Browse CompTIA Certification Guides

Study Cloud Concepts, VPCs & Service Models for Network+ (N10-009)

Fuad Efendi March 29, 2026 3 min read

Connect virtualization, NFV, VPCs, cloud gateways, and public/private/hybrid models to modern networking questions.

On this page

Cloud questions in Network+ are still networking questions. CompTIA is usually testing whether you understand that virtual networks still need subnets, routes, gateways, policy boundaries, and controlled connectivity. The wrong answer often assumes that “cloud” means normal network design rules stop applying.

NFV: Network functions virtualization, replacing dedicated hardware appliances with virtualized network functions.

VPC: Virtual private cloud, a logically isolated virtual network built inside a cloud environment.

IaaS: Infrastructure as a service, where the provider exposes virtualized infrastructure such as compute, storage, and networking building blocks.

What CompTIA is really testing

The exam usually wants you to distinguish:

  • service models such as IaaS, PaaS, and SaaS
  • deployment models such as public, private, hybrid, and multicloud
  • virtual network boundaries from physical ones
  • cloud connectivity options from ordinary local switching

Separate service model from deployment model

Concept type Examples What it answers
service model IaaS, PaaS, SaaS how much of the stack the provider manages
deployment model public, private, hybrid, multicloud where workloads run and how environments are combined

CompTIA likes this distinction because candidates often mix them up.

A VPC is still a network

Even in the cloud, you still need to think about:

  • subnets
  • route paths
  • internet or private gateways
  • segmentation and access policy
  • connectivity back to other sites or environments

Small virtual-network example

1vpc:
2  cidr: 10.40.0.0/16
3  subnets:
4    - name: app
5      cidr: 10.40.10.0/24
6    - name: db
7      cidr: 10.40.20.0/24
8  branch-connectivity: site-to-site-vpn

What to notice:

  • the cloud environment still has address space and segmentation
  • a database subnet can be separated from an application subnet
  • the branch does not connect by magic; it needs a gateway or tunnel path

Cloud networking still follows network logic

CompTIA often hides the right answer in one of these questions:

  • is this about where the workload runs, or about who manages the platform?
  • is this a virtual network boundary question, or a service-model question?
  • does the design still need routing, segmentation, and gateway control?

If you keep those distinctions clear, most cloud questions stop feeling abstract.

Common traps

  • treating service models as deployment models
  • assuming cloud removes the need for subnets, routes, or policy boundaries
  • confusing a virtual network with a generic application platform
  • forgetting that hybrid design still needs real connectivity between environments

What strong answers usually do

  • separate “where it runs” from “who manages what”
  • treat a VPC or virtual network like a real network boundary
  • remember that cloud gateways, tunnels, and route rules still matter
  • choose the answer that preserves normal networking logic instead of bypassing it

Quiz

Loading quiz…

Continue with 1.4 Ports, Protocols, Services & Application Flows to keep the domain flow intact.

1.2 Appliances, Functions & Wireless Devices
1.4 Ports, Protocols, Services & Application Flows