Assessment Test
Which of the following are types of denial-of-service attacks? (Choose all that apply.) A. Ping of Death B. Stacheldraht C. SYN flood D. Virus FloodSyn
A, B, C. A denial-of-service (DoS) attack prevents users from accessing the system. All of the options are possible denial-of-service attacks except Virus FloodSyn.
Which of the following are considered cabling issues? (Choose all that apply.) A. Crosstalk B. Shorts C. Open impedance mismatch D. DNS configurations
A, B, C. Because most of today's networks still consist of large amounts of copper cable, they can continue to suffer from the physical issues (the options are not a complete list) that have plagued all networks since the very beginning of networking.
Which of the following are WAN protocols or technologies? (Choose all that apply.) A. ATM B. ISDN C. MPLS D. RIP
A, B, C. Routing Information Protocol (RIP) is not a WAN protocol but a routing protocol used in local area connections.
Which of the following are not distance vector routing protocols? (Choose all that apply.) A. OSPF B. RIP C. RIPv2 D. IS-IS
A, D. RIP and RIPv2 are distance vector routing protocols. OSPF and IS-IS are link state.
Which two arp utility switches perform the same function? A. -g B. -Z C. -d D. -a E. -h F. -b
A, D. The arp utility's -a and -g switches perform the same function. They both show the current ARP cache.
Your boss asks you why you just put in a requisition to buy a bunch of switches. He said he just bought you a bunch of hubs five years ago! Why did you buy the switches? A. Because each switch port is its own collision domain B. The cable connecting devices to the hub wore out, and switches were cheaper than new cable C. There were too many broadcast domains, and a switch breaks up broadcast domains by default D. The hubs kept repeating signals but quit recognizing frames and data structures
A. For the most part, switches are not cheap; however, one of the biggest benefits of using switches instead of hubs in your internetwork is that each switch port is actually its own collision domain. A hub creates one large collision domain. Switches still can't break up broadcast domains. Hubs do not recognize frames and data structures but switches do.
Which two practices help secure your wireless access points from unauthorized access? (Choose all that apply.) A. Assigning a private IP address to the AP B. Changing the default SSID value C. Configuring a new administrator password D. Changing the mixed-mode setting to single mode E. Configuring traffic filtering
B, C. At a minimum, you need to change the default SSID value on each AP and configure new usernames and passwords on the AP.
Which of the following IP addresses are not allowed on the Internet? (Choose all that apply.) A. 11.255.255.1 B. 10.1.1.1 C. 172.33.255.0 D. 192.168.0.1
B, D. The addresses in the ranges 10.0.0.0 through 10.255.255.255 and 172.16.0.0 through 172.31.255.255 as well as 192.168.0.0 through 192.168.255.255 are all considered private, based on RFC 1918. Use of these addresses on the Internet is prohibited so that they can be used simultaneously in different administrative domains without concern for conflict.
You connected your company to the internet, and security is a concern. What should you install? A. Higher-quality cables B. Firewall C. DNS D. Switches
B. Firewalls help provide perimeter network security by allowing or denying connections and types of traffic in or out of the network.
Which of the following describes MIMO correctly? A. A protocol that requires acknowledgement of each and every frame B. A data-transmission technique in which several frames are sent by several antennas over several paths and are then recombined by another set of antennas C. A modulation technique that allows more than one data rate D. A technique that packs smaller packets into a single unit, which improves throughput
B. Part of the 802.11n wireless standard, MIMO sends multiple frames by several antennas over several paths; they are then recombined by another set of antennas to optimize throughput and multipath resistance. This is called spatial multiplexing.
You need to connect a hub to a switch. You don't like this idea because you know that it will create congestion. What type of cable do you need to use to connect the hub to the switch? A. EtherIP B. Crossover C. Straight-through D. Cable Sense, Multiple Access
B. To connect two switches together or a hub to a switch, you need a crossover cable.
Which device would connect network segments together, creating separate collision domains for each segment but only a single broadcast domain? A. Hub B. Router C. Switch D. Modem
C. A switch creates separate collision domains for each port but does not break up broadcast domains by default.
IPv6 uses multiple types of addresses. Which of the following would describe an anycast address used by an IPv6 host? A. Communications are routed to the most distant host that shares the same address B. Packets are delivered to all interfaces identified by the address. This is also called one-to-many addressing C. This address identifies multiple interfaces, and the anycast packet is only delivered to one address. This address an also be called one-to-one-of-many D. Anycast is a type of broadcast
C. Anycast is a new type of communication that replaces broadcasts in IPv4. Anycast addresses identify multiple interfaces, which is the same as multicast; however, the big difference is that the anycast packet is delivered to only one address: the first one it finds defined in terms of routing distance. This address can also be called one-to-one-of-many.
You have just tested your theory of a problem to determine the cause. Based on the standard troubleshooting model, what is your next step? A. Question the obvious B. Establish a theory of probable cause C. Establish a plan of action to resolve the problem and identify potential effects D. Verify full system functionality, and if applicable, implement preventative measures
C. Based on the standard troubleshooting model, the next step would be to establish a plan of action to resolve the problem and identify potential effects.
The OSI model uses an encapsulation method to describe the data as it is encapsulated at each layer of the OSI. What is the encapsulation named at the Data Link layer? A. Bits B. Packets C. Frames D. Data E. Segments
C. The Data Link layer is responsible for encapsulating IP packets into frames and for providing logical network addresses.
Why do most switches run the Spanning Tree Protocol by default? A. It monitors how the network is functioning B. It stops data from forwarding until all devices are updated C. It prevents switching loops D. It manages the VLAN database
C. The Spanning Tree Protocol (STP) was designed to stop Layer 2 loops. All enterprise model switches have STP by default.
The rate at which the Frame Relay switch agrees to transfer data is referred to as ____. A. BE B. FECN C. CIR D. BECN
C. The committed information rate (CIR) is the rate, in bits per second, at which the Frame relay switch agrees to transfer data.
Which RG rating of coax is used for cable modems? A. RG-59 B. RG-58 C. RG-6 D. RG-8
C. Cable modems use RG-6 coax cables.
Which of the following uses both distance vector and link state properties? A. IGRP B. OSPF C. RIPv1 D. EIGRP E. IS-IS
D. EIGRP is called a hybrid routing protocol because it uses the characteristics of both distance vector and link state routing protocols. However, EIGRP can only be run on Cisco routers and is not vendor neutral. The new CompTIA objectives mention BGP as a hybrid routing protocol.
Layer 2 of the OSI model is named ______. A. Application layer B. Network layer C. Transport layer D. Data link layer
D. Layer 2 of the OSI model is the Data Link layer, which provides the physical transmission of the data and handles error notification, network topology, and flow control.
Which UTP wiring uses four twisted wire pairs (eight wires) and is rated for 250 MHz? A. Category 3 UTP B. Category 5 STP C. Category 5 UTP D. Category 6 UTP
D. To get the high data-transfer speed, like 1 Gbps, you need to use a wire standard that is highly rated, such as Category 5e, or Category 6.
You want to stop a hacker in their tracks. Which of the following devices are proactive in providing this service? A. Access control list (ACL) B. Content filtering C. Security zones D. Intrusion prevention system (IPS) E. Network Address Translation F. Virtual LANs
D. Changing network configuration, terminating sessions, and deceiving the attacker are all actions that can be taken by an intrusion prevention system (IPS) device. These are all proactive approaches to safety.
Most Application layer protocols use only UDP or TCP at the Transport layer. Which of the following could use both? A. TCP B. Microsoft Word C. Telnet D. DNS
D. DNS uses TCP for zone exchanges between servers and USP when a client is trying to resolve a hostname to an IP address.
If you are running half-duplex Internet, which of the following is true? (Choose all that apply.) A. Your digital signal cannot transmit and receive data at the same time B. Hosts use the CSMA/CD protocol to detect collisions C. The physical connection consists of one wire pair D. None of the above
A, B, C. With half duplex, you are using one wire pair with a digital signal either transmitting or receiving (but not both at once) Carrier Sense Multiple Access with Collision Detection (CSMA/CD) helps packets that are transmitted simultaneously from different hosts share bandwidth evenly.
You are using a TDR. Which of the following actions can you do with this device? (Choose all that apply.) A. Estimate cable lengths B. Find splice and connector locations and their associated loss amounts C. Display unused services D. Define cable-impedance characteristics
A, B, D. Due to sensitivity to any variation and impedance to cabling, options A, B, and D are all reasons you'd uses a time-domain reflectometer (TDR).
HTTP, FTP, and Telnet work at which layer of the OSI model? A. Application B. Presentation C. Session D. Transport
A. HTTP, FTP, and Telnet use TCP at the transport layer; however, they are all Application layer protocols, so the Application layer is the best answer for this question.
IPSec is defined at what layer of the OSI model? A. Network B. Physical C. Layer 4 D. Layer 7
A. IPSec works at the Network layer of the OSI model (layer 3) and secures all applications that operate above it (layer 4 and above). Additionally, because it was designed by he IETF and designed to work with IPv4 and IPv6, it has broad industry support and is quickly becoming the standing for VPNs on the internet.
You need to optimize network traffic by spreading it access multiple connections. Which strategy should be used? A. Load balancing B. Traffic shaping C. Adding VLANs D. A 1 Gbps connection E. Following the regulations
A. Load balancing refers to a technique used to spread work out to multiple computers, network links, or other devices, You can load-balance work on servers by clustering servers so that multiple machines all provide the same service.
Where does a Data Link layer frame have to carry a Network layer packet if the packet is destined for a remote network? A. Router B. Physical medium C. Switch D. Another host
A. Packets specifically have to be carried to a router in order to be routed through a network. On your local computer, the IP address of this router is displaced as the gateway address
You want your users to log in and authenticate before they can get onto your network. Which of the following services would you use? A. RADIUS B. DNS C. Virtual Network Computing D. Remote Desktop Protocol
A. RADIUS combines user authentication and authorization into one profile.
Someone calls you and asks for your bank account number because the bank is having problems with your account. You given them this information and later find out that you were scammed. What type of attack is this? A. Phishing B. Calling scam C. Analog scam D. Trust-exploration attack E. Main-in-the-middle attack F. Rogue access point
A. Social engineering, or phishing, refers to the act of attempting to illegally obtain sensitive information by pretending to be a credible source. Phishing usually takes one of two forms: an email or a phone call.
Which network performance optimization technique can delay packets that meet certain criteria to guarantee usable bandwidth for other applications? A. Traffic shaping B. Jitter control C. Logical network mapping D. Load balancing E. Access lists
A. Traffic shaping, also known as packet shaping, is another form of bandwidth optimization.
You need to purge and reload the remote NetBIOS name table cache. Which nbtstat utility switch will you use? A. -r B. -R C. /r D. /R E. -a F. -A
B. To purge and reload the remote NetBIOS name cache, you must you nbtstat -R. Remember that the R must be uppercase, and it will not work correctly without the hyphen before it.
If you wanted to verify the local IP stack on your computer, what would you do? A. Ping 127.0.0.0 B. Ping 127.0.0.1 C. Telnet 1.0.0.127 D. Ping 169.5.3.10 E. Telnet 255.255.255.255
B. To test the local stack on your host, ping the loopback interface of 127.0.0.1.
Which tool is used to attach ends to network cables? A. Punch-down tool B. Crimper C. VLAN tool D. Strippers E. ARP tool
B. Wire crimper or crimper is used to attach ends onto different types of network cables.
What is the basic purpose of a local area network (LAN)? A. To interconnect networks in several different buildings B. To connect one or more computers together so they can share resources C. To interconnect 2 to 10 routers D. To make routers unnecessary
B. LANs generally have a geographic scope of a single building or smaller. They can be simple (two hosts) to complex (with thousands of hosts).
You need a topology that is easy to troubleshoot and scalable. Which would you use? A. Bus B. Star C. Mesh D. Ring
B. Star topologies are the easiest to troubleshoot and can easily scale to large sizes.
What is the subnetwork address for a host with the IP address 200.10.5.168/28? A. 200.10.5.156 B. 200.10.5.132 C. 200.10.5.160 D. 200.10.5.0 E. 200.10.5.255
C. This is a pretty simple question. A /28 is 255.255.255.240, which means that our block size is 16 in the fourth octet. 0, 16, 32, 48, 64, 80, 96, 112, 128, 144, 160, 176, and so on. The host is in the subnet 160.
You need to break up broadcast domains in a Layer 2 switched network. What strategy will you use? A. Implement a loop-avoidance scheme B. Create a flatter network structure using switches C. Create a VLAN D. Disable the spanning tree on individual ports
C. Virtual LANs break up broadcast domains in Layer 2 switched internetworks.
IP resides at which layer of the OSI model? A. Application B. Data link C. Network D. Physical
C. IP is a Network layer protocol. Internet Explorer is an example of an Application layer protocol, Ethernet is an example of a Data Link layer protocol, and T1 can be considered a Physical layer protocol.