Network documentation and diagrams form the foundation of effective network operations, change management, and troubleshooting. On the N10-009 exam, this topic appears in Domain 3.0 (Network Operations) under Objective 3.1, accounting for approximately 5-8% of the questions. This chapter covers the types of documentation, diagram symbols and standards, the OSI layer mapping of diagrams, and best practices for maintaining accurate records. You will learn how to read and create physical and logical topology diagrams, understand the role of rack diagrams, wiring schematics, and site surveys, and apply documentation to real-world scenarios such as disaster recovery and compliance audits.
Jump to a section
Think of network documentation as the architectural blueprints for a large office building. Just as an architect creates detailed floor plans showing every room, door, window, and electrical outlet, a network engineer creates diagrams and documentation showing every device, cable, port, and IP address. The blueprints include specifications for load-bearing walls, plumbing runs, and HVAC ducts—similarly, network documentation includes device configurations, VLAN assignments, routing protocols, and security policies. When a new tenant moves in, the facilities manager uses the blueprints to know exactly where to run new Ethernet cables, just as a network engineer uses diagrams to plan expansions. If a pipe bursts, the plumber consults the blueprints to find shut-off valves—when a link fails, the engineer checks the diagram to identify redundant paths. Without accurate blueprints, a contractor might drill through a water main; without accurate documentation, a technician might unplug a critical server. The blueprint must be kept updated as renovations occur—as-built drawings reflect the actual building, not the original plan. Similarly, network documentation must reflect the live network state, not the intended design. The parallel is mechanistic: both systems require hierarchical layers (site plans, floor plans, room layouts vs. network maps, rack diagrams, patch panel details), both use standardized symbols (architectural symbols vs. network topology icons), and both are essential for troubleshooting, change management, and compliance.
What Are Network Documentation and Diagrams?
Network documentation is the collection of records that describe the design, configuration, and operation of a network. It includes diagrams, configuration files, IP address management (IPAM) records, inventory lists, change logs, and standard operating procedures. Diagrams are visual representations of the network's topology at various layers of the OSI model. The primary purpose is to provide a single source of truth that enables engineers to understand, troubleshoot, and modify the network correctly.
On the N10-009 exam, you must be able to distinguish between different types of diagrams and documentation, identify the appropriate diagram for a given scenario, and understand the consequences of poor documentation.
Physical vs. Logical Topology Diagrams
Physical topology diagrams show the actual physical layout of devices, cables, and connections. They include:
Device locations (rack, floor, building)
Cable types (Cat5e, Cat6, fiber single-mode/multi-mode)
Port numbers and patch panel connections
Power sources and UPS connections
Environmental details (cooling, physical security)
Logical topology diagrams show how data flows through the network, independent of physical layout. They include:
IP addressing and subnetting
VLAN assignments and trunk links
Routing protocols and paths
Network services (DNS, DHCP, NTP)
Security zones and firewall rules
The exam tests your ability to choose the correct diagram type. For example, if a technician needs to trace a cable from a switch to a patch panel, a physical diagram is needed. If an engineer is planning a routing change, a logical diagram is appropriate.
Diagram Symbols and Standards
CompTIA expects you to recognize standard network diagram symbols. These are often based on Cisco icons or generic icons from standards like ISO or IEEE. Common symbols include:
Router: circle with arrows or a box with an X
Switch: rectangle with arrows
Firewall: brick wall or shield
Server: cylinder or monitor
Cloud: cloud shape
Wireless access point: antenna icon
Hub: rectangle with a line through it (though hubs are obsolete)
Modem: box with phone line
Connectors are represented by lines:
Solid line: Ethernet (copper)
Dashed line: fiber optic
Wavy line: wireless
Double line: trunk or aggregated link
Labeled lines: VLAN, protocol, speed
Additionally, diagrams often include annotations for:
Interface names (e.g., GigabitEthernet0/1)
IP addresses (e.g., 192.168.1.1/24)
VLAN IDs (e.g., VLAN 10)
Speed/duplex (e.g., 1 Gbps, full)
Link state (e.g., up/down)
Rack Diagrams and Wiring Schematics
Rack diagrams show the front and rear views of equipment racks, detailing:
Rack unit (RU) positions (1U, 2U, etc.)
Device placement (e.g., switch in RU 10-12)
Power distribution units (PDUs)
Cable management
Patch panels and port mappings
Wiring schematics document cable runs from end to end, including:
Cable ID or label
Source location (building, floor, room, rack, port)
Destination location
Cable type and length
Termination points (RJ45, SC, LC)
Testing results (e.g., pass/fail, length, attenuation)
Site Survey Documentation
Site surveys document the physical environment for wireless networks. They include:
Floor plans with AP placement
Signal strength heat maps (dBm)
Channel assignments and overlap analysis
Interference sources (microwaves, cordless phones)
Coverage gaps and roaming boundaries
On the exam, know that a site survey is performed before deploying WLAN to optimize coverage and capacity.
Configuration and Baseline Documentation
Configuration documentation includes:
Device hostnames and management IPs
Running and startup configurations
Firmware versions
SNMP community strings and NTP servers
Baselines are performance snapshots taken during normal operation. They document:
CPU and memory utilization
Bandwidth usage (peak and average)
Error rates (CRC, collisions, runts)
Response times and latency
Baselines are critical for identifying anomalies and capacity planning.
Change Management and Audit Logs
Change management documentation records every modification to the network, including:
Change request number
Description of change
Approval status
Implementation date/time
Rollback plan
Post-implementation verification
Audit logs track access to devices and configuration changes. They are essential for compliance (e.g., PCI-DSS, HIPAA) and for troubleshooting unauthorized changes.
Standard Operating Procedures (SOPs)
SOPs are step-by-step instructions for common tasks such as:
Adding a new VLAN
Replacing a failed switch
Upgrading firmware
Troubleshooting connectivity issues
Well-documented SOPs ensure consistency and reduce human error.
Documentation Management Tools
Tools include:
Visio or draw.io for diagrams
Excel or IPAM for IP address tracking
Wiki or document management systems for policies
Configuration management databases (CMDB)
Network monitoring systems (e.g., PRTG, SolarWinds) that auto-discover topology
Best Practices
Keep documentation up to date: update immediately after changes
Use consistent naming conventions (e.g., SW-1-Floor3)
Store documentation in a central, accessible location
Version control: maintain history of changes
Include contact information for vendors and support
Use labels on physical devices that match documentation
Perform periodic audits to verify accuracy
How Documentation Interacts with Other Technologies
IPAM: integrates with DHCP to track address assignments
Monitoring: uses documentation to map alerts to device locations
Disaster Recovery: documentation is essential for restoring service
Security: documentation helps identify unauthorized devices or connections
Exam-Relevant Details
The OSI layer for physical diagrams is Layer 1; for logical diagrams, it can be Layer 2 (switching) or Layer 3 (routing).
A wiring schematic is a type of physical diagram.
A network baseline is taken during normal operations, not during a problem.
Change management documentation must include a rollback plan.
The most common mistake on the exam is confusing physical and logical diagrams. For example, a question might ask: "Which diagram would you use to trace a cable?" The answer is a physical diagram, not a logical one.
Command and Verification Examples
While documentation is often created manually, network engineers use commands to gather data for documentation:
show running-config
show startup-config
show vlan brief
show interface status
show cdp neighbors
show lldp neighbors
show ip route
show ip arp
show mac address-table
show spanning-treeFor wireless site surveys, tools like Ekahau or AirMagnet are used.
Summary of Documentation Types
Physical topology diagram: cables, ports, locations
Logical topology diagram: IP addresses, VLANs, routing
Rack diagram: equipment placement in racks
Wiring schematic: cable paths and terminations
Site survey: wireless coverage and interference
Baseline: normal performance metrics
Configuration: device settings
Change management: records of modifications
SOP: standard procedures
Each serves a distinct purpose, and the exam will ask you to match the documentation to the need.
Identify Documentation Requirements
Begin by determining what documentation is needed based on the network's size, complexity, and compliance requirements. For a small office, a simple logical diagram and IP address spreadsheet may suffice. For a data center, detailed rack diagrams, wiring schematics, and configuration backups are essential. Consider regulatory standards (PCI-DSS, HIPAA, SOX) that mandate specific documentation. Also identify the audience: technicians need physical details, engineers need logical views, and auditors need change logs. Document the scope: all devices, only critical infrastructure, or just the LAN. This step sets the foundation for all subsequent documentation efforts.
Collect Device Information
Gather data from each network device using CLI commands or SNMP polling. For switches, capture `show running-config`, `show vlan`, `show interface status`, `show mac address-table`, and `show cdp neighbors`. For routers, add `show ip route` and `show ip protocols`. For firewalls, capture rules and NAT configurations. Use network scanning tools (Nmap, SolarWinds) to discover devices not yet documented. Record hostnames, management IPs, firmware versions, and serial numbers. This raw data becomes the basis for diagrams and inventory lists.
Create Physical Topology Diagram
Using the collected data, draw the physical layout. Start with a floor plan or rack elevation. Place each device in its physical location (building, floor, room, rack, U position). Draw cables between devices, labeling each with cable type (Cat6, OM3 fiber), source/destination ports, and cable ID. Use standardized symbols (e.g., Cisco icons). Include patch panels and demarcation points (demarc). For wireless, overlay AP locations. Ensure the diagram reflects the actual physical connections, not the logical grouping. This diagram is essential for cable tracing and hardware troubleshooting.
Create Logical Topology Diagram
Now abstract away physical details to show data flow. Group devices by VLAN, subnet, or security zone. Draw routers, switches, firewalls, and servers as logical entities. Label interfaces with IP addresses and subnet masks. Show routing protocols (OSPF area, BGP AS) and path costs. Indicate VLAN trunk links and allowed VLANs. Include network services (DHCP server, DNS server, NTP server). Use different line styles for different protocols (e.g., dashed for OSPF, dotted for BGP). This diagram is used for routing changes, ACL planning, and troubleshooting Layer 3 issues.
Document IP Address Management (IPAM)
Create a spreadsheet or use IPAM software to track all IP subnets and assignments. For each subnet, record: network address, subnet mask, default gateway, VLAN ID, location, and purpose (e.g., "Data VLAN", "Voice VLAN"). For each device, record: hostname, IP address, MAC address, interface, and static/reserved/DHCP status. Include DHCP scope information: range, lease duration (default 8 days for Windows), and exclusions. Keep this document updated as IP changes occur. Proper IPAM prevents address conflicts and simplifies troubleshooting.
Establish Change Management Process
Define a formal process for requesting, approving, implementing, and documenting changes. Each change should have a unique ID, description, justification, risk assessment, implementation plan, rollback plan, and test plan. After implementation, update all documentation (diagrams, IPAM, configs) and notify stakeholders. Use a ticketing system (e.g., ServiceNow) to track changes. The exam emphasizes that change management without documentation is incomplete. A rollback plan is mandatory. Post-change verification should confirm the change worked as intended.
Scenario 1: Data Center Migration A financial services company is moving from an on-premises data center to a colocation facility. The network team must document every cable, device, and configuration before the move. They use physical topology diagrams to label each cable at both ends with a unique ID (e.g., CBL-001). Rack diagrams show the exact U position of each switch and server. During the move, they disconnect cables according to the diagram and reconnect in the new facility. Without this documentation, re-cabling would take weeks instead of days. Common issues: cables not labeled per diagram, devices not in expected rack positions, power requirements not documented. The solution is to perform a pre-move audit by physically verifying every connection against the diagram.
Scenario 2: Wireless Site Survey for a Hospital A hospital needs to deploy Wi-Fi for mobile medical devices. An engineer conducts a site survey using Ekahau software. They import floor plans and place virtual APs to simulate coverage. The survey reveals interference from MRI machines and thick concrete walls. The engineer adjusts AP placement and channel selection (using 5 GHz to avoid cordless phone interference on 2.4 GHz). The final documentation includes heat maps showing signal strength (minimum -67 dBm for voice), channel assignments, and AP mounting locations. After deployment, a post-survey verifies coverage. Problems arise if the survey is done when the hospital is empty (no interference from people) or if APs are installed at incorrect heights.
Scenario 3: Compliance Audit for a Retail Chain A retail chain must comply with PCI-DSS. The auditor requests network diagrams, firewall rule sets, and change logs. The network team provides logical diagrams showing the segmentation between the cardholder data environment (CDE) and the corporate network. They also provide a configuration baseline for all firewalls and a change management log with approvals and rollback plans. The auditor finds that one diagram is outdated—it shows a VLAN that was decommissioned six months ago. This results in a finding. The team must update the diagram immediately and implement a quarterly review process. The lesson: documentation must be a living record, not a one-time project.
The N10-009 exam tests Objective 3.1: "Explain the importance of network documentation and diagrams." Expect 5-8 questions on this topic. The exam focuses on:
Distinguishing physical vs. logical diagrams: The most common wrong answer is choosing a logical diagram when a physical one is needed, or vice versa. For example, a question asks: "Which diagram would you use to locate a faulty cable?" Many candidates choose a logical diagram because they think of 'network diagram' generically. The correct answer is a physical diagram because cables are physical components.
Change management documentation: The exam loves questions about what must be included in a change request. The trap answer is 'implementation plan only'—candidates forget the rollback plan. Always remember: a change request must include a rollback plan in case the change fails.
Baseline vs. troubleshooting data: A baseline is taken when the network is performing normally. A common wrong answer is that a baseline is taken during a problem to compare later. No—a baseline is a reference for normal performance. If you take a measurement during a problem, that's a troubleshooting data point, not a baseline.
Symbols and standards: You may be shown a diagram and asked to identify a symbol (e.g., what does a cloud represent? The internet or WAN). Know that a cylinder is typically a server, a brick wall is a firewall, and a circle with arrows is a router.
Wiring schematics vs. rack diagrams: A wiring schematic shows end-to-end cable paths; a rack diagram shows equipment placement. The exam might ask: "Which document shows which port on a patch panel connects to which switch port?" That's a wiring schematic, not a rack diagram.
Site survey purpose: A site survey is performed before WLAN deployment to determine AP placement and channel settings. The exam might ask: "When should a site survey be performed?" The answer is before installation, not after.
Documentation as part of disaster recovery: The exam emphasizes that documentation (diagrams, configs, IPAM) is critical for restoring service after a disaster. A wrong answer might suggest that documentation is only for day-to-day operations.
To eliminate wrong answers, focus on the underlying mechanism: physical diagrams are about cables and hardware; logical diagrams are about data flow. Change management is about controlling risk; baselines are about normal performance. Always read the question carefully for keywords like 'cable', 'port', 'location' (physical) vs. 'VLAN', 'routing', 'IP' (logical).
Physical topology diagrams show cables, ports, and locations; logical diagrams show IP addresses, VLANs, and routing.
Change management documentation must include a rollback plan.
A network baseline is taken during normal operation to compare against future performance.
A site survey is performed before WLAN deployment to determine AP placement and channel settings.
Wiring schematics document end-to-end cable paths; rack diagrams show equipment placement in rack units.
IPAM tracks subnet assignments, DHCP scopes, and static IPs to prevent address conflicts.
Standard diagram symbols: router=circle with arrows, firewall=brick wall, server=cylinder, cloud=WAN/internet.
These come up on the exam all the time. Here's how to tell them apart.
Physical Topology Diagram
Shows physical locations (building, floor, rack, port)
Includes cable types, lengths, and patch panel connections
Uses real-world icons (e.g., server shape, rack outline)
Used for cable tracing, hardware troubleshooting, and moves/adds/changes
Corresponds to OSI Layer 1 (physical layer)
Logical Topology Diagram
Shows IP addresses, VLANs, routing protocols, and security zones
Abstracts physical details; focuses on data flow
Uses logical symbols (e.g., cloud for WAN, circle for router)
Used for routing changes, ACL planning, and Layer 3 troubleshooting
Corresponds to OSI Layer 2 (switching) and Layer 3 (routing)
Mistake
A logical topology diagram shows physical cable paths.
Correct
A logical topology diagram abstracts away physical details and shows data flow, IP addresses, VLANs, and routing protocols. Physical cable paths are shown on a physical topology diagram or wiring schematic.
Mistake
A network baseline is taken during a network outage to compare with normal performance.
Correct
A baseline is taken when the network is operating normally, under typical load. It serves as a reference for future comparisons. Taking measurements during an outage yields troubleshooting data, not a baseline.
Mistake
Change management documentation only needs an implementation plan.
Correct
Change management documentation must include a rollback plan in case the change fails. The exam explicitly tests this: a change request without a rollback plan is incomplete.
Mistake
Rack diagrams and wiring schematics are the same thing.
Correct
Rack diagrams show the physical placement of equipment in racks (U positions, front/rear views). Wiring schematics show the end-to-end cable paths, including patch panels and termination points. They serve different purposes.
Mistake
A site survey is performed after WLAN installation to verify coverage.
Correct
A site survey is performed before installation to plan AP placement and channel assignments. A post-installation survey (or validation) may be done to verify coverage, but the initial site survey is pre-deployment.
Reveal each answer, then mark whether you got it right. Score 60%+ to unlock the next chapter.
A physical network diagram shows the actual physical layout of devices, cables, and connections, including locations, ports, and cable types. It is used for hardware troubleshooting and cable tracing. A logical network diagram shows how data flows through the network, including IP addresses, VLANs, routing protocols, and security zones. It abstracts physical details and is used for planning routing changes and ACLs. On the exam, if the question mentions 'cable' or 'port', choose physical; if it mentions 'VLAN' or 'routing', choose logical.
A change management request must include a description of the change, justification, risk assessment, implementation plan, rollback plan, and test plan. The rollback plan is critical—it details how to revert the change if it fails. The exam often tests that a change request without a rollback plan is incomplete. Also include approval signatures and a post-implementation verification step.
A network baseline should be taken when the network is operating normally and under typical load. It captures metrics like CPU utilization, bandwidth usage, latency, and error rates. This baseline is used as a reference for future comparisons to detect anomalies or performance degradation. Do not take a baseline during a problem—that would be troubleshooting data, not a baseline.
A site survey is performed before deploying a wireless LAN to determine optimal access point placement, channel assignments, and power levels. It involves walking the facility with a spectrum analyzer and software to measure signal strength, interference, and coverage. The output includes heat maps and AP placement recommendations. Without a site survey, you risk poor coverage, interference, and roaming issues.
A rack diagram shows the front and rear views of equipment racks, detailing the position of devices in rack units (U), power distribution, and cable management. A wiring schematic shows the end-to-end path of each cable, including source and destination ports, cable type, and length. Rack diagrams are used for hardware installation; wiring schematics are used for cable tracing and troubleshooting.
Network documentation should be updated immediately after any change to the network. This includes adding or removing devices, changing IP addresses, modifying VLANs, or updating configurations. In practice, many organizations perform quarterly audits to verify accuracy. The exam emphasizes that documentation must be a living document; outdated documentation can lead to misconfigurations and extended downtime.
IP Address Management (IPAM) is a system for planning, tracking, and managing IP address assignments. It integrates with DHCP and DNS to ensure unique IP assignments and proper DNS records. IPAM prevents address conflicts, simplifies subnet planning, and provides visibility into address utilization. On the exam, know that IPAM is part of network documentation and is critical for avoiding duplicate IPs and running out of addresses.
You've just covered Network Documentation and Diagrams — now see how well it sticks with free N10-009 practice questions. Full explanations included, no account needed.
Done with this chapter?