffic
Practice Exam Questions

• Question 1. - A remote employee needs to securely access company resources

while connected to public Wi-Fi. Which solution should the IT department
recommend?
o A. VLAN
o B. VPN
o C. Proxy server
o D. Firewall

• Question 2. - An organization wants to segment network traffic to improve

security by isolating HR data from general users. Which technology should be
implemented?
o A. VPN
o B. VLAN
o C. Load balancer
o D. NAT (Network Address Translation)

• Question 3. - Which type of VPN is designed to securely connect two

geographically separated networks?

o A. Remote access VPN

o B. Site-to-site VPN
o C. Personal VPN
o D. Virtual LAN (VLAN)

Answer Key

• Question 1. - B VPN
o Correct Answer:
 VPN: A VPN provides encrypted communication over untrusted
networks like public Wi-Fi, allowing secure access to internal
resources.
o Incorrect Answers:
  VLAN: VLANs segment traffic within a private network but do
not secure communication over the Internet
 Proxy server: Provides caching and access control but does not
encrypt traffic or secure remote access.
 Firewall: Protects against unauthorized access but does not create
a secure tunnel for remote access.
• Question 2. - B VLAN
o Correct Answer:
 VLAN: VLANs logically segment a network, isolating traffic
between different groups, such as HR and general users, for
enhanced security and performance.
o Incorrect Answers:
 VPN: Secures communication between remote devices and
networks but does not provide internal network segmentation.
 Load balancer: Distributes traffic across servers to improve
performance, not for traffic segmentation.
 NAT: Translates private IPs to public IPs for internet access but
does not isolate traffic within the network.
• Question 3. - B Site-to-site VPN
o Correct Answer:
 Site-to-site VPN: Connects entire networks at different physical
locations, allowing secure communication between them.
o Incorrect Answers:
 Remote access VPN: Connects a single user to a private network,
not two networks.
 Personal VPN: Focuses on individual users' internet privacy, not
network-to-network connectivity.
 Virtual LAN (VLAN): Segments a local network but does not
establish secure remote connections between networks.
title: network-devices
domain: networking
exam: 220-1201-02-007

Network Devices

• (220-1201)2.5 - Compare and contrast common networking hardware devices.

o Routers
o Switches
 Managed
 Unmanaged
o Access points
o Patch panel
o Firewall
o Power over Ethernet (PoE)
 Injectors
 Switch
 PoE standards
o Cable modem
o Digital subscriber line (DSL)
o Optical network terminal (ONT)
o Network interface card (NIC)
 Physical media access control (MAC) address

Introduction

• In today's interconnected world, reliable network infrastructure is the backbone

of communication and business operations.
• This lesson focused on key network devices
• IT professionals must understand key networking hardware and technologies
that enable data transfer, security, and connectivity.
Concepts

• Routers
o Devices that connect different networks and direct traffic between them.
 They use IP addresses to forward data packets.
 Called Layer 3 devices (OSI Model)
• Switches
o A networking device that connects multiple devices within a local area
network (LAN)
o Uses packet switching to forward data to its destination
o Uses MAC addresses to make forwarding decisions
o Traditionally called Layer 2 devices but can operate as routers(layer 3
devices).
o Managed Switch - Offers advanced features like VLANs, Quality of
Service (QoS), and SNMP for network monitoring and management.
o Unmanaged Switch - Provides basic network connectivity without
configuration, suitable for small, simple networks.
• Access Points
o Wired devices that provides wireless connectivity to wired networks.
 Types
 Standalone Access Points - control the wireless
communications
 Lightweight Access Points - simple access points
controlled centrally through a Wireless LAN Controller or
WLC.
• Patch Panel
o A physical hardware unit that organizes and terminates network cables,
providing a centralized point for managing connections in a structured
cabling system.
• Firewall
o A security device that monitors and controls incoming and outgoing
network traffic.
 Control is based on predefined security rules.
 Protects networks from unauthorized access and threats.
• Power over Ethernet (PoE)
o A technology that allows Ethernet cables to carry electrical power along
with data
o Enables devices like IP cameras and wireless access points to receive
power and network connectivity through a single cable
 o PoE Components
 Injectors - Standalone devices that add power to Ethernet cables
for devices like IP cameras and access points.
 Switch - A network switch with built-in PoE functionality,
delivering both data and power to connected devices.
 PoE Standards - Define power delivery levels, such as IEEE
802.3af (PoE) providing up to 15.4W and IEEE 802.3at (PoE+)
providing up to 25.5W.
• Cable Modem
o A device that connects a local network to the internet via a cable ISP
using coaxial cables.
 Supports high-speed broadband access using the DOCSIS
standard.
 Data Over Cable Service Interface Specification (DOCSIS) - A
telecommunications standard that allows high-speed data transfer
over existing cable TV systems, enabling internet and voice
services to be delivered through the same coaxial cables as cable
television.
• Digital Subscriber Line (DSL)
o A modem technology that allow digital signal to be sent over existing
analog telephone lines
 called the Public Switched Telephone Network (PSTN) to provide
Internet access.
 Variants
 ADSL (asymmetric) for residential use
 VDSL (very-high-speed DSL) for higher performance
• Optical Network Terminal (ONT)
o A device that converts fiber optic signals into electrical signals
 Enables Internet access in fiber-to-the-home (FTTH)
deployments.
• Network Interface Card (NIC)
o A hardware component, either integrated or add-on.
 Provides devices with network connectivity
 NICs may support Ethernet, Wi-Fi or both.
• Physical Media Access Control (MAC) Address -
o A unique, hardware-based identifier assigned to each NIC, typically
represented in hexadecimal format as MM:MM:MM:SS:SS:SS (for
example - 00:1A:2B:3C:4D:5E).
• Scenarios
o Routers - A technician configures a router to connect a corporate LAN
to the internet and implements NAT to allow multiple devices to share a
single public IP address.
o Switches
 Managed Switch - An IT admin uses a managed switch to
segment a network into VLANs, separating traffic for different
departments within an organization.
 Unmanaged Switch - A technician installs an unmanaged switch
in a small office to provide plug-and-play connectivity for desktop
PCs and printers.
 Traffic Forwarding - A technician troubleshoots a network issue
by analyzing the switch’s MAC address table to ensure traffic is
being forwarded to the correct device.
o Access Points - A technician deploys access points in a university
campus to ensure seamless Wi-Fi coverage for students and staff across
multiple buildings.
o Patch Panel - A technician organizes network cables in a data center by
terminating them on a patch panel, allowing easy management and
troubleshooting.
o Firewall - A security administrator configures a firewall to block
incoming traffic from unauthorized IP ranges and monitor potential
threats.
o Power over Ethernet (PoE)
 Injectors - A technician uses a PoE injector to power a security
camera installed in an area without a nearby power outlet.
 Switch - The IT team installs a PoE switch to power multiple
access points in a large office, simplifying cabling requirements.
 PoE Standards - An administrator ensures compatibility by
selecting a PoE+ switch to power devices requiring up to 25.5W,
such as PTZ cameras.
o Cable Modem - A technician sets up a cable modem to provide internet
connectivity to a home office using a coaxial cable connection.
o Digital Subscriber Line (DSL) - A technician configures a DSL modem
to deliver internet access to a rural location using existing telephone
lines.
o Optical Network Terminal (ONT) - A technician installs an ONT in a
residential home to convert fiber optic signals from the ISP into Ethernet
signals for a router.
 Network Interface Card (NIC)- A technician replaces a faulty
NIC in a desktop computer to restore network connectivity.
  MAC Address - The technician verifies the MAC address of a
NIC (e.g., 00:1A:2B:3C:4D:5E) when configuring DHCP
reservations for consistent IP assignment.

Summary

• Networking hardware and components are essential for building efficient,

secure, and scalable networks.
• This lesson covers devices like routers, switches, firewalls, and access points,
along with technologies like PoE, NICs, and optical terminals.
• Understanding these components enables IT technicians to design and manage
networks that meet connectivity, security, and performance requirements.

Practice Exam Questions

• Question 1. - A technician needs to connect multiple devices within a local

network and segment traffic for better security and performance. Which device
should they use?
o A. Router
o B. Patch panel
o C. Managed switch
o D. Cable modem

• Question 2. - Which device is responsible for directing traffic between

different networks and determining the optimal path for data to travel?
o A. Switch
o B. Router
o C. Firewall
o D. Network interface card (NIC)

• Question 3. - A security administrator needs to prevent unauthorized access to

the network by monitoring and filtering incoming and outgoing traffic. Which
device should be configured?
o A. Firewall
 o B. PoE switch
o C. Access point
o D. Optical network terminal (ONT)

• Question 4. - A technician wants to power multiple wireless access points

without running additional power cables. Which solution should they choose?
o A. NIC
o B. PoE switch
o C. Router
o D. DSL modem

Answer Key

• Question 1. - C Managed switch

o Correct Answer:
 Managed switch: A managed switch allows traffic segmentation
through VLANs, improving security, performance, and
manageability within a local network.
o Incorrect Answers:
 Router: Routes traffic between networks but does not handle
internal LAN segmentation.
 Patch panel: Organizes network cables but does not handle traffic
forwarding.
 Cable modem: Connects to an ISP for internet access, not
internal network management.
• Question 2. - B Router
o Correct Answer:
 Router: Routers direct data between different networks and
determine the best route for traffic using IP addresses.
o Incorrect Answers:
 Switch: Operates within a LAN, forwarding traffic based on
MAC addresses.
 Firewall: Controls traffic based on security rules but does not
handle routing.
 Network interface card (NIC): Provides network connectivity
but does not route traffic.
• Question 3. - A Firewall
o Correct Answer:
  Firewall: A firewall monitors and filters network traffic to protect
against unauthorized access and threats.
o Incorrect Answers:
 PoE switch: Provides power and data through Ethernet but does
not handle security filtering.
 Access point: Extends wireless connectivity but does not offer
traffic monitoring or filtering.
 Optical network terminal (ONT): Converts fiber signals to
Ethernet, not designed for security functions.
• Question 4. - B PoE switch
o Correct Answer:
 PoE switch: A PoE switch delivers both power and data over
Ethernet cables, eliminating the need for separate power lines.
o Incorrect Answers:
 NIC: Provides network connectivity but does not supply power.
 Router: Directs network traffic but does not provide power over
Ethernet.
 DSL modem: Provides internet access over telephone lines but
does not support PoE functionality.
title: basic-soho-configuration
domain: networking
exam: 220-1201-02-008

Basic SOHO Configuration

• (220-1201)2.6 - Given a scenario, configure basic wired/wireless small

office/home office (SOHO) networks.
o Internet Protocol (IP) addressing
 IPv4
 Private addresses
 Public addresses
o IPv6
o Automatic Private IP Addressing (APIPA)
o Static
o Dynamic
o Subnet mask
o Gateway

Introduction

• IP addressing is the foundation of network communication, enabling devices to

connect and exchange data.
• This lesson explores IPv4, IPv6, addressing methods, subnetting, and gateways,
highlighting their roles in network design and management.
• Understanding these concepts equips IT technicians to configure and
troubleshoot IP-based networks effectively.

Concepts
• IPv4
o Format - 32-bit binary address - Comprised of 4 octets (8-bit binary) -
Represented in dotted-decimal notation decimal for example [Link]
- Each decimal number (octet) can range from 0 to 255
• Subnet Mask - A 32-bit value that separates the network and host portions of
an IP address - Must be contiguous one bits - Example - [Link] -
Indicates that the first three octets (binary 1's) represent the network, and the
last octet (binary 0's) represents the host.
• Gateway
o A device that allows traffic to move between networks.
 Commonly a router
 Example - Devices send traffic to the gateway (router) when the
destination is outside the local network for example the Internet.
• Address Classes and Types
o IPv4 Address Classes
 Class A - [Link] - [Link]
 Default subnet mask = [Link] or /8
 Class B - [Link] - [Link]
 Default subnet mask = [Link] or /16
 Class C - [Link] - [Link]
 Default subnet mask = [Link] or /24
 Class D - [Link] - [Link]
 Default subnet mask = N/A
 Class E - [Link] - [Link]
 Default subnet mask = N/A
o Address types
 Public Addresses - Assigned by ISPs and routable on the
internet, enabling global communication between devices.
 Private Addresses - Reserved for internal use in private networks
and are not routable on the public internet
 Private IP Address Ranges
 Class A - [Link] - [Link]
 Class B - [Link] - [Link]
 Class C - [Link] - [Link]
• IPv6
o Larger address space
o 128 bits address
o Represented in coloned-hexadecimal blocks
o Can be abbreviated
o Example:
 2001:0db8:85a3:0000:0000:8a2e:0370:7334
  2001:db8:85a3:0:0:8a2e:370:7334
 2001:db8:85a3::8a2e:370:7334
• Automatic Private IP Addressing (APIPA)
o Zero-configuration technology
o Uses as a fallback with a DHCP server is unavailable
o Format
 169.254.x.y
o APIPA allows local communication but does not support internet access.
• Static Addressing
o Manually assigned IP addresses that remain fixed
o Commonly used for servers, printers, and other devices providing
network resource or services.
o Not scalable
o Prone to misconfiguration
• Dynamic Addressing
o IP addresses are assigned by a DHCP server
o Enable efficient and automated management of IP resources
o Scalable IP addressing scheme
o Less prone to human error
• Scenarios
o IPv4
 Private Addresses - A technician configures a SOHO network
with private IPs in the [Link]/24 range, ensuring devices
remain secure and inaccessible from the public internet.
 Public Addresses - An IT admin configures a router with a public
IP assigned by the ISP to allow internet access for all connected
devices.
o IPv6 - A technician enables IPv6 addressing in a corporate network to
future-proof the infrastructure and provide connectivity for modern
devices.
o APIPA - A user reports no internet connectivity, and a technician
identifies that the device has an APIPA address (169.254.x.x). The issue
is resolved by restarting the DHCP server to restore dynamic IP
allocation.
o Static Addressing - A technician assigns a static IP ([Link]) to a
network printer to ensure consistent accessibility within the office
network.
o Dynamic Addressing - A DHCP server is configured by an IT
professional to assign IP addresses dynamically within the range
[Link] - [Link], simplifying network management for
devices in a small office.
 o Subnet Mask - A technician uses the subnet mask [Link] to
ensure all devices in the 192.168.1.x range can communicate within the
same local network without requiring a router.
o Gateway - A technician configures the gateway address [Link] on
client devices, ensuring they can send traffic to the internet through the
router.

Summary

• This lesson covered IPv4 and IPv6 addressing, static and dynamic IP
assignment, APIPA, subnet masks, and gateways.
• These foundational concepts are crucial for configuring, managing, and
troubleshooting network connectivity in both private and public environments.

Practice Exam Questions

• Question 1. - A user reports that their device is unable to access the internet. The
technician finds the device has an IP address starting with 169.254. What does this
indicate?
o A. The device has been assigned a public IP address.
o B. The device has a static IP address.
o C. The device has an APIPA address.
o D. The device has a private IPv6 address.

• Question 2. - A small office needs to ensure their devices have unique and
automatically assigned IP addresses within the [Link]/24 network range.
Which configuration method should the technician implement?
o A. Static addressing
o B. Dynamic addressing
o C. APIPA addressing
o D. Subnetting

• Question 3. - Which address range is reserved for private IPv4 Class C networks?
o A. [Link] – [Link]
 o B. [Link] – [Link]
o C. [Link] – [Link]
o D. [Link] – [Link]

• Question 4. - A technician is configuring a local network and needs to define

which portion of the IP address represents the network. Which value is used for
this purpose?
o A. Gateway address
o B. MAC address
o C. Subnet mask
o D. DNS address

Answer Key

• Question 1. - C APIPA address

o Correct Answer:
 APIPA address: An IP address in the 169.254.x.y range indicates
APIPA, which occurs when a device cannot obtain an IP from a
DHCP server.
o Incorrect Answers:
 Public IP: Public IP addresses are assigned by ISPs and are
routable on the internet.
o Static IP: Static addresses are manually assigned and do not fall within
the APIPA range.
o Private IPv6 address: IPv6 addresses are in a different format and
range.
• Question 2. - B Dynamic addressing
o Correct Answer:
 Dynamic addressing: Dynamic IP assignment uses a DHCP
server to automatically assign addresses within a defined range,
reducing manual errors.
o Incorrect Answers:
 Static addressing: Requires manual configuration, which can be
prone to errors and is not scalable.
 APIPA addressing: APIPA is a fallback for DHCP failures and
does not allow internet access.
 Subnetting: Defines the network and host portions of an IP
address but does not assign addresses.
• Question 3. - C [Link] – [Link]
o Correct Answer:
 [Link] – [Link]: This range is reserved for private
IPv4 Class C networks, commonly used in SOHO environments.
o Incorrect Answers:
 [Link] – [Link]: Class A private address range.
 [Link] – [Link]: Class B private address range.
 [Link] – [Link]: Reserved for multicast, not private
addressing.
• Question 4. - C Subnet mask
o Correct Answer:
 Subnet mask: The subnet mask separates the network and host
portions of an IP address, enabling devices to communicate within
the same subnet.
o Incorrect Answers:
 Gateway address: Used to send traffic outside the local network.
o MAC address: A hardware identifier used at Layer 2, not related to IP
subnetting.
o DNS address: Resolves domain names to IP addresses but is not
involved in network segmentation.
title: internet-connections-and-network-types
domain: Networking
exam: 220-1201-02-009

Internet Connections and Network Types

• (220-1201)2.7 - Compare and contrast internet connection types, network

types, and their characteristics.
o Internet connection types
 Satellite
 Fiber
 Cable
 DSL
 Cellular
 Wireless internet service provider (WISP)
o Network types
 Local area network (LAN)
 Wide area network (WAN)
 Personal area network (PAN)
 Metropolitan area network (MAN)
 Storage area network (SAN)
 Wireless local area network (WLAN)

Introduction

• Understanding internet connection types and network types is vital for

managing IT infrastructures.
• This lesson covers technologies like satellite, fiber, and cellular, alongside
network types such as LAN, WAN, and SAN.
• These concepts are foundational for designing, implementing, and
troubleshooting reliable network solutions in various environments.
Concepts

• Internet Connection Types

o Satellite
 Line-of-sight, wireless (unbounded) communication
 Longest wireless tranmission media.
 Comprised of space and ground elements.
 Provide Internet connectivity to remote locations.
 Characteristics - High latency, moderate speeds, and weather-
dependent performance.
o Fiber
 Bounded tranmission, using using light.
 Uses fiber optic cables.
 Provide high speeds, low latency, not suseptible to EMI .
 Various implementations: Fiber-to-the-curb, Fiber-to-the-Home
(FTTH).
 Characteristics - High reliability, very high bandwidth, and low
signal degradation over long distances.
o Cable
 Wired (bounded) copper-based coaxial connection/
 Typically used for cable TV and broadband Internet services.
 Uses DOCSIS 3.0 standard - (Data Over Cable Service Interface
Specification) is a telecommunications standard.
 Enables high-speed Internet access.
 Uses existing cable TV systems.
 Characteristics - High speeds, widespread availability, and
shared bandwidth within the neighborhood.
o DSL (Digital Subscriber Line)
 Allows digital signals to be put on traditional telephone lines.
 Variants
 ADSL (asymmetric)
 Common in residential areas.
 Upload and download speed differ.
 VDSL (very-high-speed)
 Used in application requiring higher speeds.
 Can use copper and fiber connections.
 Characteristics - Moderate speeds, distance-sensitive
performance, and a dedicated connection per user.
o Cellular
 Uses 3G, 4G LTE, 5G technologies.
 Provides Internet access via mobile networks.
 Characteristics - High mobility, variable speeds based on signal
strength and network congestion, and data caps.
o Wireless Internet Service Provider (WISP)
 Uses radio signals to deliver internet in rural or underserved areas.
 Characteristics - Moderate speeds, line-of-sight requirement, and
reliable service in areas without wired infrastructure.
• Network Types
o Local Area Network (LAN)
 Connects devices within a single geographical area, such as an
office or home.
 Characteristics - High speed, low latency, and typically uses
Ethernet or Wi-Fi.
o Wide Area Network (WAN)
 Connects multiple LANs across large geographical areas, such as
cities or countries.
 Characteristics - Combines private and public infrastructure on
leased lines, satellites, or public networks (e.g., the Internet).
o Personal Area Network (PAN)
 Connects personal devices within a short range
 Examples - smartphones, laptops, and smartwatches.
 Characteristics - Short range (usually within 10 meters) when
usig Bluetooth or shorter with USB connections.
o Metropolitan Area Network (MAN)
 Connecting multiple LANs within the area, commonly a city.
 Allows for LAN-based communication technologies such as
Ethernet (Metro-Ethernet).
 Characteristics - Uses high-speed connections like fiber optics to
support large organizations or municipalities.
o Storage Area Network (SAN)
 A enterprise-class, high-speed storage-based network.
 Uses Fibre Channel.
 Provides block-level storage access to servers.
 Characteristics - Dedicated to storage, uses technologies like
Fibre Channel or iSCSI, and ensures high performance and
reliability.
o Wireless Local Area Network (WLAN)
 A wireless network that allow wireless client connection to a
wired LAN.
 Uses the IEEE 802.11x family of WLAN standards.
  Characteristics - Flexible, convenient, and supports a range of
mobile devices within a limited area.
• Scenarios
o Internet Connection Types
 Satellite - A technician configures satellite internet for a remote
cabin where wired connections are unavailable.
 Fiber - A business upgrades to fiber internet for faster speeds and
improved reliability to support high-bandwidth applications like
video conferencing.
 Cable - A technician sets up a cable modem for a small office that
requires consistent high-speed internet.
 DSL - A rural customer gets DSL service configured for basic
web browsing and email, using an existing telephone line.
 Cellular - A technician helps a traveling professional configure a
mobile hotspot for internet access using a 5G connection.
 WISP - A technician installs a WISP receiver on a rural home to
provide internet access via line-of-sight wireless signals.
o Network Types
 LAN - An IT technician configures a LAN in an office,
connecting PCs, printers, and servers using a managed switch.
 WAN - A corporation connects branch offices across different
cities using a WAN with leased lines.
 PAN - A user pairs their smartphone with a smartwatch using
Bluetooth to sync notifications and fitness data.
 MAN - A city government deploys a MAN to connect public
libraries and municipal buildings for centralized resource sharing.
 SAN - The IT team configures a SAN to provide a centralized
storage solution with low latency and high throughput, allowing
the processing of data in real-time.
 WLAN - A technician installs wireless access points in a coffee
shop, ensuring customers have Wi-Fi access throughout the
premises.

Summary

• This lesson examined internet connection types like satellite, fiber, cable, along
with networks types such as LANs and WANs.
• It emphasized their characteristics and roles in connectivity
 • This provides a foundation for understanding diverse network infrastructures
for different operational requirements.

Practice Exam Questions

• Question 1. - A technician is setting up internet access for a remote cabin where

no wired infrastructure exists. Which connection type is most suitable?
o A. Fiber
o B. Cable
o C. Satellite
o D. DSL

• Question 2. - A business wants high-speed internet with low latency and minimal
signal degradation over long distances. Which connection type should they
choose?
o A. Satellite
o B. Fiber
o C. Cellular
o D. WISP

• Question 3. - Which network type connects personal devices like smartphones,

laptops, and smartwatches within a short range, typically using Bluetooth or USB?
o A. LAN
o B. WAN
o C. SAN
o D. PAN

Answer Key

• Question 1. - C Satellite
o Correct Answer:
 Satellite: Satellite internet is ideal for remote locations without
wired infrastructure, although it has higher latency and can be
weather-dependent.
 o Incorrect Answers:
 Fiber: Fiber requires a physical cable infrastructure, which is not
available in remote areas.
 Cable: Cable internet also relies on physical coaxial cables,
typically unavailable in remote locations.
 DSL: DSL uses telephone lines, which are not feasible in remote
locations without the necessary infrastructure.
• Question 2. - B Fiber
o Correct Answer:
 Fiber: Fiber internet provides extremely high bandwidth, low
latency, and minimal signal degradation, making it ideal for
businesses with high-speed needs.
o Incorrect Answers:
 Satellite: Satellite internet has high latency, unsuitable for
applications requiring real-time communication.
 Cellular: Cellular networks can be affected by signal strength and
congestion, leading to variable speeds and higher latency.
 WISP: WISP connections often have moderate speeds and require
a line-of-sight setup, which may not meet the business’s
performance requirements.
• Question 3. - D
o Correct Answer: PAN
 PAN: A Personal Area Network (PAN) connects devices within a
short range, typically using Bluetooth or USB for communication.
o Incorrect Answers:
 LAN: A Local Area Network (LAN) connects devices within a
building or campus using Ethernet or Wi-Fi.
 WAN: A Wide Area Network (WAN) connects multiple LANs
across large geographical areas.
 SAN: A Storage Area Network (SAN) provides high-speed access
to storage devices for servers, not personal device connections.
title: networking-tools
domain: networking
exam: 220-1201-02-010

Networking Tools

• (220-1201)2.8 - Explain networking tools and their purposes.

o Crimper
o Cable stripper
o Wi-Fi analyzer
o Toner probe
o Punchdown tool
o Cable tester
o Loopback plug
o Network tap

Introduction

• Networking tools are essential for IT professionals to install, test, and maintain
reliable network infrastructure.
• This lesson covers key tools like crimpers, cable strippers, Wi-Fi analyzers, and
network taps, explaining their functions and use cases.
• Understanding these tools is vital for efficient cable preparation, network
diagnostics, and traffic monitoring in various environments.

Concepts

• Common tools
o Crimper
  A tool used to attach connectors, such as RJ-45 or RJ-11, to the
ends of network cables. It presses the connector pins into the cable
wires to create a the connection.
o Cable Stripper
 A tool designed to remove the outer jacket of a cable without
damaging the internal wires. Commonly used to prepare Ethernet
or coaxial cables for termination.
o Wi-Fi Analyzer
 A device or software that scans wireless networks to identify
signal strength, interference, and channel usage. It is used for
optimizing Wi-Fi coverage and resolving connectivity issues.
o Toner Probe
 A two-part tool (toner and probe) used to trace and locate cables.
The toner sends a signal through the cable, and the probe detects it
to identify the other end.
o Punchdown Tool
 A tool used to connect individual wires to punchdown blocks,
such as patch panels or keystone jacks, ensuring a secure and
reliable connection.
o Cable Tester
 A device used to verify the integrity and continuity of network
cables. Advanced models may also detect wiring issues like split
pairs or crosstalk.
o Loopback Plug
 A diagnostic tool that redirects a device’s output signal back into
its input port, enabling testing of network ports or interfaces for
functionality.
o Network Tap
 A hardware device that provides passive access to network traffic
for monitoring and analysis without interrupting the data flow.
• Scenarios
o Crimper - A technician uses a crimper to attach RJ-45 connectors to
Cat6 cables while setting up a new office network.
o Cable Stripper - A technician uses a cable stripper to prepare Ethernet
cables for termination during the installation of a patch panel in a data
center.
o Wi-Fi Analyzer - An IT admin uses a Wi-Fi analyzer to optimize access
point placement and reduce interference in a crowded office with
overlapping networks.
o Toner Probe - A technician uses a toner probe to locate the other end of
a mislabeled Ethernet cable in a large patch panel.
 o Punchdown Tool - A technician uses a punchdown tool to terminate
Cat5e cables onto a patch panel, ensuring proper connections for the
office network.
o Cable Tester - A technician uses a cable tester to verify that newly
installed Ethernet cables are correctly wired and free of faults before
deploying them.
o Loopback Plug - A technician tests a malfunctioning server’s network
interface card (NIC) by connecting a loopback plug to confirm if the port
is working.
o Network Tap - A security analyst installs a network tap between a
router and switch to monitor traffic and capture packets for threat
analysis.

Summary

• This lesson introduced key networking tools used for cable preparation,
network optimization, and diagnostics.
• Tools like crimpers, Wi-Fi analyzers, and cable testers play a critical role in
building and maintaining efficient, reliable networks.
• These tools simplify setup, ensure proper connections, and assist in identifying
and resolving issues.

Practice Exam Questions

• Question 1. - A technician needs to attach RJ-45 connectors to multiple Ethernet

cables for a new office setup. Which tool should be used for this task?
o A. Cable tester
o B. Crimper
o C. Toner probe
o D. Loopback plug

• Question 2. - A technician is troubleshooting a mislabeled Ethernet cable in a

large office. Which tool can trace the cable's path through a patch panel?
o A. Toner probe
 o B. Wi-Fi analyzer
o C. Punchdown tool
o D. Cable stripper

• Question 3. - An IT administrator needs to optimize the placement of wireless

access points by analyzing signal strength and interference. Which tool is most
appropriate for this task?
o A. Loopback plug
o B. Wi-Fi analyzer
o C. Cable tester
o D. Network tap

• Question 4. - A security analyst needs to monitor network traffic without

interrupting data flow. Which tool should be used to achieve this?
o A. Crimper
o B. Punchdown tool
o C. Network tap
o D. Cable tester

Answer Key

• Question 1. - B Crimper
o Correct Answer:
 Crimper: A crimper is used to attach RJ-45 connectors to
Ethernet cables, ensuring a secure and functional connection.
o Incorrect Answers:
 Cable tester: A cable tester is used to verify cable integrity, not
to attach connectors.
 Toner probe: Used for tracing cables, not for terminating them.
 Loopback plug: Used for diagnosing port issues, not for cable
preparation.
• Question 2. - A Toner probe
o Correct Answer:
 Toner probe: A toner probe can trace a cable by detecting a
signal sent through it, helping locate the cable’s endpoint.
o Incorrect Answers:
 Wi-Fi analyzer: Analyzes wireless networks, not physical cables.
  Punchdown tool: Used for terminating wires on patch panels, not
tracing them.
 Cable stripper: Removes the cable jacket but does not trace cable
paths.
• Question 3. - B Wi-Fi analyzer
o Correct Answer:
 Wi-Fi analyzer: A Wi-Fi analyzer scans networks to evaluate
signal strength, channel usage, and interference, aiding in wireless
network optimization.
o Incorrect Answers:
 Loopback plug: Tests network ports, not wireless networks.
 Cable tester: Verifies Ethernet cables, not wireless performance.
 Network tap: Used for monitoring wired traffic, not analyzing
Wi-Fi signals.
• Question 4. - C Network tap
o Correct Answer:
 Network tap: A network tap provides passive access to network
traffic for monitoring and analysis without disrupting the data
flow.
o Incorrect Answers:
 Crimper: Used to attach connectors to cables, not for traffic
monitoring.
 Punchdown tool: Used for terminating cables, not capturing
traffic.
 Cable tester: Used to verify cable wiring, not to monitor network
traffic.
title: networking-in-windows
domain: networking
exam: 220-1202-02-011

Networking in Windows

• (220-1202)1.7 - Given a scenario, configure Microsoft Windows networking

features on a client/desktop.
o Domain joined vs. workgroup
 Shared resources
 Printers
 File servers
 Mapped drives
o Local OS firewall settings
 Application restrictions and exceptions
 Configuration
o Client network configuration
 Internet Protocol (IP) addressing scheme
 Domain Name System (DNS) settings
 Subnet mask
 Gateway
 Static vs. dynamic
o Establish network connections
 Virtual private network (VPN)
 Wireless
 Wired
 Wireless wide area network (WWAN)/cellular network
o Proxy settings
o Public network vs. private network
o File Explorer navigation–network paths
o Metered connections and limitations

Introduction
 • Understanding network connectivity and configuration is vital for seamless
communication and resource sharing.
• This lesson covers various Windows networking concepts and configurations
such as domain and workgroup setups, client network configurations, and
establishing wired, wireless, or VPN connections.
• These principles are essential for configuring, maintaining and support
Windows client within Windows-based networks.

Concepts

• Domain Joined vs. Workgroup

o Domain Joined - A centralized model where devices connect to a
domain controller for authentication and resource management,
commonly used in business environments.
o Workgroup - A decentralized model where devices operate
independently but can share resources, suitable for small or home
networks.
o Shared Resources - Resources like files and printers are shared between
devices on the same domain or workgroup.
o Printers - Network or shared printers can be made accessible over the
network to devices in a domain or workgroup.
o File Servers - Centralized servers that store and manage files for
multiple users.
o Mapped Drives - Network locations are assigned a drive letter for quick
access.
• File Explorer Navigation – Network Paths
o Allows users to access shared network resources using UNC (Universal
Naming Convention) paths, e.g., \server\shared_folder.
• Client Network Configuration
o IP Addressing Scheme - Defines how devices communicate over a
network using IPv4 or IPv6.
o DNS Settings - Map domain names to IP addresses, ensuring users can
access websites or resources by name.
o Subnet Mask - Separates the network and host portions of an IP address
to define the network boundary.
o Gateway - Directs traffic between the local network and other networks,
such as the internet.
o Static vs. Dynamic
  Static - Manually assigned IP addresses that remain fixed.
 Dynamic - Automatically assigned by a DHCP server.
• Establish Network Connections
o Virtual Private Network (VPN) - Provides secure, encrypted access to
remote networks over the internet.
o Wired - Connects via Ethernet for stable, high-speed communication.
 Wireless - Connects to networks via Wi-Fi, enabling mobility and
convenience.
o Wireless Wide Area Network (WWAN)/Cellular Network - Provides
internet access using mobile data. Uses 3G, 4G LTE, 5G technologies
• Local OS Firewall Settings
o Application Restrictions and Exceptions - Control access to specific
applications by blocking or allowing traffic.
o Configuration - Adjust inbound/outbound rules, enable/disable the
firewall, and customize advanced settings for improved security.
• Public Network vs. Private Network
o Public Network - A more restrictive configuration designed for
untrusted networks, like public Wi-Fi, to enhance security.
o Private Network - Allows more relaxed sharing and connectivity
settings for trusted networks, like home or office networks.
• Proxy Settings
o Configurations that route network traffic through a proxy server for
access control, content filtering, caching, or anonymity.
• Metered Connections and Limitations
o A network configuration where data usage is tracked and limited,
commonly implemented on cellular connections or limited data plans to
prevent overages.
• Scenarios
o Domain Joined vs. Workgroup
 Domain Joined - A technician joins a Windows 11 laptop to a
corporate domain, allowing the user to authenticate with domain
credentials and access shared resources.
 Workgroup - A home office user sets up a workgroup to share
files and a printer between multiple PCs.
o Local OS Firewall Settings
 Application Restrictions and Exceptions - A technician allows a
remote desktop application through the Windows firewall while
blocking access to unauthorized apps.
 Configuration - An IT admin enables Windows Defender
Firewall on all endpoints and applies advanced rules for specific
ports used by internal services.
o Client Network Configuration
 IP Addressing Scheme - A technician assigns a static IP to a
server and ensures other devices receive dynamic IPs via DHCP.
 DNS Settings - An admin configures DNS settings on a Windows
client to use the organization’s internal DNS server for name
resolution.
 Subnet Mask - A technician ensures all devices on the network
use the same subnet mask ([Link]) to communicate within
the LAN.
 Gateway - The technician configures the gateway address
([Link]) to allow internet access for all devices on the
network.
 Static vs. Dynamic - An IT admin assigns a static IP to a network
printer while ensuring user devices receive dynamic IPs from the
DHCP server.
o Establish Network Connections
 VPN - A technician configures a Windows 10 client to connect to
the company VPN for secure remote access.
 Wireless - A user connects their laptop to a corporate Wi-Fi
network with WPA2-Enterprise security.
 Wired - A technician sets up a desktop PC with an Ethernet
connection for improved speed and reliability in a workstation
environment.
 WWAN/Cellular Network - A technician configures a Windows
laptop with a cellular SIM card to access the internet while
traveling.
o Proxy Settings - A technician configures proxy settings in Windows 10
to route employee internet traffic through a content filtering proxy
server.
o Public Network vs. Private Network
 Public Network - A user connects to a coffee shop’s Wi-Fi and
sets it as a public network for security, while their home Wi-Fi is
configured as a private network for easy file and printer sharing.
o File Explorer Navigation – Network Paths - A technician maps a
shared drive (\server\shared_folder) on a Windows 10 desktop, allowing
quick access to team files via File Explorer.
o Metered Connections and Limitations - A technician configures a
metered connection for a laptop using a mobile hotspot to limit
background data usage, such as Windows updates.
Summary

• This lesson explored network connectivity, including domain and workgroup

setups, client IP configurations, and connection methods like wired, wireless, or
VPN.
• It also covered proxy settings, public versus private networks, and metered
connections, highlighting their role in ensuring secure and efficient network
management.

Practice Exam Questions

• Question 1. - A technician needs to join a Windows 11 laptop to a centralized

network where authentication and resource management are handled by a domain
controller. Which networking setup should they configure?
o A. Workgroup
o B. Domain
o C. VPN
o D. Metered connection

• Question 2. - A user wants to access a shared network drive located on a file

server. What is the correct way to navigate to the shared resource in Windows File
Explorer?
o A. \\drive\shared
o B. \\server\shared_folder
o C. C:\network\folder
o D. \\proxy\path

• Question 3. - A technician configures a laptop to connect securely to the corporate

network from a public Wi-Fi hotspot. Which connection type should be used to
encrypt and protect the data?
o A. Wireless connection
o B. VPN
o C. Proxy server
o D. Private network
Answer Key

• Question 1. - B Domain
o Correct Answer:
 Domain: A domain setup centralizes authentication and resource
management through a domain controller, commonly used in
business environments.
o Incorrect Answers:
 Workgroup: Suitable for small networks without centralized
control.
 VPN: Provides secure access to a remote network but is not a
domain-based configuration.
 Metered connection: Limits data usage but does not involve
centralized resource control.
• Question 2. - B \\server\shared_folder
o Correct Answer: \server\shared_folder
 \\server\shared_folder: Network resources are accessed using
UNC paths, which follow this format.
o Incorrect Answers:
 \\drive\shared: Incorrect UNC format.
 C:\network\folder: Refers to a local directory path, not a network
path.
 \\proxy\path: Incorrect terminology; proxies route traffic, not
provide shared network folders.
• Question 3. - B
o Correct Answer: VPN
 VPN: A VPN encrypts data, providing secure remote access to a
corporate network over public or untrusted networks.
o Incorrect Answers:
 Wireless connection: Only provides network access, without
encryption for public networks.
 Proxy server: Routes traffic but does not inherently provide
encryption for remote access.
 Private network: Configures security settings within a trusted
local network, not for public or remote access scenarios.
title: networking-commands
domain: Networking
exam: 220-1202-02-012

Networking Commands

• 1.5 - Given a scenario, use the appropriate Microsoft command-line tools.

• 1.9 - Identify common features and tools of the Linux client/desktop operating
system.
o Windows Networking commands
 ipconfig
 ping
 netstat
 nslookup
 net use
 tracert
 pathping
o Windows informational commands
 hostname
 net user
 whoami
 [command name] /?
o Linux networking commands
 ip
 ping
 curl
 dig
 traceroute

Introduction

• Networking and system commands are vital tools for IT professionals to

diagnose and resolve connectivity and system issues.
 • This lesson highlights essential Windows and Linux commands for managing
IP configurations, testing connectivity, and querying DNS.
• Understanding these commands equips technicians to troubleshoot network
problems, configure systems, and maintain network communication

Concepts

• Windows Networking Commands

o ipconfig - Displays and configures network interface details like IP
address, subnet mask, and gateway.
 Example 1 - ipconfig – Displays all active network
configurations.
 Example 2 - ipconfig /release – Releases the current IP address
assigned by DHCP.
o ping - Sends ICMP echo requests to test connectivity with another host.
 Example 1 - ping [Link] – Tests connectivity to Google’s
domain.
 Example 2 - ping [Link] – Verifies communication with a
local router.
o netstat - Displays active network connections, listening ports, and
routing tables.
 Example 1 - netstat – Lists all active connections on the local
machine.
 Example 2 - netstat -a – Displays all active and listening ports.
o nslookup - Queries DNS to resolve domain names to IP addresses or
vice versa.
 Example 1 - nslookup [Link] – Resolves the domain name to
an IP address.
 Example 2 - nslookup [Link] – Resolves the IP address to a
domain name.
o net use - Maps or disconnects network drives.
 Example 1 - net use Z: \\server\shared – Maps a shared folder
to drive Z.
 Example 2 - net use * /delete – Removes all mapped network
drives.
o tracert - Traces the route packets take to reach a destination, showing
intermediate hops.
  Example 1 - tracert [Link] – Displays the route to Google’s
domain.
 Example 2 - tracert [Link] – Traces the path to a local
router.
o pathping - Combines features of ping and tracert to provide detailed
network path statistics.
 Example 1 - pathping [Link] – Provides hop-by-hop latency
and packet loss to Google’s domain.
 Example 2 - pathping [Link] – Analyzes path reliability to a
local server.
• Windows Informational Commands
o hostname - Displays the computer’s name.
 Example 1 - hostname – Shows the system’s hostname.
 Example 2 - ping %COMPUTERNAME% – Pings the local machine
using its hostname.
o net user - Manages user accounts on a Windows system.
 Example 1 - net user – Lists all user accounts.
 Example 2 - net user username /add – Adds a new user account.
o whoami - Displays the current user’s username and domain.
 Example 1 - whoami – Shows the current logged-in user.
 Example 2 - whoami /groups – Lists all groups the user belongs
to.
o [command name] /? - Displays help and usage information for a
specific command.
 Example 1 - ipconfig /? – Shows the available options for the
ipconfig command.
 Example 2 - ping /? – Displays all options for the ping
command.
• Linux Networking Commands
o ip - Displays and configures IP addresses and network interfaces.
 Example 1 - ip addr show – Displays all network interfaces and
their configurations.
 Example 2 - ip link set eth0 up – Enables the eth0 interface.
o ping - Tests connectivity by sending ICMP echo requests.
 Example 1 - ping [Link] – Tests connectivity to Google’s
domain.
 Example 2 - ping -c 4 [Link] – Sends four ping requests to
a router.
o curl - Transfers data from or to a server using supported protocols like
HTTP, FTP, or HTTPS.
  Example 1 - curl [Link] – Fetches the homepage of
the specified website.
 Example 2 - curl -I [Link] – Displays only the
HTTP headers.
o dig - Queries DNS servers for information about domains or IP
addresses.
 Example 1 - dig [Link] – Resolves the domain name to an
IP address.
 Example 2 - dig +short [Link] – Displays only the resolved
IP address.
o traceroute - Traces the route packets take to a destination, like tracert on
Windows.
 Example 1 - traceroute [Link] – Displays the route to
Google’s domain.
 Example 2 - traceroute -I [Link] – Traces the route to a
router using ICMP.
• Scenarios
o Windows Commands
 ipconfig - A technician uses ipconfig to verify the IP
configuration of a workstation experiencing network issues.
 tracert - A technician troubleshoots slow website access by
using tracert to identify delays along the network path.
o Linux Commands
 curl - A developer uses curl to test an API endpoint’s response
from a Linux workstation.
 dig - An IT admin resolves a DNS issue by using dig to verify
DNS resolution for a company’s domain.

Summary

• This lesson explored key Windows and Linux commands for network
troubleshooting and management.
• Tools like ipconfig, ping, and curl support connectivity checks, DNS
resolution, and data transfers.
• Understanding these concepts enable IT professionals to diagnose and resolve
system issues effectively.
Practice Exam Questions

• Question 1. - A technician is troubleshooting a Windows desktop that cannot

connect to the internet. Which command should the technician use to display the
current IP configuration, including the assigned IP address and gateway?
o A. netstat
o B. ipconfig
o C. tracert
o D. hostname

• Question 2. - A user reports intermittent network delays when accessing a remote

website. What command should a technician use on Windows to trace the path and
identify where delays are occurring along the route?
o A. tracert
o B. ping
o C. pathping
o D. net use

• Question 3. - An administrator on a Linux system wants to verify the DNS

resolution for a company's domain. Which command should they use to query the
DNS server for information about the domain?
o A. ip
o B. ping
o C. dig
o D. traceroute

• Question 4. - A technician needs to map a shared network folder to drive Z: on a

Windows desktop. Which command is appropriate for this task?
o A. netstat
o B. net use
o C. pathping
o D. nslookup

Answer Key

• Question 1. - B ipconfig
 o Correct Answer:
 ipconfig: This command displays the current IP configuration,
including IP address, subnet mask, and gateway, useful for
diagnosing connectivity issues.
o Incorrect Answers:
 netstat: Displays active network connections but does not show
IP configuration details.
 tracert: Traces the path to a remote destination but does not
display local network settings.
 hostname: Displays the system’s name but provides no IP
configuration details.
• Question 2. - A tracert
o Correct Answer:
 tracert: Traces the route to a destination, showing each hop along
the path, which helps identify where delays occur.
o Incorrect Answers:
 ping: Tests connectivity but does not show the route or
intermediate hop
 pathping: Provides both latency and packet loss statistics but
takes longer to complete.
 net use: Manages network drive mappings and is unrelated to
tracing routes.
• Question 3. - C dig
o Correct Answer:
 dig: This command queries DNS servers to resolve domain
names, providing detailed DNS information.
o Incorrect Answers:
 ip: Displays network interfaces and IP configurations but does not
query DNS.
 ping: Tests connectivity to a host but does not provide detailed
DNS records.
 traceroute: Traces the network path to a host but does not
perform DNS queries.
• Question 4. - B net use
o Correct Answer:
 net use: This command maps network drives, allowing access to
shared resources on a network.
o Incorrect Answers:
 netstat: Displays active network connections and listening ports.
 pathping: Provides detailed network path statistics but is not used
for drive mapping.
 nslookup: Queries DNS servers for domain name resolution,
unrelated to drive mapping.
title: troubleshooting-network-issues
domain: networking
exam: 220-1201-02-13

Troubleshooting Network Issues

• (220-1201)5.5 - Given a scenario, troubleshoot network issues. Common

symptoms
o Intermittent wireless connectivity
o Slow network speeds
o Limited connectivity
o Jitter
o Poor Voice over Internet Protocol (VoIP) quality
o Port flapping
o High latency
o External interference
o Authentication failures
o Intermittent internet connectivity

Introduction

• Reliable network performance is critical to both business operations and user

experience.
• However, a variety of issues such as slow speeds, intermittent connectivity, and
authentication failures can disrupt productivity and communication.
• IT professionals must be adept at identifying and resolving these network
problems to ensure optimal performance and security.

Concepts
• Issue: Intermittent Wireless Connectivity
o Explanation: Devices frequently disconnect from or fail to maintain a
stable connection to the Wi-Fi network.
o Potential Causes:
 Weak or fluctuating signal strength.
 Interference from other wireless devices or networks.
 Misconfigured access points.
o Solutions:
 Use a Wi-Fi analyzer to detect interference and identify optimal
channels.
 Reposition or add access points to improve signal coverage.
 Verify and adjust access point settings, including power output
and channel selection.
• Issue: Slow Network Speeds
o Explanation: Users experience significantly reduced download or
upload speeds compared to the expected performance.
o Potential Causes:
 Network congestion.
 Faulty cables or ports.
 Bandwidth-heavy applications or services.
o Solutions:
 Use netstat or Task Manager to identify bandwidth-hogging
applications.
 Check and replace faulty network cables using a cable tester.
 Implement Quality of Service (QoS) rules to prioritize critical
applications.
• Issue: Limited Connectivity
o Explanation: Devices can connect to the local network but cannot
access external resources such as the internet.
o Potential Causes:
 Incorrect gateway or DNS configuration.
 DHCP server issues.
 ISP or modem failure.
o Solutions:
 Use the ipconfig command to check the gateway and DNS
settings.
 Restart the modem/router and verify DHCP server functionality.
 Perform a ping test to verify connectivity to the gateway and
external IP addresses.
• Issue: Jitter
 o Explanation: Network packet delay varies over time, causing
inconsistent performance, especially in real-time applications.
o Potential Causes:
 Congested network paths.
 Misconfigured network devices.
o Solutions:
 Use pathping to identify network congestion points.
 Implement QoS to prioritize real-time traffic such as VoIP or
video conferencing.
• Issue: Poor Voice over Internet Protocol (VoIP) Quality
o Explanation: Calls experience delays, echoes, or dropped audio.
o Potential Causes:
 High jitter or latency.
 Packet loss.
 Inadequate bandwidth.
o Solutions:
 Use a VoIP quality tool to test latency, jitter, and packet loss.
 Prioritize VoIP traffic using QoS on routers or switches.
 Increase bandwidth allocation if necessary.
• Issue: Port Flapping
o Explanation: A network port repeatedly cycles between the up and
down states.
o Potential Causes:
 Faulty cables or NICs.
 Mismatched duplex settings.
 Network loops.
o Solutions:
 Check and replace cables using a cable tester.
 Verify and correct duplex mismatches using switch configuration
commands
 Use network topology diagrams to identify and eliminate loops.
• Issue: High Latency
o Explanation: Data transmission takes longer than expected, causing
delays in application performance.
o Potential Causes:
 Congested network paths.
 Long physical distances for data travel (e.g., cross-region
connections).
o Solutions:
 Use tracert or pathping to trace network paths and identify
latency sources.
  Reroute traffic or optimize paths where possible (e.g., use content
delivery networks for global applications).
• Issue: External Interference
o Explanation: Network performance is degraded due to environmental
factors affecting signal quality.
o Potential Causes:
 Wireless interference from devices like microwaves, cordless
phones, or neighboring networks.
 Physical obstructions (e.g., walls, metal objects).
o Solutions:
 Use a Wi-Fi analyzer to identify and mitigate sources of
interference.
 Reconfigure access points to operate on non-overlapping
channels.
 Reposition devices to minimize physical obstructions.
• Issue: Authentication Failures
o Explanation: Users are unable to log into network resources due to
failed authentication attempts.
o Potential Causes:
 Incorrect credentials.
 Misconfigured authentication servers (e.g., RADIUS, Active
Directory).
 Expired certificates or account lockouts.
o Solutions:
 Use Event Viewer on Windows to review failed login attempts.
 Reset credentials or unlock accounts as necessary.
 Verify authentication server configurations and network access
policies.
• Issue: Intermittent Internet Connectivity
o Explanation: Devices experience random internet disconnections.
o Potential Causes:
 ISP issues.
 Router/modem instability.
 Network device overheating or firmware bugs.
o Solutions:
 Contact the ISP to verify service status.
 Restart network devices and update firmware.
 Use ping to monitor connection stability over time.
Summary

• Network performance issues such as intermittent connectivity, slow speeds, and

high latency can disrupt critical operations and degrade the user experience.
• These problems often arise from factors like interference, network congestion,
hardware failures, and misconfigurations.
• By addressing these issues promptly, IT professionals can maintain reliable
network performance

Practice Exam Questions

Question 1. - A user reports frequent disconnections from their Wi-Fi network in a

crowded office building. Which tool can a technician use to identify interference and
optimize wireless channel selection?

• A. ping
• B. Wi-Fi analyzer
• C. netstat
• D. pathping

Question 2. - An organization is experiencing poor VoIP call quality with issues like
delayed audio and packet loss. What solution should the technician implement to
prioritize VoIP traffic?

• A. Enable Quality of Service (QoS)

• B. Restart all network devices
• C. Increase the MTU size
• D. Disable the firewall

Question 3. - A technician is troubleshooting a device that can connect to the local

network but cannot access the internet. Which command should be used to verify the
gateway and DNS settings on a Windows machine?

• A. nslookup
• B. ipconfig
• C. net use
 • D. tracert

Question 4. - Users complain about high latency when accessing applications hosted
in another country. Which tool can help the technician determine the network path and
identify where delays are occurring?

• A. ping
• B. tracert
• C. curl
• D. netstat

Answer Key

• Question 1. - B Wi-Fi analyzer

o Correct Answer:
 Wi-Fi analyzer: This tool scans for interference and signal
strength issues, helping optimize wireless performance and
channel selection.
o Incorrect Answers:
 ping: Tests basic connectivity but does not provide information
about wireless interference.
 netstat: Displays active network connections but does not analyze
Wi-Fi performance.
 pathping: Combines ping and tracert features but does not detect
wireless interference.
• Question 2. - A Enable Quality of Service (QoS)
o Correct Answer:
 Enable Quality of Service (QoS): QoS allows prioritization of
network traffic, ensuring VoIP data is transmitted with minimal
delays and packet loss.
o Incorrect Answers:
 Restart all network devices: This may temporarily clear issues
but does not provide ongoing traffic prioritization.
 Increase the MTU size: MTU adjustments do not directly
improve VoIP performance.
 Disable the firewall: This could expose the network to security
risks without improving traffic prioritization.
• Question 3. - B
 o Correct Answer: ipconfig
 ipconfig: This command displays the current IP configuration,
including the gateway and DNS settings, crucial for diagnosing
network connectivity issues.
o Incorrect Answers:
 nslookup: Useful for querying DNS servers but does not display
gateway information.
 net use: Manages network drive mappings, unrelated to IP
configuration.
 tracert: Traces the route to a destination but does not show local
network settings.
• Question 4. - B tracert
o Correct Answer:
 tracert: This tool traces the path packets take to reach a
destination, helping identify where delays or high latency occur.
o Incorrect Answers:
 ping: Tests connectivity but does not provide detailed path
information.
 curl: Transfers data to or from a server but does not trace network
paths.
 netstat: Displays active connections and ports but does not trace
network routes.