A2.1.3 Describe the function of network devices.

The big idea

Every packet that reaches its destination has travelled through a chain of specialised devices, each assigned to a particular layer of the TCP/IP stack. Knowing what each device does and at which layer it operates is essential for designing, troubleshooting and securing a network.

---

Device functions and their position in the TCP/IP model

Device	Primary function	Typical TCP/IP layer(s)*	Design notes
Network Interface Card (NIC)	Implements the host’s physical and data-link access (MAC addressing, frame check sequence, DMA to system RAM).	Network Interface (sometimes called Link)	Each NIC has a unique MAC address; modern adapters offload checksum, segmentation and VLAN tagging.
Modem (“modulator–demodulator”)	Encodes digital bits onto an analogue or passband signal suitable for WAN media (DSL, cable, fibre, cellular) and reverses the process on receive.	Network Interface (Physical sub-layer)	Performs line training, forward-error correction and rate adaptation; presents an Ethernet or USB logical interface upstream.
Switch	Learns MAC–port mappings and forwards Ethernet frames within a broadcast domain; isolates collision domains.	Network Interface (Data-link sub-layer)	Operates at Layer 2; a “Layer-3 switch” adds routing silicon and effectively becomes a router.
Wireless Access Point (WAP)	Bridges IEEE 802.11 radio segments to a wired LAN, handling association, encryption (WPA 3), roaming and airtime scheduling.	Network Interface	Acts like a transparent switch between wired and wireless media; may implement controller-based management and RF optimisation.
Router	Examines IP headers and chooses the next hop using a routing table; decrements TTL, may perform NAT and QoS marking.	Internet	Separates broadcast domains, enforces sub-networks; dynamic routing protocols (OSPF, BGP) maintain route tables.
Hardware Firewall	Inspects and filters traffic against a rule-set (5-tuple, stateful, DPI), optionally translating addresses (NAT) and terminating VPNs.	Primarily Internet & Transport; advanced NGFWs also parse Application protocols	Deploys zones and policies, maintains connection state tables, can detect anomalies or signatures at line rate using ASICs.
Gateway	Translates between dissimilar protocols, addressing schemes or data formats (e.g., IPv4↔IPv6, MQTT↔HTTP, VoIP SIP↔PSTN).	Potentially spans all layers up to Application	Provides “edge” between networks that could not otherwise interoperate; may re-encode payloads or apply security/authentication.

*TCP/IP “Network Interface” ≈ OSI Layers 1–2; “Internet” ≈ Layer 3; “Transport” ≈ Layer 4; “Application” ≈ Layers 5–7.

---

How the layers cooperate in a data path

1. Host transmission:
   The NIC frames the packet; a modem may translate it for long-haul copper or fibre.
2. Local forwarding:
   Switches and WAPs move the frame inside the local network while keeping layer-2 context.
3. Inter-network forwarding:
   Routers read the IP header and forward towards the destination network; hardware firewalls on the path enforce security policy and may re-address packets.
4. Protocol or media boundary:
   A gateway intervenes only when the source and destination use incompatible protocols or address families, rewriting headers or data so that communication can proceed.

---

Benefits of understanding the mapping

• Troubleshooting focus – knowing the layer narrows diagnostic tools (e.g., ping fails ⇒ look at routers/firewalls, not switches).
• Security zoning – firewalls/gateways protect higher layers; switches implement port-security at the link layer.
• Performance tuning – upgrading NIC offload or replacing a hub with a switch tackles congestion without touching routers.

Grasping these roles equips you to reason about why, for example, adding a firewall cannot fix a duplex mismatch (Layer 1–2 issue), or why IPv6 reachability fails when a gateway is mis-configured even though the router table looks correct.