Dion N10-008 Practice Test #1

Question 1

What type of network device operates at layer 1 of the OSI model and requires connected devices to operate at half-duplex using CSMA/CD?

Answer 1

Hub

Question 2

CSMA/CD

Answer 2

Carrier Sense Multiple Access / Collision Dection

The collision recovery procedure can be likened to what happens at a dinner party, where all the guests talk to each other through a common medium (the air). Before speaking, each guest politely waits for the current speaker to finish. If two guests start speaking at the same time, both stop and wait for short, random periods of time (in Ethernet, this time is measured in microseconds). The hope is that by each choosing a random period of time, both guests will not choose the same time to try to speak again, thus avoiding another collision.

Why Half-Duplex?

Question 3

What is the network ID associated with the host located at 192.168.0.123/29?

Answer 3

192.168.0.120

/29 means the subnet will have 8 IP address (32-29=3. 2^3 = 8 address, 2^3 - 2 = 6 hosts)

Since the address go up to 256, subtract 8 from 256 a bunch of times (17 times for this example, getting to 120-128, until you get to the range the host is located in

Question 4

Analog Modem

Answer 4

Converts digital signals to analog tones, which can be carried over analog telephone lines (DSL being another type that is carried over telephone connection - uses RJ11)

Question 5

DOCSIS Modem

Answer 5

Coaxial cable modem with F type connector, transmits data over the existing cable television lines

Question 6

What is a common technique used by malicious individuals to perform an on-path attack on a wireless network?

Answer 6

An evil twin - masquerades as a legitimate WiFi access point

This is considered an On-Path attach

Question 7

ARP Spoofing

Answer 7

an attacker sends (spoofed) Address Resolution Protocol (ARP) messages onto a local area network. Generally, the aim is to associate the attacker’s MAC address with the IP address of another host, SUCH AS THE DEFAULT GATEWAY, causing any traffic meant for that IP address to be sent to the attacker instead.

Question 8

LDAP (Lightweight Directory Access Protocol) Port

Answer 8

389

Question 9

SLP (Service Location Protocol)

Answer 9

protocol or method of organizing and locating the resources (such as printers, disk drives, databases, email directories, schedulers, etc.) in a network - alternative to LDAP in newer networks - uses port 427

Question 10

What happens to data as it travels from Layer 1 to Layer 7 in the OSI Model

Answer 10

De-encapsulation

in order to be at Layer 1, the data would have needed to already have been encapsulated in order to travel to Layer 7

Question 11

fdx

Answer 11

full duplex

Question 12

Severity Level 0

Answer 12

Emergency

most severe

Question 13

Severity Level 3

Answer 13

error

Question 14

Severity Level 4

Answer 14

warning

Question 15

Severity Level 1

Answer 15

alert

Question 16

Severity Level 6

Answer 16

information

Question 17

Severity Level 2

Answer 17

critical condition

Question 18

Severity Level 7

Answer 18

debugging

Question 19

Microsoft SQL port

Answer 19

1433

Question 20

MySQL port

Answer 20

3306

Question 21

SQLnet port

Answer 21

1521

Question 22

how to request a new IP address on the command line , i.e. if two machines have the same one

Answer 22

ipconfig /release | ipconfig /renew

only doing ipconfig /renew would renew the exisiting DHCP lease

Question 23

NAC

Answer 23

Network Access Control

It is an APPROACH to network security, with Port Security being an example of a NAC

Question 24

Port Security

Answer 24

Also known as Persistent MAC - used with ports - only allows network connection to the computer with the original MAC address

Question 25

SMF

Answer 25

Single Mode Fiber

Question 26

nbstat -R

Answer 26

purge and reload the cache name table from the LMHOST file on a windows workstation

used when trying to connect to a windows server using NetBIOS, which stores a local cached name table in LMHOSTS file on each client – so if an entry in a client’s file is pointing to the wrong IP, it would cause a connectivity issue and this command would reload the cached name table

Question 27

RTO

Answer 27

Recovery Time Objective

Duration of time and a service level within which a business process must be restored after a disaster to avoid unacceptable consequences associated with a break in continuity

Question 30

What technology combines with functionality of a firewall, malware scanner and other security appliances into one device?

Answer 30

UTM

(On the practice test, other options are IPS and IDS. These are SYSTEMS, and the question asks for a DEVICE)

Question 31

SMB port

Answer 31

139 and 445

Question 32

NTP port

Answer 32

123

Network Time Protocol

The Network Time Protocol goes 123

Question 33

IMAP Port

Answer 33

143

Question 34

Syslog port

Answer 34

514

Question 35

RST Flag

Answer 35

Used in TCP connections when the sender feels something has went wrong and wants to terminate the connection

used for something ‘bad’ (unlike FIN in TCP (?))

Question 36

SNMPv3 options

Answer 36

AuthPriv - authenticate and encrypt traffic

AuthNoPriv - no authentication and no encryption