Basic Networking
The intent of the Basic Networking Knowledge Unit is to provide students with basic understanding of how networks are built and operate, and to give students some experience with basic network analysis tools. Students are exposed to the concept of potential vulnerabilities in a network.
Topics
- Networking models (OSI and IP).
- Network media (wired, optical, and wireless)
- Network Architectures and topologies (PAN, LAN/WAN, DMZ, Enclaves, VLAN, NAT, subnetting, supernetting)
- Common Network Devices and their role in the network. (Routers, Switches, Hosts, VPNs, Firewalls)
- Network Protocols introduction (IP, TCP, UDP, ICMP)
- Network Services and protocols introduction (DNS, NTP, VLAN, etc.).
- Network Applications and protocols introduction (SMTP, HTTP, VoIP, SSH, etc.).
- Use of basic network administration tools.
- Overview of Network Security Issues
- Networking models (OSI and IP)
- Track and identify the packets involved in a simple TCP connection (or a trace of such a connection).
- Network Protocols introduction (IP , TCP , UDP , ICMP)
- Network Services and protocols introduction (DNS, NTP , VLAN, etc.).
- Network Applications and protocols introduction (SMTP , HTTP , VoIP , SSH, etc.).
- Describe the fundamental concepts, technologies, components and issues related to communications and data networks.
- Design a basic network architecture given a specific need and set of hosts/clients.
- Use a network monitoring tools to observe the flow of packets (e.g., WireShark).
- Perform network mapping (enumeration and identification of network components) (e.g., Nmap).
- Network Architectures and topologies (PAN, LAN/WAN, DMZ, Enclaves, VLAN, NAT, subnetting, supernetting
- Describe the fundamental concepts, technologies, components and issues related to communications and data networks
- Network Applications and protocols introduction (SMTP, HTTP, VoIP, SSH, etc.)
Outcomes
- Describe the fundamental concepts, technologies, components and issues related to communications and data networks.
- Design a basic network architecture given a specific need and set of hosts/clients.
- Track and identify the packets involved in a simple TCP connection (or a trace of such a connection).
- Use a network monitoring tools to observe the flow of packets (e.g., WireShark).
- Perform network mapping (enumeration and identification of network components) (e.g., Nmap).
- Describe common network vulnerabilities.
- Describe the fundamental concepts, technologies, components and issues related to communications and data networks
- Use a network monitoring tools to observe the flow of packets (e.g., WireShark).
- Design a basic network architecture given a specific need and set of hosts/clients.
- Perform network mapping (enumeration and identification of network components) (e.g., Nmap)
- Network Architectures and topologies (PAN, LAN/WAN, DMZ, Enclaves, VLAN, NAT, subnetting, supernetting)
- Common Network Devices and their role in the network. (Routers, Switches, Hosts, VPNs, Firewalls)
- Network Protocols introduction (IP, TCP, UDP, ICMP)
- Network Services and protocols introduction (DNS, NTP, VLAN, etc.).
- Network Applications and protocols introduction (SMTP, HTTP, VoIP, SSH, etc.)
- Use of basic network administration tools.
- Networking models (OSI and IP).
- Network media (wired, optical, and wireless)
- Network Applications and protocols introduction (SMTP, HTTP, VoIP, SSH, etc.).
- Overview of Network Security Issues
- Design a basic network architecture given a specific need and set of hosts/clients
- Perform network mapping (enumeration and identification of network components) (e.g., Nmap).
- Describe common network vulnerabilities
KSA-T
Below are the Knowledge, Skills, Abilities and Tasks (KSA-T) identified as being required to perform this work role.
Learn More about the KAS-T's.
ID | DESCRIPTION |
---|---|
K0001 | Knowledge of computer networking concepts and protocols, and network security methodologies. |
K0221 | Knowledge of OSI model and underlying network protocols (e.g., TCP/IP). |
K0565 | Knowledge of the common networking and routing protocols (e.g. TCP/IP), services (e.g., web, mail, DNS), and how they interact to provide network communications. |
K0011 | Knowledge of capabilities and applications of network equipment including routers, switches, bridges, servers, transmission media, and related hardware. |
K0200 | Knowledge of service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library, current version [ITIL]). |
K0061 | Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]). |
K0486 | Knowledge of network construction and topology. |
K0555 | Knowledge of TCP/IP networking protocols. |
K0255 | Knowledge of network architecture concepts including topology, protocols, and components. |
K0274 | Knowledge of transmission records (e.g., Bluetooth, Radio Frequency Identification (RFID), Infrared Networking (IR), Wireless Fidelity (Wi-Fi). paging, cellular, satellite dishes, Voice over Internet Protocol (VoIP)), and jamming techniques that enable transmission of undesirable information, or prevent installed systems from operating correctly. |
K0108 | Knowledge of concepts, terminology, and operations of a wide range of communications media (computer and telephone networks, satellite, fiber, wireless). |
K0296 | Knowledge of capabilities, applications, and potential vulnerabilities of network equipment including hubs, routers, switches, bridges, servers, transmission media, and related hardware. |
K0600 | Knowledge of the structure, architecture, and design of modern wireless communications systems. |
K0489 | Knowledge of network topology. |
K0034 | Knowledge of network services and protocols interactions that provide network communications. |
K0303 | Knowledge of the use of sub-netting tools. |
K0137 | Knowledge of the range of existing networks (e.g., PBX, LANs, WANs, WIFI, SCADA). |
K0113 | Knowledge of different types of network communication (e.g., LAN, WAN, MAN, WLAN, WWAN). |
K0050 | Knowledge of local area and wide area networking principles and concepts including bandwidth management. |
K0599 | Knowledge of the structure, architecture, and design of modern digital and telephony networks. |
K0071 | Knowledge of remote access technology concepts. |
K0326 | Knowledge of demilitarized zones. |
K0202 | Knowledge of the application firewall concepts and functions (e.g., Single point of authentication/audit/policy enforcement, message scanning for malicious content, data anonymization for PCI and PII compliance, data loss protection scanning, accelerated cryptographic operations, SSL security, REST/JSON processing). |
K0104 | Knowledge of Virtual Private Network (VPN) security. |
K0346 | Knowledge of principles and methods for integrating system components. |
K0516 | Knowledge of physical and logical network devices and infrastructure to include hubs, switches, routers, firewalls, etc. |
K0332 | Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services. |
K0471 | Knowledge of Internet network addressing (IP addresses, classless inter-domain routing, TCP/UDP port numbering). |
K0485 | Knowledge of network administration. |
K0043 | Knowledge of industry-standard and organizationally accepted analysis principles and methods. |
K00013 | Knowledge of cyber defense and vulnerability assessment tools and their capabilities. |
K0111 | Knowledge of network tools (e.g., ping, traceroute, nslookup) |
K0088 | Knowledge of systems administration concepts. |
K0062 | Knowledge of packet-level analysis. |
K0029 | Knowledge of organization's Local and Wide Area Network connections. |
K0179 | Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth). |
ID | DESCRIPTION |
---|---|
S0236 | Skill in identifying the devices that work at each level of protocol models. |
S0154 | Skill in installing system and component upgrades. (i.e., servers, appliances, network devices). |
S0059 | Skill in using Virtual Private Network (VPN) devices and encryption. |
S0221 | Skill in extracting information from packet captures. |
ID | DESCRIPTION |
---|---|
A0052 | Ability to operate network equipment including hubs, routers, switches, bridges, servers, transmission media, and related hardware. |
A0172 | Ability to set up a physical or logical sub-networks that separates an internal local area network (LAN) from other untrusted networks. |
A0055 | Ability to operate common network tools (e.g., ping, traceroute, nslookup). |
A0058 | Ability to execute OS command line (e.g., ipconfig, netstat, dir, nbtstat). |
A0059 | Ability to operate the organization's LAN/WAN pathways. |
A0159 | Ability to interpret the information collected by network tools (e.g. Nslookup, Ping, and Traceroute). |
A0063 | Ability to operate different electronic communication systems and methods (e.g., e-mail, VOIP, IM, web forums, Direct Video Broadcasts). |
ID | DESCRIPTION |
---|