Chapter 11

Question 1

Most UNIX and Linux desktop operating systems provide a GUI application for easily viewing and filtering the information in system logs.

T/F

Answer 1

True

Question 2

The SNMP version 3 protocol introduces authentication, validation, and encryption for messages exchanged between devices and the network management console.

T/F

Answer 2

True

Question 3

Wireshark or any other monitoring software running on a single computer connected to a switch doesn’t see all the traffic on a network, but only the traffic the switch sends to it, which includes broadcast traffic and traffic specifically addressed to the computer.

T/F

Answer 3

True

Question 4

Class of Service utilizes 8 levels of priority, and modifies the PCP field in an 802.1Q tag.

T/F

Answer 4

True

Question 5

You can find out where various logs are kept on some UNIX and Linux systems by viewing the /etc/syslog.conf or /etc/rsyslog.conf files.

T/F

Answer 5

True

Question 6

Setting a NIC to run in promiscuous mode will allow it to see all network traffic passing through a network switch.

T/F

Answer 6

False

Question 7

A system with an availability of 99.999% can be down for a maximum of 52 minutes per year.

T/F

Answer 7

False

Question 8

A RAID 5 configuration requires a minimum of two hard disks to operate.

T/F

Answer 8

False

Question 9

A brownout is a momentary decrease in voltage; also known as a sag.

T/F

Answer 9

True

Question 10

A hot site consists of computers, devices, and connectivity necessary to rebuild a network exist, but without appropriate configuration.

T/F

Answer 10

False

Question 11

When using SNMP with TLS, what port do agents receive requests on?

161

162

10161

10162

Answer 11

10161

Question 12

At what point is a packet considered to be a giant?

It becomes a giant when it exceeds the medium’s maximum packet size.

It becomes a giant once a VLAN tag is added.

It becomes a giant only when fragmented pieces are reassembled and the packet size is too large.

It becomes a giant when it exceeds 1500 bytes.

Answer 12

It becomes a giant when it exceeds the medium’s maximum packet size.

Question 13

Packets that are smaller than a medium’s minimum packet size are known by what term below?

runts

ghosts

jabbers

giants

Answer 13

Runts

Question 14

When a device handles electrical signals improperly, usually resulting from a bad NIC, it is referred to by what term below?

ghost

blabber

talker

jabber

Answer 14

Jabber

Question 15

When using DiffServ, what type of forwarding utilizes a minimum departure rate from a given node, which is then assigned to each data stream?

scaled forwarding

prioritized forwarding

assured forwarding

expedited forwarding

Answer 15

Expedited Forwarding

Question 16

What 3-bit field in a 802.1Q tag is modified to set a frame’s Class of Service (CoS)?

Priority Code Point (PCP)

Tag Protocol Identifier (TPID)

EtherType

CRC checksum

Answer 16

Priority Code Point (PCP)

Question 17

A highly available server is available what percentage of the time?

90%

99.99%

99.999%

99%

Answer 17

99.999%

Question 18

What happens when an NMS uses the SNMP walk command?

The NMS walks through a list of given SNMP hosts.

The NMS uses get requests to move through sequential rows in the MIB database.

The NMS sends a request for data to the agent on a managed device.

The NMS requests a list of all active SNMP traps on the system.

Answer 18

The NMS uses get requests to move through sequential rows in the MIB database.

Question 19

When Comcast was found to be interfering with BitTorrent traffic, what method was being used?

Comcast used IP spoofing to impersonate other BitTorrent clients, then dropped traffic.

Comcast was creating access lists that blocked known BitTorrent trackers.

Comcast used DNS poisoning to prevent clients from talking to other BitTorrent users.

Comcast was interjecting TCP segments with the RST (reset) field set.

Answer 19

Comcast was interjecting TCP segments with the RST (reset) field set.

Question 20

What term is used to describe the average amount of time that will pass for a device before a failure is expected to occur?

estimated time to failure (ETTF)

maximum time available (MTA)

product cycle lifetime (PCL)

mean time between failures (MTBF)

Answer 20

mean time between failures (MTBF)

Question 21

The Link Aggregation Control Protocol was initially defined by what IEEE standard?

IEEE 802.1cd

IEEE 802.3af

IEEE 802.3bd

IEEE 802.3ad

Answer 21

IEEE 802.3ad

Question 22

Which of the following statements describes a RAID 0 configuration?

In a RAID 0, data is striped across multiple disks to improve performance.

In a RAID 0, four or more disks are used to mirror data within each pair of disks, and then striped to multiple pairs of disks.

In a RAID 0, data is mirrored on multiple disks to provide fault tolerance.

In a RAID 0, data is striped across three or more drives, with parity information added to the data.

Answer 22

In a RAID 0, data is striped across multiple disks to improve performance.

Question 23

What Storage Area Network (SAN) protocol runs on top of TCP, and can be used on an existing twisted-pair Ethernet network, while maintaining low cost?

InfiniBand (IB)

Internet SCSI (iSCSI)

Fibre Channel (FC)

Fibre Channel over Ethernet (FCoE)

Answer 23

Internet SCSI (iSCSI)

Question 24

A differential backup covers what data on a system?

It includes data that has changed since the last incremental backup.

It includes data that has changed since the last full backup.

It includes all data every time it is performed.

It includes only data that has changed since the last backup.

Answer 24

It includes data that has changed since the last full backup.

Question 25

Which type of uninterruptible power supply uses AC power to continuously charge its battery, while also providing power to devices through the battery?

line conditioning UPS

online UPS

standby UPS

surge UPS

Answer 25

online UPS

Question 26

In planning for disaster recovery, what is the ultimate goal?

The management of damage.

The protection of infrastructure.

The continuation of business.

The preservation of critical data.

Answer 26

The continuation of business.

Question 27

How does a line conditioning UPS protect network equipment?

It shields equipment from lightning damage.

It protects against electrical surges.

It reduces fluctuations in incoming voltage.

It filters line noise from incoming power.

Answer 27

It filters line noise from incoming power.

Question 28

You are attempting to determine how available your Linux systems are, and need to find the current system uptime. What command should you use?

lastboot

show runtime

display stats

uptime

Answer 28

uptime

Question 29

What makes up the first 6 bits of the 8-bit DiffServ field?

Differentiated Services Code Point (DSCP)

Priority Code Point (PCP)

Class of Service (CoS)

Forward Error Correction (FEC)

Answer 29

Differentiated Services Code Point (DSCP)

Question 30

A network TAP serves what purpose on a network?

It provides wireless monitoring capabilities, as well as spectrum analysis.

It provides a mirrored port for monitoring traffic between other ports.

It serves as a miniature firewall that can be placed in front of any connection.

It monitors network throughput at a specific point in the network.

Answer 30

It provides a mirrored port for monitoring traffic between other ports.

Question 31

When viewing a syslog message, what does a level of 0 indicate?

The message is a warning condition on the system.

The message represents debug information.

The message is an error condition on the system.

The message is an emergency situation on the system.

Answer 31

The message is an emergency situation on the system.

Question 32

Each managed object on a managed device using SNMP is assigned which of the following?

process ID

TCP/UDP port

object identifier (OID)

inode number

Answer 32

object identifier (OID)

Question 33

Once a device has failed, what metric measures the average amount of time to repair?

mean time to repair (MTTR)

mean time to restore (MTTR)

mean restoration time (MRT)

mean field replacement time (MFRT)

Answer 33

mean time to repair (MTTR)

Question 34

What does the Common Address Redundancy Protocol do?

It allows a pool of computers or interfaces to share the same MAC address.

It allows multiple devices to share the same fully qualified domain name.

It allows multiple devices to share hardware resources.

It allows a pool of computers or interfaces to share the same IP address.

Answer 34

It allows a pool of computers or interfaces to share the same IP address.

Question 35

The grouping of multiple servers so that they appear as a single device to the rest of the network is known as which term?

server overloading

link aggregating

load balancing

clustering

Answer 35

clustering

Question 36

Which type of backup scheme only covers data that has changed since the last backup?

incremental backup

differential backup

full backup

snapshot backup

Answer 36

incremental backup

Question 37

What is distributed switching?

It is a single distributed vSwitch that can service VMs across multiple hosts.

It is when multiple physical switches are configured to act as a single switch.

It is a single physical switch that is partitioned in software to perform as multiple switches.

It is multiple switches that provide redundancy switching for all switches in the group.

Answer 37

It is a single distributed vSwitch that can service VMs across multiple hosts.

Question 38

If you wish to maintain a “4 nines” availability rating, what is the maximum amount of down time you can have per day?

14 minutes, 23 seconds

.4 seconds

1 minute, 26 seconds

8 seconds

Answer 38

8 seconds

Question 39

A snapshot is most similar to which type of backup scheme?

full backup

differential backup

versioned backup

incremental backup

Answer 39

incremental backup

Question 40

What statement regarding the use of a network attached storage device is accurate?

A NAS does not contain its own file system, rather it relies on the host file system provided by individual clients.

A NAS reads and writes from its disks significantly slower than other types of servers.

A NAS can typically only support RAID-0 configurations.

A NAS can be easily expanded without interrupting service.

Answer 40

A NAS can be easily expanded without interrupting service.