Security+ Certification/Network Security

Explain the security function and purpose of network devices and technologies

 * Firewalls
 * Routers
 * Switches
 * Load Balancers
 * Proxies
 * Web security gateways
 * VPN concentrators (video VPN Concentrators)


 * NIDS and NIPS
 * Protocol analyzers
 * Sniffers
 * Spam filter
 * Web Application Firewall v. network firewall (video Web Application Firewalls)
 * URL Filtering
 * content inspection
 * malware inspection †

† no direct entry in Wikipedia

Apply and implement secure network administration principles

 * Rules-based management
 * Firewall rules
 * VLAN managment
 * Secure router management
 * Access control lists
 * Port Security


 * 802.1x
 * Flood guards (video Flood Guards)
 * Loop protection (video Spanning Tree Protocol and Loop Protection)
 * Implicit deny
 * Prevent network bridging by network separation (video Network Separation)
 * Log analysis

Distinguish and differentiate network design elements and compounds

 * DMZ
 * Subnetting
 * VLAN
 * NAT
 * Remote Access
 * Telephony


 * NAC
 * Virtualization
 * Cloud Computing
 * Platform as a Service
 * Software as a Service
 * Infrastructure as a Service

Implement and use common protocols

 * IPSec
 * SNMP
 * SSH
 * DNS
 * TLS
 * SSL
 * TCP/IP


 * FTPS
 * HTTPS
 * SFTP
 * SCP
 * ICMP
 * IPv4 vs. IPv6

Identify commonly used default network ports

 * FTP
 * SFTP
 * FTPS
 * TFTP
 * TELNET


 * HTTP
 * HTTPS
 * SCP
 * SSH
 * NetBIOS

Implement wireless network in a secure manner

 * WPA
 * WPA2
 * WEP
 * EAP (video EAP, PEAP and LEAP)
 * PEAP
 * LEAP


 * MAC filter
 * SSID broadcast
 * TKIP
 * CCMP
 * Antenna placement (video Wireless Power and Antenna Placement)
 * Power level controls