Learning Paths

Role-based roadmaps, know what to learn and in what order

College Student / Beginner
๐ŸŽ“

College Student / Beginner

Foundation in ~4 weeks ยท No prerequisites

Week 1: Network Fundamentals

Understand how computers communicate, models, addresses, and protocols

OSI Model TCP/IP Network Types Topologies

Week 2: IP Addressing & Subnetting

IPv4 and IPv6 basics, subnet masks, CIDR, and MAC addressing at the edge

IPv4 IPv6 Subnetting CIDR MAC

Week 3: Core Protocols

Name resolution, addressing helpers, transport, and the web stack

DNS DHCP ARP TCP/UDP Ports HTTP

Week 4: Security & Infrastructure

Perimeter controls, remote access, NAT, and how packets are switched and routed

Firewalls VPN NAT Routing Switching

๐Ÿ† Milestone: Foundation Complete

You can explain how data gets from A to B

Network Engineer
๐Ÿ”ง

Network Engineer

Enterprise routing & switching ยท ~3โ€“6 months

๐Ÿ“‹ Focus

CCNA-level design, operations, and troubleshooting on Cisco-style campus and WAN networks.

L2/L3 BGP/OSPF Security

๐ŸŽฏ Outcomes

Month 1โ€“2Solid review + routing protocols Month 3โ€“4VLANs, STP concepts, hardening Month 5โ€“6Services + packet-level debug

Month 1: Foundations Review

Revisit models, IP, DNS/DHCP, TCP/UDP, switching, routing, and VLAN fundamentals

OSI IPv4 Subnetting Routing VLANs Switching

Month 2: Routing Deep Dive

Link-state vs distance vector, path selection, BGP peering, and redistribution concepts

Dynamic routing Cast types ICMP & TTL

Month 2โ€“3: Switching & VLANs

STP behavior, VTP-style management ideas, inter-VLAN routing, and 802.1Q trunks

VLANs & 802.1Q L2 vs L3 switch MAC learning

Month 3โ€“4: Security

Stateful firewalls, ACL mental models, IPS/IDS roles, VPNs, and port-based access

Firewalls IDS/IPS & security VPN TLS

Month 4โ€“5: Network Services

DHCP/DNS design, monitoring with SNMP-style thinking, time sync, and centralized logging

DHCP DNS NAT

Month 5โ€“6: Troubleshooting

Structured methodology, CLI tools, and packet captures for proof

ICMP & tools TCP/UDP ARP

๐Ÿ† Milestone: CCNA Ready

You can configure, verify, and troubleshoot a small multi-VLAN enterprise network

Advanced: CCNP Track

BGP at scale, OSPF multi-area, QoS policies, and automation-backed operations

Routing Load balancing NGFW

๐Ÿ† Milestone: CCNP Ready

Design and defend larger topologies with advanced routing and policy

Cloud Engineer, GCP
โ˜๏ธ

Cloud Engineer, GCP

GCP networking & hybrid connectivity ยท ~2โ€“4 months

Month 1: GCP Networking Foundation

VPCs, regional subnets, firewall rules, and route tables that steer traffic

VPC Subnets Firewall Rules Routes

Month 1โ€“2: Connectivity

Egress without public IPs, managed DNS, VPN tunnels, and dedicated or partner interconnect

Cloud NAT Cloud DNS Cloud VPN Interconnect

Month 2โ€“3: Load Balancing & CDN

Global and regional L7/L4 front ends, edge caching, and edge security policies

Cloud Load Balancing CDN concepts Cloud CDN Cloud Armor

Month 3: Advanced VPC Patterns

Peering limits, shared host projects, PSC endpoints, and Private Google Access

VPC Peering Shared VPC Private Service Connect Private Google Access

Month 3โ€“4: Hybrid & Multi-Cloud

HA VPN, dedicated throughput, Cloud Router, and BGP-learned routes

HA VPN Dedicated Interconnect Cloud Router & BGP Routing basics

๐Ÿ† Milestone: GCP Network Engineer Cert Ready

You can diagram, implement, and justify a secure VPC and hybrid attachment

DevOps Engineer
๐Ÿš€

DevOps Engineer

App delivery & platform networking ยท ~3โ€“5 months

Month 1: HTTP/TLS Deep Dive

Verbs, status codes, certificate chains, handshake steps, and mutual TLS patterns

HTTP TLS TCP handshake

Month 1โ€“2: DNS & Load Balancing

Record types, LB algorithms, reverse proxies, and CDN behavior at the edge

DNS Load balancing Reverse proxy CDN

Month 2โ€“3: Docker Networking

Bridge vs host, overlay meshes, published ports, and compose-style service graphs

NAT Ports TCP/UDP Firewalls

Month 3โ€“4: Kubernetes Networking

Cluster IPs, Ingress controllers, policy objects, CNI overlays, and kube-dns patterns

DNS Load balancing Proxy Routing

Month 4โ€“5: Service Mesh & IaC

Data-plane proxies, observability hooks, Terraform modules for VPC/LB, and GitOps workflows

TLS/mTLS building blocks VPC as code (GCP) Managed LBs

๐Ÿ† Milestone: Full-Stack Network Fluency

You can trace a user request from DNS through TLS to pods and back

Solutions Architect
๐Ÿ—๏ธ

Solutions Architect

Cross-cutting design & governance ยท Ongoing

๐ŸŒ Multi-region & HA

PatternsActive-active, failover regions, health checks GCP angleGlobal LB, regional services
GCP LB LB fundamentals Anycast

๐Ÿ” Zero Trust & IAM

PrinciplesVerify every hop, least privilege Maps toIAP-style access, private APIs, controls
Zero Trust Private Google Access VPC firewall

๐Ÿ’ฐ Cost & egress

LeversNetwork tier, caching, path efficiency
Network tiers CDN caching GCP misc services

Foundation: All Paths Combined

Ground truth in TCP/IP, then specialize in enterprise, cloud, or platform networking as needed

TCP/IP GCP VPC Routing HTTP

Design Patterns

Multi-region layouts, high availability, failover, and active-active traffic steering

Load balancing Cast types DNS

Hybrid Cloud

On-prem plus cloud attachments, migration cutovers, and consistent policy

Cloud VPN Interconnect VPN concepts

Zero Trust

BeyondCorp-style access, identity-aware proxies, private service consumption, no default public IPs

Security & Zero Trust PSC Firewalls

Cost Optimization

Pick the right network tier, model egress, and maximize CDN hit ratio

Network tiers CDN Cloud CDN

๐Ÿ† Milestone: Architect-Level Mastery

You can whiteboard end-to-end flows and defend trade-offs with customers

Ongoing: Stay Current

Follow GCP release notes for networking, Armor, PSC, and new connectivity options

GCP services roundup Cloud Armor PSC updates