SkarpSkarp

Chapter 2 of 27

Network Building Blocks: Devices, Roles, and Basic Connectivity

Walk through a modern network from endpoint to cloud, seeing how routers, switches, firewalls, and access points work together to move your first packets.

27 min readen

From Laptop to Cloud: The Big Picture

Walking a Packet

You will walk a packet from your laptop, through a small office network, out to the internet, and up to a cloud service, meeting each core network device on the way.

Scenario Overview

Our scenario: a laptop connects over Wi‑Fi to an access point, then to a switch, then to a router/firewall, then over a WAN to a cloud server on the internet.

What You Will Learn

You will classify devices, understand collision and broadcast domains, distinguish LAN vs WAN vs SOHO, and master the canonical definition of a default gateway.

Why This Matters for CCNA

This end‑to‑end picture underpins many CCNA topics. If you can visualize this simple office network, routing, VLANs, and security will make more sense later.

Meet the Network Devices and Their Roles

Endpoints

Endpoints are user or application devices: laptops, phones, printers, IP phones, cameras. They use the network but do not forward transit traffic for others.

Switches

Layer 2 switches forward frames using MAC addresses and create separate collision domains per port. Layer 3 switches also route between IP networks and VLANs.

Routers

Routers operate at the Network layer, forward packets between IP networks, maintain routing tables, and block broadcast traffic from crossing between networks.

Firewalls

Firewalls enforce security policies, inspecting traffic, using ACLs and stateful rules, and often performing NAT between private LANs and the public internet.

APs and Controllers

Wireless access points bridge Wi‑Fi clients to the wired LAN. Wireless LAN controllers centrally manage many APs in campus or enterprise environments.

Servers and Cloud

Servers host applications and data. In cloud environments they are often virtual, but logically they are endpoints that provide services to clients.

Collision Domains vs Broadcast Domains

Collision Domains

A collision domain is the set of interfaces where Ethernet collisions can occur. With hubs, many devices share one domain; with switches, each port is its own domain.

Broadcast Domains

A broadcast domain is the set of devices that receive a Layer 2 broadcast frame. Switches forward broadcasts in a VLAN; routers do not forward them by default.

Device Effects

Hubs: 1 collision and 1 broadcast domain. Switches: 1 collision domain per port, 1 broadcast domain per VLAN. Routers: 1 collision and 1 broadcast domain per interface.

Exam Shortcut

On CCNA: switches break up collision domains; routers and Layer 3 switches break up broadcast domains. Remember that mapping when answering design questions.

LANs, WANs, and SOHO Networks

What Is a LAN?

A LAN covers a small area like a room, building, or campus, using Ethernet and Wi‑Fi, with high speed and low latency under one organization’s control.

What Is a WAN?

A WAN connects LANs across cities or countries using service provider networks such as MPLS, Metro Ethernet, broadband, or 5G, with higher latency.

SOHO Networks

SOHO setups often use one wireless router that combines router, switch, firewall, DHCP server, and access point functions for small offices or homes.

Exam View

On CCNA, classify links by distance, speed, and ownership, and remember that SOHO devices bundle several logical network roles into one box.

The Default Gateway: Your Exit Door

Canonical Definition

A default gateway is the IP address of a router interface on the local network segment that a host uses to send traffic destined for remote networks.

Key Pieces

It is an IP address on a router interface, on the same subnet as the host, used whenever the destination IP is not in the host’s local network.

Concrete Example

PC 192.168.10.50/24 uses default gateway 192.168.10.1. Traffic to 8.8.8.8 is sent to 192.168.10.1, which then routes it toward the internet.

Exam Traps

Ignore distractors like “MAC address of the router” or “IP of the nearest switch.” The default gateway is always a router interface IP, not a switch or MAC.

Step-by-Step: Packet Flow from Laptop to Cloud

Scenario Setup

Laptop 192.168.1.100/24 uses default gateway 192.168.1.1 on a SOHO router/AP, which has a WAN IP from the ISP. The cloud server is 203.0.113.10.

DNS and Destination IP

You enter a URL; the laptop uses DNS to map the hostname to 203.0.113.10. Now it must decide whether that IP is local or remote relative to its subnet.

Host Uses Default Gateway

Seeing that 203.0.113.10 is not in 192.168.1.0/24, the laptop sends the packet to default gateway 192.168.1.1, using ARP to learn the gateway’s MAC.

AP and Switch Forwarding

The AP bridges the frame from Wi‑Fi to Ethernet. A switch, if present, forwards it based on the router’s MAC address, without looking at IP routes.

Router Makes the Routing Decision

The router strips the frame, checks destination IP 203.0.113.10, consults its routing table, likely performs NAT, and forwards the packet toward the ISP.

Across the WAN to Cloud

ISP routers forward hop by hop using routing tables until the packet reaches the cloud provider’s network and finally the server at 203.0.113.10.

Thought Exercise: Trace the Path

Use this exercise to practice identifying which device acts at which step.

Scenario

You are in a small office with this setup:

  • PC1 (wired) on switch port 1: 10.0.0.10/24, default gateway 10.0.0.1
  • PC2 (wired) on switch port 2: 10.0.0.20/24, same default gateway
  • Switch uplink to Router R1 (10.0.0.1/24 on its LAN interface)
  • R1’s WAN interface connected to ISP

You open a shared file on PC2 from PC1 using its IP address 10.0.0.20.

Your task

Without writing packets in Wireshark-level detail, think through and answer these questions mentally or in a notebook:

  1. Which devices see this traffic?
  • List all devices that will see the packets when PC1 talks to PC2.
  1. Which devices make forwarding decisions?
  • Does the router R1 get involved in this communication? Why or why not?
  1. Collision and broadcast domains
  • How many collision domains are involved in the unicast traffic between PC1 and PC2?
  • How many broadcast domains are involved?
  1. Change the destination
  • Now imagine PC1 browses to 1.1.1.1 on the internet.
  • Which devices see this new traffic?
  • Which devices make forwarding decisions this time?

Check your reasoning

After you think it through, compare to this mental template:

  • Local traffic in the same subnet stays on the switch; the router is not used.
  • Remote traffic uses the default gateway; the router makes routing decisions.
  • Switches separate collision domains (per port) but not broadcast domains (unless VLANs are used).

Use this template to sanity‑check future scenarios in your CCNA practice.

Quick Check: Devices and Domains

Test your understanding of device roles and domains.

Which statement is MOST accurate for a typical modern Ethernet switch in a small office network?

  1. It creates one large collision domain and one large broadcast domain for all ports.
  2. It creates a separate collision domain per port but a single broadcast domain per VLAN.
  3. It creates a separate broadcast domain per port but a single collision domain per VLAN.
  4. It does not participate in collision or broadcast domains at all.
Show Answer

Answer: B) It creates a separate collision domain per port but a single broadcast domain per VLAN.

A modern Layer 2 switch creates one collision domain per physical port, because each port is its own segment. However, all ports in the same VLAN share a single broadcast domain. Routers (or Layer 3 switches) segment broadcast domains, not Layer 2 switches.

Quick Check: Default Gateway and Traffic Flow

Test your understanding of default gateways and routing decisions.

A host has IP 192.168.50.10/24 and default gateway 192.168.50.1. It sends traffic to 192.168.60.20. Which device makes the FIRST routing (Layer 3) forwarding decision for this packet?

  1. The host itself, because it knows the destination is remote.
  2. The Layer 2 switch, because it forwards the frame based on MAC address.
  3. The router interface with IP 192.168.50.1, acting as the default gateway.
  4. The destination host at 192.168.60.20, when it receives the packet.
Show Answer

Answer: C) The router interface with IP 192.168.50.1, acting as the default gateway.

The host decides whether the destination is local or remote, but it does not perform routing between networks. It sends the packet to its default gateway 192.168.50.1. The router interface at 192.168.50.1 is the first device to consult a routing table and make a Layer 3 forwarding decision.

Key Term Flashcards: Devices and Connectivity

Flip through these cards to reinforce the most important terms from this module.

Default gateway (canonical definition)
A default gateway is the IP address of a router interface on the local network segment that a host uses to send traffic destined for remote networks.
Collision domain
A collision domain is the set of network interfaces where Ethernet collisions can occur. Modern switches create one collision domain per port; hubs share a single collision domain across all ports.
Broadcast domain
A broadcast domain is the set of devices that receive a Layer 2 broadcast frame. Switches forward broadcasts within a VLAN, while routers (and Layer 3 switches) separate broadcast domains.
Primary role of a Layer 2 switch
A Layer 2 switch forwards Ethernet frames based on MAC addresses, creating separate collision domains per port while maintaining a single broadcast domain per VLAN.
Primary role of a router
A router forwards packets between different IP networks using a routing table, and it separates broadcast domains at each interface.
Primary role of a firewall
A firewall inspects traffic and enforces security policies, often using ACLs and stateful inspection, and may perform NAT between private and public networks.
Primary role of a wireless access point (AP)
A wireless access point connects wireless clients to the wired LAN by bridging traffic between Wi‑Fi and Ethernet segments.
LAN vs WAN
A LAN covers a small area with high-speed, low-latency links owned by one organization. A WAN connects LANs over large distances using service provider networks and typically has higher latency.
SOHO network
A Small Office/Home Office (SOHO) network typically uses integrated devices (like a wireless router) that combine router, switch, firewall, DHCP, and AP functions for a small environment.
Where are routing decisions made?
Routing decisions (based on destination IP and routing tables) are made by routers and Layer 3 switches, not by Layer 2 switches, APs, or endpoints.

Putting It Together and Next Steps

What You Can Do Now

You can classify core devices, explain collision vs broadcast domains, state the default gateway definition, and trace packet flow from host to cloud.

Avoid These Pitfalls

Do not assume switches break broadcast domains, or mix up a gateway’s IP with its MAC. Remember that SOHO boxes bundle many logical roles.

Link to Your CCNA Path

Upcoming Skarp modules will have you configure addressing and routing. Mock exams and spaced review will pressure-test and reinforce these concepts.

Suggested Mini-Practice

Draw a small LAN with a router, switch, AP, two PCs, and a cloud server. Label IPs, collision and broadcast domains, and the default gateway for each host.

Key Terms

NAT
Network Address Translation (NAT) is a method of translating private IP addresses to public IP addresses, and vice versa, as packets traverse a router or firewall.
router
A Layer 3 device that forwards packets between different IP networks using a routing table and that separates broadcast domains at each interface.
switch
A Layer 2 device that forwards Ethernet frames based on MAC addresses, creating separate collision domains per port while maintaining a single broadcast domain per VLAN.
endpoint
A device used directly by people or applications, such as a laptop, smartphone, printer, or IP phone. Endpoints use the network but do not forward transit traffic.
firewall
A security device (often integrated with a router) that inspects network traffic and enforces security policies, commonly using ACLs and stateful inspection, and often performing NAT.
routing table
A data structure on routers and Layer 3 switches that lists known networks and the next hop or outgoing interface used to reach each network.
Layer 3 switch
A device that combines Layer 2 switching with Layer 3 routing, allowing it to forward frames based on MAC addresses and route packets between IP networks and VLANs.
default gateway
A default gateway is the IP address of a router interface on the local network segment that a host uses to send traffic destined for remote networks.
broadcast domain
The set of devices that receive a Layer 2 broadcast frame. Switches forward broadcasts within a VLAN, while routers and Layer 3 switches separate broadcast domains.
collision domain
The set of network interfaces where Ethernet collisions can occur. Modern switches create one collision domain per port; hubs share a single collision domain across all ports.
MAC address table
A table on a switch that maps MAC addresses to switch ports, allowing the switch to forward frames only out the appropriate port.
WAN (Wide Area Network)
A network that connects LANs over large geographic distances, often using service provider infrastructure and technologies such as MPLS, Metro Ethernet, broadband, or 5G.
LAN (Local Area Network)
A network that covers a small geographic area such as a room, building, or campus, typically using Ethernet and Wi‑Fi, with high speed and low latency under one organization’s control.
wireless access point (AP)
A device that connects wireless clients to the wired LAN by bridging traffic between Wi‑Fi and Ethernet segments.
wireless LAN controller (WLC)
A centralized device that manages multiple wireless access points, handling configuration, security, and RF optimization in enterprise Wi‑Fi deployments.
SOHO (Small Office/Home Office) network
A small-scale network, often built with integrated devices like wireless routers that combine router, switch, firewall, DHCP server, and access point functions.

Finished reading?

Test your understanding with a custom practice exam on this chapter.

Test yourself