SYNTHESIZED FROM STAR V LEARNING CENTERS COURSE MATERIAL · JACKSONVILLE, FL · ALL GAPS PATCHED
| Cable | Max Speed | Max Distance | Notes |
|---|---|---|---|
| CAT5 | 100 Mbps | 100m | Legacy. Not recommended for new installs. |
| CAT5e | 1 Gbps | 100m | Most common existing infrastructure. |
| CAT6 | 10 Gbps | 55m (at 10G) / 100m (at 1G) | Common modern standard. |
| CAT6a | 10 Gbps | 100m | Augmented CAT6. Full 10G at full distance. |
| CAT7 | 10 Gbps+ | 100m | Shielded. GG45 or TERA connector. |
Cable Types
Connectors
Fiber Modes
Transceivers
A CNA combines a standard NIC and a Fibre Channel HBA (Host Bus Adapter) into a single card. It can carry both standard Ethernet traffic AND Fibre Channel storage traffic on the same physical adapter and cable — enabling FCoE. Reduces the number of cards needed and simplifies cabling in converged infrastructure.
unattend.xml). No human interaction required after launch. Used for mass deployments.
PXE BootPre-boot Execution Environment. Server boots from network using DHCP (DORA) + TFTP to download the NBP (Network Bootstrap Program). No local bootable media needed.
Imaging / CloningCopy a pre-configured OS image to new hardware. Fastest method for deploying many identical servers.
Virtualized InstallOS installed inside a VM on an existing hypervisor. No new physical hardware required.
LVM adds a layer of abstraction between physical storage and the filesystem, allowing flexible resizing and management of storage without repartitioning.
pvcreate.
VG (Volume Group)Pool of storage created from one or more PVs. Created with vgcreate.
LV (Logical Volume)Chunk of storage carved from a VG. This is what gets formatted with a filesystem and mounted. Created with lvcreate.
PE (Physical Extent)Fixed-size chunk (default 4MB) that LVM uses internally. LVs are made up of PEs.
NIST 5 Characteristics of Cloud Computing
Deployment Models
Service Models
Shared Security Model
scp source user@host:/destination. Encrypted — preferred over FTP for sensitive data.
Data Transfer — RobocopyRobust File Copy. Windows command-line tool. Handles retries, copies directory structure, ACLs, timestamps. Syntax: robocopy source destination [options]. Ideal for large migrations and synchronization.
OOB = managing a server using a channel completely separate from the production network. Works even when the server is powered off, OS is crashed, or network is down.
| Type | Speed | Avg Latency | Notes |
|---|---|---|---|
| HDD 5,400 RPM | ~100 MB/s | 5.5ms | Consumer. Archival/NAS storage. |
| HDD 7,200 RPM | ~150 MB/s | 4.2ms | Standard server/NAS drives (IronWolf Pro). |
| HDD 10,000 RPM | ~200 MB/s | 3ms | Enterprise performance HDDs. SAS interface. |
| HDD 15,000 RPM | ~250 MB/s | 2ms | Highest-performance spinning disk. SAS only. |
| SSHD (Hybrid) | Varies | Varies | SSD cache + HDD capacity. Single unit. |
| SSD SATA | ~550 MB/s | <0.1ms | Faster than any HDD. Limited by SATA interface. |
| SSD NVMe | 3,000–7,000 MB/s | <0.05ms | PCIe-connected. 5–10× faster than SATA SSD. Current enterprise standard for high-performance storage. |
| RAID | Type | Min Drives | Drive Overhead | Fault Tolerance | Performance | Best For |
|---|---|---|---|---|---|---|
| RAID 0 | Striping | 2 | 0 (100% usable) | None | Fastest R/W | Temp data, video editing |
| RAID 1 | Mirroring | 2 | 50% (half wasted) | 1 drive failure | Fast read, normal write | OS drives, critical data |
| RAID 5 | Stripe + Parity | 3 | 1 drive | 1 drive failure | Good read, moderate write | General purpose. Most common. |
| RAID 6 | Stripe + Double Parity | 4 | 2 drives | 2 drive failures | Good read, slower write | Large arrays, high rebuild risk |
| RAID 10 | Stripe of Mirrors (1+0) | 4 | 50% (half wasted) | 1 per mirror set | Fastest R/W + redundancy | Databases, high-performance |
| JBOD | Just a Bunch of Disks | 1 | 0 (100% usable) | None | Normal | Flexible pooling, no redundancy |
Hardware RAID
Software RAID
These metrics are directly tested on Server+ and appear in the Ch4 slides under Company Policies and Procedures. Know all six.
Sensitive documentation must be protected with the same rigor as production systems. The following types require restricted access, encryption at rest, and access logging:
Fire Suppression
HVAC Standards (From Slides)
Sensors
fsck /dev/sda1. Windows: chkdsk.
Insider ThreatsHigh risk due to existing authorized access. Can be malicious or accidental. Mitigated by least privilege, auditing, and separation of duties.
Theft / DLPPhysical or data theft leads to breaches. Data Loss Prevention (DLP) tools monitor and block unauthorized data exfiltration.
Malware Types Tested on Server+
Risk Mitigation Controls
OS Hardening
Hardware Hardening
Host Security
Patching Process
C:\Windows\System32\drivers\etc\hosts (Windows). /etc/hosts (Linux). Checked before DNS query. Can be used for testing or override.
Rogue DHCPUnauthorized DHCP server on network. Assigns wrong IP, gateway, or DNS — can redirect traffic for man-in-the-middle attack. Mitigate with DHCP snooping on managed switches.
| Language | Extension | Platform | Comment Syntax | Primary Use |
|---|---|---|---|---|
| Bash | .sh | Linux/macOS/Unix | # (not #! — that's shebang) | System admin, automation, pipelines |
| PowerShell | .ps1 | Windows (also Linux) | # | Windows admin, cmdlets, AD management |
| Batch | .bat / .cmd | Windows (legacy) | REM | Legacy Windows automation |
| VBScript | .vbs | Windows | ' (apostrophe) | Legacy Windows scripting via WSH |
| Python | .py | Cross-platform | # | Cross-platform admin, automation |
Key Scripting Concepts
#!)First line of a Unix script. Tells the OS which interpreter to use. #!/bin/bash = use Bash. NOT a comment even though it starts with #.
VariablesStore values. Bash: VAR=10 (no spaces). PowerShell: $var = 10. Reference with $VAR (Bash) or $var (PowerShell).
Environment VariablesSystem: available to all users. User: available only to specific user when logged in. Program/Process: available only within that process.
Loopsfor, while, do-while. Repeat operations. Essential for bulk tasks (process 1,000 users, rename 500 files).
Conditionalsif/else/elif. Execute code based on conditions. Compare values with comparators (==, !=, -gt, -lt in Bash; -eq, -ne in PowerShell).
IntegersWhole numbers. COUNT=5
StringsCharacter sequences in quotes. "Hello" or 'World'
ArraysCollections of values. Bash: NAMES=("Alice" "Bob" "Connor"). Reference: ${NAMES[0]}
| Type | Backs Up | Archive Bit After | Backup Speed | Restore Speed | Storage Needed |
|---|---|---|---|---|---|
| Full | Everything (ignores archive bit) | Cleared | Slowest | Fastest (1 set) | Most |
| Incremental | Changed since last full OR incremental | Cleared | Fastest | Slowest (full + all incrementals) | Least |
| Differential | Changed since last FULL only | NOT cleared | Medium (grows) | Medium (full + latest diff) | Medium |
| Synthetic Full | Constructed from prior full + incrementals | Cleared | Medium | Fast (1 set) | Medium |
| Snapshot | Point-in-time copy (copy-on-write or split mirror) | N/A | Very fast | Very fast | Varies |
| Site Type | Equipment | Data Currency | Time to Activate | Cost |
|---|---|---|---|---|
| Hot Site | Fully operational. All hardware, network, power. | Real-time or near-real-time replication | Minutes | Highest |
| Warm Site | Hardware in place. Needs config and data restore. | Must restore from recent backup | Hours | Medium |
| Cold Site | Physical space, power, cooling only. No equipment. | Must procure hardware AND restore data | Days to weeks | Lowest |
wmic diskdrive get status (Windows). "OK" = healthy. SMART failure = replace drive soon.
CMOS Battery FailureServer loses date/time when powered off. Settings revert to defaults. Replace CR2032 lithium cell. Cheap fix, easy symptom to miss.
POST Beep CodesBIOS beep patterns during POST indicate which component failed. 1 long + 2 short = video card (common). Varies by BIOS manufacturer. Check documentation.
BSOD (Windows)Kernel crash. First question: "What changed recently?" Unplug external devices, check drivers, look at stop code, review memory dump.
Purple Screen (VMware)VMkernel crash on ESXi host. Equivalent of BSOD for VMware. Check ESXi logs and PSOD (Purple Screen of Death) error code.
Kernel Panic (Linux)Linux kernel crash. System halts. Cannot safely recover. Often caused by hardware failure or bad driver/module.
Memory LeakProcess allocates RAM and never releases it. Server slows over time. Fix: restart the leaking service. Long-term: patch or replace the software.
Runaway ProcessProcess consuming excessive CPU or memory. Windows: Task Manager → End Task. Linux: top to identify, kill -9 [PID] to terminate.
Thermal/OverheatingCheck fans, clean dust, verify baffles are in place. Symptoms: thermal throttling, random crashes, burning smell, high temperature alerts.
Power Supply FaultRandom crashes, no POST, intermittent operation. Check PSU LEDs on server. Swap with known-good PSU if available.
sfc /scannow. Validates and repairs corrupted system files. Run from elevated command prompt.
TripwireFile integrity monitoring. Takes cryptographic hash of system files. Alerts if any file changes unexpectedly. Available for both Windows and Linux.
Clock SkewTime difference between systems. Kerberos authentication fails if clock skew exceeds 5 minutes. Fix: sync all systems to NTP (port 123). Check CMOS battery if clock resets on power off.
HCLHardware Compatibility List. If hardware isn't on the HCL for the OS, expect driver errors, instability, or refused installation. Check before purchasing.
Buffer OverrunApplication writes more data to a buffer than it can hold, overwriting adjacent memory. Can cause crashes, data corruption, and code execution vulnerabilities. Prevent with bounds checking, ASLR, DEP.
Version CompatibilityBackward compatibility = newer software works with older data/systems. Forward compatibility = older software works with newer data/systems. Check release notes before any upgrade — incompatibility causes unexpected failures.
Service DependenciesServices that require other services to be running first. If a dependency fails, the dependent service fails. Windows: Services MMC shows dependencies. Linux: systemctl list-dependencies. Always review before stopping services to avoid cascading failures.
Driver IncompatibilityWrong driver version for hardware or OS. Causes device failures, crashes, and errors. Fix: download correct driver from manufacturer. Roll back via Device Manager if update caused the problem.
CPU AffinityBinding a process to a specific CPU core. Can improve cache performance in NUMA systems. Improperly set affinity restricts performance.
Safe Mode (Windows)Boots with minimal drivers and services. Use to isolate startup problems, remove bad drivers, run malware scans.
Single User Mode (Linux)Linux equivalent of Safe Mode. Root access, minimal services. Used for system repair and password recovery.
Soft RebootGraceful OS-initiated shutdown and restart. Flushes buffers, closes open files, lets services stop cleanly. shutdown /r (Windows) or reboot (Linux). Always preferred.
Hard RebootPhysical power cycle — hold power button or press reset. No graceful shutdown. Risk of file system corruption and data loss. Last resort when OS is completely unresponsive.
WSUSWindows Server Update Services. Centralized patch management. Approves and deploys patches to Windows systems in the domain.
RPMRed Hat Package Manager. Linux package management for RHEL/CentOS. rpm -i package.rpm to install.
runas /user:domain\admin cmd.
sudo (Linux)Superuser Do. Executes a single command with elevated (root) privileges. Logged to auth log. Preferred over su — limits scope of privilege and creates an audit trail.
su (Linux)Switch User. su - switches to root with root's full environment. Grants a full root session — higher risk and less auditable than sudo.
SCCMSystem Center Configuration Manager (Microsoft). Enterprise Windows patch management, software deployment, inventory, and compliance reporting. Deploy software and enforce settings at scale.
Puppet / ChefAgent-based configuration management tools. Define desired system state in code. Agents on managed nodes continuously enforce configuration. Cross-platform (Windows and Linux).
AnsibleAgentless configuration management. Uses SSH. Playbooks written in YAML. No agent required on managed nodes. Simpler to deploy than Puppet/Chef. Widely used for both Linux and Windows.
GPOGroup Policy Object. Windows Active Directory. Applies configuration to users and computers in the domain. Controls security settings, software deployment, login scripts. Applied in LSDOU order: Local → Site → Domain → OU.
ipconfig (Windows) or ip a (Linux). Check IP, subnet mask, default gateway, DNS server.ping 127.0.0.1. If this fails, TCP/IP stack is broken. Reinstall TCP/IP.tracert (Windows) / traceroute (Linux). Identify which hop is dropping packets.| Command | OS | Purpose |
|---|---|---|
ipconfig /all | Windows | Show full IP config, MAC address, DNS servers, DHCP lease info. |
ip addr / ip a | Linux | Show IP configuration on all interfaces. |
ping | Both | Test ICMP connectivity to a host. -t flag (Windows) = continuous ping. |
tracert | Windows | Trace packet route hop by hop. Identifies where traffic fails. |
traceroute | Linux/Router | Linux/router equivalent of tracert. |
nslookup | Windows | DNS query tool. Test name resolution and query specific DNS servers. |
dig | Linux | Powerful DNS query tool. More detail than nslookup. Query specific records. |
netstat -an | Both | Show all active connections and listening ports with addresses. |
netstat -r | Both | Display routing table. |
route print | Windows | Display IPv4 routing table. |
nbtstat -n | Windows | Show NetBIOS names on local machine. Legacy but still tested. |
telnet [host] [port] | Both | Test connectivity to a specific TCP port. Useful for firewall testing. Do not use for actual remote management — insecure. |
nc (netcat) | Linux | Network Swiss army knife. Test port connectivity, transfer files, port scan. |
/var/log/audit/audit.log. Set to permissive mode to test: setenforce 0.
UAC blocking (Windows)User Account Control prompting or silently blocking. Run as administrator or adjust UAC policy via GPO.
Group Policy conflictGPO overriding local settings. Run gpresult /r to see applied policies. Check which GPO is setting the conflicting value.
Anti-malware false positiveSecurity tool blocking legitimate software. Whitelist or create exception for the application. Verify the detection is actually a false positive first.
fsck /dev/sda1 (must unmount first). Windows: chkdsk C: /f /r. Check for bad sectors. May indicate drive failure — run SMART diagnostics.
Slow I/O PerformanceCould be: degraded RAID (rebuild in progress), failing drive, cache failure, network saturation (NAS), incorrect RAID configuration, fragmentation (HDD).
Restore FailureBackup tape/file is corrupt or unreadable. This is why you test restores regularly. Check media, verify backup software, try alternate restore method.
Cache Battery FailureRAID controller write cache disabled (unsafe to use without battery). Write performance drops dramatically. System may log warning. Replace cache battery on RAID controller.
Array RebuildAfter drive replacement in a RAID array, the array must rebuild. Performance degrades during rebuild. RAID 5/6 vulnerable to additional failure during rebuild — this is the danger window.
Corrupt Boot Sector / MBRServer won't boot. Boot from installation media, use repair tools. Windows: bootrec /fixmbr, bootrec /fixboot.
Missing GRUB/LILOLinux bootloader gone or misconfigured. Boot from live media, chroot into the system, reinstall GRUB: grub-install /dev/sda.
Mismatched Drives in RAIDAll drives in an array should match speed, capacity, and interface (architecture). Mismatched drives cause performance problems and may prevent array from functioning.
Backplane FailureAll drives connected through the backplane become unavailable. Server may not see any drives in the affected bays. Replace backplane.
Improper RAID ConfigurationWrong RAID level for use case, or misconfigured during setup (wrong stripe size, wrong disk order). May require full rebuild to correct.
| Command | OS | Purpose |
|---|---|---|
fsck /dev/sda1 | Linux | Filesystem check and repair. Must unmount first. -y flag auto-answers yes to repairs. |
chkdsk C: /f /r | Windows | Check disk for errors (/f = fix) and bad sectors (/r = recover). Requires reboot if drive is in use. |
badblocks /dev/sda | Linux | Test drive for bad sectors. Destructive write test option available. Slow but thorough. |
smartctl -a /dev/sda | Linux | Full SMART attribute report for a drive. Shows health status, error counts, temperature, hours powered on. |
wmic diskdrive get status | Windows | Basic SMART status check. "OK" = healthy. Anything else = investigate. |
fdisk -l | Linux | List all disks and their partition tables. |
sudo fdisk /dev/sda | Linux | Interactive partition manager for a specific disk. |
diskpart | Windows | Windows CLI partition and volume management tool. |
mount / umount | Linux | Mount or unmount a filesystem. mount -a mounts all entries in /etc/fstab. |
net use | Windows | Map or disconnect network drives (Windows equivalent of mount for network shares). |
df -h | Linux | Show disk space usage on all mounted filesystems in human-readable format. |
du -sh /path | Linux | Show disk usage of a specific directory. |
/var/log/messagesGeneral system and kernel messages. Start here for most problems.
/var/log/syslogGeneral system log on Debian/Ubuntu systems (equivalent to /var/log/messages on RHEL).
/var/log/auth.logAuthentication events: logins, sudo usage, failed login attempts.
/var/log/kern.logKernel messages. Hardware errors, driver issues, kernel panics appear here.
/var/log/boot.logBoot process messages. Services starting/failing during boot.
/var/log/cron.logScheduled cron job execution and failures.
/var/log/httpd/Apache web server access and error logs (RHEL/CentOS).
/var/log/nginx/Nginx web server logs.
/var/log/mysqld.logMySQL/MariaDB database server log.
/var/log/secureSecurity and authentication log on RHEL/CentOS (equivalent to auth.log).
/var/log/audit/audit.logSELinux audit log. Check here when SELinux is blocking something.
/var/log/yum.logYUM package manager activity (RHEL/CentOS).
journalctlsystemd's centralized log viewer on modern Linux. journalctl -xe = recent errors. journalctl -u nginx = logs for a specific service.
journalctl -xe is your first stop — it shows recent errors across the entire system in one command.