Network+ (V9) exam objectives summary

|

Loading

Network+ (V9) exam objectives summary

Networking concepts (23%)

  • OSI model layers: physical, data link, network, transport, session, presentation, application.
  • Networking appliances: routers, switches, firewalls, IDS/IPS, load balancers, proxies, NAS, SAN, and wireless devices.
  • Cloud concepts: NFV, VPC, network security groups, cloud gateways, deployment models (public, private, hybrid), service models (SaaS, IaaS, PaaS).
  • Ports and protocols: FTP, SFTP, SSH, Telnet, SMTP, DNS, DHCP, HTTP, HTTPS, SNMP, LDAP, RDP, SIP.
  • Traffic types: unicast, multicast, anycast, broadcast.
  • Transmission media: wireless (802.11, cellular, satellite), wired (fiber, coaxial, DAC).
  • Transceivers and connectors: SC, LC, ST, MPO, RJ11, RJ45, F-type, BNC.
  • Network topologies: mesh, hybrid, star/hub and spoke, spine and leaf, point-to-point, three-tier, and collapsed core.
  • IPv4 addressing: public vs. private, APIPA, RFC1918, loopback, subnetting (VLSM, CIDR), and address classes (A, B, C, D, E).

Advance your career—Buy Network+ certification exam or training today.

Network implementation (20%)

  • Routing technologies: static and dynamic routing (BGP, EIGRP, OSPF), route selection, NAT, PAT, FHRP, VIP, and subinterfaces.
  • Switching technologies: VLANs, interface configuration, spanning tree, MTU, and jumbo frames.
  • Wireless devices: channels, frequency options, SSID, network types, encryption, guest networks, authentication, antennas, and access points.
  • Physical installations: installation implications, power considerations, and environmental factors.

Network operations (19%)

  • Documentation: physical vs. logical diagrams, rack diagrams, cable maps, network diagrams, asset inventory, IPAM, SLA, and wireless surveys.
  • Life-cycle management: EOL, EOS, software management, and decommissioning.
  • Change management: request process tracking.
  • Configuration management: production, backup, baseline configurations.
  • Network monitoring: SNMP, flow data, packet capture, baseline metrics, log aggregation, API integration, and port mirroring.
  • Disaster recovery: RPO, RTO, MTTR, MTBF, cold/warm/hot sites, active-active/passive, and testing.
  • Network services: DHCP, SLAAC, DNS, NTP, PTP, and NTS.
  • Access and management: VPNs, SSH, GUI, API, and console.

Network security (14%)

  • Logical security: encryption (data in transit/rest), PKI, IAM, MFA, SSO, RADIUS, LDAP, SAML, TACACS+, time-based authentication, authorization, least privilege, role-based access control, and geofencing.
  • Physical security: cameras and locks.
  • Deception technologies: honeypot and honeynet.
  • Security terminology: risk, vulnerability, exploit, threat, and CIA triad.
  • Audits and compliance: data locality, PCI DSS, and GDPR.
  • Network segmentation: IoT, IIoT, SCADA, ICS, OT, guest, and BYOD.
  • Types of attacks: DoS/DDoS, VLAN hopping, MAC flooding, ARP poisoning/spoofing, DNS poisoning/spoofing, rogue devices/services, evil twin, on-path attack, and social engineering (phishing, dumpster diving, shoulder surfing, tailgating).
  • Security features and defense: device hardening, NAC, key management, ACL, URL/content filtering, trusted vs. untrusted zones, and screened subnet.

Get exam-ready—Find your training and explore bundles.

Network troubleshooting (24%)

  • Troubleshooting methodology: identifying the problem, establishing a theory, testing, planning, and implementing a solution, verifying functionality, and documenting findings.
  • Cabling and physical interface issues: cable issues (incorrect type, signal degradation, improper termination, TX/RX transposed), interface issues (increasing counters, port status), and hardware issues (PoE, transceiver mismatch, signal strength).
  • Network services issues: switching issues (STP, VLAN assignment, ACLs), routing issues (routing table and default routes), address pool exhaustion, and incorrect gateway/IP/subnet mask.
  • Performance issues: congestion, latency, packet loss, and wireless interference.
  • Tools and protocols: protocol analyzers, command line tools, cable testers, and Wi-Fi analyzers.

Network+ Acronym Master List

Networking Appliances & Hardware

  • IDS: Intrusion Detection System
  • IPS: Intrusion Prevention System
  • NAS: Network Attached Storage
  • SAN: Storage Area Network

Cloud Concepts

  • NFV: Network Functions Virtualization
  • VPC: Virtual Private Cloud
  • SaaS: Software as a Service
  • IaaS: Infrastructure as a Service
  • PaaS: Platform as a Service

Ports & Protocols

  • FTP: File Transfer Protocol
  • SFTP: Secure File Transfer Protocol
  • SSH: Secure Shell
  • SMTP: Simple Mail Transfer Protocol
  • DNS: Domain Name System
  • DHCP: Dynamic Host Configuration Protocol
  • HTTP: Hypertext Transfer Protocol
  • HTTPS: Hypertext Transfer Protocol Secure
  • SNMP: Simple Network Management Protocol
  • LDAP: Lightweight Directory Access Protocol
  • RDP: Remote Desktop Protocol
  • SIP: Session Initiation Protocol
  • NTP: Network Time Protocol
  • PTP: Precision Time Protocol
  • NTS: Network Time Security
  • SLAAC: Stateless Address Autoconfiguration

Transmission Media & Connectors

  • 802.11: The IEEE standard for Wireless Local Area Networks (Wi-Fi)
  • DAC: Direct Attach Copper
  • SC: Subscriber Connector (or Standard Connector)
  • LC: Lucent Connector (or Little Connector)
  • ST: Straight Tip
  • MPO: Multi-fiber Push On
  • RJ11: Registered Jack 11 (Standard telephone jack)
  • RJ45: Registered Jack 45 (Standard Ethernet jack)
  • BNC: Bayonet Neill–Concelman

IPv4 & Addressing

  • APIPA: Automatic Private IP Addressing
  • RFC 1918: Request for Comments 1918 (The standard for private IP ranges)
  • VLSM: Variable Length Subnet Masking
  • CIDR: Classless Inter-Domain Routing

Routing & Switching Technologies

  • BGP: Border Gateway Protocol
  • EIGRP: Enhanced Interior Gateway Routing Protocol
  • OSPF: Open Shortest Path First
  • NAT: Network Address Translation
  • PAT: Port Address Translation
  • FHRP: First Hop Redundancy Protocol
  • VIP: Virtual IP
  • VLAN: Virtual Local Area Network
  • STP: Spanning Tree Protocol
  • MTU: Maximum Transmission Unit

Wireless

  • SSID: Service Set Identifier (The Wi-Fi name)

Network Operations & Documentation

  • IPAM: IP Address Management
  • SLA: Service Level Agreement
  • EOL: End of Life
  • EOS: End of Support (or End of Sale)
  • API: Application Programming Interface
  • GUI: Graphical User Interface

Disaster Recovery

  • RPO: Recovery Point Objective
  • RTO: Recovery Time Objective
  • MTTR: Mean Time to Repair
  • MTBF: Mean Time Between Failures

Security & Access Management

  • PKI: Public Key Infrastructure
  • IAM: Identity and Access Management
  • MFA: Multi-Factor Authentication
  • SSO: Single Sign-On
  • RADIUS: Remote Authentication Dial-In User Service
  • SAML: Security Assertion Markup Language
  • TACACS+: Terminal Access Controller Access-Control System Plus
  • CIA Triad: Confidentiality, Integrity, and Availability
  • PCI DSS: Payment Card Industry Data Security Standard
  • GDPR: General Data Protection Regulation
  • NAC: Network Access Control
  • ACL: Access Control List

Network Segmentation

  • IoT: Internet of Things
  • IIoT: Industrial Internet of Things
  • SCADA: Supervisory Control and Data Acquisition
  • ICS: Industrial Control Systems
  • OT: Operational Technology
  • BYOD: Bring Your Own Device

Types of Attacks

  • DoS: Denial of Service
  • DDoS: Distributed Denial of Service
  • ARP: Address Resolution Protocol

Troubleshooting & Physical Issues

  • TX/RX: Transmit / Receive
  • PoE: Power over Ethernet