GlobalNet's Suggested Course Track:
CompTIA Network+/Security+  >  MCP/MCSA:Security/MCSE/MCDB

GlobalNet Training's 6-Day Network+/Security+ dual certification boot camp course provides you with the basic hardware, software, networking and security skills necessary to function in a variety of information technology positions. 

CompTIA's Network+ certification demonstrates that an individual possesses a mastery of knowledge and skills necessary to configure a wide range of networking products in a LAN environment.

The CompTIA Security+ certification is the premier vendor-neutral security certification and the worldwide standard of competency for foundation-level security practitioners. This dual training boot camp combines real world scenarios on real equipment with a focused lab section highlighting CompTIA's exam topics.

GlobalNet Training's expert instructors will prepare students by completing the learning triangle and blending real world scenarios and hands-on labs with CompTIA's exam objectives.

Course Content

In the Network+ section of this course, students will learn to analyze network traffic in detail and study IP, IP addressing and subnetting, DHCP, DNS, and routing, and how to install TCP/IP and troubleshoot connections among platforms. In the Security+ section of this course students will continue to learn network traffic, but with a focus on securing communication and hardening the environment. Students will learn topics including communication, infrastructure, cryptography, access control, authentication, external attacks and operations/organization security.

Exams

CompTIA Network+ Exam

• Media and Topologies (20%)
• Protocols and Standards (25%)
• Network Implementation (23%)
• Network Support (32%)

CompTIA Security+ Exam

• General Security Concepts (30%)
• Communication Security (20%)
• Infrastructure Security (20%)
• Basics of Cryptography (15%)
• Operational and Organizational Security (15%)

Test vouchers are included. View Schedule  Get Quote Now!

.

Net+ Outline

Media and Topologies – 20% of Exam

1.1 Recognize the following logical or physical network topologies given a diagram, schematic or description:

• Star
• Bus
• Mesh
• Ring

1.2 Specify the main features of 802.2 (Logical Link Control), 802.3 (Ethernet), 802.5 (token ring), 802.11 (wireless), and FDDI (Fiber Distributed Data Interface) networking technologies.

• Speed
• Access method (CSMA / CA (Carrier Sense Multiple Access/Collision Avoidance) and CSMA / CD (Carrier Sense Multiple Access / Collision Detection))
• Topology
• Media

1.3 Specify the characteristics (For example: speed, length, topology, and cable type) of cable standards.

• 10BASE-T and 10BASE-FL
• 100BASE-TX and 100BASE-FX
• 1000BASE-T, 1000BASE-CX, 1000BASE-SX and 1000BASE-LX
• 10 GBASE-SR, 10 GBASE-LR and 10 GBASE-ER

1.4 Recognize media connectors and describe their uses.

• RJ-11 (Registered Jack)
• RJ-45 (Registered Jack)
• F-Type
• ST (Straight Tip)
• SC (Subscriber Connector or Standard Connector)
• IEEE 1394 (FireWire)
• Fiber LC (Local Connector)
• MT-RJ (Mechanical Transfer Registered Jack)
• USB (Universal Serial Bus)

1.5 Recognize media types and describe their uses.

• Category 3, 5, 5e, and 6
• UTP (Unshielded Twisted Pair)
• STP (Shielded Twisted Pair)
• Coaxial cable
• SMF (Single Mode Fiber) optic cable
• MMF (Multimode Fiber) optic cable

1.6 Identify the purposes, features and functions of network components:

• Hubs
• Switches
• Bridges
• Routers
• Gateways
• CSU / DSU (Channel Service Unit / Data Service Unit)
• NICs (Network Interface Card)
• ISDN (Integrated Services Digital Network) adapters
• WAPs (Wireless Access Point)
• Modems
• Transceivers (media converters)
• Firewalls

1.7 Specify the general characteristics (For example: carrier speed, frequency, transmission type and topology) of the following wireless technologies:

• 802.11 (Frequency hopping spread spectrum)
• 802.11x (Direct sequence spread spectrum)
• Infrared
• Bluetooth

1.8 Identify factors which affect the range and speed of wireless service (For example: interference, antenna type and environmental factors).

Domain 2.0 – Protocols and Standards – 20% of Exam

2.1 Identify a MAC (Media Access Control) address and its parts.

2.2 Identify the seven layers of the OSI (Open Systems Interconnect) model and their functions.

2.3 Identify the OSI (Open Systems Interconnect) layers at which the following network components operate:

• Hubs
• Switches
• Bridges
• Routers
• NICs (Network Interface Card)
• WAPs (Wireless Access Point)

2.4 Differentiate between the following network protocols in terms of routing, addressing schemes, interoperability and naming conventions:

• IPX / SPX (Internetwork Packet Exchange / Sequence Packet Exchange)
• NetBEUI (Network Basic Input / Output System Extended User Interface)
• AppleTalk / AppleTalk over IP (Internet Protocol)
• TCP / IP (Transmission Control Protocol / Internet Protocol)

2.5 Identify the components and structure of IP (Internet Protocol) addresses (IPv4, IPv6) and the required setting for connections across the Internet.

2.6 Identify classful IP (Internet Protocol) ranges and their subnet masks (For example: Class A, B and C).

2.7 Identify the purpose of subnetting.

2.8 Identify the differences between private and public network addressing schemes.

2.9 Identify and differentiate between the following IP (Internet Protocol) addressing methods:

• Static
• Dynamic
• Self-assigned (APIPA (Automatic Private Internet Protocol Addressing))

2.10 Define the purpose, function and use of the following protocols used in the TCP / IP (Transmission Control Protocol / Internet Protocol) suite:

• TCP (Transmission Control Protocol)
• UDP (User Datagram Protocol)
• FTP (File Transfer Protocol)
• SFTP (Secure File Transfer Protocol)
• TFTP (Trivial File Transfer Protocol)
• SMTP (Simple Mail Transfer Protocol)
• HTTP (Hypertext Transfer Protocol)
• HTTPS (Hypertext Transfer Protocol Secure)
• POP3/IMAP4 (Post Office Protocol version 3/Internet Message Access Protocol version 4)
• Telnet
• SSH (Secure Shell)
• ICMP (Internet Control Message Protocol)
• ARP / RARP (Address Resolution Protocol / Reverse Address Resolution Protocol)
• NTP (Network Time Protocol)
• NNTP (Network News Transport Protocol)
• SCP (Secure Copy Protocol)
• LDAP (Lightweight Directory Access Protocol)
• IGMP (Internet Group Multicast Protocol)
• LPR (Line Printer Remote)

2.11 Define the function of TCP / UDP (Transmission Control Protocol / User Datagram Protocol) ports.

2.12 Identify the well-known ports associated with the following commonly used services and protocols:

• 20 FTP (File Transfer Protocol)
• 21 FTP (File Transfer Protocol)
• 22 SSH (Secure Shell)
• 23 Telnet
• 25 SMTP (Simple Mail Transfer Protocol)
• 53 DNS (Domain Name Service)
• 69 TFTP (Trivial File Transfer Protocol)
• 80 HTTP (Hypertext Transfer Protocol)
• 110 POP3 (Post Office Protocol version 3)
• 119 NNTP (Network News Transport Protocol)
• 123 NTP (Network Time Protocol)
• 143 IMAP4 (Internet Message Access Protocol version 4)
• 443 HTTPS (Hypertext Transfer Protocol Secure)

2.13 Identify the purpose of network services and protocols (For example: DNS (Domain Name Service), NAT (Network Address Translation), ICS (Internet Connection Sharing), WINS (Windows Internet Name Service), SNMP (Simple Network Management Protocol), NFS (Network File System), Zeroconf (Zero configuration), SMB (Server Message Block), AFP (Apple File Protocol), LPD (Line Printer Daemon) and Samba).

2.14 Identify the basic characteristics (For example: speed, capacity and media) of the following WAN (Wide Area Networks) technologies:

• Packet switching
• Circuit switching
• ISDN (Integrated Services Digital Network)
• FDDI (Fiber Distributed Data Interface)
• T1 (T Carrier level 1) / E1 / J1
• T3 (T Carrier level 3) / E3 / J3
• OCx (Optical Carrier)
• X.25

2.15 Identify the basic characteristics of the following internet access technologies:

• xDSL (Digital Subscriber Line)
• Broadband Cable (Cable modem)
• POTS / PSTN (Plain Old Telephone Service / Public Switched Telephone Network)
• Satellite
• Wireless

2.16 Define the function of the following remote access protocols and services:

• RAS (Remote Access Service)
• PPP (Point-to-Point Protocol)
• SLIP (Serial Line Internet Protocol)
• PPPoE (Point-to-Point Protocol over Ethernet)
• PPTP (Point-to-Point Tunneling Protocol)
• VPN (Virtual Private Network)
• RDP (Remote Desktop Protocol)

2.17 Identify the following security protocols and describe their purpose and function:

• IPSec (Internet Protocol Security)
• L2TP (Layer 2 Tunneling Protocol)
• SSL (Secure Sockets Layer)
• WEP (Wired Equivalent Privacy) Continued on the next page…
• WPA (Wi-Fi Protected Access)
• 802.1x

2.18 Identify authentication protocols (For example: CHAP (Challenge Handshake Authentication Protocol), MS-CHAP (Microsoft Challenge Handshake Authentication Protocol), PAP (Password Authentication Protocol), RADIUS (Remote Authentication Dial-In User Service), Kerberos and EAP (Extensible Authentication Protocol)).

Domain 3.0 Network Implementation – 25% of Exam

3.1 Identify the basic capabilities (For example: client support, interoperability, authentication, file and print services, application support and security) of the following server operating systems to access network resources:

• UNIX / Linux / Mac OS X Server
• Netware
• Windows
• Appleshare IP (Internet Protocol)

3.2 Identify the basic capabilities needed for client workstations to connect to and use network resources (For example: media, network protocols and peer and server services).

3.3 Identify the appropriate tool for a given wiring task (For example: wire crimper, media tester / certifier, punch down tool or tone generator).

3.4 Given a remote connectivity scenario comprised of a protocol, an authentication scheme, and physical connectivity, configure the connection. Includes connection to the following servers:

• UNIX / Linux / MAC OS X Server
• Netware
• Windows
• Appleshare IP (Internet Protocol)

3.5 Identify the purpose, benefits and characteristics of using a firewall.

3.6 Identify the purpose, benefits and characteristics of using a proxy service.

3.7 Given a connectivity scenario, determine the impact on network functionality of a particular security implementation (For example: port blocking / filtering, authentication and encryption).

3.8 Identify the main characteristics of VLANs (Virtual Local Area Networks).

3.9 Identify the main characteristics and purpose of extranets and intranets.

3.10 Identify the purpose, benefits and characteristics of using antivirus software.

3.11 Identify the purpose and characteristics of fault tolerance:

• Power
• Link redundancy
• Storage
• Services

3.12 Identify the purpose and characteristics of disaster recovery:

• Backup / restore
• Offsite storage
• Hot and cold spares
• Hot, warm and cold sites

Domain 4.0 Network Support – 35% of Exam

4.1 Given a troubleshooting scenario, select the appropriate network utility from the following:

• Tracert / traceroute
• ping
• arp
• netstat
• nbtstat
• ipconfig / ifconfig
• winipcfg
• nslookup / dig

4.2 Given output from a network diagnostic utility (For example: those utilities listed in objective 4.1), identify the utility and interpret the output.

4.3 Given a network scenario, interpret visual indicators (For example: link LEDs (Light Emitting Diode) and collision LEDs (Light Emitting Diode)) to determine the nature of a stated problem.

4.4 Given a troubleshooting scenario involving a client accessing remote network services, identify the cause of the problem (For example: file services, print services, authentication failure, protocol configuration, physical connectivity and SOHO (Small Office / Home Office) router).

4.5 Given a troubleshooting scenario between a client and the following server environments, identify the cause of a stated problem:

• UNIX / Linux / Mac OS X Server
• Netware
• Windows
• Appleshare IP (Internet Protocol)

4.6 Given a scenario, determine the impact of modifying, adding or removing network services (For example: DHCP (Dynamic Host Configuration Protocol), DNS (Domain Name Service) and WINS (Windows Internet Name Service)) for network resources and users.

4.7 Given a troubleshooting scenario involving a network with a particular physical topology (For example: bus, star, mesh or ring) and including a network diagram, identify the network area affected and the cause of the stated failure.

4.8 Given a network troubleshooting scenario involving an infrastructure (For example: wired or wireless) problem, identify the cause of a stated problem (For example: bad media, interference, network hardware or environment).

4.9 Given a network problem scenario, select an appropriate course of action based on a logical troubleshooting strategy. This strategy can include the following steps:

1. Identify the symptoms and potential causes
2. Identify the affected area
3. Establish what has changed
4. Select the most probable cause
5. Implement an action plan and solution including potential effects
6. Test the result
7. Identify the results and effects of the solution
8. Document the solution and proces

 

 

Sec+ Outline

Domain 1.0 – General Security Concepts (30%)

1.1 Recognize and be able to differentiate and explain the following access control models

• MAC (Mandatory Access Control)

• DAC (Discretionary Access Control)

• RBAC (Role Based Access Control)

1.2 Recognize and be able to differentiate and explain the following methods of authentication

• Kerberos

• CHAP (Challenge Handshake Authentication Protocol)

• Certificates

• Username / Password

• Tokens

• Multi-factor

• Mutual

• Biometrics

1.3 Identify non-essential services and protocols and know what actions to take to reduce the risks of those services and protocols

1.4 Recognize the following attacks and specify the appropriate actions to take to mitigate vulnerability and risk

• DOS / DDOS (Denial of Service / Distributed Denial of Service)

• Back Door

• Spoofing

• Man in the Middle

• Replay

• TCP/IP Hijacking

• Weak Keys

• Mathematical

• Social Engineering

• Birthday

• Password Guessing

• Brute Force

• Dictionary

• Software Exploitation

1.5 Recognize the following types of malicious code and specify the appropriate actions to take to mitigate vulnerability and risk

• Viruses

• Trojan Horses

• Logic Bombs

• Worms

• Understand the concept of and know how reduce the risks of social engineering

• 1Understand the concept and significance of auditing, logging and system scanning

Domain 2.0 – Communication Security - 20%

2.1 Recognize and understand the administration of the following types of remote access technologies

• 802.1x

• VPN (Virtual Private Network)

• RADIUS (Remote Authentication Dial-In User Service)

• TACACS (Terminal Access Controller Access Control System)

• L2TP / PPTP (Layer Two Tunneling Protocol / Point to Point Tunneling Protocol)

• SSH (Secure Shell)

• IPSEC (Internet Protocol Security)

• Vulnerabilities

2.2 Recognize and understand the administration of the following email security concepts

• S/MIME (Secure Multipurpose Internet Mail Extensions)

• PGP (Pretty Good Privacy) like technologies

• Vulnerabilities

• SPAM

• Hoaxes

2.3 Recognize and understand the administration of the following Internet security concepts

• SSL / TLS (Secure Sockets Layer / Transport Layer Security)

• HTTP/S (Hypertext Transfer Protocol / Hypertext Transfer Protocol over Secure Sockets Layer)

• Instant Messaging

• Vulnerabilities

• Packet Sniffing

• Privacy

• Vulnerabilities

• Java Script

• ActiveX

• Buffer Overflows

• Cookies

• Signed Applets

• CGI (Common Gateway Interface)

• SMTP (Simple Mail Transfer Protocol) Relay

2.4 Recognize and understand the administration of the following directory security concepts

• SSL / TLS (Secure Sockets Layer / Transport Layer Security)

• LDAP (Lightweight Directory Access Protocol)

2.5 Recognize and understand the administration of the following file transfer protocols and concepts

• S/FTP (File Transfer Protocol)

• Blind FTP (File Transfer Protocol) / Anonymous

• File Sharing

• Vulnerabilities

• Packet Sniffing

• 8.3 Naming Conventions

2.6 Recognize and understand the administration of the following wireless technologies and concepts

• WTLS (Wireless Transport Layer Security)

• 802.11 and 802.11x

• WEP / WAP (Wired Equivalent Privacy / Wireless Application Protocol)

• Vulnerabilities

• Site Surveys

Domain 3.0 Infrastructure Security – 20%

3.1 Understand security concerns and concepts of the following types of devices

• Firewalls

• Routers

• Switches

• Wireless

• Modems

• RAS (Remote Access Server)

• Telecom / PBX (Private Branch Exchange)

• VPN (Virtual Private Network)

• IDS (Intrusion Detection System)

• Network Monitoring / Diagnostics

• Workstations

• Servers

• Mobile Devices

3.2 Understand the security concerns for the following types of media

• Coaxial Cable

• UTP / STP (Unshielded Twisted Pair / Shielded Twisted Pair)

• Fiber Optic Cable

• Removable Media

• Tape

• CD-R (Recordable Compact Disks)

• Hard Drives

• Diskettes

• Flashcards

• Smartcards

3.3 Understand the concepts behind the following kinds of Security Topologies

• Security Zones

• DMZ (Demilitarized Zone)

• Intranet

• Extranet

• VLANs (Virtual Local Area Network)

• NAT (Network Address Translation)

• Tunneling

3.4 Differentiate the following types of intrusion detection, be able to explain the concepts of each type, and understand the implementation and configuration of each kind of intrusion detection system

• Network Based

• Active Detection

• Passive Detection

• Host Based

• Active Detection

• Passive Detection

• Honey Pots

• Incident Response

3.5 Understand the following concepts of Security Baselines, be able to explain what a Security Baseline is, and understand the implementation and configuration of each kind of intrusion detection system

• OS / NOS (Operating System / Network Operating System) Hardening

• File System

• Updates (Hotfixes, Service Packs, Patches)

• Network Hardening

• Updates (Firmware)

• Configuration

• Enabling and Disabling Services and Protocols

• Access Control Lists

• Application Hardening

• Updates (Hotfixes, Service Packs, Patches)

• Web Servers

• E-mail Servers

• FTP (File Transfer Protocol) Servers

• DNS (Domain Name Service) Servers

• NNTP (Network News Transfer Protocol) Servers

• File / Print Servers

• DHCP (Dynamic Host Configuration Protocol) Servers

• Data Repositories

• Directory Services

• Databases

Domain 4.0 Basics of Cryptography – 15%

4.1 Be able to identify and explain the of the following different kinds of cryptographic algorithms

• Hashing

• Symmetric

• Asymmetric

4.2 Understand how cryptography addresses the following security concepts

• Confidentiality

• Integrity

• Digital Signatures

• Authentication

• Non-Repudiation

• Digital Signatures

• Access Control

4.3 Understand and be able to explain the following concepts of PKI (Public Key Infrastructure)

• Certificates

• Certificate Policies

• Certificate Practice Statements

• Revocation

• Trust Models

4.4 Identify and be able to differentiate different cryptographic standards and protocols

4.5 Understand and be able to explain the following concepts of Key Management and Certificate Lifecycles

• Centralized vs. Decentralized

• Storage

• Hardware vs. Software

• Private Key Protection

• Escrow

• Expiration

• Revocation

• Status Checking

• Suspension

• Status Checking

• Recovery

• M-of-N Control (Of M appropriate individuals, N must be present to authorize recovery)

• Renewal

• Destruction

• Key Usage

• Multiple Key Pairs (Single, Dual)

Domain 5.0 Operational / Organizational Security – 15%

5.1 Understand the application of the following concepts of physical security

• Access Control

• Physical Barriers

• Biometrics

• Social Engineering

• Environment

• Wireless Cells

• Location

• Shielding

• Fire Suppression

5.2 Understand the security implications of the following topics of disaster recovery

• Backups

• Off Site Storage

• Secure Recovery

• Alternate Sites

• Disaster Recovery Plan

5.3 Understand the security implications of the following topics of business continuity

• Utilities

• High Availability / Fault Tolerance

• Backups

5.4 Understand the concepts and uses of the following types of policies and procedures

• Security Policy

• Acceptable Use

• Due Care

• Privacy

• Separation of Duties

• Need to Know

• Password Management

• SLAs (Service Level Agreements)

• Disposal / Destruction

• HR (Human Resources) Policy

• Incident Response Policy

• Termination (Adding and revoking passwords and privileges, etc.)

• Hiring (Adding and revoking passwords and privileges, etc.)

• Code of Ethics

5.5 Explain the following concepts of privilege management

• User / Group / Role Management

• Single Sign-on

• Centralized vs. Decentralized

• Auditing (Privilege, Usage, Escalation)

• MAC / DAC / RBAC (Mandatory Access Control / Discretionary Access Control / Role Based Access

• Control)

5.6 Understand the concepts of the following topics of forensics

• Chain of Custody

• Preservation of Evidence

• Collection of Evidence

5.7 Understand and be able to explain the following concepts of risk identification

• Asset Identification

• Risk Assessment

• Threat Identification

• Vulnerabilities

5.8 Understand the security relevance of the education and training of end users, executives and human resources

• Communication

• User Awareness

• Education

• On-line Resources

5.9 Understand and explain the following documentation concepts

• Standards and Guidelines

• Systems Architecture

• Change Documentation

• Logs and Inventories

• Classification

• Notification

• Retention / Storage

• Destruction