Network (Exam: N10-008) exam questions

Pataasin ang iyong marka sa homework at exams ngayon gamit ang Quizwiz!

Which of the following is used to track and document various types of known vulnerabilities? A. CVE B. Penetration testing C. Zero-day D. SIEM E. Least privilege

A. CVE

Which of the following provides guidance to an employee about restricting non-business access to the company's videoconferencing solution? A. Acceptable use policy B. Data loss prevention C. Remote access policy D. Standard operating procedure

A. Acceptable use policy

An auditor assessing network best practices was able to connect a rogue switch into a network jack and get network connectivity. Which of the following controls would BEST address this risk? A. Activate port security on the switchports providing end user access. B. Deactivate Spanning Tree Protocol on network interfaces that are facing public areas. C. Disable Neighbor Resolution Protocol in the Layer 2 devices. D. Ensure port tagging is in place for network interfaces in guest areas.

A. Activate port security on the switchports providing end user access.

Based on networks 10.8.16.0/22 and 10.8.31.0/21, which of the following is the BEST summarized CIDR notation? A. 10.8.0.0/16 B. 10.8.0.0/19 C. 10.8.0.0/20 D. 10.0.0.0/24

A. 10.8.0.0/16

A technician is configuring a static IP address on a new device in a newly created subnet. The work order specifies the following requirements: • The IP address should use the highest address available in the subnet .• The default gateway needs to be set to 172.28.85.94. • The subnet mask needs to be 255.255.255.224. Which of the following addresses should the engineer apply to the device? A. 172.28.85.93 B. 172.28.85.95 C. 172.28.85.254 D. 172.28.85.255

A. 172.28.85.93

A network engineer is investigating reports of poor network performance. Upon reviewing a report, the engineer finds hundreds of CRC errors on an interface.Which of the following is the MOST likely cause of these errors? A. A bad wire on the Cat 5e cable B. The wrong VLAN assignment to the switchport C. A misconfigured QoS setting on the router D. Both sides of the switch trunk set to full duplex

A. A bad wire on the Cat 5e cable

A network technician reviews an entry on the syslog server and discovers the following message from a switch:SPANNING-TREE Port 1/1 BLOCKED -Which of the following describes the issue? A. A loop was discovered, and the impact was mitigated. B. An incorrectly pinned cable was disconnected. C. The link-local address on the port is incorrect. D. The port was shut down, and it needs to be reactivated.

A. A loop was discovered, and the impact was mitigated.

Which of the following is required when connecting an endpoint device with an RJ45 port to a network device with an ST port? A. A media converter B. A bridge C. An MDIX D. A load balancer

A. A media converter

A network administrator is trying to identify a device that is having issues connecting to a switchport. Which of the following would BEST help identify the issue? A. A syslog server B. Change management records C. A rack diagram D. The security log

A. A syslog server

An IT officer is installing a new WAP. Which of the following must the officer change to connect users securely to the WAP? A. AES encryption B. Channel to the highest frequency within the band C. TKIP encryption protocol D. Dynamic selection of the frequency

A. AES encryption

Which of the following protocols do MOST MITM attacks utilize? A. ARP B. SIP C. FTP D. SCP

A. ARP

A disgruntled employee executes a man-in-the-middle attack on the company network. Layer 2 traffic destined for the gateway is redirected to the employee's computer. This type of attack is an example of: A. ARP cache poisoning B. IP spoofing C. amplified DNS attack D. evil twin

A. ARP cache poisoning

A technician knows the MAC address of a device and is attempting to find the device's IP address. Which of the following should the technician look at to find theIP address? (Choose two.) A. ARP table B. DHCP leases C. IP route table D. DNS cache E. MAC address table F. STP topology

A. ARP table B. DHCP leases

A company wants to set up a backup data center that can become active during a disaster. The site needs to contain network equipment and connectivity. Which of the following strategies should the company employ? A. Active-active B. Warm C. Cold D. Cloud

A. Active-active

A technician is trying to install a VoIP phone, but the phone is not turning on. The technician checks the cable going from the phone to the switch, and the cable is good. Which of the following actions is needed for this phone to work? A. Add a PoE injector. B. Enable MDIX. C. Use a crossover cable. D. Reconfigure the port.

A. Add a PoE injector.

A technician performed a manual reconfiguration of a firewall, and network connectivity was reestablished. Some connection events that were previously sent to a syslog server are no longer being generated by the firewall. Which of the following should the technician perform to fix the issue? A. Adjust the proper logging level on the new firewall. B. Tune the filter for logging the severity level on the syslog server. C. Activate NetFlow traffic between the syslog server and the firewall. D. Restart the SNMP service running on the syslog server.

A. Adjust the proper logging level on the new firewall.

A company finds that many desktops are being reported as missing or lost. Which of the following would BEST assist in recovering these devices? A. Asset tracking tags B. Motion detectors C. Security guards D. Computer locks Reveal Solution

A. Asset tracking tags

A newly installed VoIP phone is not getting the DHCP IP address it needs to connect to the phone system. Which of the following tasks need to be completed to allow the phone to operate correctly? A. Assign the phone's switchport to the correct VLAN B. Statically assign the phone's gateway address C. Configure a route on the VoIP network router D. Implement a VoIP gateway

A. Assign the phone's switchport to the correct VLAN

A technician needs to configure a routing protocol for an internet-facing edge router. Which of the following routing protocols will the technician MOST likely use? A. BGP B. RIPv2 C. OSPF D. EIGRP

A. BGP

Which of the following should current network performance be compared against to determine network anomalies? A. Baseline B. Traffic analysis C. Packet capture D. Logs

A. Baseline

A technician is investigating a server performance issue. The technician has gathered the server utilization statistics. Which of the following should the technician use to determine which statistics are not in the normal range? A. Baseline review B. Vulnerability scan C. System life-cycle report D. Archiving logs

A. Baseline review

An administrator needs to connect two laptops directly to each other using 802. 11ac but does not have an AP available. Which of the following describes this configuration? A. Basic service set B. Extended service set C. Independent basic service set D. MU-MIMO

A. Basic service set

Which of the following physical security methods is the MOST effective to prevent tailgating? A. Biometrics in an access control vestibule B. IP cameras with motion detection C. Smart lockers with tamper protection D. Badge readers plus a PIN pad

A. Biometrics in an access control vestibule

A company is utilizing multifactor authentication for data center access. Which of the following is the MOST effective security mechanism against physical intrusions due to stolen credentials? A. Biometrics security hardware B. Access card readers C. Access control vestibule D. Motion detection cameras

A. Biometrics security hardware

An organization purchased an allocation of public IPv4 addresses. Instead of receiving the network address and subnet mask, the purchase paperwork indicates the allocation is a /28. This type of notation is referred to as: A. CIDR B. classful C. classless D. RFC1918

A. CIDR

A network administrator would like to enable NetFlow on a Layer 3 switch but is concerned about how the feature may impact the switch. Which of the following metrics should the administrator graph using SNMP to BEST measure the feature's impact? A. CPU usage B. Temperature C. Electrical consumption D. Bandwidth usage

A. CPU usage

A technician is configuring a wireless network and needs to ensure users agree to an AUP before connecting. Which of the following should be implemented to achieve this goal? A. Captive portal B. Geofencing C. Wireless client isolation D. Role-based access

A. Captive portal

An engineer recently decided to upgrade the firmware on a router. During the upgrade, the help desk received calls about a network outage, and a critical ticket was opened. The network manager would like to create a policy to prevent this from happening in the future. Which of the following documents should the manager create? A. Change management B. Incident response C. Standard operating procedure D. System life cycle

A. Change management

A technician discovers that multiple switches require a major update. Which of the following policies should be followed? A. Change management policy B. Remote access policy C. Acceptable use policy D. Memorandum of understanding

A. Change management policy

A network administrator is reviewing the network device logs on a syslog server. The messages are normal, but the time stamps on the messages are incorrect.Which of the following actions should the administrator take to ensure the log message time stamps are correct? A. Change the NTP settings on the network device. B. Change the time on the syslog server. C. Update the network device firmware. D. Adjust the timeout settings on the syslog server. E. Adjust the SSH settings on the network device.

A. Change the NTP settings on the network device.

A systems administrator has recently purchased and installed a large electronic signage screen for the company's parking garage. The screen's management software was installed on a server with a public IP address to allow remote management. The systems administrator is now troubleshooting an issue with the screen displaying unknown, random, and inappropriate messages. Which of the following is MOST effective in resolving this issue? A. Changing the management software's default credentials B. Disabling unnecessary services from the server and management software C. Changing the management software's default port D. Replacing the management software's self-signed certificate with a valid certificate

A. Changing the management software's default credentials

A technician is troubleshooting a client's report about poor wireless performance. Using a client monitor, the technician notes the following information: SSID Signal (RSSI) Channel Corporate -50 9 Corporate -69 10 Corporate -67 11 Corporate -63 6 Which of the following is MOST likely the cause of the issue? A. Channel overlap B. Poor signal C. Incorrect power settings D. Wrong antenna type

A. Channel overlap

A company just migrated its email service to a cloud solution. After the migration, two-thirds of the internal users were able to connect to their mailboxes, but the connection fails for the other one-third of internal users. Users working externally are not reporting any issues. The network administrator identifies the following output collected from an internal host: c:\user> nslookup newmail.company.comNon-Authoritative answer:Name: newmail.company.com -IPs: 3.219.13.186, 64.58.225.184, 184.168.131.243Which of the following verification tasks should the network administrator perform NEXT? A. Check the firewall ACL to verify all required IP addresses are included. B. Verify the required router PAT rules are properly configured. C. Confirm the internal DNS server is replying to requests for the cloud solution. D. Validate the cloud console to determine whether there are unlicensed requests.

A. Check the firewall ACL to verify all required IP addresses are included.

Which of the following types of connections would need to be set up to provide access from the internal network to an external network so multiple satellite offices can communicate securely using various ports and protocols? A. Client-to-site VPN B. Clientless VPN C. RDP D. Site-to-site VPN E. SSH

A. Client-to-site VPN

A network administrator needs to provide remote clients with access to an internal web application. Which of the following methods provides the HIGHEST flexibility and compatibility while encrypting only the connection to the web application? A. Clientless VPN B. Virtual desktop C. Virtual network computing D. mGRE tunnel

A. Clientless VPN

Which of the following is used to provide disaster recovery capabilities to spin up all critical devices using internet resources? A. Cloud site B. Hot site C. Cold site D. Warm site

A. Cloud site

A company wants to add a local redundant data center to its network in case of failure at its primary location. Which of the following would give the LEAST amount of redundancy for the company's network? A. Cold site B. Hot site C. Cloud site D. Warm site

A. Cold site

A network administrator installed a new data and VoIP network. Users are now experiencing poor call quality when making calls. Which of the following should the administrator do to increase VoIP performance? A. Configure a voice VLAN. B. Configure LACP on all VoIP phones. C. Configure PoE on the network. D. Configure jumbo frames on the network.

A. Configure a voice VLAN.

A medical building offers patients Wi-Fi in the waiting room. Which of the following security features would be the BEST solution to provide secure connections and keep the medical data protected? A. Isolating the guest network B. Securing SNMP C. MAC filtering D. Disabling unneeded switchports

A. Isolating the guest network

A network switch was installed to provide connectivity to cameras monitoring wildlife in a remote location. The organization is concerned that intruders could potentially leverage unattended equipment in the remote location to connect rogue devices and gain access to the organization's resources. Which of the following techniques would BEST address the concern? A. Configure port security using MAC filtering. B. Manually register the cameras on the switch address table. C. Activate PoE+ on the active switchports. D. Disable Neighbor Discovery Protocol on the switch.

A. Configure port security using MAC filtering.

A security administrator is trying to prevent incorrect IP addresses from being assigned to clients on the network. Which of the following would MOST likely prevent this and allow the network to continue to operate? A. Configuring DHCP snooping on the switch B. Preventing broadcast messages leaving the client network C. Blocking ports 67/68 on the client network D. Enabling port security on access ports Reveal Solution Discussion 1

A. Configuring DHCP snooping on the switch

200. A technician installed an 8-port switch in a user's office. The user needs to add a second computer in the office, so the technician connects both PCs to the switch and connects the switch to the wall jack. However, the new PC cannot connect to network resources. The technician then observes the following: ✑ The new computer does not get an IP address on the client's VLAN. ✑ Both computers have a link light on their NICs. ✑ The new PC appears to be operating normally except for the network issue. ✑ The existing computer operates normally. Which of the following should the technician do NEXT to address the situation? A. Contact the network team to resolve the port security issue. B. Contact the server team to have a record created in DNS for the new PC. C. Contact the security team to review the logs on the company's SIEM. D. Contact the application team to check NetFlow data from the connected switch.

A. Contact the network team to resolve the port security issue.

A technician is troubleshooting a report about network connectivity issues on a workstation. Upon investigation, the technician notes the workstation is showing anAPIPA address on the network interface. The technician verifies that the VLAN assignment is correct and that the network interface has connectivity. Which of the following is MOST likely the issue the workstation is experiencing? A. DHCP exhaustion B. A rogue DHCP server C. A DNS server outage D. An incorrect subnet mask

A. DHCP exhaustion

A network administrator wants to ensure sensitive data is not exfiltrated from the system electronically. Which of the following should be implemented? A. DLP B. AUP C. NDA D. SLA

A. DLP

An attacker targeting a large company was able to inject malicious A records into internal name resolution servers. Which of the following attack types was MOST likely used? A. DNS poisoning B. On-path C. IP spoofing D. Rogue DHCP

A. DNS poisoning

Which of the following layers of the OSI model has new protocols activated when a user moves from a wireless to a wired connection? A. Data link B. Network C. Transport D. Session

A. Data link

A network device needs to discover a server that can provide it with an IPv4 address. Which of the following does the device need to send the request to? A. Default gateway B. Broadcast address C. Unicast address D. Link local address

A. Default gateway

Users are reporting their network is extremely slow. The technician discovers pings to external host have excessive response times. However, internal pings to printers and other PCs have acceptable response times. Which of the following steps should the technician take NEXT? A. Determine if any network equipment was replaced recently B. Verify malware has not disabled the users' PC firewalls C. Replace users' network cables with known-good network cables D. Power cycle the web server

A. Determine if any network equipment was replaced recently

A network administrator is adding a new switch to the network. Which of the following network hardening techniques would be BEST to use once the switch is in production? A. Disable unneeded ports B. Disable SSH service C. Disable MAC filtering D. Disable port security

A. Disable unneeded ports

A company's primary ISP is experiencing an outage. However, the network administrator notices traffic continuing to flow through a secondary connection to the same ISP. Which of the following BEST describes this configuration? A. Diverse paths B. Load balancing C. Multipathing D. Virtual Router Redundancy Protocol

A. Diverse paths

A corporate client is experiencing global system outages. The IT team has identified multiple potential underlying causes throughout the enterprise. Each team member has been assigned an area to troubleshoot. Which of the following approaches is being used? A. Divide-and-conquer B. Top-to-bottom C. Bottom-to-top D. Determine if anything changed

A. Divide-and-conquer

A malicious user is using special software to perform an on-path attack. Which of the following best practices should be configured to mitigate this threat? A. Dynamic ARP inspection B. Role-based access C. Control plane policing D. MAC filtering

A. Dynamic ARP inspection

Which of the following protocols would enable a company to upgrade its internet connection by acquiring its own public IP prefixes and autonomous system number? A. EIGRP B. BGP C. IPv6 D. MPLS

A. EIGRP

Which of the following would be used to adjust resources dynamically for a virtual web server under variable loads? A. Elastic computing B. Scalable networking C. Hybrid deployment D. Multitenant hosting

A. Elastic computing

A technician wants to monitor and provide traffic segmentation across the network. The technician would like to assign each department a specific identifier. Which of the following will the technician MOST likely use? A. Flow control B. Traffic shaping C. VLAN tagging D. Network performance baselines

A. Flow control

A network technician is deploying mobile phones for a company's sales staff. Salespeople frequently travel nationally and internationally to meet with clients, and often have to roam or switch cellular providers. Which of the following standards is the BEST option to fit the requirements? A. GSM B. TDM C. CDMA D. PSTN E. MIMO

A. GSM

A network engineer is configuring wireless access for guests at an organization. Access to other areas in the organization should not be accessible to guests.Which of the following represents the MOST secure method to configure guest access to the wireless network? A. Guests should log into a separate wireless network using a captive portal B. Guests should log into the current wireless network using credentials obtained upon entering the facility C. The existing wireless network should be configured to allow guest access D. An additional wireless network should be configured to allow guest access

A. Guests should log into a separate wireless network using a captive portal

A network administrator is setting up a web-based application that needs to be continually accessible to the end users. Which of the following concepts wouldBEST ensure this requirement? A. High availability B. Snapshots C. NIC teaming D. Cold site

A. High availability

Which of the following protocols is widely used in large-scale enterprise networks to support complex networks with multiple routers and balance traffic load on multiple links? A. OSPF B. RIPv2 C. QoS D. STP

A. OSPF

A company's data center is hosted at its corporate office to ensure greater control over the security of sensitive data. During times when there are increased workloads, some of the company's non-sensitive data is shifted to an external cloud provider. Which of the following cloud deployment models does this describe? A. Hybrid B. Community C. Public D. Private

A. Hybrid

An employee working in a warehouse facility is experiencing interruptions in mobile applications while walking around the facility. According to a recent site survey, the WLAN comprises autonomous APs that are directly connected to the internet, providing adequate signal coverage. Which of the following is the BEST solution to improve network stability? A. Implement client roaming using an extended service deployment employing a wireless controller. B. Remove omnidirectional antennas and adopt a directional bridge. C. Ensure all APs of the warehouse support MIMO and Wi-Fi 4. D. Verify that the level of EIRP power settings is set to the maximum permitted by regulations.

A. Implement client roaming using an extended service deployment employing a wireless controller.

A user in a branch office reports that access to all files has been lost after receiving a new PC. All other users in the branch can access fileshares. The IT engineer who is troubleshooting this incident is able to ping the workstation from the branch router, but the machine cannot, ping the router. Which of the following is MOST likely the cause of the incident? A. Incorrect subnet mask B. Incorrect DNS server C. Incorrect IP class D. Incorrect TCP port

A. Incorrect subnet mask

A network administrator is troubleshooting the communication between two Layer 2 switches that are reporting a very high runt count. After trying multiple ports on both switches, the issue persists. Which of the following should the network administrator perform to resolve the issue? A. Increase the MTU size on both switches. B. Recertify the cable between both switches. C. Perform a factory reset on both switches. D. Enable debug logging on both switches.

A. Increase the MTU size on both switches.

A security engineer is installing a new IDS on the network. The engineer has asked a network administrator to ensure all traffic entering and leaving the router interface is available for the IDS. Which of the following should the network administrator do? A. Install a network tap for the IDS. B. Configure ACLs to route traffic to the IDS. C. Install an additional NIC into the IDS. D. Install a loopback adapter for the IDS. E. Add an additional route on the router for the IDS.

A. Install a network tap for the IDS.

A network administrator is installing a new server in the datacenter. The administrator is concerned the amount of traffic generated will exceed 1GB, and higher- throughput NICs are not available for installation. Which of the following is the BEST solution for this issue? A. Install an additional NIC and configure LACP B. Remove some of the applications from the server C. Configure the NIC to use full duplex D. Configure port mirroring to send traffic to another server E. Install a SSD to decrease data processing time

A. Install an additional NIC and configure LACP

A company has hundreds of nodes on a single subnet and has decided to implement VLANs. Which of the following BEST describes the benefit of this approach? A. It segments broadcast domains in the network infrastructure B. It provides a faster port to all servers C. It provides multiple collision domains on one switchport D. It provides multiple broadcast domains within a single collision domain Reveal Solution Discussion 3

A. It segments broadcast domains in the network infrastructure

A voice engineer is troubleshooting a phone issue. When a call is placed, the caller hears echoes of the receiver's voice. Which of the following are the causes of this issue? (Choose two.) A. Jitter B. Speed mismatch C. QoS misconfiguration D. Protocol mismatch E. CRC errors F. Encapsulation errors

A. Jitter C. QoS misconfiguration

At which of the following layers of the OSI model will the administrator MOST likely start to troubleshoot when a network is experiencing a number of CRC errors? A. Layer 1 B. Layer 2 C. Layer 3 D. Layer 4 E. Layer 5 F. Layer 6 G. Layer 7

A. Layer 1

A technician is diagnosing an issue with a new T1 connection. The router is configured, the cable is connected, but the T1 is down. To verify the configuration of the router, which of the following tools should the technician use? A. Loopback adapter B. Cable tester C. Tone generator D. Multimeter

A. Loopback adapter

Which of the following would allow a device to maintain the same IP address lease based on the physical address of the network card? A. MAC address reservation B. Static IP address C. IP address exclusion D. Custom DNS server entry

A. MAC address reservation

Which of the following will reduce routing table lookups by performing packet forwarding decisions independently of the network layer header? A. MPLS B. mGRE C. EIGRP D. VRRP

A. MPLS

A Fortune 500 firm is deciding on the kind of data center equipment to install given its five-year budget outlook. The Chief Information Officer is comparing equipment based on the life expectancy of different models. Which of the following concepts BEST represents this metric? A. MTBF B. MTTR C. RPO D. RTO

A. MTBF

Which of the following topologies requires the MOST connections when designing a network? A. Mesh B. Star C. Bus D. Ring

A. Mesh

After a firewall replacement, some alarms and metrics related to network availability stopped updating on a monitoring system relying on SNMP. Which of the following should the network administrator do FIRST? A. Modify the device's MIB on the monitoring system. B. Configure syslog to send events to the monitoring system. C. Use port mirroring to redirect traffic to the monitoring system. D. Deploy SMB to transfer data to the monitoring system.

A. Modify the device's MIB on the monitoring system.

A network technician at a university is assisting with the planning of a simultaneous software deployment to multiple computers in one classroom in a building.Which of the following would be BEST to use? A. Multicast B. Anycast C. Unicast D. Broadcast

A. Multicast

An administrator wants to increase the availability of a server that is connected to the office network. Which of the following allows for multiple NICs to share a single IP address and offers maximum performance while providing fault tolerance in the event of a NIC failure? A. Multipathing B. Spanning Tree Protocol C. First Hop Redundancy Protocol D. Elasticity

A. Multipathing

Which of the following must be functioning properly in order for a network administrator to create an accurate timeline during a troubleshooting process? A. NTP B. IP helper C. Syslog D. MySQL Reveal Solution Discussion 2 Question #330

A. NTP

A penetration tester has been tasked with reconnaissance to determine which ports are open on the network. Which of the following tasks should be done FIRST?(Choose two.) A. Network scan B. Banner grab C. Tracert D. DHCP server check E. Brute-force attack

A. Network scan C. Tracert

Which of the following options represents the participating computers in a network? A. Nodes B. CPUs C. Servers D. Clients

A. Nodes

As part of a transition from a static to a dynamic routing protocol on an organization's internal network, the routing protocol must support IPv4 and VLSM. Based on those requirements, which of the following should the network administrator use? (Choose two.) A. OSPF B. IS-IS C. RIPv1 D. BGP E. VRRP

A. OSPF B. IS-IS

A technician is troubleshooting a point-to-point fiber-optic connection. The technician is at a remote site and has no connectivity to the main site. The technician confirms the switch and the send-and-receive light levels are within acceptable range. Both fiber SFPs are confirmed as working. Which of the following should the technician use to reveal the location of the fault? A. OTDR B. Light meter C. Tone generator D. CSU/DSU

A. OTDR

A technician wants to install a WAP in the center of a room that provides service in a radius surrounding a radio. Which of the following antenna types should theAP utilize? A. Omni B. Directional C. Yagi D. Parabolic

A. Omni

A network engineer is designing a new network for a remote site. The remote site consists of ten desktop computers, ten VoIP phones, and two network printers.In addition, two of the desktop computers at the remote site will be used by managers who should be on a separate network from the other eight computers. Which of the following represents the BEST configuration for the remote site? A. One router connected to one 24-port switch configured with three VLANS: one for the manager's computers and printer, one for the other computers and printer, and one for the VoIP phones B. Two routers with each router connected to a 12-port switch, with a firewall connected to the switch connected to the manager's desktop computers, VoIP phones, and printer C. One router connected to one 12-port switch configured for the manager's computers, phones, and printer, and one 12-port switch configured for the other computers, VoIP phones, and printer D. One router connected to one 24-port switch configured with two VLANS: one for the manager's computers, VoIP phones, and printer, and one for the other computers, VoIP phones, and printer

A. One router connected to one 24-port switch configured with three VLANS: one for the manager's computers and printer, one for the other computers and printer, and one for the VoIP phones

A company needs a redundant link to provide a channel to the management network in an incident response scenario. Which of the following remote access methods provides the BEST solution? A. Out-of-band access B. Split-tunnel connections C. Virtual network computing D. Remote desktop gateways

A. Out-of-band access

A network technician is diagnosing a time-out issue generated from an end user's web browser. The web browser issues standard HTTP get and post commands to interact with the website. Given this information, the technician would like to analyze the entire TCP handshake of the HTTP requests offline. Which of the following tools would allow the technician to view the handshake? A. Packet analyzer B. Port analyzer C. SNMP traps D. Spectrum analyzer

A. Packet analyzer

A contractor is setting up and configuring conference rooms for a convention. The contractor sets up each room in the conference center to allow wired Internet access going to individual tables. The contractor measured the distance between the hotel's patch panel to the jack, and the distance is within Cat 5e specifications. The contractor is concerned that the room will be out of specification if cables are run in each room from the wall jacks. Which of the following actions should the contractor take to ensure the cable runs meet specifications and the network functions properly? A. Place a switch at the hotel's patch panel for connecting each room's cables B. Place a switch on each table to ensure strong connectivity C. Place repeaters between the patch panel and the rooms D. place a switch at the wall jack and run the cables in the room from there

A. Place a switch at the hotel's patch panel for connecting each room's cables

A technician removes an old PC from the network and replaces it with a new PC that is unable to connect to the LAN. Which of the following is MOST likely the cause of the issue? A. Port security B. Port tagging C. Port aggregation D. Port mirroring

A. Port security

The Chief Information Officer (CIO) has noticed the corporate wireless signal is available in the parking lot. Management requests that the wireless network be changed so it is no longer accessible in public areas, without affecting the availability inside the building. Which of the following should be changed on the network? A. Power levels B. Overcapacity C. Distance limitations D. Channel overlap

A. Power levels

301. An engineer needs to restrict the database servers that are in the same subnet from communicating with each other. The database servers will still need to communicate with the application servers in a different subnet. In some cases, the database servers will be clustered, and the servers will need to communicate with other cluster members. Which of the following technologies will be BEST to use to implement this filtering without creating rules? A. Private VLANs B. Access control lists C. Firewalls D. Control plane policing

A. Private VLANs

A network client is trying to connect to the wrong TCP port. Which of the following responses would the client MOST likely receive? A. RST B. FIN C. ICMP Time Exceeded D. Redirect

A. RST

Which of the following security mechanisms dynamically assigns a Layer 2 address and restricts traffic only to that Layer 2 address? A. Sticky MAC B. 802.1x C. ACL D. NAC

A. Sticky MAC

A company has completed construction of a new datacenter, and the IT staff is now planning to relocate all server and network equipment from the old site to the new site. Which of the following should the IT staff reference to determine the location of the equipment being moved? A. Rack diagrams B. Network topology C. Standard operating procedures D. Wiring documentation

A. Rack diagrams

During a risk assessment, which of the following should be considered when planning to mitigate high CPU utilization of a firewall? A. Recovery time objective B. Uninterruptible power supply C. NIC teaming D. Load balancing

A. Recovery time objective

Which of the following would be used to forward requests and replies between a DHCP server and client? A. Relay B. Lease C. Scope D. Range

A. Relay

An administrator would like to allow Windows clients from outside the office to access workstations without using third-party software. Which of the following access methods would meet this requirement? A. Remote desktop gateway B. Split tunnel C. Site-to-site VPN D. VNC

A. Remote desktop gateway

A network administrator has a monitoring system in place that is currently polling hundreds of network devices at regular intervals. The continuous polling is causing high CPU utilization on the server. Which of the following tasks should the administrator perform to resolve the CPU issue while maintaining full monitoring capabilities? A. Remove SNMP polling and configure SNMP traps on each network device B. Remove SNMP polling and implement snmpwalk on each network device C. Upgrade SNMP to the latest version to mitigate vulnerabilities D. Modify SNMP polling to poll only during business hours

A. Remove SNMP polling and configure SNMP traps on each network device

Network users reported that a recent firmware upgrade to a firewall did not resolve the issue that prompted the upgrade. Which of the following should be performed NEXT? A. Reopen the service ticket, request a new maintenance window, and roll back to the anterior firmware version. B. Gather additional information to ensure users' concerns are not been caused by a different issue with similar symptoms. C. Employ a divide-and-conquer troubleshooting methodology by engaging the firewall vendor's support. D. Escalate the issue to the IT management team in order to negotiate a new SLA with the user's manager.

A. Reopen the service ticket, request a new maintenance window, and roll back to the anterior firmware version.

After a server outage, a technician discovers that a physically damaged fiber cable appears to be the problem. After replacing the cable, the server will still not connect to the network. Upon inspecting the cable at the server end, the technician discovers light can be seen through one of the two fiber strands. Which of the following should the technician do FIRST to reconnect the server to the network? A. Reverse the fiber strands of the cable and reconnect them to the server B. Use a TDR to test both strands of a new replacement cable prior to connecting it to the server C. Replace the server's single-mode fiber cable with multimode fiber D. Move the fiber cable to different port on the switch where both strands function

A. Reverse the fiber strands of the cable and reconnect them to the server

A network technician receives a call from a user who is experiencing network connectivity issues. The network technician questions the user and learns the user brought in a personal wired router to use multiple computers and connect to the network. Which of the following has the user MOST likely introduced to the network? A. Rogue DHCP server B. Evil twin C. VLAN mismatch D. Honeypot

A. Rogue DHCP server

Which of the following issues are present with RIPv2? (Choose two.) A. Route poisoning B. Time to converge C. Scalability D. Unicast E. Adjacent neighbors F. Maximum transmission unit

A. Route poisoning B. Time to converge

A help desk technician is concerned that a client's network cable issues may be causing intermittent connectivity. Which of the following would help the technician determine if this is the issue? A. Run the show interface command on the switch. B. Run the traceroute command on the server. C. Run iperf on the technician's desktop. D. Ping the client's computer from the router. E. Run a port scanner on the client's IP address.

A. Run the show interface command on the switch.

Which of the following topologies is designed to fully support applications hosted in on-premises data centers, public or private clouds, and SaaS services? A. SDWAN B. MAN C. PAN D. MPLS

A. SDWAN

A network technician is considering opening ports on the firewall for an upcoming VoIP PBX implementation. Which of the following protocols is the technicianMOST likely to consider? (Choose three.) A. SIP B. NTP C. H.323 D. SMB E. ICMP F. RTP G. IPSec H. RDP

A. SIP C. H.323 F. RTP

A network technician wants to remotely and securely access the desktop of a Linux workstation. The desktop is running remote control software without encryption. Which of the following should the technician use to secure the connection? A. SSH in tunnel mode B. RDP set to console connection C. EAP-PEAP D. SFTP

A. SSH in tunnel mode

A network technician is implementing a solution that will allow end users to gain access to multiple applications after logging on. Which of the following authentication methods would allow this type of access? A. SSO B. LDAP C. EAP D. TACACS+

A. SSO

ich of the following is most likely to have the HIGHEST latency while being the most accessible? A. Satellite B. DSL C. Cable D. 4G

A. Satellite

300. A network administrator is setting up a new phone system and needs to define the location where VoIP phones can download configuration files. Which of the following DHCP services can be used to accomplish this task? A. Scope options B. Exclusion ranges C. Lease time D. Relay

A. Scope options

A technician is consolidating a topology with multiple SSIDs into one unique SSID deployment. Which of the following features will be possible after this new configuration? A. Seamless roaming B. Basic service set C. WPA D. MU-MIMO

A. Seamless roaming

A customer wants to log in to a vendor's server using a web browser on a laptop. Which of the following would require the LEAST configuration to allow encrypted access to the server? A. Secure Sockets Layer B. Site-to-site VPN C. Remote desktop gateway D. Client-to-site VPN

A. Secure Sockets Layer

Which of the following is the MOST appropriate use case for the deployment of a clientless VPN? A. Secure web access to internal corporate resources. B. Upgrade security via the use of an NFV technology. C. Connect two datacenters across the Internet. D. Increase VPN availability by using a SDWAN technology.

A. Secure web access to internal corporate resources.

Two users on a LAN establish a video call. Which of the following OSI model layers ensures the initiation, coordination, and termination of the call? A. Session B. Physical C. Transport D. Data link

A. Session

Which of the following OSI model layers is where conversations between applications are established, coordinated, and terminated? A. Session B. Physical C. Presentation D. Data link

A. Session

A new global ISP needs to connect from central offices in North America to the United Kingdom. Which of the following would be the BEST cabling solution for this project? A. Single-mode B. Coaxial C. Cat 6a D. Twinaxial

A. Single-mode

A network technician is troubleshooting wireless network issues in a crowded office complex and suspects there is interference from nearby wireless networks.Which of the following should the technician perform to discover possible interference? A. Site survey B. Vulnerability scanning C. Wardriving D. Checking logical diagram E. Bandwidth test

A. Site survey

Users are reporting intermittent WiFi connectivity in specific parts of a building. Which of the following should the network administrator check FIRST when troubleshooting this issue? (Choose two.) A. Site survey B. EIRP C. AP placement D. Captive portal E. SSID assignment F. AP association time

A. Site survey C. AP placement

A corporation is looking for a method to secure all traffic between a branch office and its data center in order to provide a zero-touch experience for all staff members who work there. Which of the following would BEST meet this requirement? A. Site-to-site VPN B. VNC C. Remote desktop gateway D. Virtual LANs

A. Site-to-site VPN

An administrator would like to create a fault-tolerant ring between three switches within a Layer 2 network. Which of the following Ethernet features should the administrator employ? A. Spanning Tree Protocol B. Open Shortest Path First C. Port mirroring D. An interior gateway protocol

A. Spanning Tree Protocol

A network technician receives a report about a performance issue on a client PC that is connected to port 1/3 on a network switch. 1/1 Client PC connected full 1000 1/2 Client PC Connected full 1000 1/3 Client PC Connected Full 10 The technician observes the following configuration output from the switch:Which of the following is a cause of the issue on port 1/3? A. Speed B. Duplex C. Errors D. VLAN

A. Speed

Several employees have expressed concerns about the company monitoring their internet activity when they are working from home. The company wants to mitigate this issue and reassure employees that their private internet activity is not being monitored. Which of the following would satisfy company and employee needs? A. Split tunnel B. Full tunnel C. Site-to-site tunnel D. Virtual desktop

A. Split tunnel

Which of the following VPN configurations should be used to separate Internet and corporate traffic? A. Split-tunnel B. Remote desktop gateway C. Site-to-site D. Out-of-band management

A. Split-tunnel

A network administrator needs to configure a server to use the most accurate NTP reference available. Which of the following NTP devices should the administrator select? A. Stratum 1 B. Stratum 2 C. Stratum 3 D. Stratum 4

A. Stratum 1

An organization set up its offices so that a desktop is connected to the network through a VoIP phone. The VoIP vendor requested that voice traffic be segmented separately from non-voice traffic. Which of the following would allow the organization to configure multiple devices with network isolation on a single switch port? A. Subinterfaces B. Link aggregation C. Load balancing D. Tunneling

A. Subinterfaces

Which of the following connectors and terminations are required to make a Cat 6 cable that connects from a PC to a non-capable MDIX switch? (Choose two.) A. TIA-568-A - TIA-568-B B. TIA-568-B - TIA-568-B C. RJ11 D. RJ45 E. F-type

A. TIA-568-A - TIA-568-B B. TIA-568-B - TIA-568-B

A technician is planning a remote-access strategy to manage routers and switches on a dedicated management network. The management network is segregated from the production network and uses site-to-site VPN connections. Some of the equipment does not support encryption. Which of the following should the technician choose that all the equipment would support? A. Telnet B. SSL C. SSH D. IPSec

A. Telnet

A network technician is troubleshooting an issue and has established a theory of probable cause. Which of the following steps should the network technician takeNEXT? A. Test the possible solution B. Question the users C. Determine what has changed D. Document the theory

A. Test the possible solution

A computer lab on a campus network was recently reconfigured using recycled network cables. One of the 24 computers in the lab is unable to connect to the network after the upgrade. A network technician successfully uses the cable in question to connect directly to another computer. Which of the following is MOST likely the issue with the cable? A. The cable is a crossover cable B. The cable is a rollover cable C. The cable has bent pins D. The cable is a Cat 5 cable

A. The cable is a crossover cable

A network administrator is getting reports of some internal users who cannot connect to network resources. The users state they were able to connect last week, but not today. No changes have been configured on the network devices or server during the last few weeks. Which of the following is the MOST likely cause of the issue? A. The client DHCP scope is fully utilized. B. The wired network is experiencing electrical interference. C. The captive portal is down and needs to be restarted. D. SNMP traps are being received. E. The packet counter on the router interface is high.

A. The client DHCP scope is fully utilized.

A network administrator is reviewing the following metrics from a network management system regarding a switchport. The administrator suspects an issue because users are calling in regards to the switch port's performance: Metric Value Uptime 201 days, 3 hours, 18 minutes MDIX On CRCs 0 Giants 2508 Output queue maximum 40 Packets input 136208849 Packets output 64458087024 Based on the information in the chart above, which of the following is the cause of these performance issues? A. The connected device is exceeding the configured MTU. B. The connected device is sending too many packets. C. The switchport has been up for too long. D. The connected device is receiving too many packets. E. The switchport does not have enough CRCs.

A. The connected device is exceeding the configured MTU.

A network technician is investigating an issue with handheld devices in a warehouse. Devices have not been connecting to the nearest APs, but they have been connecting to an AP on the far side of the warehouse. Which of the following is the MOST likely cause of this issue? A. The nearest APs are configured for 802.11g. B. An incorrect channel assignment is on the nearest APs. C. The power level is too high for the AP on the far side. D. Interference exists around the AP on the far side.

A. The nearest APs are configured for 802.11g.

A network technician receives a spool of Cat 6a cable and is asked to build several cables for a new set of Ethernet runs between devices. Which of the following tools are MOST likely needed to complete the task? (Choose three.) A. Wire stripper B. Cable crimper C. RJ-11 connectors D. RJ-45 connectors E. Multimeter F. Punchdown tool G. Tone generator

A. Wire stripper B. Cable crimper D. RJ-45 connectors

A network engineer receives the following when connecting to a switch to configure a port: telnet 10.1.200.1Connecting to 10.1.200.1..Could not open connection to the host, on port 23: Connect failed.Which of the following is the MOST likely cause for the failure? A. The network engineer is using the wrong protocol. B. The network engineer does not have permission to configure the device. C. SNMP has been secured with an ACL. D. The switchport the engineer is trying to configure is down.

A. The network engineer is using the wrong protocol.

A network administrator decided to use SLAAC in an extensive IPv6 deployment to alleviate IP address management. The devices were properly connected into the LAN but autoconfiguration of the IP address did not occur as expected. Which of the following should the network administrator verify? A. The network gateway is configured to send router advertisements. B. A DHCP server is present on the same broadcast domain as the clients. C. The devices support dual stack on the network layer. D. The local gateway supports anycast routing.

A. The network gateway is configured to send router advertisements.

Two network technicians are installing a fiber-optic link between routers. The technicians used a light meter to verify the correct fibers. However, when they connect the fibers to the router interface, the link does not connect. Which of the following would explain the issue? (Choose two.) A. They used the wrong type of fiber transceiver. B. Incorrect TX/RX polarity exists on the link. C. The connection has duplexing configuration issues. D. Halogen light fixtures are causing interference. E. One of the technicians installed a loopback adapter. F. The RSSI was not strong enough on the link.

A. They used the wrong type of fiber transceiver. B. Incorrect TX/RX polarity exists on the link.

A single PRI can deliver multiple voice calls simultaneously using which of the following Layer 1 technologies? A. Time division multiplexing B. Analog circuit switching C. CSMA/CD D. Time division spread spectrum

A. Time division multiplexing

A network technician is troubleshooting an end-user connectivity problem. The network technician goes to the appropriate IDF but is unable to identify the appropriate cable due to poor labeling. Which of the following should the network technician use to help identify the appropriate cable? A. Tone generator B. Multimeter C. OTDR D. Loopback adapter

A. Tone generator

Which of the following is the MOST cost-effective alternative that provides proper cabling and supports gigabit Ethernet devices? A. Twisted cable with a minimum Cat 5e certification B. Multimode fiber with an SC connector C. Twinaxial cabling using an F-type connector D. Cable termination using TIA/EIA-568-B

A. Twisted cable with a minimum Cat 5e certification

An engineer is gathering data to determine the effectiveness of UPSs in use at remote retail locations. Which of the following statistics can the engineer use to determine the availability of the remote network equipment? A. Uptime B. NetFlow baseline C. SNMP traps D. Interface statistics

A. Uptime

A telecommunications provider has just deployed a new OC-12 circuit at a customer site. While the circuit showed no errors from the provider end to the customer's demarcation point, a network administrator is trying to determine the cause of dropped packets and errors on the circuit. Which of the following should the network administrator do to rule out any problems at Layer 1? (Choose two.) A. Use a loopback at the demark and router, and check for a link light B. Use an OTDR to validate the cable integrity C. Use a pinout tester to validate the cable integrity D. Use a multimeter to validate the cable integrity E. Check for any devices that may be causing EMI on the cable F. Clean the cables to be sure they are free of dust and debris

A. Use a loopback at the demark and router, and check for a link light B. Use an OTDR to validate the cable integrity

Which of the following is a valid and cost-effective solution to connect a fiber cable into a network switch without available SFP ports? A. Use a media converter and a UTP cable B. Install an additional transceiver module and use GBICs C. Change the type of connector from SC to F-type D. Use a loopback adapter to make the connection

A. Use a media converter and a UTP cable

A network technician notices the site-to-site VPN and Internet connection have not come back up at a branch office after a recent power outage. Which of the following is an out-of-band method the technician would MOST likely utilize to check the branch office's router status? A. Use a modem to console into the router B. Walk a user through troubleshooting the connection C. Travel to the branch office D. Hire a contractor to go on-site

A. Use a modem to console into the router

Which of the following would be the BEST choice to connect branch sites to a main office securely? A. VPN headend B. Proxy server C. Bridge D. Load balancer

A. VPN headend

A network administrator is trying to add network redundancy for the server farm. Which of the following can the network administrator configure to BEST provide this capability? A. VRRP B. DNS C. UPS D. RPO

A. VRRP

A network technician has determined the cause of a network disruption. Which of the following is the NEXT step for the technician to perform? A. Validate the findings in a top-to-bottom approach. B. Duplicate the issue, if possible. C. Establish a plan of action to resolve the issue. D. Document the findings and actions.

A. Validate the findings in a top-to-bottom approach.

Which of the following would be the MOST cost-effective recovery solution for a company's lower-priority applications? A. Warm site B. Cloud site C. Hot site D. Cold site

A. Warm site

Which of the following devices is used to configure and centrally manage access points installed at different locations? A. Wireless controller B. Load balancer C. Proxy server D. VPN concentrator

A. Wireless controller

Which of the following provides the ability to deploy consistent access point configurations from a central location? A. Wireless controller B. AAA server C. WiFi-protected setup D. Proxy server E. VPN concentrator

A. Wireless controller

ARP spoofing would normally be a part of: A. an on-path attack. B. DNS poisoning. C. a DoS attack. D. a rogue access point.

A. an on-path attack.

A network administrator wants to test the throughput of a new metro Ethernet circuit to verify that its performance matches the requirements specified in the SLA.Which of the following would BEST help measure the throughput? A. iPerf B. Ping C. NetFlow D. Netstat

A. iPerf

A technician needs to configure a Linux computer for network monitoring. The technician has the following information: linux computer details: Interface IP address Mac Address etho 10.1.2.24 A1:B2:C3:F4:E5:D6 Switch mirror port details: Interface IP address Mac Address eth1 10.1.2.3 A1:B2:C3:D4:E5:F6 A. ifconfig ecth0 promisc B. ifconfig eth1 up C. ifconfig etho 10.1.2.3 D. ifconfig eth1 hw ether A1:B2:C3:D4:E5:F6

A. ifconfig ecth0 promisc

A technician must determine if a web page user's visits are connecting to a suspicious website's IP address in the background. Which of the following tools would provide the information on TCP connections? A. netstat B. tracert C. arp D. ipconfig E. route

A. netstat

An IT administrator received an assignment with the following objectives: ✑ Conduct a total scan within the company's network for all connected hosts. ✑ Detect all the types of operating systems running on all devices. ✑ Discover all services offered by hosts on the network. ✑ Find open ports and detect security risks. Which of the following command-line tools can be used to achieve these objectives? A. nmap B. arp C. netstat D. tcpdump

A. nmap

The process of attempting to exploit a weakness in a network after being given permission by the company is known as: A. penetration testing B. vulnerability scanning C. reconnaissance D. social engineering

A. penetration testing

A technician is trying to determine whether an LACP bundle is fully operational. Which of the following commands will the technician MOST likely use? A. show interface B. show config C. show route D. show arp

A. show interface

Users are reporting Internet connectivity issues. The network administrator wants to determine if the issues are internal to the company network or if there is an issue with the ISP. Which of the following tools should be used to BEST determine where the outage is occurring? A. traceroute B. ping C. nslookup D. netstat

A. traceroute

A network administrator is reviewing interface errors on a switch. Which of the following indicates that a switchport is receiving packets in excess of the configuredMTU? A. CRC errors B. Giants C. Runts D. Flooding

B. Giants

Which of the following is the number of broadcast domain that are created when using an unmanaged 12-port switch? A. 0 B. 1 C. 2 D. 6 E. 12

B. 1

During a recent security audit, a contracted penetration tester discovered the organization uses a number of insecure protocols. Which of the following ports should be disallowed so only encrypted protocols are allowed? (Choose two.) A. 22 B. 23 C. 69 D. 443 E. 587 F. 8080

B. 23 C. 69

A junior network technician is setting up a new email server on the company network. Which of the following default ports should the technician ensure is open on the firewall so the new email server can relay email? A. 23 B. 25 C. 110 D. 143

B. 25

A technician is installing the Wi-Fi infrastructure for legacy industrial machinery at a warehouse. The equipment only supports 802.11a and 802.11b standards. Speed of transmission is the top business requirement. Which of the following is the correct maximum speed for this scenario? A. 11Mbps B. 54Mbps C. 128Mbps D. 144Mbps

B. 54Mbps

network administrator is given the network 80.87.78.0/26 for specific device assignments. Which of the following describes this network? A. 80.87.78.0 - 80.87.78.14 B. 80.87.78.0 - 80.87.78.110 C. 80.87.78.1 - 80.87.78.62 D. 80.87.78.1 - 80.87.78.158

B. 80.87.78.0 - 80.87.78.110

A network administrator is planning a WLAN for a soccer stadium and was advised to use MU-MIMO to improve connection performance in high-density areas.The project requires compatibility with clients connecting using 2.4GHz or 5GHz frequencies. Which of the following would be the BEST wireless standard for this project? A. 802.11ac B. 802.11ax C. 802.11g D. 802.11n

B. 802.11ax

A network administrator would like to purchase a device that provides access ports to endpoints and has the ability to route between networks.Which of the following would be BEST for the administrator to purchase? A. An IPS B. A Layer 3 switch C. A router D. A wireless LAN controller

B. A Layer 3 switch

Which of the following is used to elect an STP root? A. A bridge ID B. A bridge protocol data unit C. Interface port priority D. A switch's root port

B. A bridge protocol data unit

A technician is connecting a Cat 6 Ethernet cable to a device that only has LC ports. Which of the following will the technician MOST likely use to accomplish this task? A. A bridge B. A media converter C. A repeater D. A router

B. A media converter

Which of the following use cases would justify the deployment of an mGRE hub-and-spoke topology? A. An increase in network security using encryption and packet encapsulation B. A network expansion caused by an increase in the number of branch locations to the headquarters C. A mandatory requirement to increase the deployment of an SDWAN network D. An improvement in network efficiency by increasing the useful packet payload

B. A network expansion caused by an increase in the number of branch locations to the headquarters

A network technician needs to determine the IPv6 address of a malicious website. Which of the following record types would provide this information? A. A B. AAAA C. CNAME D. PTR

B. AAAA

A network team is getting reports that air conditioning is out in an IDF. The team would like to determine whether additional network issues are occurring. Which of the following should the network team do? A. Confirm that memory usage on the network devices in the IDF is normal. B. Access network baseline data for references to an air conditioning issue. C. Verify severity levels on the corporate syslog server. D. Check for SNMP traps from a network device in the IDF. E. Review interface statistics looking for cyclic redundancy errors.

B. Access network baseline data for references to an air conditioning issue

A network technician needs to install security updates on several switches on the company's network. The management team wants this completed as quickly and efficiently as possible. Which of the following should the technician do to perform the updates? A. Upload the security update onto each switch using a terminal emulator and a console cable. B. Configure a TFTP server, SSH into each device, and perform the update. C. Replace each old switch with new switches that have the updates already performed. D. Connect a USB memory stick to each switch and perform the update.

B. Configure a TFTP server, SSH into each device, and perform the update.

Which of the following is the physical security mechanism that would MOST likely be used to enter a secure site? A. A landing page B. An access control vestibule C. A smart locker D. A firewall

B. An access control vestibule

Due to concerns around single points of failure, a company decided to add an additional WAN to the network. The company added a second MPLS vendor to the current MPLS WAN and deployed an additional WAN router at each site. Both MPLS providers use OSPF on the WAN network, and EIGRP is run internally. The first site to go live with the new WAN is successful, but when the second site is activated significant network issues occur. Which of the following is the MOST likely cause for the WAN instability? A. A CDP neighbor has changed B. Asymmetrical routing C. A switching loop D. An incorrect IP address

B. Asymmetrical routing

Several end users viewing a training video report seeing pixelated images while watching. A network administrator reviews the core switch and is unable to find an immediate cause. Which of the following BEST explains what is occurring? A. Jitter B. Bandwidth C. Latency D. Giants

B. Bandwidth

A company has contracted with an outside vendor to perform a service that will provide hardware, software, and procedures in case of a catastrophic failure of the primary datacenter. The Chief Information Officer (CIO) is concerned because this contract does not include a long-term strategy for extended outages. Which of the following should the CIO complete? A. Disaster recovery plan B. Business continuity plan C. Service level agreement D. First responder training

B. Business continuity plan

A Wi-Fi network was originally configured to be able to handle interference from a microwave oven. The microwave oven was recently removed from the office. Now the network administrator wants to optimize the system to maximize the range of the signal. The main sources of signal degradation are the numerous cubicles and wooden walls between the WAP and the intended destination. Which of the following actions should the administrator take? A. Implement CDMA. B. Change from omni to directional. C. Change the SSID. D. Change the frequency.

B. Change from omni to directional.

The following DHCP scope was configured for a new VLAN dedicated to a large deployment of 325 IoT sensors: DHCP network scope : 10.10.0.0/24 Exclusion range: 10.10.10.1-.10.10.10.10 Gateway: 10.10.0.1 DNS: 10.10.0.2 DHCP option 66(TFTP): 10.10.10.4 DHCP option 4(NTP): 10.10.10.5 The first 244 IoT sensors were able to connect to the TFTP server, download the configuration file, and register to an IoT management system. The other sensors are being shown as offline. Which of the following should be performed to determine the MOST likely cause of the partial deployment of the sensors? A. Check the gateway connectivity to the TFTP server. B. Check the DHCP network scope. C. Check whether the NTP server is online. D. Check the IoT devices for a hardware failure.

B. Check the DHCP network scope.

A systems administrator is running a VoIP network and is experiencing jitter and high latency. Which of the following would BEST help the administrator determine the cause of these issues? A. Enabling RADIUS on the network B. Configuring SNMP traps on the network C. Implementing LDAP on the network D. Establishing NTP on the network

B. Configuring SNMP traps on the network

A company is moving to a new building designed with a guest waiting area that has existing network ports. Which of the following practices would BEST secure the network? A. Ensure all guests sign an NDA. B. Disable unneeded switchports in the area. C. Lower the radio strength to reduce Wi-Fi coverage in the waiting area. D. Enable MAC filtering to block unknown hardware addresses.

B. Disable unneeded switchports in the area.

An ISP technician gets a call from a business that just changed equipment but can no longer connect to the Internet. The technician checks the ARP table on theISP switch, and there is no corresponding MAC address present. Instead, the entry is `Incomplete`. Which of the following could cause this condition? A. VLAN mismatch B. Duplex/Speed mismatch C. Duplicate IP address D. TX/RX reverse

B. Duplex/Speed mismatch

A network technician has discovered a rogue access point placed under an empty cubicle desk. Which of the following should the technician perform to ensure another cannot be placed on the network? A. Disable unused ports on switches B. Enable DHCP guard to detect rogue servers C. Configure WPA2 on all access points D. Use TACACS+ authentication

B. Enable DHCP guard to detect rogue servers

Which of the following is the NEXT step to perform network troubleshooting after identifying an issue? A. Implement a solution. B. Establish a theory. C. Escalate the issue. D. Document the findings.

B. Establish a theory.

A network security engineer locates an unapproved wireless bridge connected to the corporate LAN that is broadcasting a hidden SSID, providing unauthenticated access to internal resources. Which of the following types of attacks BEST describes this finding? A. Rogue access point B. Evil twin C. ARP spoofing D. VLAN hopping

B. Evil twin

Which of the following types of attacks can be used to gain credentials by setting up rogue APs with identical corporate SSIDs? A. VLAN hopping B. Evil twin C. DNS poisoning D. Social engineering

B. Evil twin

A company is deploying a SAN at headquarters and a branch office 1,000mi (1,609km) away that will access small amounts of data. Which of the following types of connections would be MOST cost effective to implement? A. iSCSI B. FCoE C. Ethernet D. FC

B. FCoE

A technician logs onto a system using Telnet because SSH is unavailable. SSH is enabled on the target device, and access is allowed from all subnets. The technician discovers a critical step was missed. Which of the following would allow SSH to function properly? A. Perform file hashing B. Generate new keys C. Update firmware D. Change default credentials

B. Generate new keys

A network administrator is investigating a network event that is causing all communication to stop. The network administrator is unable to use SSH to connect to the switch but is able to gain access using the serial console port. While monitoring port statistics, the administrator sees the following: Which of the following is MOST likely causing the network outage? A. Duplicate IP address B. High collisions C. Asynchronous route D. Switch loop

B. High collisions

Which of the following is a vulnerable system designed to detect and log unauthorized access? A. SIEM B. Honeypot C. DMZ D. Proxy server

B. Honeypot

Client PCs are unable to receive addressing information from a newly configured interface on a router. Which of the following should be added to allow the clients to connect? A. DHCP lease time B. IP helper C. TTL D. DNS record type

B. IP helper

Which of the following would be BEST to install to find and block any malicious users within a network? A. IDS B. IPS C. SCADA D. ICS

B. IPS

Which of the following is an example of on-demand scalable hardware that is typically housed in the vendor's data center? A. DaaS B. IaaS C. PaaS D. SaaS

B. IaaS

A network engineer developed a plan of action to resolve an ongoing issue. Which of the following steps should the engineer take NEXT? A. Verify full system functionality and implement preventative measures. B. Implement the solution to resolve the problem. C. Document findings, actions, outcomes, and lessons learned. D. Establish a theory of probable cause.

B. Implement the solution to resolve the problem.

A client who shares office space and an IT closet with another company recently reported connectivity issues throughout the network. Multiple third-party vendors regularly perform on-site maintenance in the shared IT closet. Which of the following security techniques would BEST secure the physical networking equipment? A. Disabling unneeded switchports B. Implementing role-based access C. Changing the default passwords D. Configuring an access control list

B. Implementing role-based access

A new student is given credentials to log on to the campus Wi-Fi. The student stores the password in a laptop and is able to connect: however, the student is not able to connect with a phone when only a short distance from the laptop. Given the following information:W Signal strength 90% Coverage 80% Interference 15% Number of connection attempts 10 which of the following is MOST likely causing this connection failure? A. Transmission speed B. Incorrect passphrase C. Channel overlap D. Antenna cable attenuation/signal loss

B. Incorrect passphrase

A network technician recently installed 35 additional workstations. After installation, some users are unable to access network resources. Many of the original workstations that are experiencing the network access issue were offline when the new workstations were turned on. Which of the following is the MOST likely cause of this issue? A. Incorrect VLAN setting B. Insufficient DHCP scope C. Improper NIC setting D. Duplicate IP address

B. Insufficient DHCP scope

A technician discovered that some information on the local database server was changed during a file transfer to a remote server. Which of the following should concern the technician the MOST? A. Confidentiality B. Integrity C. DDoS D. On-path attack

B. Integrity

A small office has a wireless network with several access points that are used by mobile devices. Users occasionally report that the wireless connection drops or becomes very slow. Reports confirm that this only happens when the devices are connected to the office wireless network. Which of the following is MOST likely the cause? A. The configuration of the encryption protocol B. Interference from other devices C. Insufficient bandwidth capacity D. Duplicate SSIDs

B. Interference from other devices

A network engineer needs to reduce the overhead of file transfers. Which of the following configuration changes would accomplish that goal? A. Link aggregation B. Jumbo frames C. Port security D. Flow control E. Lower FTP port

B. Jumbo frames

A technician is investigating packet loss to a device that has varying data bursts throughout the day. Which of the following will the technician MOST likely configure to resolve the issue? A. Flow control B. Jumbo frames C. Duplex D. Port mirroring

B. Jumbo frames

A network technician is selecting a replacement for a damaged fiber cable that goes directly to an SFP transceiver on a network switch. Which of the following cable connectors should be used? A. RJ45 B. LC C. MT D. F-type

B. LC

A large metropolitan city is looking to standardize the ability for police department laptops to connect to the city government's VPN. The city would like a wireless solution that provides the largest coverage across the city with a minimal number of transmission towers. Latency and overall bandwidth needs are not high priorities. Which of the following would BEST meet the city's needs? A. 5G B. LTE C. Wi-Fi 4 D. Wi-Fi 5 E. Wi-Fi 6

B. LTE

According to the OSI model, at which of the following layers is data encapsulated into a packet? A. Layer 2 B. Layer 3 C. Layer 4 D. Layer 5 E. Layer 6

B. Layer 3

A network engineer wants to segment the network into multiple broadcast domains. Which of the following devices would allow for communication between the segments? A. Layer 2 switch B. Layer 3 switch C. Bridge D. Load balancer

B. Layer 3 switch

Which of the following can have multiple VLAN interfaces? A. Hub B. Layer 3 switch C. Bridge D. Load balancer

B. Layer 3 switch

Which of the following network devices can perform routing between VLANs? A. Layer 2 switch B. Layer 3 switch C. Load balancer D. Bridge

B. Layer 3 switch

A company has a web-based application that is used by many different departments. The company has experienced some overload of resources on the database server. The network administrator implements a network device in between the servers and the database. Which of the following BEST describes the purpose of this device? A. Content filtering and network analysis B. Load balancing and providing high availability C. Port sniffing and protocol analysis D. Clustering and NIC teaming

B. Load balancing and providing high availability

Which of the following is a reason why a business may be hesitant to move sensitive data to a SaaS cloud service? A. Decreased performance of internal network B. Loss of full control over data resources C. Increased malware exposure D. Incompatibility with the current network

B. Loss of full control over data resources

A network technician is responding to an issue with a local company. To which of the following documents should the network technician refer to determine the scope of the issue? A. MTTR B. MOU C. NDA D. SLA

B. MOU

Which of the following compromises Internet-connected devices and makes them vulnerable to becoming part of a botnet? (Choose two.) A. Deauthentication attack B. Malware infection C. IP spoofing D. Firmware corruption E. Use of default credentials F. Dictionary attack

B. Malware infection F. Dictionary attack

Which of the following can be used to decrease latency during periods of high utilization of a firewall? A. Hot site B. NIC teaming C. HA pair D. VRRP

B. NIC teaming

Which of the following describes traffic going in and out of a data center from the internet? A. Demarcation point B. North-South C. Fibre Channel D. Spine and leaf

B. North-South

Which of the following uses the link-state routing algorithm and operates within a single autonomous system? A. EIGRP B. OSPF C. RIP D. BGP

B. OSPF

A Chief Information Officer (CIO) wants to move some IT services to a cloud service offering. However, the network administrator still wants to be able to control some parts of the cloud service's networking components. Which of the following should be leveraged to complete this task? A. IaaS B. PaaS C. SaaS D. DaaS

B. PaaS

A network technician needs to separate a web server listening on port 80 from the internal LAN and secure the server from the public Internet. The web server should be accessible to the public Internet over port 80 but not the private LAN. Currently, the network is segmented with a network-based firewall using the following IP addressing scheme on each interface: Zone Interface IP address Public eth0 10.0.0.1/24 DMZ eth1 10.0.1.1/24 Private eth2 10.0.21/24 Which of the following ones should the technician use to place the web server and which of the following firewall rules should the technician configure? A. Place the web server in the public zone with an inbound rule from eth0 interface to accept traffic over port 80 designated to the web server B. Place the web server in the DMZ with an inbound rule from eth0 interface to eth1 to accept traffic over port 80 designated to the web server C. Place the web server in the private zone with an inbound rule from eth2 interface to eth1 to accept traffic over port 80 designated to the web server D. Place the web server in the DMZ with an inbound rule from eth1 interface to eth0 to accept traffic over port 80 designated to the web server

B. Place the web server in the DMZ with an inbound rule from eth0 interface to eth1 to accept traffic over port 80 designated to the web server

An office area contains two PoE-enabled WAPs. After the area was remodeled, new cable uplinks were installed in the ceiling above the fluorescent lights. However, after the WAPs were reconnected, users reported slowness and application errors. An intern reviewed the network and discovered a lot of CRC errors. A network engineer reviewed the intern's work and realized UTP cabling was used. Which of the following is the MOST likely cause of the CRC errors? A. Insufficient power at the antennas B. PoE and UTP incompatibility C. Electromagnetic interference D. Wrong cable pinout

B. PoE and UTP incompatibility

To comply with an industry regulation, all communication destined to a secure server should be logged and archived on a storage device. Which of the following can be configured to fulfill this requirement? A. QoS traffic classification B. Port mirroring C. Flow control D. Link Aggregation Control Protocol

B. Port mirroring

A rogue AP was found plugged in and providing Internet access to employees in the break room. Which of the following would be BEST to use to stop this from happening without physically removing the WAP? A. Password complexity B. Port security C. Wireless client isolation D. Secure SNMP

B. Port security

A Chief Executive Officer and a network administrator came to an agreement with a vendor to purchase new equipment for the data center. A document was drafted so all parties would be informed about the scope of the project before it started. Which of the following terms BEST describes the document used? A. Contract B. Project charter C. Memorandum of understanding D. Non-disclosure agreement

B. Project charter

A user is having difficulty with video conferencing and is looking for assistance. Which of the following would BEST improve performance? A. Packet shaping B. Quality of service C. Port mirroring D. Load balancing

B. Quality of service

A network administrator determines that even when optimal wireless coverage is configured, the network users still report constant disconnections. After troubleshooting, the administrator determines that moving from one location to another causes the disconnection. Which of the following settings should provide better network stability? A. Client association timeout B. RSSI roaming threshold C. RF attenuation ratio D. EIRP power setting

B. RSSI roaming threshold

An international company is transferring its IT assets, including a number of WAPs, from the United States to an office in Europe for deployment. Which of the following considerations should the company research before implementing the wireless hardware? A. WPA2 cipher B. Regulatory impacts C. CDMA configuration D. 802.11 standards

B. Regulatory impacts

A technician is setting up a direct connection between two older PCs so they can communicate but not be on the corporate network. The technician does not have access to a spare switch but does have spare Cat 6 cables, RJ-45 plugs, and a crimping tool. The technician cuts off one end of the cable. Which of the following should the technician do to make a crossover cable before crimping the new plug? A. Reverse the wires leading to pins 1 and 2 B. Reverse the wires leading to pins 1 and 3 C. Reverse the wires leading to pins 2 and 3 D. Reverse the wires leading to pins 2 and 4

B. Reverse the wires leading to pins 1 and 3

Which of the following MUST be implemented to share metrics between routing protocols within the same router? A. Routing loop B. Routing table C. Route redistribution D. Dynamic routes

B. Routing table

Which of the following documents would be used to define uptime commitments from a provider, along with details on measurement and enforcement? A. NDA B. SLA C. MOU D. AUP

B. SLA

Which of the following protocols can be used to change device configurations via encrypted and authenticated sessions? (Choose two.) A. SNMPv3 B. SSH C. Telnet D. IPSec E. ESP F. Syslog

B. SSH D. IPSec

Which of the following is a benefit of the spine-and-leaf network topology? A. Increased network security B. Stable network latency C. Simplified network management D. Eliminated need for inter-VLAN routing

B. Stable network latency

An administrator is attempting to add a new system to monitoring but is unsuccessful. The administrator notices the system is similar to another one on the network; however, the new one has an updated OS version. Which of the following should the administrator consider updating? A. Management information bases B. System baseline C. Network device logs D. SNMP traps

B. System baseline

Which of the following is MOST appropriate for enforcing bandwidth limits when the performance of an application is not affected by the use of buffering but is heavily impacted by packet drops? A. Traffic shaping B. Traffic policing C. Traffic marking D. Traffic classification

B. Traffic policing

A network technician is having issues connecting an IoT sensor to the internet. The WLAN settings were entered via a custom command line, and a proper IP address assignment was received on the wireless interface. However, when trying to connect to the internet, only HTTP redirections are being received when data is requested. Which of the following will point to the root cause of the issue? A. Verifying if an encryption protocol mismatch exists. B. Verifying if a captive portal is active for the WLAN. C. Verifying the minimum RSSI for operation in the device's documentation. D. Verifying EIRP power settings on the access point.

B. Verifying if a captive portal is active for the WLAN.

A network technician was hired to harden the security of a network. The technician is required to enable encryption and create a password for AP security through the web browser. Which of the following would BEST support these requirements? A. ESP B. WPA2 C. IPSec D. ACL

B. WPA2

When accessing corporate network resources, users are required to authenticate to each application they try to access. Which of the following concepts does thisBEST represent? A. SSO B. Zero Trust C. VPN D. Role-based access control

B. Zero Trust

A network technician is configuring a wireless network at a branch office. Users at this office work with large files and must be able to access their files on the server quickly. Which of the following 802.11 standards provides the MOST bandwidth? A. a B. ac C. g D. n

B. ac

A company's web server is hosted at a local ISP. This is an example of: A. colocation. B. an on-premises data center. C. a branch office. D. a cloud provider.

B. an on-premises data center.

A technician is setting up a branch office on a point-to-point connection. Which of the following IP network blocks is the MOST efficient use of IP address space for the router connections between the two sites? A. /24 B. /25 C. /30 D. /32

C. /30

A network engineer needs to create a subnet that has the capacity for five VLANs, with the following number of clients to be allowed on each: VLAN 10 50 users VLAN 20 35 users VLAN 30 20 users VLAN 40 75 users VLAN 50 130 users Which of the following is the SMALLEST subnet capable of this setup that also has the capacity to double the number of clients in the future? A. 10.0.0.0/21 B. 10.0.0.0/22 C. 10.0.0.0/23 D. 10.0.0.0/24

C. 10.0.0.0/23

Which of the following is the correct port number for NTP? A. 25 B. 69 C. 123 D. 161

C. 123

Which of the following ports are associated with IMAP? (Choose two.) A. 25 B. 110 C. 143 D. 587 E. 993 F. 995

C. 143 E. 993

A network administrator has been given a network of 172.16.85.0/21 and wants to know the usable range of IP addresses on that subnet. Which of the following indicates the correct IP address range? A. 172.16.80.0-172.16.85.254 B. 172.16.80.0-172.16.88.255 C. 172.16.80.1-172.16.87.254 D. 172.16.80.1-172.16.85.255

C. 172.16.80.1-172.16.87.254

A systems administrator is configuring a firewall using NAT with PAT. Which of the following would be BEST suited for the LAN interface? A. 172.15.0.0/18 B. 172.18.0.0/10 C. 172.23.0.0/16 D. 172.28.0.0/8 E. 172.32.0.0/14

C. 172.23.0.0/16

Which of the following is the IEEE link cost for a Fast Ethernet interface in STP calculations? A. 2 B. 4 C. 19 D. 100 Reveal Solution

C. 19

A network technician is performing tests on a potentially faulty network card that is installed in a server. Which of the following addresses will MOST likely be used during traffic diagnostic tests? A. 10.10.10.10 B. 127.0.0.1 C. 192.168.0.1 D. 255.255.255.0

C. 192.168.0.1

A technician is trying to determine the IP address of a customer's router. The customer has an IP address of 192.168.1.55/24. Which of the following is the address of the customer's router? A. 192.168.0.55 B. 192.168.1.0 C. 192.168.1.1 D. 192.168.5.5 E. 255.255.255.0

C. 192.168.1.1

A client moving into a new office wants the IP network set up to accommodate 412 network-connected devices that are all on the same subnet. The subnet needs to be as small as possible. Which of the following subnet masks should be used to achieve the required result? A. 255.255.0.0 B. 255.255.252.0 C. 255.255.254.0 D. 255.255.255.0

C. 255.255.254.0

A systems administrator wants to use the least amount of equipment to segment two departments that have cables terminating in the same room. Which of the following would allow this to occur? A. A load balancer B. A proxy server C. A Layer 3 switch D. A hub E. A Layer 7 firewall

C. A Layer 3 switch

Which of the following would enable a network technician to implement dynamic routing? A. An IPS B. A bridge C. A Layer 3 switch D. A hub

C. A Layer 3 switch

Users attending security training at work are advised not to use single words as passwords for corporate applications. Which of the following does this BEST protect against? A. An on-path attack B. A brute-force attack C. A dictionary attack D. MAC spoofing E. Denial of service

C. A dictionary attack

Which of the following would MOST likely utilize PoE? A. A camera B. A printer C. A hub D. A modem

C. A hub

A network administrator is preparing answers for an annual risk assessment that is required for compliance purposes. Which of the following would be an example of an internal threat? A. An approved vendor with on-site offices B. An infected client that pulls reports from the firm C. A malicious attacker from within the same country D. A malicious attacker attempting to socially engineer access into corporate offices

C. A malicious attacker from within the same country

Which of the following uses the destination IP address to forward packets? A. A bridge B. A Layer 2 switch C. A router D. A repeater

C. A router

A technician recently set up a small office network for nine users. When the installation was complete, all the computers on the network showed addresses ranging from 169.254.0.0 to 169.254.255.255. Which of the following types of address ranges does this represent? A. Private B. Public C. APIPA D. Classless

C. APIPA

A device is connected to a managed Layer 3 network switch. The MAC address of the device is known, but the static IP address assigned to the device is not.Which of the following features of a Layer 3 network switch should be used to determine the IPv4 address of the device? A. MAC table B. Neighbor Discovery Protocol C. ARP table D. IPConfig E. ACL table

C. ARP table

A network technician is reviewing a document that specifies how to handle access to company resources, such as the Internet and printers, when devices are not part of the company's assets. Which of the following agreements would a user be required to accept before using the company's resources? A. BYOD B. DLP C. AUP D. MOU

C. AUP

Which of the following can be used to store various types of devices and provide contactless delivery to users? A. Asset tags B. Biometrics C. Access control vestibules D. Smart lockers

C. Access control vestibules

Which of the following is considered a physical security detection device? A. Cameras B. Biometric readers C. Access control vestibules D. Locking racks

C. Access control vestibules

Network traffic is being compromised by DNS poisoning every time a company's router is connected to the internet. The network team detects a non-authorized DNS server being assigned to the network clients and remediates the incident by setting a trusted DNS server, but the issue occurs again after internet exposure. Which of the following best practices should be implemented on the router? A. Change the device's default password. B. Disable router advertisement guard. C. Activate control plane policing. D. Disable unneeded network services.

C. Activate control plane policing.

A technician manages a DHCP scope but needs to allocate a portion of the scope's subnet for statically assigned devices. Which of the following DHCP concepts would be BEST to use to prevent IP address conflicts? A. Dynamic assignment B. Exclusion range C. Address reservation D. IP helper

C. Address reservation

A customer cannot access a company's secure website. The company's network security is reviewing the firewall for the server and finds the following output: Time Action Src IP Src Port Dst IP Dst Port 9:02 Allow 12.73.15.5 31865 10.5.0.10 80 1005 Deny 12.73.15.5 31866 10.5.0.10 443 1006 Deny 12.73.15.5 31890 10.5.0.10 443 Which of the following changes should be made to allow all customers to access the company's secure website? A. Allow any any 10.5.0.10 443 B. Allow any any 12.73.15.5 443 C. Allow 10.5.0.10 443 any any D. Allow 10.5.0.10 any 10.5.0.10 80

C. Allow 10.5.0.10 443 any any

Which of the following policies would Joe, a user, have to agree to when he brings in his personal tablet to connect to the company's guest wireless Internet? A. NDA B. IRP C. BYOD D. SLA

C. BYOD

Which of the following policies should be referenced when a user wants to access work email on a personal cell phone? A. Offboarding policy B. Acceptable use policy C. BYOD policy D. Remote access policy

C. BYOD policy

Which of the following layers of the OSI model receives data from the application layer and converts it into syntax that is readable by other devices on the network? A. Layer 1 B. Layer 3 C. Layer 6 D. Layer 7

C. Layer 6

A company is being acquired by a large corporation. As part of the acquisition process, the company's address should now redirect clients to the corporate organization page. Which of the following DNS records needs to be created? A. SOA B. NS C. CNAME D. TXT

C. CNAME

A technician is monitoring a network interface and notices the device is dropping packets. The cable and interfaces, however, are in working order. Which of the following is MOST likely the cause? A. OID duplication B. MIB mismatch C. CPU usage D. Encapsulation errors

C. CPU usage

A network administrator needs to provide evidence to confirm that recent network outages were caused by increased traffic generated by a recently released application. Which of the following actions will BEST support the administrator's response? A. Generate a network baseline report for comparison. B. Export the firewall traffic logs. C. Collect the router's NetFlow data. D. Plot interface statistics for dropped packets.

C. Collect the router's NetFlow data.

A network technician is troubleshooting a new web server connectivity issue. The network technician discovers the following on the support ticket: • The server's IP address can be pinged from the client PCs .• Access to the web resource works correctly when on the server's console. • No clients can access the server's data via URL .• The server does not have a firewall configured. • No ACLs are preventing connectivity from the client's network. • All services on the server are operating normally, which was confirmed by the server team.Which of the following actions will resolve the issue? A. Reset port security on the switchport connecting the server. B. Adjust the web server's NTP setting to match the client settings. C. Configure A records for the web server. D. Install the correct MIB on the web server.

C. Configure A records for the web server.

A technician is troubleshooting reports that a networked printer is unavailable. The printer's IP address is configured with a DHCP reservation, but the address cannot be pinged from the print server in the same subnet. Which of the following is MOST likely the cause of the connectivity failure? A. Incorrect VLAN B. DNS failure C. DHCP scope exhaustion D. Incorrect gateway

C. DHCP scope exhaustion

A user calls the IT department to report being unable to log in after locking the computer. The user resets the password, but later in the day the user is again unable to log in after locking the computer. Which of the following attacks against the user is MOST likely taking place? A. Brute-force B. On-path C. Deauthentication D. Phishing

C. Deauthentication

Given the following information: connection cable length cable type configuration PC A to Switch 1 394ft (120m) Cat 5 straight through Switch 1 /switch 2 3.3ft (1m) Cat 6 cross over Switch 2 to PC b 16ft (5m) Cat 5 straight through Which of the following would cause performance degradation between PC A and PC B? A. Attenuation B. Interference C. Decibel loss D. Incorrect pinout

C. Decibel loss

An employee reports to a network administrator that internet access is not working. Which of the following should the administrator do FIRST? A. Establish a theory of probable cause. B. Identify symptoms. C. Determine if anything has changed. D. Ask the user to restart the computer.

C. Determine if anything has changed.

A small office is running WiFi 4 APs, and neighboring offices do not want to increase the throughput to associated devices. Which of the following is the MOST cost-efficient way for the office to increase network performance? A. Add another AP. B. Disable the 2.4GHz radios. C. Enable channel bonding. D. Upgrade to WiFi 5.

C. Enable channel bonding.

The backup server connects to a NAS device using block-level storage over Ethernet. The performance is very slow, however, and the network technician suspects the performance issues are network related. Which of the following should the technician do to improve performance? A. Utilize UDP to eliminate packet overhead B. Turn off MDIX settings on the NAS and server switchports C. Enable jumbo frames on the NAS and server D. Encapsulate the storage traffic in a GRE tunnel

C. Enable jumbo frames on the NAS and server

A company cell phone was stolen from a technician's vehicle. The cell phone has a passcode, but it contains sensitive information about clients and vendors. Which of the following should also be enabled? A. Factory reset B. Autolock C. Encryption D. Two-factor authentication

C. Encryption

Which of the following cable types would MOST likely be used to provide high-speed network connectivity between nearby buildings? A. UTP B. Coaxial C. Fiber D. Cat 5 E. Twinaxial

C. Fiber

A technician was cleaning a storage closet and found a box of transceivers labeled 8Gbps. Which of the following protocols uses those transceivers? A. Coaxial over Ethernet B. Internet Small Computer Systems Interface C. Fibre Channel D. Gigabit interface converter

C. Fibre Channel

Which of the following is MOST commonly used to address CVEs on network equipment and/or operating systems? A. Vulnerability assessment B. Factory reset C. Firmware update D. Screened subnet

C. Firmware update

The power company notifies a network administrator that it will be turning off the power to the building over the weekend. Which of the following is the BEST solution to prevent the servers from going down? A. Redundant power supplies B. Uninterruptible power supply C. Generator D. Power distribution unit

C. Generator

A network technician is assisting the security team with some traffic captures. The security team wants to capture all traffic on a single subnet between the router and the core switch. To do so, the team must ensure there is only a single collision and broadcast domain between the router and the switch from which they will collect traffic. Which of the following should the technician install to BEST meet the goal? A. Bridge B. Crossover cable C. Hub D. Media converter

C. Hub

A company's network is set up so all Internet-bound traffic from all remote offices exits through a main datacenter. Which of the following network topologies wouldBEST describe this setup? A. Bus B. Spine-and-leaf C. Hub-and-spoke D. Mesh

C. Hub-and-spoke

Logs show an unauthorized IP address entering a secure part of the network every night at 8:00 p.m. The network administrator is concerned that this IP address will cause an issue to a critical server and would like to deny the IP address at the edge of the network. Which of the following solutions would address these concerns? A. Changing the VLAN of the web server B. Changing the server's IP address C. Implementing an ACL D. Installing a rule on the firewall connected to the web server

C. Implementing an ACL

A network technician is configuring a new firewall for a company with the necessary access requirements to be allowed through the firewall. Which of the following would normally be applied as the LAST rule in the firewall? A. Secure SNMP B. Port security C. Implicit deny D. DHCP snooping

C. Implicit deny

Several users with older devices are reporting intermittent connectivity while in an outdoor patio area. After some research, the network administrator determines that an outdoor WAP might help with the issue. However, the company does not want the signal to bleed into the building and cause interference. Which of the following should the network administrator perform to BEST resolve the issue? A. Disable the SSID broadcast on the WAP in the patio area. B. Install a WAP and enable 5GHz only within the patio area. C. Install a directional WAP in the direction of the patio. D. Install a repeater on the back wall of the patio area.

C. Install a directional WAP in the direction of the patio.

A network administrator received a report stating a critical vulnerability was detected on an application that is exposed to the internet. Which of the following is the appropriate NEXT step? A. Check for the existence of a known exploit in order to assess the risk. B. Immediately shut down the vulnerable application server. C. Install a network access control agent on the server. D. Deploy a new server to host the application.

C. Install a network access control agent on the server.

A network administrator needs to implement an HDMI over IP solution. Which of the following will the network administrator MOST likely use to ensure smooth video delivery? A. Link aggregation control B. Port tagging C. Jumbo frames D. Media access control

C. Jumbo frames

A network administrator wants to reduce overhead and increase efficiency on a SAN. Which of the following can be configured to achieve these goals? A. Port aggregation B. Traffic shaping C. Jumbo frames D. Flow control

C. Jumbo frames

A network technician is connecting two switches together. Which of the following protocols should the technician use to increase speed and fault tolerance? A. SIP B. BGP C. LACP D. LLDP Reveal Solution

C. LACP

A technician is replacing a switch at a branch office and discovers the existing backbone cable does not fit in the new switch. The fiber patch panel has circular connections. The new switch has a transceiver that accepts a smaller square adapter of two strands. Which of the following patch cables would the technician need to complete the installation? A. LC to SC B. SC to ST C. LC to ST D. ST to ST E. SC to SC

C. LC to ST

Which of the following describes the BEST device to configure as a DHCP relay? A. Bridge B. Router C. Layer 2 switch D. Hub

C. Layer 2 switch

When enabling jumbo frames on a network device, which of the following parameters is being adjusted? A. Speed B. Duplex C. MTU D. TTL

C. MTU

A Wi-Fi network was recently deployed in a new, multilevel building. Several issues are now being reported related to latency and drops in coverage. Which of the following is the FIRST step to troubleshoot the issues? A. Perform a site survey. B. Review the AP placement. C. Monitor channel utilization. D. Test cable attenuation.

C. Monitor channel utilization.

In a service provider network, a company has an existing IP address scheme. Subnet 1: 192.168.1.0/26 Subnet2: 192.168.1.65/26 Company A's network currently uses the following scheme:Company b uses the following scheme: Subnet 1: 192.168.1.50/28 -The network administrator cannot force the customer to update its IP scheme. Considering this, which of the following is the BEST way for the company to connect these networks? A. DMZ B. PAT C. NAT D. VLAN

C. NAT

A user from a remote office is reporting slow file transfers. Which of the following tools will an engineer MOST likely use to get detailed measurement data? A. Packet capture B. iPerf C. NetFlow analyzer D. Internet speed test

C. NetFlow analyzer

A technician is setting up a new router, configuring ports, and allowing access to the Internet. However, none of the users connected to this new router are able to connect to the Internet. Which of the following does the technician need to configure? A. Tunneling B. Multicast routing C. Network address translation D. Router advertisement

C. Network address translation

Which of the following needs to be tested to achieve a Cat 6a certification for a company's data cabling? A. RJ11 B. LC ports C. Patch panel D. F-type connector

C. Patch panel

Users have been experiencing slow network response times, and management has asked the network technician to provide evidence of network improvement.After optimizing the network, which of the following would be required? A. IDF/MDF documentation B. Change management C. Performance baseline D. Physical diagram

C. Performance baseline

A typical cell tower will have microwave and cellular antennas. Which of the following network topologies do these represent? (Choose two.) A. Point-to-multipoint B. Bus C. Point-to-point D. Mesh E. Peer-peer F. Ring

C. Point-to-point D. Mesh

A network engineer is investigating issues on a Layer 2 switch. The department typically shares a switchport during meetings for presentations, but after the first user shares, no other users can connect. Which of the following is MOST likely related to this issue? A. Spanning Tree Protocol is enabled on the switch. B. VLAN trunking is enabled on the switch. C. Port security is configured on the switch. D. Dynamic ARP inspection is configured on the switch.

C. Port security is configured on the switch.

A company recently upgraded all of its printers to networked multifunction devices. Users can print to the new devices, but they would also like the ability to scan and fax files from their computers. Which of the following should the technician update to allow this functionality? A. Device software B. Printer drivers C. Printer firmware D. NIC drivers

C. Printer firmware

A business is using the local cable company to provide Internet access. Which of the following types of cabling will the cable company MOST likely use from the demarcation point back to the central office? A. Multimode B. Cat 5e C. RG-6 D. Cat 6 E. 100BASE-T

C. RG-6

A device operating at Layer 3 of the OSI model uses which of the following protocols to determine the path to a different network? A. STP B. RTP C. RIP D. NTP E. SIP

C. RIP

A company streams video to multiple devices across a campus. When this happens, several users report a degradation of network performance. Which of the following would MOST likely address this issue? A. Enable IGMP snooping on the switches. B. Implement another DHCP server. C. Reconfigure port tagging for the video traffic. D. Change the SSID of the APs.

C. Reconfigure port tagging for the video traffic.

The management team has instituted a 48-hour RTO as part of the disaster recovery plan. Which of the following procedures would meet the policy's requirements? A. Recover all systems to a loss of 48 hours of data. B. Limit network downtime to a maximum of 48 hours per year. C. Recover all systems within 48 hours. D. Require 48 hours of system backup maintenance.

C. Recover all systems within 48 hours.

A network technician receives a report from the server team that a server's network connection is not working correctly. The server team confirms the server is operating correctly except for the network connection. The technician checks the switchport connected to the server and reviews the following data: Metric Value - Bytes input 441,164,698 - Bytes output 2,625,115,257 - Runts 0 - CRCs 5,489 - Collisions 1 - MDIX On - Speed 1000 - Duplex Full Which of the following should the network technician perform to correct the issue? A. Replace the Cat 5 patch cable with a Cat 6 cable. B. Install a crossover cable between the server and the switch. C. Reset the switchport configuration. D. Use NetFlow data from the switch to isolate the issue. E. Disable MDIX on the switchport and reboot the server.

C. Reset the switchport configuration.

A network administrator is required to ensure that auditors have read-only access to the system logs, while systems administrators have read and write access to the system logs, and operators have no access to the system logs. The network administrator has configured security groups for each of these functional categories. Which of the following security capabilities will allow the network administrator to maintain these permissions with the LEAST administrative effort? A. Mandatory access control B. User-based permissions C. Role-based access D. Least privilege

C. Role-based access

A network technician is able to connect the switches between two offices, but the offices cannot communicate with each other, as each office uses a different IP addressing scheme. Which of the following devices needs to be installed between the switches to allow communication? A. Bridge B. Access point C. Router D. Range extender

C. Router

A network technician is working on a proposal for email migration from an on-premises email system to a vendor-hosted email in the cloud. The technician needs to explain to management what type of cloud model will be utilized with the cloud-hosted email. Which of the following cloud models should the technician identify in the proposal? A. IaaS B. PaaS C. SaaS D. MaaS

C. SaaS

An ISP is unable to provide services to a user in a remote area through cable and DSL. Which of the following is the NEXT best solution to provide services without adding external infrastructure? A. Fiber B. Leased line C. Satellite D. Metro optical

C. Satellite

A network administrator is testing performance improvements by configuring channel bonding on an 802.11ac AP. Although a site survey detected the majority of the 5GHz frequency spectrum was idle, being used only by the company's WLAN and a nearby government radio system, the AP is not allowing the administrator to manually configure a large portion of the 5GHz frequency range. Which of the following would be BEST to configure for the WLAN being tested? A. Upgrade the equipment to an AP that supports manual configuration of the EIRP power settings B. Switch to 802.11n, disable channel auto-selection, and enforce channel bonding on the configuration C. Set up the AP to perform a dynamic selection of the frequency according to regulatory requirements D. Deactivate the band 5GHz to avoid interference with the government radio

C. Set up the AP to perform a dynamic selection of the frequency according to regulatory requirements

During an annual review of policy documents, a company decided to adjust its recovery time frames. The company agreed that critical applications can be down for no more than six hours, and the acceptable amount of data loss is no more than two hours. Which of the following should be documented as the RPO? A. Two hours B. Four hours C. Six hours D. Eight hours

C. Six hours

A network engineer is monitoring a fiber uplink to a remote office and notes the uplink has been operating at 100% capacity for a long duration. Which of the following performance metrics is MOST likely to be impacted with sustained link saturation? A. Latency B. Jitter C. Speed D. Bandwidth

C. Speed

Which of the following WAN technologies is MOST preferred when developing a VoIP system with 23 concurrent channels? A. DSL B. POTS C. T1 D. DOCSIS

C. T1

A technician is troubleshooting a connectivity issue with an end user. The end user can access local network shares and intranet pages but is unable to access the internet or remote resources. Which of the following needs to be reconfigured? A. The IP address B. The subnet mask C. The gateway address D. The DNS servers

C. The gateway address

A network administrator configures a router with the following IP address information: Gigabit Ethernet 1 Interface: 10.10.0.1/24 Serial 0 Interface: 10.10.0.253/30 Clients are connected to a switch on the gigabit Ethernet interface; the ISP is connected to the Serial 0 interface. When the router configuration is complete and client devices are reconfigured, all clients report that they are unable to connect to the Internet. Which of the following is the MOST likely reason? A. The router was configured with an incorrect IP address B. The router was configured with an incorrect default gateway C. The router was configured with an incorrect subnet mask D. The router was configured with an incorrect loopback address

C. The router was configured with an incorrect subnet mask

A packet is assigned a value to ensure it does not traverse a network indefinitely. Which of the following BEST represents this value? A. Zero Trust B. Planned obsolescence C. Time to live D. Caching

C. Time to live

At the destination host, which of the following OSI model layers will discard a segment with a bad checksum in the UDP header? A. Network B. Data link C. Transport D. Session

C. Transport

Network connectivity in an extensive forest reserve was achieved using fiber optics. A network fault was detected, and now the repair team needs to check the integrity of the fiber cable. Which of the following actions can reduce repair time? A. Using a tone generator and wire map to determine the fault location B. Using a multimeter to locate the fault point C. Using an OTDR in one end of the optic cable to get the fiber length information D. Using a spectrum analyzer and comparing the current wavelength with a working baseline

C. Using an OTDR in one end of the optic cable to get the fiber length information

Which of the following devices, if implemented, would result in decreased administration time of an 802.11 network running centralized authentication services?(Choose two.) A. VPN concentrator B. Proxy server C. Wireless controller D. RADIUS server E. Multilayer switch

C. Wireless controller D. RADIUS server

A technician is assisting a user who cannot connect to a website. The technician attempts to ping the default gateway and DNS server of the workstation. According to troubleshooting methodology, this is an example of: A. a divide-and-conquer approach. B. a bottom-up approach. C. a top-to-bottom approach. D. implementing a solution.

C. a top-to-bottom approach.

Classification using labels according to information sensitivity and impact in case of unauthorized access or leakage is a mandatory component of: A. an acceptable use policy. B. a memorandum of understanding. C. data loss prevention. D. a non-disclosure agreement.

C. data loss prevention.

A technician is documenting an application that is installed on a server and needs to verify all existing web and database connections to the server. Which of the following tools should the technician use to accomplish this task? A. tracert B. ipconfig C. netstat D. nslookup

C. netstat

A network is experiencing extreme latency when accessing a particular website. Which of the following commands will BEST help identify the issue? A. ipconfig B. netstat C. tracert D. ping

C. tracert

Which of the following is used to provide networking capability for VMs at Layer 2 of the OSI model? A. VPN B. VRRP C. vSwitch D. VIP

C. vSwitch

The following instructions were published about the proper network configuration for a videoconferencing device:"Configure a valid static RFC1918 address for your network. Check the option to use a connection over NAT."Which of the following is a valid IP address configuration for the device? A. FE80::1 B. 100.64.0.1 C. 169.254.1.2 D. 172.19.0.2 E. 224.0.0.12

D. 172.19.0.2

Which of the following ports should be used to securely receive mail that is synchronized across multiple devices? A. 25 B. 110 C. 443 D. 993

D. 993

Which of the following routing protocols is generally used by major ISPs for handling large-scale internet traffic? A. RIP B. EIGRP C. OSPF D. BGP

D. BGP

During the troubleshooting of an E1 line, the point-to-point link on the core router was accidentally unplugged and left unconnected for several hours. However, the network management team was not notified. Which of the following could have been configured to allow early detection and possible resolution of the issue? A. Traps B. MIB C. OID D. Baselines

D. Baselines

A network technician has created a network that consists of a router, a firewall, a switch, and several PCs. Which of the following physical network topologies was created? A. Star B. Mesh C. Ring D. Bus

D. Bus

Which of the following would be BEST suited for a long cable run with a 40Gbps bandwidth? A. Cat 5e B. Cat 6a C. Cat 7 D. Cat 8

D. Cat 8

Which of the following BEST describes a network appliance that warns of unapproved devices that are accessing the network? A. Firewall B. AP C. Proxy server D. IDS

D. IDS

Which of the following can be used to validate domain ownership by verifying the presence of pre-agreed content contained in a DNS record? A. SOA B. SRV C. AAA D. TXT

D. TXT

Which of the following refers to a network that spans several buildings that are within walking distance of each other? A. CAN B. WAN C. PAN D. MAN

Correct Answer: A 🗳️CAN stands for Campus Area Network or Corporate Area Network. Universities or colleges often implement CANs to link the buildings in a network. The range ofCAN is 1KM to 5KM. If multiple buildings have the same domain and they are connected with a network, then it will be considered as a CAN.

Which of the following network infrastructure implementations would be used to support files being transferred between Bluetooth-enabled smartphones? A. PAN B. LAN C. WLAN D. MAN

Correct Answer: A 🗳️PAN stands for Personal Area Network. It is a network of devices in the area of a person typically within a range of 10 meters and commonly using a wireless technology such as Bluetooth or IR (Infra-Red).

Which of the following security controls indicates unauthorized hardware modifications? A. Biometric authentication B. Media device sanitization C. Change management policy D. Tamper-evident seals

D. Tamper-evident seals

An office network consists of one two-port router connected to a 12-port switch. A four-port hub is also connected to the switch. On this particular network, which of the following is the number of collision domains that exist? A. 3 B. 12 C. 13 D. 14 E. 15

D. 14

A client utilizes mobile tablets to view high-resolution images and videos via Wi-Fi within a corporate office building. The previous administrator installed multiple high-density APs with Wi-Fi 5, providing maximum coverage, but the measured performance is still below expected levels. Which of the following would provide the BEST solution? A. Channel bonding B. EIRP power settings C. Antenna polarization D. A directional antenna

D. A directional antenna

Which of the following BEST describes a North-South traffic flow? A. A public Internet user accessing a published web server B. A database server communicating with another clustered database server C. A Layer 3 switch advertising routes to a router D. A management application connecting to managed devices

D. A management application connecting to managed devices

Which of the following would be used when connecting devices that have different physical characteristics? A. A proxy server B. An industrial control system: C. A load balancer D. A media converter

D. A media converter

A network administrator is troubleshooting a connectivity performance issue. As part of the troubleshooting process, the administrator performs a traceroute from the client to the server, and also from the server to the client. While comparing the outputs, the administrator notes they show different hops between the hosts. Which of the following BEST explains these findings? A. Asymmetric routing B. A routing loop C. A switch loop D. An incorrect gateway

D. An incorrect gateway

A network administrator is designing a wireless network. The administrator must ensure a rented office space has a sufficient signal. Reducing exposure to the wireless network is important, but it is secondary to the primary objective. Which of the following would MOST likely facilitate the correct accessibility to the Wi-Fi network? A. Polarization B. Channel utilization C. Channel bonding D. Antenna type E. MU-MIMO

D. Antenna type

A company rents out a large event space and includes wireless internet access for each tenant. Tenants reserve a two-hour window from the company each week, which includes a tenant-specific SSID. However, all users share the company's network hardware.The network support team is receiving complaints from tenants that some users are unable to connect to the wireless network. Upon investigation, the support team discovers a pattern indicating that after a tenant with a particularly large attendance ends its sessions, tenants throughout the day are unable to connect.The following settings are common to all network configurations: Wireless encryption WPA2 Captive portal Disabled AP isolation Enabled Subnet Mask 255.255.255.0 DNS server 10.0.0.1 Default gateway 10.1.10.1 DHCP scope begin 10.1.10.10 DHCP scope end 10.1.10.150 DHCP lease line 24 hours Which of the following actions would MOST likely reduce this issue? (Choose two.) A. Change to WPA encryption. B. Change the DNS server to 10.1.10.1. C. Change the default gateway to 10.0.0.1. D. Change the DHCP scope end to 10.1.10.250. E. Disable AP isolation. F. Change the subnet mask to 255.255.255.192. G. Reduce the DHCP lease time to four hours.

D. Change the DHCP scope end to 10.1.10.250. G. Reduce the DHCP lease time to four hours.

A company with multiple routers would like to implement an HA network gateway with the least amount of downtime possible. This solution should not require changes on the gateway setting of the network clients. Which of the following should a technician configure? A. Automate a continuous backup and restore process of the system's state of the active gateway. B. Use a static assignment of the gateway IP address on the network clients. C. Configure DHCP relay and allow clients to receive a new IP setting. D. Configure a shared VIP and deploy VRRP on the routers.

D. Configure a shared VIP and deploy VRRP on the routers.

A technician is connecting a router directly to a PC using the G1/0/1 interface. Without the use of auto-sensing ports, which of the following cables should be used? A. Straight-through B. Console C. Rollover D. Crossover Reveal Solution

D. Crossover

Which of the following attack vectors represents a large number of devices sending access requests to a website, making it unavailable to respond? A. Virus B. Botnet C. ARP spoofing D. DDoS

D. DDoS

An end-user device requires a specific IP address every time it connects to the corporate network; however, corporate policy does not allow the use of static IP addresses. Which of the following will allow the request to be fulfilled without breaking the corporate policy? A. DHCP relay B. DHCP exclusion C. DHCP option D. DHCP reservation

D. DHCP reservation

Which of the following is used to classify network data for the purpose of providing QoS? A. STP B. VLANs C. SIP D. DSCP

D. DSCP

A WAN technician reviews activity and identifies newly installed hardware that is causing outages over an eight-hour period. Which of the following should be considered FIRST? A. Network performance baselines B. VLAN assignments C. Routing table D. Device configuration review

D. Device configuration review

An administrator notices that after contact with several switches in an MDF they failed due to electrostatic discharge. Which of the following sensors should the administrator deploy to BEST monitor static electricity conditions in the MDF? A. Temperature B. Humidity C. Smoke D. Electrical

D. Electrical

A network technician is troubleshooting an application issue. The technician is able to recreate the issue in a virtual environment. According to the troubleshooting methodology, which of the following actions will the technician most likely perform NEXT? A. Gather information from the initial report. B. Escalate the issue to a supervisor. C. Implement a solution to resolve the issue. D. Establish a theory of probable cause.

D. Establish a theory of probable cause.

A network technician receives a support ticket about an employee who has misplaced a company-owned cell phone that contains private company information.Which of the following actions should the network technician take to prevent data loss? A. Disable the user account. B. Lock the phone. C. Turn off the service. D. Execute remote wipe.

D. Execute remote wipe.

Which of the following devices should a network administrator configure on the outermost part of the network? A. Media converter B. Switch C. Modem D. Firewall

D. Firewal

Which of the following devices have the capability to allow communication between two different subnetworks? (Choose two.) A. IDS B. Access point C. Layer 2 switch D. Layer 3 switch E. Router F. Media converter

D. Layer 3 switch E. Router

At which of the following OSI model layers does an IMAP client run? A. Layer 2 B. Layer 4 C. Layer 6 D. Layer 7

D. Layer 7

The server team has just installed an application across three different servers. They are asking that all requests to the application are spread evenly across the three servers. Which of the following should the network team implement to fulfil the request? A. Proxy server B. UTM appliance C. Content filter D. Load balancer

D. Load balancer

Which of the following BEST describes hosting several businesses on the same physical infrastructure? A. Hybrid B. Elasticity C. IaaS D. Multitenancy

D. Multitenancy

Which of the following records can be used to track the number of changes on a DNS zone? A. SOA B. SRV C. TXT D. NS

D. NS

A network attack caused a network outage by wiping the configuration and logs of the border firewall. Which of the following sources, in an investigation to determine how the firewall was compromised, can provide the MOST detailed data? A. Syslog server messages B. MIB of the attacked firewall C. Network baseline reports D. NetFlow aggregate data

D. NetFlow aggregate data

At which of the following OSI model layers does routing occur? A. Data link B. Transport C. Physical D. Network

D. Network

Which of the following OSI model layers contains IP headers? A. Presentation B. Application C. Data link D. Network E. Transport

D. Network

An administrator is moving to a new office. There will be several network runs through the ceiling area of the office. Which of the following is the BEST to utilize in these areas? A. Single-mode fiber-optic cabling B. Cat 5e-rated cabling C. Cat 6-rated cabling D. Plenum-rated cabling

D. Plenum-rated cabling

A technician wants to prevent an unauthorized host from connecting to the network via Ethernet. Which of the following is a Layer 2 access control the technician should implement? A. Access control lists B. Captive portal C. WPA2 D. Port security

D. Port security

A false camera is installed outside a building to assist with physical security. Which of the following is the device assisting? A. Detection B. Recovery C. Identification D. Prevention

D. Prevention

Which of the following connector types would be used to connect to the demarcation point and provide network access to a cable modem? A. F-type B. RJ45 C. LC D. RJ11

D. RJ11

An organization is interested in purchasing a backup solution that supports the organization's goals. Which of the following concepts would specify the maximum duration that a given service can be down before impacting operations? A. MTTR B. RTO C. MTBF D. RPO

D. RPO

Which of the following commands can be used to display the IP address, subnet address, gateway address, and DNS address on a Windows computer? A. netstat -a B. ifconfig C. ip addr D. ipconfig /all

D. ipconfig /all

A network administrator wants to check all network connections and see the output in integer form. Which of the following commands should the administrator run on the command line? A. netstat B. netstat -a C. netstat -e D. netstat -n

D. netstat -n

Due to a surge in business, a company is onboarding an unusually high number of salespeople. The salespeople are assigned desktops that are wired to the network. The last few salespeople to be onboarded are able to access corporate materials on the network but not sales-specific resources. Which of the following is MOST likely the cause? A. The switch was configured with port security. B. Newly added machines are running into DHCP conflicts. C. The IPS was not configured to recognize the new users. D. Recently added users were assigned to the wrong VLAN

D. Recently added users were assigned to the wrong VLAN

A network technician is troubleshooting an area where the wireless connection to devices is poor. The technician theorizes that the signal-to-noise ratio in the area is causing the issue. Which of the following should the technician do NEXT? A. Run diagnostics on the relevant devices. B. Move the access point to a different location. C. Escalate the issue to the vendor's support team. D. Remove any electronics that might be causing interference.

D. Remove any electronics that might be causing interference.

An administrator is working with the local ISP to troubleshoot an issue. Which of the following should the ISP use to define the furthest point on the network that the administrator is responsible for troubleshooting? A. Firewall B. A CSU/DSU C. Demarcation point D. Router E. Patch panel

D. Router

A network technician needs to ensure that all files on a company's network can be moved in a safe and protected manner without interception from someone who is not the intended recipient. Which of the following would allow the network technician to meet these requirements? A. FTP B. TFTP C. SMTP D. SFTP

D. SFTP

Which of the following protocols would allow a secure connection to a Linux-based system? A. SMB B. FTP C. RDP D. SSH

D. SSH

After HVAC failures caused network outages, the support team decides to monitor the temperatures of all the devices. The network administrator cannot find a command that will display this information. Which of the following will retrieve the necessary information? A. SNMP OID values B. NetFlow data export C. Network baseline configurations D. Security information and event management

D. Security information and event management

A systems operator is granted access to a monitoring application, configuration application, and timekeeping application. The operator is denied access to the financial and project management applications by the system's security configuration. Which of the following BEST describes the security principle in use? A. Network access control B. Least privilege C. Multifactor authentication D. Separation of duties

D. Separation of duties

Which of the following types of datacenter architectures will MOST likely be used in a large SDN and can be extended beyond the datacenter? A. iSCSI B. FCoE C. Three-tiered network D. Spine and leaf E. Top-of-rack switching

D. Spine and leaf

Which of the following is the primary function of the core layer of the three-tiered model? A. Routing B. Repeating C. Bridging D. Switching

D. Switching

After a critical power issue, the network team was not receiving UPS status notifications. The network team would like to be alerted on these status changes.Which of the following would be BEST to use for these notifications? A. Traps B. MIB C. NetFlow D. Syslog

D. Syslog

During a client audit, a network analyst is tasked with recommending changes to upgrade the client network and readiness. A field technician has submitted the following report: >>Building B is connected to Building A via site-to-site directional antennas. >>Thirty additional users have been added recently and are not shown on the network map. >>The IT closet and storage room share a space that has poor ventilation . >>Performance reports show optimal network performance but little on system health. Based on this report, which of the following metrics or sensors would be the BEST recommendation to the client? A. Electrical B. Humidity C. Flooding D. Temperature

D. Temperature

Which of the following would be used to expedite MX record updates to authoritative NSs? A. UDP forwarding B. DNS caching C. Recursive lookup D. Time to live

D. Time to live

Which of the following OSI model layers is where a technician would view UDP information? A. Physical B. Data link C. Network D. Transport

D. Transport

To comply with industry requirements, a security assessment on the cloud server should identify which protocols and weaknesses are being exposed to attackers on the Internet. Which of the following tools is the MOST appropriate to complete the assessment? A. Use tcpdump and parse the output file in a protocol analyzer. B. Use an IP scanner and target the cloud WAN network addressing. C. Run netstat in each cloud server and retrieve the running processes. D. Use nmap and set the servers' public IPs as the targets.

D. Use nmap and set the servers' public IPs as the targets.

A user reports that a new VoIP phone works properly, but the computer that is connected to the phone cannot access any network resources. Which of the following MOST likely needs to be configured correctly to provide network connectivity to the computer? A. Port duplex settings B. Port aggregation C. ARP settings D. VLAN tags E. MDIX settings

D. VLAN tags

Which of the following is conducted frequently to maintain an updated list of a system's weaknesses? A. Penetration test B. Posture assessment C. Risk assessment D. Vulnerability scan

D. Vulnerability scan

A technician is deploying a new SSID for an industrial control system. The control devices require the network to use encryption that employs TKIP and a symmetrical password to connect. Which of the following should the technician configure to ensure compatibility with the control devices? A. WPA2-Enterprise B. WPA-Enterprise C. WPA-PSK D. WPA2-PSK

D. WPA2-PSK

A network manager is configuring switches in IDFs to ensure unauthorized client computers are not connecting to a secure wired network. Which of the following is the network manager MOST likely performing? A. Disabling unneeded switchports B. Changing the default VLAN C. Configuring DHCP snooping D. Writing ACLs to prevent access to the switch

D. Writing ACLs to prevent access to the switch

A network administrator is troubleshooting an issue with a new Internet connection. The ISP is asking detailed questions about the configuration of the router that the network administrator is troubleshooting. Which of the following commands is the network administrator using? (Choose two.) A. tcpdump B. show config C. hostname D. show route E. netstat F. show ip arp

D. show route E. netstat

A user calls the help desk to report being unable to reach a file server. The technician logs in to the user's computer and verifies that pings fail to respond back when trying to reach the file server. Which of the following would BEST help the technician verify whether the file server is reachable? A. netstat B. ipconfig C. nslookup D. traceroute

D. traceroute

An engineer is reviewing the implementation requirements for an upcoming project. The basic requirements identified by the customer include the following: ✑ WLAN architecture supporting speeds in excess of 150 Mbps ✑ Clientless remote network access ✑ Port-based network access control Which of the following solution sets properly addresses all of the identified requirements? A. 802.11a, IPSec VPN, 802.1x B. 802.11ac, MPLS, 802.3 C. 802.11b, PPTP, 802.1x D. 802.11g, MS-CHAP, 802.16 E. 802.11n, SSL-VPN, 802.1x

E. 802.11n, SSL-VPN, 802.1x

An IT director is setting up new disaster and HA policies for a company. Limited downtime is critical to operations. To meet corporate requirements, the director set up two different datacenters across the country that will stay current on data and applications. In the event of an outage, the company can immediately switch from one datacenter to another. Which of the following does this BEST describe? A. A warm site B. Data mirroring C. Multipathing D. Load balancing E. A hot site

E. A hot site

To access production applications and data, developers must first connect remotely to a different server. From there, the developers are able to access production data. Which of the following does this BEST represent? A. A management plane B. A proxy server C. An out-of-band management device D. A site-to-site VPN E. A jump box

E. A jump box

Which of the following would be used to enforce and schedule critical updates with supervisory approval and include backup plans in case of failure? A. Business continuity plan B. Onboarding and offboarding policies C. Acceptable use policy D. System life cycle E. Change management

E. Change management

A network administrator has received calls every day for the past few weeks from three users who cannot access the network. The administrator asks all the users to reboot their PCs, but the same users still cannot access the system. The following day, three different users report the same issue, and the administrator asks them all to reboot their PCs; however, this does not fix the issue. Which of the following is MOST likely occurring? A. Incorrect firewall settings B. Inappropriate VLAN assignment C. Hardware failure D. Overloaded CAM table in switch E. DHCP scope exhaustion

E. DHCP scope exhaustion

A network administrator installed an additional IDF during a building expansion project. Which of the following documents need to be updated to reflect the change? (Choose two.) A. Data loss prevention policy B. BYOD policy C. Acceptable use policy D. Non-disclosure agreement E. Disaster recovery plan F. Physical network diagram

E. Disaster recovery plan F. Physical network diagram

A technician is upgrading the firmware on an older KVM switch. The specifications call for a serial port to connect to the computer on one side, and an Ethernet jack to connect to the switch on the other side. Which of the following connectors does the technician need for this cable? (Choose two.) A. RG-9 B. DB-9 C. RJ-11 D. DB-25 E. RJ-45 F. BNC

E. RJ-45 B. DB-9

A network administrator configures an email server to use secure protocols. When the upgrade is completed, which of the following ports on the firewall should be configured to allow for connectivity? (Choose three.) A. TCP 25 B. TCP 110 C. TCP 143 D. TCP 389 E. TCP 587 F. TCP 993 G. TCP 995

E. TCP 587 F. TCP 993 G. TCP 995

Users in a branch can access an in-house database server, but it is taking too long to fetch records. The analyst does not know whether the issue is being caused by network latency. Which of the following will the analyst MOST likely use to retrieve the metrics that are needed to resolve this issue? A. SNMP B. Link state C. Syslog D. QoS E. Traffic shaping

E. Traffic shaping

A technician is assisting a user who cannot access network resources when the workstation is connected to a VoIP phone. The technician identifies the phone as faulty and replaces it. According to troubleshooting methodology, which of the following should the technician do NEXT? A. Implement the solution. B. Test the theory. C. Duplicate the issue. D. Document the findings. E. Verify functionality.

E. Verify functionality.

A network administrator is implementing OSPF on all of a company's network devices. Which of the following will MOST likely replace all the company's hubs? A. A Layer 3 switch B. A proxy server C. A NGFW D. A WLAN controller

A. A Layer 3 switch

Which of the following is used to prioritize Internet usage per application and per user on the network? A. Bandwidth management B. Load balance routing C. Border Gateway Protocol D. Administrative distance

A. Bandwidth management

A client recently added 100 users who are using VMs. All users have since reported slow or unresponsive desktops. Reports show minimal network congestion, zero packet loss, and acceptable packet delay. Which of the following metrics will MOST accurately show the underlying performance issues? (Choose two.) A. CPU usage B. Memory C. Temperature D. Bandwidth E. Latency F. Jitter

A. CPU usage B. Memory

A technician is installing a cable modem in a SOHO. Which of the following cable types will the technician MOST likely use to connect a modem to the ISP? A. Coaxial B. Single-mode fiber C. Cat 6e D. Multimode fiber

A. Coaxial

A company built a new building at its headquarters location. The new building is connected to the company's LAN via fiber-optic cable. Multiple users in the new building are unable to access the company's intranet site via their web browser, but they are able to access internet sites. Which of the following describes how the network administrator can resolve this issue? A. Correct the DNS server entries in the DHCP scope B. Correct the external firewall gateway address C. Correct the NTP server settings on the clients D. Correct a TFTP Issue on the company's server

A. Correct the DNS server entries in the DHCP scope

A technician wants to deploy a new wireless network that comprises 30 WAPs installed throughout a three-story office building. All the APs will broadcast the same SSID for client access. Which of the following BEST describes this deployment? A. Extended service set B. Basic service set C. Unified service set D. Independent basic service set

A. Extended service set

A company hired a technician to find all the devices connected within a network. Which of the following software tools would BEST assist the technician in completing this task? A. IP scanner B. Terminal emulator C. NetFlow analyzer D. Port scanner

A. IP scanner

A network technician receives a call from a user in the accounting department stating that Internet connectivity has been lost after receiving a new workstation. No other users in accounting are reporting similar issues. The network technician is able to ping the machine from the accounting department's router, but is not able to ping the machine from the IT network. Which of the following is MOST likely the cause? A. Incorrect default gateway B. Duplicate IP address C. Misconfigured OSPF D. Improper VLAN assignment

A. Incorrect default gateway

A technician is installing a new wireless badging system on a hospital network. The requirements of the badging system are for it to have its own SSID and low power levels. The badging system has to cover 99.9% of the hospital. Which of the following is the BEST action to take to meet the system requirements? A. Install additional WAPs B. Install external antennas C. Move the WAPs closer to the more populated area D. Change the antenna types

A. Install additional WAPs

A technician is deploying a new switch model and would like to add it to the existing network monitoring software. The technician wants to know what metrics can be gathered from a given switch. Which of the following should the technician utilize for the switch? A. MIB B. Trap C. Syslog D. Audit log Reveal Solution

A. MIB

Which of the following provides redundancy on a file server to ensure the server is still connected to a LAN even in the event of a port failure on a switch? A. NIC teaming B. Load balancer C. RAID array D. PDUs

A. NIC teaming

A company is experiencing accessibility issues reaching services on a cloud-based system.Which of the following monitoring tools should be used to locate possible outages? A. Network analyzer B. Packet analyzer C. Protocol analyzer D. Network sniffer

A. Network analyzer - A network analyzer is a useful tool, helping you do things like track traffic and malicious usage on the network.

A network administrator discovers that users in an adjacent building are connecting to the company's guest wireless network to download inappropriate material.Which of the following can the administrator do to MOST easily mitigate this issue? A. Reduce the wireless power levels B. Adjust the wireless channels C. Enable wireless client isolation D. Enable wireless port security

A. Reduce the wireless power levels

Which of the following factors should be considered when evaluating a firewall to protect a datacenter's east-west traffic? A. Replication traffic between an on-premises server and a remote backup facility B. Traffic between VMs running on different hosts C. Concurrent connections generated by Internet DDoS attacks D. VPN traffic from remote offices to the datacenter's VMs

A. Replication traffic between an on-premises server and a remote backup facility

A technician is installing a new fiber connection to a network device in a datacenter. The connection from the device to the switch also traverses a patch panel connection. The chain of connections is in the following order: ✑ Device✑ LC/LC patch cable ✑ Patch panel✑ Cross-connect fiber cable ✑ Patch panel✑ LC/LC patch cable ✑ Switch The connection is not working. The technician has changed both patch cables with known working patch cables. The device had been tested and was working properly before being installed. Which of the following is the MOST likely cause of the issue? A. TX/RX is reversed B. An incorrect cable was used C. The device failed during installation D. Attenuation is occurring

A. TX/RX is reversed

A branch of a company recently switched to a new ISP. The network engineer was given a new IP range to assign. The ISP assigned 196.26.4.0/26, and the branch gateway router now has the following configurations on the interface that peers to the ISP: IP address: 192.24.4.30 Subnet Mask: 255.255.255.224 Gateway: 196.24.4.1 The network engineer observes that all users have lost Internet connectivity. Which of the following describes the issue? A. The incorrect subnet mask was configured B. The incorrect gateway was configured C. The incorrect IP address was configured D. The incorrect interface was configured

A. The incorrect subnet mask was configured

A network device is configured to send critical events to a syslog server; however, the following alerts are not being received: - Severity 5 LINK-UPDOWN: Interface 1/1, changed state to down - Severity 5 LINK-UPDOWN: Interface 1/3, changed state to down Which of the following describes the reason why the events are not being received? A. The network device is not configured to log that level to the syslog server B. The network device was down and could not send the event C. The syslog server is not compatible with the network device D. The syslog server did not have the correct MIB loaded to receive the message

A. The network device is not configured to log that level to the syslog server

Wireless users are reporting intermittent internet connectivity. Connectivity is restored when the users disconnect and reconnect, utilizing the web authentication process each time. The network administrator can see the devices connected to the APs at all times. Which of the following steps will MOST likely determine the cause of the issue? A. Verify the session time-out configuration on the captive portal settings B. Check for encryption protocol mismatch on the client's wireless settings C. Confirm that a valid passphrase is being used during the web authentication D. Investigate for a client's disassociation caused by an evil twin AP

A. Verify the session time-out configuration on the captive portal settings

A network administrator needs to query the NSs for a remote application. Which of the following commands would BEST help the administrator accomplish this task? A. dig B. arp C. show interface D. hostname

A. dig

Given the following information:Which of the following command-line tools would generate this output? Protocol local foreign address state TCP 127.0.0.1:57779 Desktop - Open: 57780 established TCP 127.0.0.1:57780 Desktop - Open: 57779 established Which of the following command-line tools would generate this output? A. netstat B. arp C. dig D. tracert

A. netstat

A technician, Joe, needs to troubleshoot a recently installed NIC. He decides to ping the local loopback address.Which of the following is a valid IPv4 loopback address? A. 10.0.0.1 B. 127.0.0.1 C. 172.16.1.1 D. 192.168.1.1

B. 127.0.0.1

A technician is installing a high-density wireless network and wants to use an available frequency that supports the maximum number of channels to reduce interference. Which of the following standard 802.11 frequency ranges should the technician look for while reviewing WAP specifications? A. 2.4GHz B. 5GHz C. 6GHz D. 900MHz

B. 5GHz

A systems administrator needs to improve WiFi performance in a densely populated office tower and use the latest standard. There is a mix of devices that use2.4 GHz and 5 GHz. Which of the following should the systems administrator select to meet this requirement? A. 802.11ac B. 802.11ax C. 802.11g D. 802.11n Hide Solution

B. 802.11ax

Which of the following is MOST likely to generate significant East-West traffic in a datacenter? A. A backup of a large video presentation to cloud storage for archival purposes B. A duplication of a hosted virtual server to another physical server for redundancy C. A download of navigation data to a portable device for offline access D. A query from an IoT device to a cloud-hosted server for a firmware update Reveal Solution Discussion 5

B. A duplication of a hosted virtual server to another physical server for redundancy

Which of the following DNS records works as an alias to another record? A. AAAA B. CNAME C. MX D. SOA

B. CNAME

A technician is troubleshooting a network switch that seems to stop responding to requests intermittently whenever the logging level is set for debugging. Which of the following metrics should the technician check to begin troubleshooting the issue? A. Audit logs B. CPU utilization C. CRC errors D. Jitter

B. CPU utilization

Which of the following would MOST likely be used to review previous upgrades to a system? A. Business continuity plan B. Change management C. System life cycle D. Standard operating procedures

B. Change management

A technician attempts to replace a switch with a new one of similar model from the same vendor. When the technician moves the fiber and SFP plug, the switch does not completely boot up. Considering that the config files are the same, which of the following is the MOST likely cause of the failure? A. Damaged fiber B. Corrupted operating system C. VLAN mismatch D. Bad port

B. Corrupted operating system

A technician has racked a new access switch and has run multimode fiber to a new location. After installing an extended-range 10Gb SFP in the core switch, the technician installed a 10Gb SFP in the access switch and connected the port to the new extension with a fiber jumper. However, the link does not display, and the technician cannot see light emitting from the core switch. Which of the following solutions is MOST likely to resolve the problem? A. Swap the fiber pairs in one of the SFPs B. Replace the jumpers with single-mode fiber C. Set the correct MTU on the new interface D. Install an optic that matches the fiber type Reveal Solution Discussion 15

B. Replace the jumpers with single-mode fiber

Which of the following would be BEST to use to detect a MAC spoofing attack? A. Internet Control Message Protocol B. Reverse Address Resolution Protocol C. Dynamic Host Configuration Protocol D. Internet Message Access Protocol

B. Reverse Address Resolution Protocol

A user tries to ping 192.168.1.100 from the command prompt on the 192.168.2.101 network but gets the following response: U.U.U.U. Which of the following needs to be configured for these networks to reach each other? A. Network address translation B. Default gateway C. Loopback D. Routing protoco

B. Default gateway

A technician is helping a SOHO determine where to install the server.Which of the following should be considered FIRST? A. Compatibility requirements B. Environment limitations C. Cable length D. Equipment limitations

B. Environment limitations SOHO stands for Small Office / Home Office. A SOHO network is typically a small network. Being a small network, it is unlikely that it will have a datacenter or even a dedicated server room. Any servers installed in the network will still have the same environmental requirements as servers in a large network. The servers should be in a secure isolated area if required. The servers also need to be kept cool and dry. Therefore, the first consideration in a SOHO office is "Environment limitations": where the servers and other network hardware will be located.

Which of the following network devices use ACLs to prevent unauthorized access into company systems? A. IDS B. Firewall C. Content filter D. Load balancer

B. Firewall - A firewall is a system designed to prevent unauthorized access to or from a private network.

Which of the following service models would MOST likely be used to replace on-premises servers with a cloud solution? A. PaaS B. IaaS C. SaaS D. Disaster recovery as a Service (DRaaS)

B. IaaS

A technician just completed a new external website and setup access rules in the firewall. After some testing, only users outside the internal network can reach the site. The website responds to a ping from the internal network and resolves the proper public address.Which of the following could the technician do to fix this issue while causing internal users to route to the website using an internal address? A. Configure NAT on the firewall B. Implement a split horizon DNS C. Place the server in the DMZ D. Adjust the proper internal ACL

B. Implement a split horizon DNS - Split horizon DNS (also known as Split Brain DNS) is a mechanism for DNS servers to supply different DNS query results depending on the source of the request.

A network is experiencing a number of CRC errors during normal network communication. At which of the following layers of the OSI model will the administratorMOST likely start to troubleshoot? A. Layer 1 B. Layer 2 C. Layer 3 D. Layer 4 E. Layer 5 F. Layer 6 G. Layer 7

B. Layer 2

An administrator is writing a script to periodically log the IPv6 and MAC addresses of all the devices on a network segment. Which of the following switch features will MOST likely be used to assist with this task? A. Spanning Tree Protocol B. Neighbor Discovery Protocol C. Link Aggregation Control Protocol D. Address Resolution Protocol

B. Neighbor Discovery Protocol

A firewall administrator is implementing a rule that directs HTTP traffic to an internal server listening on a non-standard socket. Which of the following types of rules is the administrator implementing? A. NAT B. PAT C. STP D. SNAT E. ARP

B. PAT

A company has a new offering to provide access to their product from a central location rather than clients internally hosting the product on the client network. The product contains sensitive corporate information that should not be accessible from one client to another.This is an example of which of the following? A. Public SaaS B. Private SaaS C. Hybrid IaaS D. Community IaaS

B. Private SaaS SaaS stands for Software as a Service. This is a cloud model whereby a service provider provides a software service and makes the service available to customers over the Internet.

A network administrator walks into a datacenter and notices an unknown person is following closely. The administrator stops and directs the person to the security desk. Which of the following attacks did the network administrator prevent? A. Evil twin B. Tailgating C. Piggybacking D. Shoulder surfing

B. Tailgating

The network administrator is informed that a user's email password is frequently hacked by brute-force programs. Which of the following policies should the network administrator implements to BEST mitigate this issue? (Choose two.) A. Captive portal B. Two-factor authentication C. Complex passwords D. Geofencing E. Role-based access F. Explicit deny

B. Two-factor authentication C. Complex passwords

A host has been assigned the address 169.254.0.1.This is an example of which of the following address types? A. APIPA B. MAC C. Static D. Public

Correct Answer: A 🗳️APIPA stands for Automatic Private IP Addressing and is a feature of Windows operating systems. When a client computer is configured to use automatic addressing (DHCP), APIPA assigns a class B IP address from 169.254.0.0 to 169.254.255.255 to the client when a DHCP server is unavailable.

Which of the following network elements enables unified communication devices to connect to and traverse traffic onto the PSTN? A. Access switch B. UC gateway C. UC server D. Edge router

B. UC gateway People use many methods of communication nowadays such as voice, email, video and instant messaging. People also use many different devices to communicate such as smart phones, PDAs, computers etc. Unified Communications (UC) enables people using different modes of communication, different media, and different devices to communicate with anyone, anywhere, at any time.Many communication methods use digital signals. To send a digital signal over the analog PSTN, you need a gateway (in this case a UC Gateway) to convert the digital signals into an analog format that can be sent over the PSTN.

A technician needs to limit the amount of broadcast traffic on a network and allow different segments to communicate with each other.Which of the following options would satisfy these requirements? A. Add a router and enable OSPF. B. Add a layer 3 switch and create a VLAN. C. Add a bridge between two switches. D. Add a firewall and implement proper ACL.

B. We can limit the amount of broadcast traffic on a switched network by dividing the computers into logical network segments called VLANs.A virtual local area network (VLAN) is a logical group of computers that appear to be on the same LAN even if they are on separate IP subnets.

Which of the following is the LARGEST MTU for a standard Ethernet frame? A. 1452 B. 1492 C. 1500 D. 2304

C. 1500

A network technician is manually configuring the network settings for a new device and is told the network block is 192.168.0.0/20. Which of the following subnets should the technician use? A. 255.255.128.0 B. 255.255.192.0 C. 255.255.240.0 D. 255.255.248.0

C. 255.255.240.0

The management team needs to ensure unnecessary modifications to the corporate network are not permitted and version control is maintained. Which of the following documents would BEST support this? A. An incident response plan B. A business continuity plan C. A change management policy D. An acceptable use policy

C. A change management policy

Company policies require that all network infrastructure devices send system level information to a centralized server.Which of the following should be implemented to ensure the network administrator can review device error information from one central location? A. TACACS+ server B. Single sign-on C. SYSLOG server D. Wi-Fi analyzer

C. SYSLOG server Syslog is a protocol designed to send log entries generated by a device or process called a facility across an IP network to a message collector, called a syslog server. A syslog message consists of an error code and the severity of the error. A syslog server would enable the network administrator to view device error information from a central location.

A technician would like to track the improvement of the network infrastructure after upgrades.Which of the following should the technician implement to have an accurate comparison? A. Regression test B. Speed test C. Baseline D. Statement of work

C. Baseline - In networking, baseline can refer to the standard level of performance of a certain device or to the normal operating capacity for your whole network. High-quality documentation should include a baseline for network performance, because you and your client need to know what "normal" looks like in order to detect problems before they develop into disasters.

A network technician is reviewing the interface counters on a router interface. The technician is attempting to confirm a cable issue. Given the following information: Metric Value Last cleared - 7 minutes, 34 seconds # of packets output - 6915 # of packets input - 270 CRCs - 183 Giants - 0 Runts - 0 Multicast - 14 Which of the following metrics confirms there is a cabling issue? A. Last cleared B. Number of packets output C. CRCs D. Giants E. Multicasts

C. CRCs

The network install is failing redundancy testing at the MDF. The traffic being transported is a mixture of multicast and unicast signals. Which of the following would BEST handle the rerouting caused by the disruption of service? A. Layer 3 switch B. Proxy server C. Layer 2 switch D. Smart hub

Correct Answer: A 🗳️The question states that the traffic being transported is a mixture of multicast and unicast signals. There are three basic types of network transmissions: broadcasts, which are packets transmitted to every node on the network; unicasts, which are packets transmitted to just one node; and multicasts, which are packets transmitted to a group of nodes.

According to troubleshooting methodology, which of the following should the technician do NEXT after determining the most likely probable cause of an issue? A. Establish a plan of action to resolve the issue and identify potential effects B. Verify full system functionality and, if applicable, implement preventive measures C. Implement the solution or escalate as necessary D. Test the theory to determine the cause

D. Test the theory to determine the cause

A UTM is deployed on the external edge of the main corporate office. The office connects to the WAN port of the edge router. The edge router at the main office connects to the remote offices using GRE IPSec tunnels. A network administrator notices that a worm that was not detected by the UTM has spread from the remote sites into the corporate network. The UTM currently has traffic rules applied that should block the port used by the worm. Which of the following steps would MOST likely correct this issue? A. Move the UTM onto the LAN side of the network B. Enable TLS inspection on the UTM C. Enable stateful inspection on the UTM D. Configure the UTM to deny encrypted files from being transferred

C. Enable stateful inspection on the UTM

A technician is searching for a device that is connected to the network and has the device's physical network address. Which of the following should the technician review on the switch to locate the device's network port? A. IP route table B. VLAN tag C. MAC table D. QoS tag

C. MAC table

A SQL server needs several terabytes of disk space available to do an uncompressed backup of a database.Which of the following devices would be the MOST cost efficient to use for this backup? A. iSCSI SAN B. FCoE SAN C. NAS D. USB flash drive

C. NAS -A NAS is a Network Attached Storage device; typically a bunch of cheap hard disks, usually arranged in a Raid and consisting of either SAS (serial attached SCSI) or Sata disks just like the ones in most desktops.A NAS is essentially a file server that connects to an Ethernet network and is configured with a TCP/IP address. A NAS supports Windows networking and works at the file level as opposed to a SAN (Storage Area Network) which works at the block level when dealing with data. You can access file shares on a NAS in the same way that you would access file shares on a file server.A NAS is a much cheaper option than a SAN.

A network engineer performs the following tasks to increase server bandwidth: ✑ Connects two network cables from the server to a switch stack ✑ Configure LACP on the switchportsVerifies the correct configurations on the switch interfaces Which of the following needs to be configured on the server? A. Load balancing B. Multipathing C. NIC teaming D. Clustering

C. NIC teaming

A technician is configuring a network switch to be used in a publicly accessible location. Which of the following should the technician configure on the switch to prevent unintended connections? A. DHCP snooping B. Geofencing C. Port security D. Secure SNMP

C. Port security

After a recent breach, the security technician decides the company needs to analyze and aggregate its security logs.Which of the following systems should be used? A. Event log B. Syslog C. SIEM D. SNMP

C. SIEM - Using a Security information and event management (SIEM) product, the security logs can be analyzed and aggregated.SIEM is a term for software products and services combining security information management (SIM) and security event management (SEM).

A network topology that utilizes a central device with point-to-point connections to all other devices is which of the following? A. Star B. Ring C. Mesh D. Bus

Correct Answer: A 🗳️A Star network is the most common network in use today. Ethernet networks with computers connected to a switch (or a less commonly a hub) form a star network.

A network technician has implemented ACLs to limit access to cloud-based file storage. Which of the following security mechanisms has the technician enforced? A. DLP B. IDS C. WAF D. WPA E. TPM

C. WAF

Within the realm of network security, Zero Trust: A. prevents attackers from moving laterally through a system. B. allows a server to communicate with outside networks without a firewall. C. block malicious software that is too new to be found in virus definitions. D. stops infected files from being downloaded via websites.

C. block malicious software that is too new to be found in virus definitions.

A technician is connecting a NAS device to an Ethernet network.Which of the following technologies will be used to encapsulate the frames? A. HTTPS B. Fibre channel C. iSCSI D. MS-CHAP

C. iSCSI -A NAS or a SAN will use either iSCSI or Fiber Channel. In this question, the NAS is connected to an Ethernet network. Therefore, iSCSI will most likely be used(Fiber Channel over Ethernet (FCoE) can be used but is less common). ISCSI means Internet SCSI. ISCSI uses TCP (Transmission Control Protocol) which enables it to be used over TCP/IP networks such as Ethernet.For Fiber channel, a separate Fiber Channel network would be required unless FCoE is used.

A VLAN with a gateway offers no security without the addition of: A. An ACL. B. 802.1w. C. A RADIUS server. D. 802.1d.

Correct Answer: A 🗳️A gateway in a VLAN connects to another network. The other network can be the Internet, another subnet on the network or another VLAN. The gateway will be a router and for security, it should also be a firewall.

An administrator notices an unused cable behind a cabinet that is terminated with a DB-9 connector.Which of the following protocols was MOST likely used on this cable? A. RS-232 B. 802.3 C. ATM D. Tokenring

Correct Answer: A 🗳️A DB-9 connector is used on serial cables. Serial cables use the RS-232 protocol which defines the functions of the 9 pins in a DB-9 connector.

Joe, a network technician, is setting up a DHCP server on a LAN segment.Which of the following options should Joe configure in the DHCP scope, in order to allow hosts on that LAN segment using dynamic IP addresses, to be able to access the Internet and internal company servers? (Select THREE). A. Default gateway B. Subnet mask C. Reservations D. TFTP server E. Lease expiration time of 1 day F. DNS servers G. Bootp

Correct Answer: ABF 🗳️The question states that the client computers need to access the Internet as well as internal company servers. To access the Internet, the client computers need to be configured with an IP address with a subnet mask (answer B) and the address of the router that connects the company network to the Internet. This is known as the default gateway (answer A).To be able to resolve web page URLs to web server IP addresses, the client computers need to be configured with the address of a DNS server (answer F).

Which of the following connection types is used to terminate DS3 connections in a telecommunications facility? A. 66 block B. BNC C. F-connector D. RJ-11

Correct Answer: B 🗳️A DS3 (Digital Signal 3) is also known as a T3 line with a maximum bandwidth of 44.736 Mbit/s. DS3 uses 75 ohm coaxial cable and BNC connectors.

Which of the following network topologies has a central, single point of failure? A. Ring B. Star C. Hybrid D. Mesh

Correct Answer: B 🗳️A Star network is the most common network in use today. Ethernet networks with computers connected to a switch (or a less commonly a hub) form a star network.

Which of the following is an example of an IPv4 address? A. 192:168:1:55 B. 192.168.1.254 C. 00:AB:FA:B1:07:34 D. ::1

Correct Answer: B 🗳️AnIPv4 address is notated as four decimal numbers each between 0 and 255 separated by dots (xxx.xxx.xxx.xxx). Each number is known as an octet as it represents eight binary bits. All four octets make up a 32-bit binary IPv4 address.In this question, 192.168.1.254 is a valid IPv4 address.

It has been determined by network operations that there is a severe bottleneck on the company's mesh topology network. The field technician has chosen to use log management and found that one router is making routing decisions slower than others on the network.This is an example of which of the following? A. Network device power issues B. Network device CPU issues C. Storage area network issues D. Delayed responses from RADIUS

Correct Answer: B 🗳️Network processors (CPUs) are used in the manufacture of many different types of network equipment such as routers. Such a CPU on a router could become bottleneck for the network traffic. The routing through that device would then slow down.

Which of the following describes an IPv6 address of ::1? A. Broadcast B. Loopback C. Classless D. Multicast

Correct Answer: B 🗳️The loopback address is a special IP address that is designated for the software loopback interface of a computer. The loopback interface has no hardware associated with it, and it is not physically connected to a network. The loopback address causes any messages sent to it to be returned to the sending system. The loopback address allows client software to communicate with server software on the same computer. Users specify the loopback address which will point back to the computer's TCP/IP network configuration.In IPv4, the loopback address is 127.0.0.1.In IPv6, the loopback address is 0:0:0:0:0:0:0:1, which can be shortened to ::1

A network technician must utilize multimode fiber to uplink a new networking device.Which of the following Ethernet standards could the technician utilize? (Select TWO). A. 1000Base-LR B. 1000Base-SR C. 1000Base-T D. 10GBase-LR E. 10GBase-SR F. 10GBase-T

Correct Answer: BE 🗳️1000BASE-SX is a fiber optic Gigabit Ethernet standard for operation over multi-mode fiber with a distance capability between 220 meters and 550 meters.10Gbase-SRis a 10 Gigabit Ethernet LAN standard for operation over multi-mode fiber optic cable and short wavelength signaling.

Which of the following is MOST likely to use an RJ-11 connector to connect a computer to an ISP using a POTS line? A. Multilayer switch B. Access point C. Analog modem D. DOCSIS modem

Correct Answer: C 🗳️Before ADSL broadband connections became the standard for Internet connections, computers used analog modems to connect to the Internet. By todays standards, analog modems are very slow typically offering a maximum bandwidth of 56Kbps.An analog modem (modulator/demodulator) converts (modulates) a digital signal from a computer to an analog signal to be transmitted over a standard (POTS) phone line

When convergence on a routed network occurs, which of the following is true? A. All routers are using hop count as the metric B. All routers have the same routing table C. All routers learn the route to all connected networks D. All routers use route summarization

Correct Answer: C 🗳️Routers exchange routing topology information with each other by using a routing protocol. When all routers have exchanged routing information with all other routers within a network, the routers are said to have converged. In other words: In a converged network all routers "agree" on what the network topology looks like.

Which of the following provides accounting, authorization, and authentication via a centralized privileged database, as well as, challenge/response and password encryption? A. Multifactor authentication B. ISAKMP C. TACACS+ D. Network access control

Correct Answer: C 🗳️TACACS+ (Terminal Access Controller Access-Control System Plus) is a protocol that handles authentication, authorization, and accounting (AAA) services.

A network engineer needs to set up a topology that will not fail if there is an outage on a single piece of the topology. However, the computers need to wait to talk on the network to avoid congestions.Which of the following topologies would the engineer implement? A. Star B. Bus C. Ring D. Mesh

Correct Answer: C 🗳️Token Ring networks are quite rare today. Token Ring networks use the ring topology. Despite being called a Ring topology, the ring is logical and the physical network structure often forms a star topology with all computers on the network connecting to a central multistation access unit (MAU).

A company wants to create highly available datacenters.Which of the following will allow the company to continue to maintain an Internet presence at all sites in the event that a WAN circuit at one site goes down? A. Load balancer B. VRRP C. OSPF D. BGP

Correct Answer: D 🗳️A collection of networks that fall within the same administrative domain is called an autonomous system (AS). In this question, each datacenter will be an autonomous system.The routers within an AS use an interior gateway protocol, such as the Routing Information Protocol (RIP) or the Open Shortest Path First (OSPF) protocol, to exchange routing information among themselves. At the edges of an AS are routers that communicate with the other ASs on the Internet, using an exterior gateway protocol such as the Border Gateway Protocol (BGP).If a WAN link goes down, BGP will route data through another WAN link if redundant WAN links are available.

A technician needs to set aside addresses in a DHCP pool so that certain servers always receive the same address.Which of the following should be configured? A. Leases B. Helper addresses C. Scopes D. Reservations

Correct Answer: D 🗳️A reservation is used in DHCP to ensure that a computer always receives the same IP address. To create a reservation, you need to know the hardware MAC address of the network interface card that should receive the IP address.

An F-connector is used on which of the following types of cabling? A. CAT3 B. Single mode fiber C. CAT5 D. RG6

Correct Answer: D 🗳️An F connector is a coaxial RF connector commonly used for terrestrial television, cable television and universally for satellite television and cable modems, usually with RG-6/U cable or, in older installations, with RG-59/U cable.

An organization requires a second technician to verify changes before applying them to network devices. When checking the configuration of a network device, a technician determines that a coworker has improperly configured the AS number on the device.This would result in which of the following? A. The OSPF not-so-stubby area is misconfigured B. Reduced wireless network coverage C. Spanning tree ports in flooding mode D. BGP routing issues

Correct Answer: D 🗳️BGP (Border Gateway Protocol) is used to route data between autonomous systems (ASs)A collection of networks that fall within the same administrative domain is called an autonomous system (AS).The routers within an AS use an interior gateway protocol, such as the Routing Information Protocol (RIP) or the Open Shortest Path First (OSPF) protocol, to exchange routing information among themselves. At the edges of an AS are routers that communicate with the other ASs on the Internet, using an exterior gateway protocol such as the Border Gateway Protocol (BGP).

Which of the following protocols uses label-switching routers and label-edge routers to forward traffic? A. BGP B. OSPF C. IS-IS D. MPLS

Correct Answer: D 🗳️In an MPLS network, data packets are assigned labels. Packet-forwarding decisions are made solely on the contents of this label, without the need to examine the packet itself.MPLS works by prefixing packets with an MPLS header, containing one or more labels.

A technician, Joe, has been tasked with assigning two IP addresses to WAN interfaces on connected routers.In order to conserve address space, which of the following subnet masks should Joe use for this subnet? A. /24 B. /32 C. /28 D. /29 E. /30

Correct Answer: E 🗳️An IPv4 address consists of 32 bits. in this question, the /30 subnet mask dictates that the first 30 bits of the IP address are used for network addressing and the remaining 2 bits are used for host addressing.

An administrator has a virtualization environment that includes a vSAN and iSCSI switching.Which of the following actions could the administrator take to improve the performance of data transfers over iSCSI switches? A. The administrator should configure the switch ports to auto-negotiate the proper Ethernet settings. B. The administrator should configure each vSAN participant to have its own VLAN. C. The administrator should connect the iSCSI switches to each other over inter-switch links (ISL). D. The administrator should set the MTU to 9000 on the each of the participants in the vSAN.

D. The administrator should set the MTU to 9000 on the each of the participants in the vSAN. By setting the MTU to 9000, there will be fewer but larger frames going over the network. Enabling jumbo frames can improve network performance by making data transmissions more efficient. The CPUs on switches and routers can only process one frame at a time. By putting a larger payload into each frame, the CPUs have fewer frames to process.

A user reports being unable to access network resources after making some changes in the office. Which of the following should a network technician do FIRST? A. Check the system's IP address B. Do a ping test against the servers C. Reseat the cables into the back of the PC D. Ask what changes were made

D. Ask what changes were made

A technician has been given a list of requirements for a LAN in an older building using CAT6 cabling.Which of the following environmental conditions should be considered when deciding whether or not to use plenum-rated cables? A. Workstation models B. Window placement C. Floor composition D. Ceiling airflow condition

D. Ceiling airflow condition In a large building, the plenum is the space between floors used to circulate air through the building. This space is also an ideal place to run computer network cabling. However, in the event of fire in the building, the network cables can be very hazardous because when they burn, the cable insulation gives off a poisonous smoke that gets circulated around the building. Furthermore, the burning cables help to spread the fire.

Which of the following would be used in an IP-based video conferencing deployment? (Select TWO). A. RS-232 B. 56k modem C. Bluetooth D. Codec E. SIP

D. Codec E. SIP The term "codec" is a concatenation of "encoder" and "decoder". In video conferencing, a codec is software (or can be hardware) that compresses (encodes) raw video data before it is transmitted over the network. A codec on the receiving video conferencing device will then decompress (decode) the video signal for display on the conferencing display.The Session Initiation Protocol (SIP) is a protocol for initiating an interactive user session that involves multimedia elements such as voice, chat, gaming, or in this case video.

An IT organization needs to optimize speeds for global content distribution and wants to reduce latency in high-density user locations. Which of the following technologies BEST meets the organization's requirements? A. Load balancing B. Geofencing C. Public cloud D. Content delivery network E. Infrastructure as a service

D. Content delivery network

A new cabling certification is being requested every time a network technician rebuilds one end of a Cat 6 (vendor-certified) cable to create a crossover connection that is used to connect switches. Which of the following would address this issue by allowing the use of the original cable? A. CSMA/CD B. LACP C. PoE+ D. MDIX

D. MDIX

When configuring a new server, a technician requests that an MX record be created in DNS for the new server, but the record was not entered properly.Which of the following was MOST likely installed that required an MX record to function properly? A. Load balancer B. FTP server C. Firewall DMZ D. Mail server

D. Mail server -A mail exchanger record (MX record) is a DNS record used by email servers to determine the name of the email server responsible for accepting email for the recipients domain.

Which of the following is used to authenticate remote workers who connect from offsite? (Select TWO). A. OSPF B. VTP trunking C. Virtual PBX D. RADIUS E. 802.1x

D. RADIUS E. 802.1x

Client devices cannot enter a network, and the network administrator determines the DHCP scope is exhausted. The administrator wants to avoid creating a newDHCP pool. Which of the following can the administrator perform to resolve the issue? A. Install load balancers B. Install more switches C. Decrease the number of VLANs D. Reduce the lease time

D. Reduce the lease time

A technician receives feedback that some users are experiencing high amounts of jitter while using the wireless network. While troubleshooting the network, the technician uses the ping command with the IP address of the default gateway and verifies large variations in latency. The technician thinks the issue may be interference from other networks and non-802.11 devices. Which of the following tools should the technician use to troubleshoot the issue? A. NetFlow analyzer B. Bandwidth analyzer C. Protocol analyzer D. Spectrum analyzer

D. Spectrum analyzer

Which of the following is the physical topology for an Ethernet LAN? A. Bus B. Ring C. Mesh D. Star

D. Star

Which of the following is used to define how much bandwidth can be used by various protocols on the network? A. Traffic shaping B. High availability C. Load balancing D. Fault tolerance A

Traffic shaping - Traffic shaping is used to control the bandwidth used by network traffic. In a corporate environment, business-related traffic may be given priority over other traffic.Traffic can be prioritized based on the ports used by the application sending the traffic. Delayed traffic is stored in a buffer until the higher priority traffic has been sent.


Kaugnay na mga set ng pag-aaral

Med Surg Ch. 59 Male Reproductive Disorders

View Set

Psych 102 Chapter 9: Language and Thoughts

View Set

Compensations-Benefits Topic 6-7

View Set

Simulation Lab 1.1: Module 01 Configure Microsoft Windows Sandbox

View Set