CompTIA Security+ (SY0-601) Cert Prep: 8 Network Security Design and Implementation
3h 57mBeginner2020-11-23
Authors

Mike Chapple
Teaching Professor at the University of Notre Dame
Course details
Networks carry sensitive data between systems and users. To protect the confidentiality, integrity, and availability of network traffic, cybersecurity professionals must implement strong security controls. In this course, the eighth installment in the CompTIA Security+ (SY0-601) Cert Prep series, dive into the topic of network security design and implementation as you prepare for the Security+ exam. Instructor Mike Chapple discusses TCP and IP—two of the main protocols that make up all modern networks— and how the components of the TCP/IP stack combine to facilitate network communications. Mike delves into secure network design, including how virtual LANs may be used to segment networks of differing security levels. Plus, he covers essential network security devices, such as firewalls and VPNs; using secure protocols; mobile device security; and more.
Skills covered
Network SecurityCybersecurityCert Prep
Concepts
0. Introduction
- 01 - Network security
- 02 - What you need to know
- 03 - Study resources
1. TCP IP Networking
- 04 - Introducing TCP IP
- 05 - IP addresses and DHCP
- 06 - Domain name system (DNS)
- 07 - Network ports
- 08 - ICMP
2. Secure Network Design
- 09 - Security zones
- 10 - VLANs and network segmentation
- 11 - Security device placement
- 12 - Software-defined networking (SDN)
3. Network Security Devices
- 13 - Routers, switches, and bridges
- 14 - Firewalls
- 15 - Proxy servers
- 16 - Load balancers
- 17 - VPNs and VPN concentrators
- 18 - Network intrusion detection and prevention
- 19 - Protocol analyzers
- 20 - Unified threat management
4. Network Security Techniques
- 21 - Restricting network access
- 22 - Network access control
- 23 - Firewall rule management
- 24 - Router configuration security
- 25 - Switch configuration security
- 26 - Maintaining network availability
- 27 - Network monitoring
- 28 - SNMP
- 29 - Isolating sensitive systems
- 30 - Deception technologies
5. Transport Encryption
- 31 - TLS and SSL
- 32 - IPsec
- 33 - Securing common protocols
6. Wireless Networking
- 34 - Understanding wireless networking
- 35 - Wireless encryption
- 36 - Wireless authentication
- 37 - Wireless signal propagation
- 38 - Wireless networking equipment
7. Network Attacks
- 39 - Denial of service attacks
- 40 - Eavesdropping attacks
- 41 - DNS attacks
- 42 - Layer 2 attacks
- 43 - Network address spoofing
- 44 - Wireless attacks
- 45 - Propagation attacks
- 46 - Preventing rogues and evil twins
- 47 - Disassociation attacks
- 48 - Understanding Bluetooth and NFC attacks
- 49 - RFID security
8. Mobile Device Security
- 50 - Mobile connection methods
- 51 - Mobile device security
- 52 - Mobile device management
- 53 - Mobile device tracking
- 54 - Mobile application security
- 55 - Mobile security enforcement
- 56 - Bring your own device (BYOD)
- 57 - Mobile deployment models
9. Network Tools
- 58 - Ping and traceroute
- 59 - DNS tools
- 60 - Ipconfig, ifconfig, and route
- 61 - netstat
- 62 - netcat
- 63 - ARP
- 64 - curl
- 65 - theHarvester
- 66 - Cuckoo
- 67 - Port scanners
- 68 - Vulnerability scanners
Conclusion
- 69 - Continuing your studies
Related courses
- Windows Server 2025: Advanced Management Features
- ISC2 Systems Security Certified Practitioner (SSCP) Cert Prep
- Certificate of Cloud Security Knowledge (CCSK) Cert Prep
- Building a Multicloud Security Program: Strategy, Implementation, and Emerging Trends
- Modern Cloud Security: Shift-Left, Observability, and Automated Defense
- Cybersecurity Awareness: Cloud Security
- CertNexus Certified IoT Security Practitioner Cert Prep by InfoSec
- Building Customer Identity and Access Management (CIAM) in Your Applications on AWS