Browse Exams — Mock Exams & Practice Tests

CompTIA Network+ (N10-009) Cheatsheet — High-Yield Tables, Diagrams & Commands

Fast recall for N10-009: OSI model, subnetting, IPv6 essentials, VLANs/trunks, Wi‑Fi, cabling/fiber, ports/protocols, DHCP/DNS, VPN/AAA, and a troubleshooting playbook with common commands.

On this page

Use this for last-mile review. Star weak rows and re-drill with practice.

1) OSI model (memorize + use for troubleshooting)

LayerNamePDUCommon examples
7ApplicationDataHTTP/S, DNS, SMTP, DHCP (conceptual)
6PresentationDataTLS/SSL, encoding, compression
5SessionDataSession setup/teardown (high level)
4TransportSegment/DatagramTCP/UDP, ports
3NetworkPacketIP, routing, ICMP
2Data LinkFrameEthernet, VLANs, MAC, ARP
1PhysicalBitsCabling, RF, signaling
    flowchart LR
	  A[App data] --> B[TCP/UDP + ports]
	  B --> C[IP + routing]
	  C --> D[Ethernet + MAC/VLAN]
	  D --> E[Bits on wire / RF]

2) IPv4 subnetting quick table

Rules

  • Hosts per subnet = 2^(host bits) - 2 (except /31 point-to-point)
  • Block size = 256 - mask_octet (in the interesting octet)
PrefixMaskUsable hostsBlock size (last octet)
/24255.255.255.02541
/25255.255.255.128126128
/26255.255.255.1926264
/27255.255.255.2243032
/28255.255.255.2401416
/29255.255.255.24868
/30255.255.255.25224
/31255.255.255.2542 (P2P)2

Fast sanity checks

  • Same subnet? Compare each IP to the mask (or compute the network address).
  • Default gateway must be in the same subnet as the host.

3) IPv6 essentials

  • Address types
    • Global unicast: 2000::/3 (public)
    • Unique local (ULA): fc00::/7 (private-ish)
    • Link-local: fe80::/10 (always on; neighbor discovery)
  • Compression: remove leading zeros; :: only once per address.
  • Common multicast
    • ff02::1 all nodes (local link)
    • ff02::2 all routers (local link)
    • ff02::1:ff00:0/104 solicited-node (ND)

4) VLANs, trunks, and switching basics

  • Access port: untagged, belongs to one VLAN.
  • Trunk port (802.1Q): tagged, carries multiple VLANs between switches/APs/routers.
  • Native VLAN: untagged VLAN on a trunk (avoid misuse; document it).
  • STP: prevents loops; a loop often shows as broadcast storms and MAC flapping.

5) Wi‑Fi quick table + security

GenerationIEEEBandsNotes
Wi‑Fi 4802.11n2.4/5MIMO
Wi‑Fi 5802.11ac5MU‑MIMO, wider channels
Wi‑Fi 6/6E802.11ax2.4/5/6OFDMA, dense environments

Channel planning

  • 2.4 GHz: prefer 1 / 6 / 11 to avoid overlap.

Security order (best → worst)

  • WPA3WPA2 (AES/CCMP) → WPA (TKIP) → WEP (avoid)
  • Enterprise auth: 802.1X with RADIUS + EAP (scenario picks often favor this).

6) Cabling, fiber, optics, and PoE

Copper

CableTypical useNotes
Cat5e1 Gbps @ 100 mCommon baseline
Cat610 Gbps @ ~55 mBetter noise performance
Cat6a10 Gbps @ 100 mBest pick for long 10G copper runs

Fiber

FiberModeTypical rangeNotes
MMFMulti‑modeShortCommon in buildings
SMFSingle‑modeLongMetro/long distance

Transceivers

  • SFP (1G), SFP+ (10G), QSFP (40G/100G variants)

PoE

  • 802.3af (PoE)802.3at (PoE+)802.3bt (PoE++)
    Know that higher PoE classes power APs, cameras, and phones.

7) Ports & protocols (high yield)

ServicePort/ProtoNotes
DNS53 UDP/TCPUDP for queries; TCP for zone/large replies
DHCP67/68 UDPServer/client
HTTP / HTTPS80 / 443 TCPWeb; TLS on 443
SSH22 TCPSecure remote management
Telnet23 TCPInsecure (distractor)
RDP3389 TCP/UDPRemote desktop
SMB445 TCPWindows file sharing
NTP123 UDPTime sync
SNMP161/162 UDPPolling / traps
Syslog514 UDPLogging (TCP variants exist)
LDAP / LDAPS389 / 636 TCPDirectory
RADIUS1812/1813 UDPAAA (auth/accounting)
TACACS+49 TCPAAA (common alt)

8) DHCP & DNS quick picks

DHCP DORA Discover → Offer → Request → Acknowledge

DNS records

  • A / AAAA (name → IP)
  • CNAME (alias)
  • MX (mail)
  • TXT (verification/SPF hints)
  • PTR (reverse lookup)

9) VPN + AAA at a glance

  • Site-to-site VPN: typically IPsec tunnel between gateways.
  • Remote access VPN: user → gateway; often SSL/TLS-based or IPsec.
  • AAA: central auth and auditing; common pattern is RADIUS/TACACS+ plus MFA.

10) Troubleshooting playbook (symptom → layer → tools)

SymptomLikely layerFast checks / tools
No link lightL1Cable, port, PoE, NIC enabled
APIPA (169.254.x.x)L3/serviceDHCP scope, VLAN, relay, server reachability
IP works, names failL7/serviceDNS servers, nslookup/dig, firewall 53
One VLAN can’t reach gatewayL2/L3VLAN on access port, trunk allowed VLANs, SVI/gateway
High latency/packet lossL3/L4ping, tracert/traceroute, interface errors, congestion
Intermittent dropsL1/L2Duplex/speed mismatch, bad cable, loops/STP, Wi‑Fi interference

Useful commands

 1# Windows
 2ipconfig /all
 3ping 8.8.8.8
 4tracert example.com
 5nslookup example.com
 6
 7# Linux/macOS
 8ip a
 9ip route
10traceroute example.com
11dig example.com
12sudo tcpdump -ni any port 53

Wireshark filter starters

  • dns
  • tcp.port == 443
  • ip.addr == 10.0.0.10

Next steps

  • Syllabus: objectives by domain → Open
  • Practice: drills + mocks → Start
Syllabus
Practice