N10-007

Question 1

A NIC sends data in discrete chunks called what?

Answer 1

Frames

Question 2

Which MAC addr begins a frame?

Answer 2

Receiving

Question 3

What is included in Frames?

Answer 3

1-Receiving MAC addr
2-Sending MAC addr
3-Type of encapsulated data
4-Data
5-FCS

Question 4

Which layer of the TCP/IP model controls segmentation and reassembly of data?

Answer 4

Transport

Question 5

Which layer of the OSI 7 layer model keeps track of a system’s connections to send the right response to the right computer?

Answer 5

Session

Question 6

What layer are cables and hubs?

Answer 6

Layer 1… Physical

Question 7

What layer are switches and NICS?

Answer 7

Layer 2… Data Link

Question 8

What is the only OSI layer that has sublayers?

Answer 8

Data Link… LLC and MAC sublayers

Question 9

What is the PDU (Protocol Data Unit) for Layer 3… Network Layer?

Answer 9

Packet

Question 10

Routers use what to forward data?

Answer 10

IP addresses

Question 11

What layer breaks up and reassembles chunks of data called segments or datagrams?

Answer 11

Layer 4… Transport Layer

Question 12

The connectionless protocol is also what type protocol?

Answer 12

UDP… User Datagram Protocol

Question 13

What is the term used to describe the interconnectivity of network components?

Answer 13

Topology

Question 14

Name a type of fiber optic connection that is duplex

Answer 14

LC

Question 15

What network topology is most commonly seen only in wireless networks?

Answer 15

Mesh

Question 16

What is a network technology called that combines a physical topology with a logical topology?

Answer 16

Hybrid technology

Question 17

Name two hybrid topologies

Answer 17

Star Ring and Star Bus

Question 18

What is the most successful star-ring topology called?

Answer 18

IBM Token Ring

Question 19

What topology connect every computer to every other computer on the network via two or more routes?

Answer 19

Mesh

Question 20

Name two types of mesh topologies

Answer 20

1-Fully meshed: every computer connected to every other computer.
2-Partially meshed: at least two machines have redundant connections

Question 21

Name the network topologies

Answer 21

Bus
Ring
Star\
Hybrid
Mesh

Question 22

What type cable is more robust… RG59 or RG6?

Answer 22

RG6

Question 23

Give short description of ST fiber optic connector

Answer 23

Snap and twist;

Bayonet style

Question 24

Give short description of SC fiber optic connector

Answer 24

Stick and click;

Push in connection

Question 25

Give short description of LC connector

Answer 25

Little connector;

Always duplex

Question 26

Give short description of MTJ-R fiber optic connector

Answer 26

Always duplix

Question 27

Single mode fiber uses what to generate signals?

Answer 27

Lasers

Question 28

Multimode fiber uses what to generate signals?

Answer 28

LEDs

Question 29

What type cable is fire rated?

Answer 29

Plenum

Question 30

What is appended to the front of Ethernet frames?

Answer 30

Preamble

Question 31

10BaseT uses what type of bus

Answer 31

Star-bus

Question 32

What is the max distance that can separate a 10BaseT node from its hub?

Answer 32

100 meters

Question 33

What device directs traffic based on MAC addresses?

Answer 33

Switch

Question 34

Frames are at what layer and are based on what type of address?

Answer 34

Layer 2 - Data Link

Use Mac addresses

Question 35

Packets are associated with data assembled at what layer and use what protocol?

Answer 35

Layer 3 - Network;

IP Protocol

Question 36

The transmission of a frame starts with what?

Answer 36

Preamble: gives receiving NIC a notice a frame is coming and where frame starts

Question 37

MAC addresses have how many bits and how many bytes?

Answer 37

48 bits and 6 Bytes

Question 38

10BaseT refers to what?

Answer 38

10 Mbps data rate;
Broadband signal;
Twisted pair cable

Question 39

What is broadband

Answer 39

Carries multiple signals or channels… as in cable

Question 40

10BaseT RJ45 connector uses pins 1 and 2 to do what?

Answer 40

Send data

Question 41

10BaseT RJ45 connector uses pins 3 and 6 to do what?

Answer 41

Receive data

Question 42

Half duplex

Answer 42

NICs communicating in only one direction at a time

Question 43

Full duplex

Answer 43

NICs communicating in both directions at the same time

Question 44

Regarding TIA/EIA 568A and 568B standards, which wires are swapped?

Answer 44

Green and orange… “GO”;

blue and brown wires remain the same

Question 45

What is the wire pinout for standard 568A?

Answer 45

wg/g
wo/bl
wbl/o
wbr/br

Question 46

What is the wire pinout for standard 568B?

Answer 46

wo/o
wgr/bl
wbl/gr
wbr/br

Question 47

What is a bridge?

Answer 47

Used to connect networks;

Traffic is filtered and forwarded between network segments based on MAC addresses of computers on the segments

Question 48

Main difference between a hub and a switch

Answer 48

Hub: forwards all frames;
Switch: creates a source allocation table containing MAC addresses for each connected computer, then forwards frames based on segment the computer resides

Question 49

How are bridging or switching loops resolved in a network?

Answer 49

STP… Spanning Tree Protocol

Question 50

How many pairs of wires do 10BaseT and 100BaseT use?

Answer 50

2 wire pairs

Question 51

What does IEEE 802.ab describe?

Answer 51

1000BaseT… also known as Gigabit Ethernet

Question 52

What is the physical difference between 1000BaseSX and 100BaseFX/

Answer 52

1000BaseSX does not allow use of ST connector

Question 53

What is the max distance for 1000BaseLX without repeaters?

Answer 53

5000 meters

Question 54

How many wire pairs does 1000BaseT use?

Answer 54

All 4 pairs of wires

Question 55

What is the standard connector for the 10GbE fiber standard?

Answer 55

There is no standard

Question 56

What is the max cable length of 10GBaseT on CAT 6?

Answer 56

55 meters

Question 57

100BaseT

Answer 57

Speed = 100 Mbps
Signal = Baseband… single signal over network at once
Cable type = Twisted pair
Distance = 100 meters
Node limit = 1024
Topology Star-bus… physical star, logical bus

Question 58

100BaseFX

Answer 58

Speed = 100 Mbs
Signal= Baseband
Cable type = multimode fiber with SC or ST connectors
Distance = 2 Kilometers
Node limit = 1024
Topology = Star-bus… phys star and logical bus

Question 59

1000BaseT

Answer 59

Commonly called Gigabit Ethernet
Used in vast majority of network rollouts
802.3ab standard
Uses 4 pair of UTP or STP
Distance = 100 meters

Question 60

1000BaseLX

Answer 60

Long distance carier for Gigabit Ehternet
Uses lasers on singlemode fiber
Distance = up to 5 Kilometers
Connectors resembe 1000BaseSX connectors

Question 61

1000BaseSX

Answer 61

Uses multimode fiber optic cable;
Distance 220 - 500 meters
Uses LC connectors

Question 62

Wavelength signal

Answer 62

Distance the signal travels before it completes its particular shape, then starts to repeat. Diff color laser signals feature diff wave lengths

Question 63

10GBaseT

Answer 63

10 Gigabit Ethernet running on twisted pair cable

Question 64

Broadband

Answer 64

Multiple signals flow over network simultaneously

Question 65

UPC and APC

Answer 65

Ultra and Angled Polished Connectors

Question 66

Which cable should never be used in a structured cabling installation?

Answer 66

Coax

Question 67

What enables you to use multiple NICs in a computer to achieve a much faster network speed?

Answer 67

Bonding or Link aggregation… process of using multiple NICS as a single connection

Question 68

What facilitates organizing and protecting horizontal cabling in the telecommunications room?

Answer 68

Patch panel

Question 69

Rack mounted equipment has a height measured in what units?

Answer 69

U… known as Units

Question 70

Which punch down blocks have less cross talk… 66 or 110 block?

Answer 70

110

Question 71

What is the name of the device that marks the point of demarcation dividing the line of responsibility for the function of the network?

Answer 71

Network Interface Unit… aka Network Interface Device or Box (NID / NIB)

Question 72

What is the equipment called that acts as a primary distribution tool for a building belonging to a customer

Answer 72

Customer Pemises Equipment (CPE)

Question 73

The room that stores demarc, tele cross connects and LAN cross connects equipment?

Answer 73

MDF… Main Distribution Frame

Question 74

Room that store tele equipment in mult rooms which connect internally to MDF

Answer 74

IDF… Intermediate Distribution Frame

Question 75

What cable tester can determine where a break is located in individual wire strands?

Answer 75

OTDR

Optical Time Domain Reflectometer

Question 76

What is the process called where switches allow devices to use multiple NICs?

Answer 76

Bonding / Link aggregation

Question 77

What controls how multiple network devices send and receive data as a single connection

Answer 77

LACP… Link Aggregation Control Protocol

Question 78

What does IANA stand for?

Answer 78

Internet Assigned Numbers Authority

Question 79

What is the max number of hosts in a /19 subnet?

Answer 79

8,190

Question 80

Which of the following is a valid loopback address? 128.0.0.1; 127.0.0.0; 128.0.0.255; 127.24.0.1

Answer 80

177.24.0.1;

any addr in the 127.0.0.0/8 sunet will work as a loopback

Question 81

Connection oriented TCP/IP Transport layer protocol is called?

Answer 81

Transmission Control Protocol… TCP

Question 82

Connectionless oriented TCP/IP Transport layer protocol is called?

Answer 82

User Datagram Protocol… UDP

Question 83

TCP chops data into what?

Answer 83

Segments

Question 84

WAN

Answer 84

Wide Area Network… A group of two or more connected networks

Question 85

Router interface that connects a single LAN to the router is known as what?

Answer 85

Default Gateway;

Usually the LAN side NIC on the router and assigned the lowest host address in the network…. host ID of 1.

Question 86

00000000 binary = what in decimal?

Answer 86

0

Question 87

11111111 in binary = what in decimal?

Answer 87

255

Question 88

The term classfull references what?

Answer 88

IP address blocks… A, B, C, D, E

Question 89

The first binary octet of a Class A address always begins with what?

Answer 89

0xxxxxxx (ex 00001010 = 10.52.36.11 )

Question 90

The first binary octet of a Class B address always begins with what?
10xxxxxx (ex 10101100 = 172.16.52.63)

Answer 90

10xxxxxx (ex 10101100 = 172.16.52.63)

Question 91

The first binary octet of a Class C address always begins with what?

Answer 91

110xxxxx (ex 11000000 = 192.168.123.132)

Question 92

Reserved IP addresses are considered what?

Answer 92

Experimental

Question 93

What is the formula for determining the number of hosts you can have on a network?

Answer 93

2^x - 2, where x is the number of zeroes remaining in a subnet mask after the ones that are reserved for the network

Question 94

A CIDR address (Classless address) means the subnet does not conform to what?

Answer 94

Big three classfull address blocks A, B and C… /8, /16, /24

Question 95

How do you set a static IP address in Linux?

Answer 95

ifconfig;

ip add

Question 96

BOOTP

Answer 96

Preceded DHCP in providing dynamic IP addressing

Question 97

DHCP uses which UDP ports?

Answer 97

Servers use UDP port 67;

Clients use port 68

Question 98

What is assigned to a client host that does not receive a response to a DHCP Discover message?

Answer 98

APIPA… Automatic Private IP Address

Question 99

Can systems that use use static IP addresses have DHCP problems?

Answer 99

No

Question 100

What are private address for class block A, B and C?

10. 0.0.0 through 10.255.255.255
11. 16.0.0 through 172.31.255.255
12. 168.0.0 through 192.168.255.255

Answer 100

A: 10.0.0.0 through- 10.255.255.255
B: 172.16.0.0 through 172.31.255.255
C: 192.168.0.0 through 192.168.255.255

Question 101

What are public address ranges for class blocks A, B and C?

Answer 101

A: 0-126
B: 128-191
C: 192-223

Question 102

What does IANA stand for?

Answer 102

Internet Assigned Numbers Authority

Question 103

What technology allows you to share a single public IP address with many computers?

Answer 103

Port Access Translation… PAT

Question 104

What network would a packet be sent with address 64.165.5.34 with subnet mask 255.255.255.0?

Answer 104

64.165.5.0/24 network

Question 105

Distance vector routing protocols such as RIP rely on what metric to determine the best route?
Hop count

Answer 105

Hops

Question 106

What are two advantages to using OSPF over RIP?

Answer 106

Chooses routes based on link speed;

Sends only routing table changes, reducing net traffic

Question 107

What is area 0 called in OSPF?

Answer 107

Backbone

Question 108

What is the name of the cable used to connect to the console port on Cisco routers?

Answer 108

Yost cable

Question 109

When first setting up a new router, should you plug it into an existing network?

Answer 109

No

Question 110

The traceroute (Linux, Mac) utility is useful for what?

Answer 110

Discovering information about routers between you and destination address;
It records the route between any two hosts on a network

Question 111

What is Windows version of traceroute?

Answer 111

Tracert

Question 112

Routers work at what layer of the OSI network model?

Answer 112

Layer 3… Network

Question 113

What is a multilayered switch (MLS) called that works at more than one layer?

Answer 113

Layer 3 switch… because it handles IP traffic

Question 114

What command allows you to view your computer’s routing table?

Answer 114

Netstat -r

Question 115

A default gateway address references what device?

Answer 115

Router

Question 116

Networking technology that is different from Ethernet, for cable modems

Answer 116

DOCSIS… Data Over Cable Service Interface Interface Specifications

Question 117

Networking technologies, different from Ethernet, that carry IP packets in their layer 2 encapsulations

Answer 117

DOCSIS;
Frame Relay;
ATM… Asynchronous Transfer Mode

Question 118

Network Address Translation… NAT

Answer 118

Replaces source IP addr of a computer with source IP addr from outside router interface on outgoing packets… performed by NAT capable routers

Question 119

Port Address Translation… PAT

Answer 119

Uses port nbrs to map traffic from specific machines in the network

Question 120

identify three main routing protocol groups

Answer 120

Distance Vector: protocols that compares total cost of route to a specific network ID to total cost of all other routes;
Link State: Dynamic routing protocol that announces only changes to routing table
Hybrid: EIGRP… Comptia lists as distance vector

Question 121

Name two Link state protocols

Answer 121

OSPF;

IS-IS… Intermediate System to Intermediate System. Supports IPv6

Question 122

Maximum Transmission Unit…MTU

Answer 122

Determines the largest frame a particular technology can handle

Question 123

Fragmentation

Answer 123

Occurs when IP packet is too big for a particular technology and is broken into pieces that fit into the network protocol, which slows movement.

Question 124

Router convergence

Answer 124

All routers have updated routing tables… steady state

Question 125

Distance vector routing protocols work fine for networks with many or few routers?

Answer 125

Few… less than 10

Question 126

Name distance routing protocols

Answer 126

RIP: Routing Information Protocol… max hop count = 15
BGP: Border Gateway Protocol, used for communication between each Autonomous Sys (AS)

Question 127

Autonomous System Number… ASN

Answer 127

Globally unique 32 bit number used by each autonomous System to communicate

Question 128

Autonomous systems communicate with each other via interior or exterior protocols?

Answer 128

Exterior… EGP

Question 129

Networks within autonomous systems communicate with interior or exterior gateway protocols?

Answer 129

Interior… IGP

Question 130

Comptia lists BGP as what type of routing protocol?

Answer 130

Hybrid… if BGP is the only answer, take it

Question 131

What is the routing protocol of choice by large enterprise networks?

Answer 131

OSPF

Question 132

What type protocol is RIP and is it IGP or BGP?

Answer 132

Distance Vector… IGP

Question 133

What type protocol is BGP and is it IGP or BGP?

Answer 133

Path Vector… BGP

Question 134

What type protocol is OSPF and is it IGP or BGP?

Answer 134

Link State… IGP

Question 135

What type protocol is IS-IS and is it IGP or BGP?

Answer 135

Link State… IGP

Question 136

What type protocol is EIGRP and is it IGP or BGP?

Answer 136

Hybrid… IGP

Question 137

UDP established what type of connection session

Answer 137

Connectionless

Question 138

Name some protocols that use connectionless oriented sessions

Answer 138

DHCP
DNS
NTP Network Time Protocol
SNTP Simple Network Time Protocol
TFTP
ICMP

Question 139

Ping is what type of an application?

Answer 139

ICMP

Question 140

What port does NTP and SNTP use?

Answer 140

123

Question 141

What is TFTP?

Answer 141

Trivial File Transfer Protocol… uses UDP to xfer files from one computer to another, typically on same LAN, without data protection

Question 142

TFTP uses what port?

Answer 142

69

Question 143

What type issue is it when you ping the default gateway and receive the response “destination host unreachable”?

Answer 143

ICMP issue

Question 144

What is IGMP

Answer 144

Internet Group Management Protocol… enables routers to communicate with hosts to determine a group membership

Question 145

Well known port numbers

Answer 145

Ports 0-1023, reserved for specific TCP/IP applications

Question 146

Ephemeral port numbers

Answer 146

Arbitrary number generated by sending computer for receiving computer to use as destination address when sending a return packet

Question 147

Ephemeral port number classical range

Answer 147

1024-5000

Question 148

Recommended ephemeral port number range

Answer 148

49152-65535… curr range used by Windows

Question 149

Registered port numbers

Answer 149

1024-49151

Question 150

Terms for session information containing IP addr and port nbr

Answer 150

Socket,

Endpoint

Question 151

Terms for connection data stored on two computers about the same connection

Answer 151

Socket pairs;

Endpoints

Question 152

Terms for the whole connection

Answer 152

Connection or session

Question 153

Netstat

Answer 153

Shows endpoints to which a computer is connected;

Shows TCP/IP connections at a glance

Question 154

XML

Answer 154

Extensible Markup Language… used for RSS feeds to MS Ofc documents

Question 155

HTTP

Answer 155

Protocol used by the web using TCP 80 by default

Question 156

USENET

Answer 156

Old internet svc where clients use NNTP to access USENET over TCP port 119

Question 157

What is required for an internet application to be secure?

Answer 157

Authentication: usernames and pw
Encryption: scrambling and encoding packets
Nonrepudiation: Source not able to deny having sent message

Question 158

SSL

Answer 158

Secure Socket Layer… transmit private documents securely over the internet

Question 159

TLS

Answer 159

Transport Layer Security… latest ver of SSL which uses encryption to establish secure private connection

Question 160

HTTPS

Answer 160

Hypertext Transfer Protocol Secure… provides secure access to web

Question 161

Telnet

Answer 161

Allows logon to remote systems from own host;

Uses port 23

Question 162

SSH

Answer 162

Secure Shell… Terminal emulation program that replaced telnet and incl encryption

Question 163

PUTTY

Answer 163

Popular Telnet/SSH client

Question 164

What does Telnet and SSh enable you to do?

Answer 164

Securely access remote systems

Question 165

SSH uses which TCP port?

Answer 165

22

Question 166

What email protocol is used to send email?

Answer 166

SMTP… port 25

Question 167

What email protocols receive email?

Answer 167

POP: port 110
IMAP: port 143… can syn mult devices and supp folders

Question 168

Name some web based services

Answer 168

Web based mail;

Network shareable documents, spreadsheets, databases,… other cloud based applications

Question 169

FTP

Answer 169

File Transport Protocol… ports 20 and 21;

Used to transfer files

Question 170

TFTP

Answer 170

Trivial File Transfer Protocol… UDP port 69;

Question 171

NetBIOS used what type name space?

Answer 171

Flat

Question 172

DNS servers use what type name space?

Answer 172

Heirarchical

Question 173

How is the DNS root directory represented?

Answer 173

A dot “.”

Question 174

What file should be checked when trying to resolve a FQDN to an IP address?

Answer 174

Hosts file

Question 175

What is used by mail serves to determine where to send mail?

Answer 175

MX record

Question 176

What command resets the DNS cache?

Answer 176

ipconfig /flushdns

Question 177

What tool is used for querying DNS server functions?

Answer 177

nslookup

Question 178

Where does a DNS server store IP addresses and FQDNs for computers within a domain

Answer 178

Forward lookup zone

Question 179

Name resolution

Answer 179

A method enabling one computer on a network to locate another, to establish a session either via broadcast or name server

Question 180

Domain Name System… DNS

Answer 180

Name resolution protocol

Question 181

NetBIOS

Answer 181

Protocol that operates at Session layer of OSI model. Creates and manages connections based on the names of the computers involved.

Question 182

NetBIOS over TCP (NetBT) requires what ports?

Answer 182

TCP ports 137 and 139;

UDP ports 137 and 138

Question 183

Server Message Block… SMB

Answer 183

Protocol used by MS clients and servers to share file and print resources;
Runs on TCP port 445

Question 184

Hosts file

Answer 184

Static text file on a computer used to resolve DNS host names to IP addresses. Auto mapped to a host’s DNS resolver cache in modern systems

Question 185

DNS uses what port?

Answer 185

53

Question 186

Internet name of DNS root servers is know as what?

Answer 186

Dot “.”

Question 187

What were the original top level domain names?

Answer 187

.com
.org
.edu
.gov
.mil
.int

Question 188

What is the job of DNS root servers?

Answer 188

Delegate name resolution to other DNS servers

Question 189

DNS servers just below DNS root servers in hierarchy

Answer 189

Top level domain servers

Question 190

What are top level domain server responsibilities?

Answer 190

Set of DNS servers that handle top-level domain names such as .com, .org, .net, …

Question 191

Top level domain servers delegate to who?

Answer 191

Second level DNS servers that resolve names within each top level domains

Question 192

Internet Corporation for Assigned Names and Numbers… ICANN

Answer 192

Authority to create Top Level Domains… TLD;

.ex, .biz, .info, .pro

Question 193

DNS hierarchical name space

Answer 193

Tree structure of all possible names that could be used within a single system

Question 194

Hosts file are hierarchical or flat?

Answer 194

Flat

Question 195

Fully Qualified Domain Name… FQDN

Answer 195

A complete DNS name, incl the host name and all of its domains… in order;
ex. mailserver.georgiasouthern.edu

Question 196

Is it a requirement that web server names begin with www?

Answer 196

No

Question 197

What is the most popular DNS server used in Unix/Linux?

Answer 197

BIND

Question 198

Authoritative DNS servers

Answer 198

Store IP addresses and FQDNs of systems for a particular domain or domains

Question 199

Cache only DNS servers

Answer 199

Used to talk to other DNS servers to resolve IP addresses for DNS clients;
Never an authoritative server for a domain

Question 200

Forward lookup zone

Answer 200

Storage area in a DNS server that stores IP addresses and names of systems for a particular domain or domains

Question 201

DNS record types

Answer 201

SOA; Start of Authority… primary server in charge of forward lookup
NS; Name Server… primary name server
CNAME; Conical name… acts like an alias
AAAA; Reserved for IPv6 addressing
MX; Used to determine where to send mail
SRV; Generic record that supports any type server
TXT: Freeform used for anything

Question 202

Forward vs reverse lookup zones

Answer 202

Forward… determines IP addr by knowing FQDN

Reverse… determines FQDN by knowing IP addr

Question 203

Windows Active Directory

Answer 203

An organization of related computers that share one or more Windows domains;
Windows DC are DNS servers

Question 204

What is happening when you can successfully ping an IP addr, but not the name associated with the addr

Answer 204

There may be an issue with DNS

Question 205

Netstat

Answer 205

Displays current connections to your system

Question 206

Tracert

Answer 206

Command displays entire route a ping packet travels between you and destination

Question 207

nslookup

Answer 207

Command used to querry DNS to obtain domain name or IP addr mapping or for any other specific DNS record

Question 208

What command displays DNS cache on Windows sys?

Answer 208

ipconfig /displaydns

Question 209

Encryption that uses the same key as decryption?

Answer 209

Symmetric key

Question 210

RC4 is what type of cypher?

Answer 210

Stream

Question 211

In a PKI (Public Key Infrastructure) encryption method, which key encrypts the data?

Answer 211

Public

Question 212

Process of verifying that sender is who the receiver thinks they should be

Answer 212

Nonrepudiation

Question 213

A hash function is by definition, what?

Answer 213

One way function

Question 214

Common hash function

Answer 214

SHA-3

Question 215

In order to have PKI, you must have what?

Answer 215

Root authority

Question 216

Which type access control requires a label to define sensitivity?

Answer 216

Mandatory access control

Question 217

What AAA standard is running if you see traffic on ports 1812 and 1813

Answer 217

RADIUS

Question 218

Which authentication standard is highly time sensitive?

Answer 218

Kerberos

Question 219

Nonrepudiation

Answer 219

Not being able to deny taking a specific action

Question 220

Cipher

Answer 220

A way to encrypt data

Question 221

Algorithm

Answer 221

Mathematical formula that underlies the cipher

Question 222

Areas of TC{/IP security

Answer 222

Encryption
Integrity
Nonrepudiation
Authentication
Authorization

Question 223

Symmetric key algorithm

Answer 223

Same key used for encryption and decryption

Question 224

Asymmetric key algorithm

Answer 224

Different keys used for encryption and decryption

Question 225

RC4 streaming cipher

Answer 225

Used in wireless, web pages, and remote access; becoming a legacy cipher

Question 226

AES

Answer 226

Advanced Encryption Standard;

Symmetric encryption algorithm now used by many applications

Question 227

Public keys cryptography is mainly symmetric or asymmetric?

Answer 227

Asymmetric

Question 228

What encryption is used at layer 3?

Answer 228

Network layer uses IPsec… Internet Protocol Security

Question 229

What encryption occurs at layers 5, 6 and 7?

Answer 229

5-Session / 6-Presentation / 7-Application;

SSL and TLS

Question 230

SSL

Answer 230

Secure Socket Layer;

Authentication and data encryption between servers, machines and applications

Question 231

TLS

Answer 231

Transport Layer Security;

Authentication and data encryption between servers, machines and applications

Question 232

What is the most popular hash algorithm in use?

Answer 232

SHA-2;

Used by SSL certificates

Question 233

What is the newest family of hash algorithms?

Answer 233

SHA-3

Question 234

What is a common server authentication tool?

Answer 234

CRAM-MD5;

Challenge Response Authentication Mechanism

Question 235

What is a digital signature?

Answer 235

Hash of a public key encrypted by a private key

Question 236

Certificates

Answer 236

Standardized file including a public key with a trusted third party digital signature which is a company guaranteeing the certificate is being passed out by who they say they are

Question 237

Multifactor authentication methods

Answer 237

Passwords: something you know
Cards: something you have
Biometrics: something you are
Location: somewhere you are
Something you do

Question 238

Network Access Control

Answer 238

Control over information, people, access, machines, and everything in between

Question 239

ACL

Answer 239

Access Control List;

List of permissions an authenticated user has, specifying what they may perform on shared resources

Question 240

What are types of ACL permissions?

Answer 240

Mandatory Access Control - resource has defined security level required to access;
Discretionary Access Control - resource owner defines security level require to access
Role Based Access Control - user access to resource based on roles/groups user belongs

Question 241

TCP/IP user security authentication standards

Answer 241

PPP - Point to Point Protocol

AAA - Authentication, Authorization, Accounting

Question 242

PPP authentication

Answer 242

Username / passsword;
CHAP - Challenge Handshake Authentication Protocol;
MS-CHAP is most secure

Question 243

AAA Radius standard

Answer 243

Remote Access Dial in User Service;
Uses NAS to control modems;
Uses PAP, CHAP, MS-CHAP

Question 244

What ports are used by AAA RADIUS standard?

Answer 244

TCP ports 1812 and 1813;

UDP ports 1645 and 1646

Question 245

AAA kerberos

Answer 245

Authentication protocol for TCP/IP;

UDP or TCP ports 88 by default

Question 246

SSH FTP

Answer 246

Secure Shell FTP - uses TCP port 23

Question 247

SNMP

Answer 247

Simple Network Management Protocol;
Standards for communication and managing network devices;
SNMPv3 uses UDP ports 161 and 162

Question 248

MIB

Answer 248

Management Information Base;

Server containing network information used by SNMP

Question 249

LDAP

Answer 249

Protocol used to query and change database used by network;

Uses TCP port 389;

Question 250

NTP

Answer 250

Network Time Protocol;

Provides current time… uses UDP port 123

Question 251

Which VPN technology enables direct connections between satellite locations?

Answer 251

DMVPM - Dynamioc Multipoint VPN

Question 252

Which protocol is popular with today’s VPN

Answer 252

IPsec

Question 253

A static VLAN assigns VLANs to what?

Answer 253

Physical ports

Question 254

What trunking protocol is used with today’s VLANs?

Answer 254

802.1Q

Question 255

A content switch qalways works at least at what layer of the OSI model/

Answer 255

Usually layer 4 thru 7, but must work at least at layer 7… Application

Question 256

What solution might improve the quality of VOIP calls when network is busy and calls sound clipped

Answer 256

Traffic shaping

Question 257

What are two benefits of caching on a Web Proxy/

Answer 257

Response time;

Virus detection

Question 258

802.1X is a great example of what?

Answer 258

Port authentication

Question 259

What is the most common method used to configure a VLAN capable switch?

Answer 259

Log into the switch using SSH and using a command line interface

Question 260

What is IDS

Answer 260

Intrusion Detection System;

Inspects copy of all network traffic and can respond to detected intrusions with actions

Question 261

VPN

Answer 261

Encrypted tunnel between a computer / remote network to a private network through the internet

Question 262

Do computers on a VPN have the same network ID?

Answer 262

Yes

Question 263

PPTP VPN

Answer 263

Point to Point tunneling Protocol VPN

Question 264

Does a VPN connection for a network run slower than an actual local connection on the same network?

Answer 264

Yes

Question 265

RRAS

Answer 265

Routing and Remote Access Server: allows remote access to the network

Question 266

Host to site connection

Answer 266

VPN connection where a single computer logs into a remote network and becomes a member of that network

Question 267

Host to VPN

Answer 267

Single connection between two machines using VPN software or hardware

Question 268

VPN concentraator

Answer 268

A device that handles multiple VPN tunnels remotely

Question 269

L2TP

Answer 269

Layer 2 Tunneling Protocol: VPN protocol ran on almost any connection. Uses IPsec for security

Question 270

SSL VPN

Answer 270

SSL Portal - connection via web browser using TLS

SSL tunnel - client web browser runs active control with greater access to network

Question 271

DTLS VPNs

Answer 271

Datagram TLS optimizes connections for delay sensitive applications using UDP datagrams rather than TCP segments

Question 272

DMVPN

Answer 272

Enables direct VPN connections between multiple locations directly

Question 273

How do you configure the default gateway on a switch/

Answer 273

Enter the IP address of the router… will be add of cable modem in a lot of cases

Question 274

Out of band management… switch management

Answer 274

Method to connect and administer a managed device via dedicated port that is separate from rest of network

Question 275

Console router

Answer 275

Router with out of band management capabilities

Question 276

Trunking

Answer 276

Process of transferring VLAN traffic between two or more switches

Question 277

VLAN segmentation

Answer 277

x

Question 278

VLAN interface properties

Answer 278

x

Question 279

Tagging VLAN switch ports

Answer 279

x

Question 280

Untagging VLAN switch ports

Answer 280

x

Question 281

VTP

Answer 281

VLAN Trunking Protocol… protocol to automate updating mult VLAN switches

Question 282

A layer 2 switch forwards traffic based on what?

Answer 282

MAC address

Question 283

A layer 3 switch forwards traffic based on what?

Answer 283

IP address

Question 284

Layer 3 switch

Answer 284

Router that accomplishes with hardware what a traditional router does with software;
Multilayer switch

Question 285

Four functions multilayer switches support

Answer 285

1 Load balancing
2 QoS
3 Port bonding
4 Network protection

Question 286

Load balancing

Answer 286

Making many servers look like a single server

Question 287

Qos

Answer 287

Quality of Service… Policies that control how much bandwidth a protocol, PC, user, VLAN or IP address may use

Question 288

Port bonding

Answer 288

Logical joining of mult redundant ports and links between two network devices;
Also called port aggregation and NIC teaming

Question 289

Network protiection

Answer 289

IDS - Intrusion Detection System: alerts when attack detected
NIDS - Network Intrusion Detection System usually on both sides of gateway router
HIDS - Host Intrusion Protection System: protection runs on individual systems and monitors file and registry changes

Question 290

Content switch

Answer 290

Content filter network appliance;
Hides behind single IP addr
Works at layer 7

Question 291

Traffic shaping

Answer 291

Bandwidth management where packet flow depends on type of packet or other rules

Question 292

Signature management

Answer 292

Monitors and protects network traffic from malicious code via continuously updating definition files

Question 293

Describe signature based IDS

Answer 293

Scans using signature files for networks

Question 294

Behavior based IDS

Answer 294

Scans for suspicious behavior on host systems

Question 295

IPS

Answer 295

Intrusion Prevention System… stops attacks

Question 296

HIPS

Answer 296

Host Intrusion Prevention System… located on a host

Question 297

NIPS

Answer 297

Network Intrusion Prevention System… Located on a network

Question 298

Is DHCP required to receive an IPv6 address automatically?

Answer 298

No

Question 299

What kind of DNS records do IPv6 addresses use?

Answer 299

AAAA

Question 300

What does a client need to access IPv6 content on the internet?

Answer 300

Global unicast address address

Question 301

Is NAT needed with IPv6?

Answer 301

No

Question 302

What is the /16 prefix for all 6to4 address?

Answer 302

2002

Question 303

Which operating systems have Teredo built in/

Answer 303

W7 and W10

Question 304

What service do tunnel brokers provide?

Answer 304

A way for users to jump the gap between their computers and IPv6 routers

Question 305

IPv6 network prefix

Answer 305

First 64 bits used for routing

Question 306

IPv6 interface ID

Answer 306

Second 64 bits used for the user address

Question 307

IPv6 interface ID

Answer 307

Second 64 bits used for the user address

Question 308

What are the 2 parts of the IPv6 network prefix?

Answer 308

Global routing;

Subnet ID

Question 309

Shortcuts for writing IPv6 addresses which consist of 8 groups of 4 hexadecimal characters

Answer 309

Leading zeroes can be dropped from a group;
A pair of colons (::) can be used for a string of zeroes in two consecutive groups;
Only a single pair of colons is allowed per address

Question 310

What is the IPv6 loopback address?

Answer 310

::1

Question 311

How many bits are in each group (hextet) of an IPv6 address?

Answer 311

16

Question 312

How many groups are in an IPv6 address?

Answer 312

8

Question 313

What is the max prefix length (/x subnet mask) for an IPv6 address?

Answer 313

/64

Question 314

What is a link local address?

Answer 314

At bootup, the first 64 bits are assigned fe80:0000:0000:0000… similar to IPv4 APIPA;
Second 64 bits (interface ID) random generated number or Extended Unique Identifier (EUI-64) generated from the MAC addr

Question 315

Unicast address

Answer 315

Single network device - address unique to that system

Question 316

Multicast address

Answer 316

Reserved addresses which go only to certain systems

Question 317

Global unicast address

Answer 317

A second IPv6 address that every system needs in order to get on the internet

Question 318

Aggregation

Answer 318

Router heirarchy where sub-routers use subnet of higher router’s existing routes

Question 319

Neighbor discovery

Answer 319

IPv6 protocol that enables hosts to auto configure own IPv6 address and info… gateway, DNS, etc

Question 320

4to6

Answer 320

Encapsulates IPv4 traffic into and IPv6 router

Question 321

Toredo

Answer 321

NAT traversal IPv6 tunneling protocol

Question 322

What is the signal rate for DS0?

Answer 322

64Kbps

Question 323

What is the most popular remote server program called?

Answer 323

RRAS - Routing and Remote Access Server

Question 324

What is throughput of ADLS?

Answer 324

Up to 15Mbps

Question 325

What device is used to connect to a T1 line?

Answer 325

CSU / DSU

Question 326

BRI ISDN uses what channel?

Answer 326

Two B channels and one D channel

Question 327

The V.90 standard defines a modem speed of what?

Answer 327

56Kbps

Question 328

After DSL is installed, the internet connection is fast, why might phones no longer work?

Answer 328

POTS filter not installed on phone jacks

Question 329

What protocol do cable modems use?

Answer 329

DOCSIS… Data Over Cable Service Interface Specification

Question 330

What is a SONET used for?

Answer 330

Long distance high speed fiber optic transmission;

Synchronous Optical Network

Question 331

What does SIP stand for?

Answer 331

Session Initiation Protocol

Question 332

Modulation techniques means what?

Answer 332

Converting a digital signal to analog

Question 333

T1 description

Answer 333

24 channels @ 1.544 Mbps

Question 334

T3 description

Answer 334

672 channels @ 44.736Mbps

Question 335

E1 and SONET use what as the control channel?

Answer 335

A derivative of HDLC protocol

Question 336

E1 description

Answer 336

32 channels @ 2.048 Mbps

Question 337

E3 description

Answer 337

512 channels @ 34.368 Mbps

Question 338

DWDM

Answer 338

Enables individual single mode fiber to carry mult signals by using different wavelengths

Question 339

Packet switches

Answer 339

Machines that forward and store packets

Question 340

WAN connections traditionally use two diff forms of packet switching

Answer 340

ATM;

Frame relay

Question 341

What protocol replaces ATM and frame relay?

Answer 341

MPLS… Multiprotocol Label Switching

Question 342

Current networks use what type of switching?

Answer 342

Packet switching

Question 343

Older networks use what type of switching/

Answer 343

Circuit switching

Question 344

PSTN / POTS

Answer 344

Public Switched Telephone Network;

Plain Old Telephone System

Question 345

LEC

Answer 345

Local Exchange Carrier - provides local phone svc

Question 346

Interchange Exchange Carriers - IXC

Answer 346

Provides long distance service

Question 347

ISDN

Answer 347

Integrated Services Digital Network;

Process of sending telephone transmission across digital lines

Question 348

ISDN B channel

Answer 348

DS0 channell - 64Kbs

Question 349

SDSL

Answer 349

Synchronous DSL… same up and down speeds

Question 350

ADSL

Answer 350

Asynchronous DSL… diff up and down speeds

Question 351

Utilities that facilitate troubleshooting whether a device has a solid IP connection?

Answer 351

Ping, ipconfig, netstat, nslookup, …

Question 352

What is needed to connect a computer to the internet?

Answer 352

Legitimate IP addr;
Subnet mask;
Default gateway addr;
DNS address

Question 353

Which wireless networking technology used the 5.0GHz frequency range?

Answer 353

802.11a

Question 354

Which technology enables use of WAP without directly connecting the WAP to an AC power outlet?

Answer 354

PoE

Question 355

What is known as a Basic Service Set in infrastructure mode?

Answer 355

Single WAP

Question 356

Basic Service Set

Answer 356

Collection of stations which may communicate with each other within an 80.211 network

Question 357

What feature enables 802.11n networks to minimize dead spots?

Answer 357

Multiple WAP antennas… known as Transit beamforming

Question 358

Which consumer electronics may cause interferance with 802.11n wireless networks?

Answer 358

Wireless telephones which operate in the same 2.4GHz frequency range

Question 359

To achieve max WiFi coverage in a room, where should you place the WAP?

Answer 359

Center

Question 360

What hardware enables wireless PCs to connect to resources on a wired network segment in infrastructure mode?

Answer 360

WAP on a wireless bridge

Question 361

What do you call a wireless network in infrastructure mode with more than one access point?

Answer 361

Extended Basic Service Set… EBSS

Question 362

What type of server supports EAP encrypted passwords in accordance with 802.1x standard?

Answer 362

RADIUS

Question 363

What is the most secure method of wireless encryption?

Answer 363

WPA2… because it uses CCMP-AES 128 bit cypher;

WiFi Protected Access

Question 364

What is WPA?

Answer 364

Data encryption scheme

Question 365

RADIUS server

Answer 365

Provides authentication via user name and password;

Remote Authentication Dial In User Service

Question 366

TKIP

Answer 366

Used by WPA encryption scheme to encrypt data;

Temporary Key Integrity Protocol

Question 367

Wireless encryption strength hierarchy

Answer 367

Strongest to weakest:
WPA2 - with CCMP-AES
WPA with TKIP
WEP

Question 368

What are the modes wireless networks operate within?

Answer 368

Ad hoc mode;

Infrastructure mode

Question 369

Ad hoc mode

Answer 369

Two or more devices communicate directly without intermediary hardware… also called peer to peer;
Uses mesh topology

Question 370

Infrastructure mode

Answer 370

One or more WAPs for devices to connect to centrally

Question 371

IBSS

Answer 371

Independent Basic Service Set;

Two or more wireless nodes communicating in ad hoc mode

Question 372

Basic Service Set

Answer 372

Single WAP servicing a given area

Question 373

ESS

Answer 373

Extended Service Set…

Adding additional access points to extend a service area

Question 374

Current CSMA-CA devices use what method for collision avoidance?

Answer 374

DCF… Distributed Coordination Function;

RTS/RTS… Ready To Send / Clear To Send

Question 375

Goodput of the wireless network

Answer 375

Actual number of useful bits per second received by application

Question 376

802.11b

Answer 376

Wireless standard:
2.4GHz;
11 Mbps
~300’ range

Question 377

802.11a

Answer 377

5.0 GHz;
54 Mbps
~150 ‘ range

Question 378

802.11g

Answer 378

2.4GHz;
54 Mbps
~300’ range

Question 379

802.11n

Answer 379

2.4GHz;
100+ Mbps
~300’ range

Question 380

802.11ac

Answer 380

5GHz;
Up to 1Gbps
~300’ range

Question 381

MIMO

Answer 381

Multiple In Multiple Out;

Multiple antennas provide multiple connections called streams

Question 382

Transmit Beamforming

Answer 382

Multiple antennas help WAP eliminate dead spots

Question 383

What is occurring if an 802.11g device shows a connection tye 802.11g-ht?

Answer 383

A device is connecting to and 802.11n WAP running in mixed mode

Question 384

WPS

Answer 384

WiFi Protected Setup… push button or PIN method

Question 385

Name three network hardening techniques

Answer 385

Authentication;
Encryption;
MAC address filtering

Question 386

WAPs use what to enable or deny access to the network

Answer 386

ACL… via MAC address listing, called a whitelist

Question 387

What data does a RADIUS server store?

Answer 387

Stores usernames and passwords

Question 388

EAP authentication

Answer 388

Extensible Authentication Protocol mainly used in wireless

Question 389

802.1x

Answer 389

Port authentication network access control mechanism mainly for wireless

Question 390

EAP protocol variations

Answer 390

EAP-PSK... preshared key
EAP-TLS... transport layer sec
EAP-TTLS... tunneled TLS
EAP-MS-CHAPv2... most common
EAP-DM5... weak
LEAP... lightweight
EAP-FAST...

Question 391

WPA2 Enterprise

Answer 391

Version of WPA2 that uses RADIUS server for authentication

Question 392

Heat map

Answer 392

Represents network signal intensity

Question 393

Omnidirectional

Answer 393

Signal radiates out in all directions

Question 394

Unidirectional

Answer 394

Signal focused in a specific area

Question 395

Patch antenna

Answer 395

Small footprint… generates small half sphere beam

Question 396

Name main symptoms for wireless networks having issues

Answer 396

Cannot get on network;
Connection slow
Connection doing weird things

Question 397

Weird connection scenario for wireless network

Answer 397

Open network
Wrong SSID
Rogue access point
Untested updates

Question 398

Comptia scenario questions re: wireless limits

Answer 398

Throughput speeds: 11, 54, 100” Mbps
Frequencies
Distance
Channel usage

Question 399

What channels should be used when operating on 2.4 GHz?

Answer 399

1, 6, 11

Question 400

Wireless scanning tools

Answer 400

Used to check wireless channel utilization;

Reports on nearby devices connected to WAP

Question 401

Wireless - no connection issues

Answer 401

Channel problem;
Security type mismatch
Signal / power levels

Question 402

Wireless - slowness issues

Answer 402

Overworked WAPs;
Physical problem with signal between WAP and client;
Too much RFI on network

Question 403

Spectrum Analyzer

Answer 403

Scans for RF interference

Question 404

Upgrading which component on host machine would most likely enable you to run more virtual machines simultaneously?

Answer 404

RAM

Question 405

What enables two VMs hosted on the same physical machine to communicate without leaving the machine itself?

Answer 405

Virtual switch

Question 406

What features let you save a VMs state so you can quickly restore to that point?

Answer 406

Snapshot

Question 407

What do you need to install a legal copy of Windows 10 into a VM using VMware Workstation?

Answer 407

Valid W10 installation media

Question 408

What is an advantage of a virtual machine over a physical machine?

Answer 408

Hardware consolidation

Question 409

Public cloud

Answer 409

Allows quickly creating servers to run in cloud without owning the servers

Question 410

Platform as a Service… Paas

Answer 410

Allows use of cloud based servers which are also administered and security is kept up to date

Question 411

How does one get two groups of virtual machines on the same subnet without moving or re-cabling harware?

Answer 411

Virtual router

Question 412

What would allow use of iSCSI to read and write data over the network

Answer 412

SAN… Storage Area Network

Question 413

Adding short term capacity via creating additional servers in the cloud is what form of cloud computing?

Answer 413

Hybrid cloud

Question 414

What is a host within a virtual environment?

Answer 414

A computer running multiple virtual operating systems simultaneously

Question 415

Hypervisor

Answer 415

Layer of programming that creates, supports and manages a virtual machine

Question 416

Emulator

Answer 416

Software or hardware that converts the commands to and from the host machine into an entirely diff platform

Question 417

Bare metal hypervisor

Answer 417

Runs directly on hardware… no software between hypervisor and hardware

Question 418

SAN

Answer 418

Storage Area Network… pooled hard disks on a server presented as logical disks over network

Question 419

What are three main choices for supporting a SAN within an infrastructure?

Answer 419

Fiber channel… high perform storage with cables, protocols and switches;
iSCSI… built on TCP/IP; communicates across network, uses jumbo frames
InfiniBand… Unique NIC and cabling

Question 420

Jumbo frames

Answer 420

Usually 9000 Bytes long, however > 1500 Bytes qualifies

Question 421

NAS

Answer 421

Network Attached Storage… Dedicated file server with own file sys, hardware and software;
Slower than NAS

Question 422

How are VMs given indiv IP addresses?

Answer 422

Bridge the NIC… real Nic passes traffic to virt NIC

Question 423

Virtual switch

Answer 423

VMs use to communicate with each other w/o going outside host sys

Question 424

Distributed switching

Answer 424

Centralized install, configure and handling of all switches in virtual network

Question 425

Virtual routers allow what

Answer 425

Dynamic reconfig of networks

Question 426

IaaS

Answer 426

Provided servers, switches, routers… ex AWS;
Cust don’t purch equip;
Cust resp for config, OS and software maint,

Question 427

PaaS

Answer 427

Provides complete deployment sys where programmers dev, admin and maint web appl;
Can add tools to setup database, monitor traffic and performance;
Sits on top of IaaS

Question 428

SaaS

Answer 428

Software as a Service… Centralized application access over the network

Question 429

Public cloud

Answer 429

Software, platforms and infrastructure delivered through networks for general public use

Question 430

Private cloud

Answer 430

Ownership of internal resources, inc infrastructure, platform and software

Question 431

Hybrid cloud

Answer 431

Connecting some combination of public, private and community cluds

Question 432

Which cellular WAN tech introduced concept of SIM card

Answer 432

GSM… Global System for Mobile

Question 433

GSM, EDGE and LTE use what?

Answer 433

SIM cards;

TDMA… Time Div Mult Access

Question 434

A thermostat you control remotely via a smartphone app falls in what category?

Answer 434

IoT… Internet of Things

Question 435

What reduces the vulnerability of a smartphone when automatically connecting to an open SSID?

Answer 435

Requiring HTTPS

Question 436

What is required for a classic hotspot

Answer 436

802.11;

Cellular WAN

Question 437

In order to pair another Bluetooth device, set it to what mode?

Answer 437

Discoverable

Question 438

A Bluetooth PIN code is at least how many digits?

Answer 438

4

Question 439

NFC tags are always what?

Answer 439

Passive

Question 440

All tap to pay services use what networking technology/

Answer 440

NFC

Question 441

A tv remote uses mainly what type network technology?

Answer 441

Infrared

Question 442

ANT+ uses minimal or large amounts of power?

Answer 442

Minimal

Question 443

What deployment model does a company own all devices, retains control of apps, …?

Answer 443

COBO… Corporate Owned Business Only

Question 444

Internet of Things

Answer 444

Embedded devices that connect to the internet and enable remote monitoring and controlling

Question 445

GSM

Answer 445

Global System for Mobile Communications

Question 446

GSM relies on what for users to share access?

Answer 446

TDMA… Time Division Multiple Access;

Mult users share the same channel at same time

Question 447

What did GSM technology introduce to phones/

Answer 447

SIM cards:
Identifies the phone;
enables cellular network access;
stores information

Question 448

Edge

Answer 448

GSM standard offering speeds up to 384Kbps;

Enhanced Data rates for GSM Evolution

Question 449

CDMA

Answer 449

No SIM card;
Superior to GSM
Incompatible with GSM TDMA
Uses spread spectrum to allow mult users

Question 450

HSPA+

Answer 450

3G standard
Theoretical speeds up to 168Mbps
High Speed Packet Access

Question 451

LTE

Answer 451

4G
Downloads 300Mbps
Up 75Mbps
Long Term Evolution

Question 452

PAN

Answer 452

Personal Area Network;
Network among devices using Point to point connections;
Bluetooth, NFC, infrared

Question 453

Bluejacking

Answer 453

Send unsolicited messages to Bluetooth devices

Question 454

Bluesnarfing

Answer 454

Stealing info from Bluetooth devices

Question 455

ANT+

Answer 455

Low speed & power network technolgy uses passive ANT devices and ANT readers;
Adaptive Network Technologies

Question 456

Z-Wave and Zigbee

Answer 456

Home automation standards;
Use hubs and mesh network topology;
Z-Wave is proprietary with open API
Zigbee is open source

Question 457

Hardening IoT devices

Answer 457

Update software / firmware;
Physical security;
Apply internal security options

Question 458

When designing a basic network, which two main factors are considered?

Answer 458

List of requirements;

Equipment limitations

Question 459

`Is network authentication a unique server function?

Answer 459

Yes

Question 460

What standard is used by most NAS devices, enabling them to connect easily to almost any network device?

Answer 460

CIFS… Common Internet File System

Question 461

Adding a generator to a server room is an example of what?

Answer 461

Power redundancy

Question 462

H.323 uses which TCP port?

Answer 462

1720

Question 463

RTP protocol runs on top of what protocol?

Answer 463

SIP

Question 464

What is an example of a UC gateway device?

Answer 464

Router

Question 465

What is a tool for ensuring bandwidth for video teleconfrencing (VTC)?

Answer 465

QoS

Question 466

Centerpiece for any Internet Connection Sharing (ICS) is what?

Answer 466

ICS server

Question 467

What differentiates a PLC from a DCS controller?

Answer 467

PCL controls with sequential ordered steps

Question 468

PLC

Answer 468

Programmable Logic Controller;

Computer that controls a machine according to a set of ordered steps

Question 469

DCS

Answer 469

Distributed Control System;
controllers added directly to a machine;
Central operator controls distributed controls

Question 470

Unified Communications (UC)

Answer 470

Many network services rolled into one;

Voice, video, messaging

Question 471

Unified Voice Services

Answer 471

Self contained internet services that rely on software on computers to provide voice telecommunications via the internet with interconnections handled in the cloud… ex. Skype

Question 472

VOIP uses what protocol and ports?

Answer 472

RTP 5004 and 5005;

SIP 5060 and 5061

Question 473

What type of device is a VOIP telehone?

Answer 473

UC device

Question 474

UC gateway

Answer 474

Edge device interfacing with remote UC gateways and PSTN sys

Question 475

H.323

Answer 475

Most common used CODEC;

Runs on TCP port 1720

Question 476

MGCP

Answer 476

Media Gateway Control Protocol;
VOIP and Video presentation connection and session controller;
Uses TCP ports 2427 and 2727

Question 477

DCS

Answer 477

Distributed Control System… controller added to machine to distribute computing load

Question 478

PLC

Answer 478

Programable Logic Controller

Question 479

SCADA

Answer 479

Supervisory Control and Data Acquisition;
Used for large scale distributed process… pwr grid;
Devices may or may not have ongoing commun w/central control

Question 480

RTU

Answer 480

Remote Terminal Unit;
Provides controller function for SCADA with autonomy;
Uses long dis communi… telephony, fiber, cellular WANs

Question 481

Why are networks segmented?

Answer 481

Security;
Performance;
Load balancing;
Compliance

Question 482

Where is an acceptable use policy found?

Answer 482

Security policy

Question 483

When is a memorandum of understanding used?

Answer 483

When a legal contract is not appropriate

Question 484

What is succession planning?

Answer 484

Identifying personnel who can take over certain positions in response to an incident

Question 485

Risk management

Answer 485

Process on how organizations deal with network attacks

Question 486

Security policy

Answer 486

Defines how organization will protect IT infrastructure

Question 487

Acceptable use policy

Answer 487

Defines what is and is not acceptable to do on organization’s computers

Question 488

Network access policy

Answer 488

Defines who may access network and how / what they may access

Question 489

Name sub policies contained within network access policies

Answer 489

Privileged user agreement;
Password policy;
Data loss prevention policy;
Remote access policy

Question 490

Patch management

Answer 490

Regularly updating OS and apps to avoid security threats

Question 491

Virtual IP address

Answer 491

Single address shared by mult systems;

ex. server failover for server cluster accepting traffic via single IP addr

Question 492

Fault tolerance

Answer 492

Ability of a system to continue operating in the event of a component failure

Question 493

Clustering

Answer 493

Multiple pieces of equipment, such as servers, that are connected and appear as one logical device

Question 494

Name 5 business documents used when dealing with third party vendors

Answer 494

• SLA;
• Memorandum of understanding;
• Multi source agreement:details interoperability of their components;
• Statement of work: Legal doc between vendor and cust defining svcs, products, timeframes;
• Nondisclosure agreement: legal doc prohibiting disclosure of company secrets

Question 495

Vulnerability scanning

Answer 495

Inspects huge nbr of vulnerabilites and provides report

Question 496

Contingency plans

Answer 496

Documents how to limit damage and recover quickly

Question 497

Incident response

Answer 497

Reaction to negative situations within organization in an effort to stop, contain, and remediate without outside resources

Question 498

Disaster recovery

Answer 498

Details recovering infrasturcture from disaster that destroys or disables substantial amounts of infrastructure

Question 499

Business Continuity Plan

Answer 499

BCP…Process that keeps businesses going at remote site in the event a disaster prevents primary infrastructure from operating

Question 500

Full backup

Answer 500

Every file selected is backed up;

Archive bit turned off for files backed up

Question 501

Incremental backup

Answer 501

Only backs up files that have changed since last full or incr backup;
Archive bit is turned off for files backed up

Question 502

Differential backup

Answer 502

Backs up all files that have changed since last full backup;

Archive bit is not turned off for files backed up

Question 503

Cold site

Answer 503

Location with bldg, facilities, desks, toilets, parking, but no computer

Question 504

Warm site

Answer 504

Same as cold site, but has computers

Question 505

Hot site

Answer 505

Same as warm site, but has backups

Question 506

Computer forensics

Answer 506

Science of gathering, preserving, presenting evidence stored on a computer or digital media that is presentable in a court of law

Question 507

Chain of custody

Answer 507

Paper trail documenting who accessed and controlled a piece of evidence from the time it was brought into custody until the incident is resolved

Question 508

MSDS

Answer 508

Details how to deal with computer components including replacement parts, recycling and more

Question 509

A hacker who sends email and replaces return address with a fake one is doing what?

Answer 509

Spoofing an email address

Question 510

What tool is used to prevent ARP cache poisoning?

Answer 510

DAI - Dynamic Arp Inspection

Question 511

A computer compromised with malware to support a botnet is called what/

Answer 511

Zombie

Question 512

What is it called when the goal of this aspect of a DoS attack is to make the attacked system process each request for as long as possible

Answer 512

Amplification

Question 513

When a user’s machine is screen locked along with instructions to call a number to unlock the system is referred to as what?

Answer 513

Ransomware

Question 514

An attack where someone tries to hack a password using every possible permutation is called what?

Answer 514

Brute force

Question 515

Which Windows utility displays open ports on a host?

Answer 515

netstat

Question 516

Which protocols are notorius for cleartext passwords

Answer 516

Telnet, Pop3

Question 517

NSA TEMPEST security standards are used to combat which risk?

Answer 517

RF emanation… wandering radio waves

Question 518

Being told to access a website and clicking a “Run the program” button to check for malware is what form of anti-malware delivery?

Answer 518

Cloud

Question 519

What is switch port protection?

Answer 519

A key network hardening technique

Question 520

DNS poisoning

Answer 520

DNS server is targeted to query an evil DNS server instead of correct one, and fed spoofed information.

Question 521

ARP cache poisoning

Answer 521

Attacks target ARP caches on host switches, which contain known IP address / MAC address associations

Question 522

Botnet

Answer 522

A group of computers under the control of one operator

Question 523

DDos

Answer 523

Distributed denial of service… hundreds, thousands or millions of computers under the control of a single operator, in an effort to bring down a server

Question 524

Reflection

Answer 524

Form of DDoS where requests to a server (ex. DNS, NTP) contain a source IP address of a target server, resulting in amplified responses to the target server.

Question 525

Session hijacking

Answer 525

Interception of computer sessions in an effort to get authentication information

Question 526

Man in the middle

Answer 526

Attacker taps into communications between two systems, reading and possibly changing data before sending it on

Question 527

Name native administrative account names for Windows, Linux and MacOS

Answer 527

Wdws: administrator
Mac: root
Linux: root

Question 528

Malware

Answer 528

Program or code designed to do something on system or network not desired;
Virus;
Worm;
macros;
trojan horse;
rootkits;
adware;
spyware

Question 529

Crypto malware

Answer 529

Encryption used to lock a user out of a system

Question 530

Virus

Answer 530

Program or code that attaches to a host file and replicates and activates on host system drive or flash drive. Not replicated via network

Question 531

Worm

Answer 531

Similar to a virus, but replicates thru the network;

Exploits vulnerabilities in program code, OS, protocols

Question 532

Macro virus

Answer 532

A virus where application commands execute when the application is opened

Question 533

Logic bomb

Answer 533

Code written to execute when certain conditions are met

Question 534

Trojan horse

Answer 534

Malware that looks as if it is doing one thing, but does something evil

Question 535

Rootkit

Answer 535

Virus or Trojan which takes advantage of low level OS functions which hides itself and gains privileged access to the computer

Question 536

Adware

Answer 536

Programs which monitor websites visited, then generate targeted advertisements

Question 537

Spyware

Answer 537

Programs which send info over the internet about your system or actions… browsing history, keystrokes, email contacts, …

Question 538

Zero day attack

Answer 538

New attack that exploits a vulnerability yet to be identified

Question 539

Smart card

Answer 539

Cards with microprocessor circuitry to enable authentication and other transactions

Question 540

Cypher lock

Answer 540

Door unlocking system which combines a door handle, latch, and a sequence of mechanical buttons

Question 541

Multifactor authentication

Answer 541

Access granted based on more than one access technique

Question 542

Edge device

Answer 542

Hardware optimized to perform a task;

Works in coordination with other edge devices and controllers

Question 543

NAC

Answer 543

Network Access Control… Standardizes approach to verify a node meets certain criteria before allowed to connect to network

Question 544

Posture assessment

Answer 544

Query of network devices to confirm they meet minimum security standards before permitted to connect to production network

Question 545

Non persistent agent

Answer 545

Software agent used in posture assessment that does not stay resident in client station memory and executed prior to login;
Used to allow / deny or redirect attempted connections

Question 546

Flood guards

Answer 546

Used by switches to detect and block excessive traffic ;

Enhances switch port protection

Question 547

Statefull inspection

Answer 547

New modern technique added to firewalls;

Compares packet state to other packets

Question 548

Unified Threat Management

Answer 548

UTM;
Firewall packaged with collection of other processes and utilities to detect and prevent threats;
Includes intrusion detection and prevention, VPN portals and load balancers

Question 549

DMZ

Answer 549

Demilitarization Zone… Lightly protected or unprotected subnet positioned between an outer firewall and organization’s internal network.
Mainly used to host public address servers

Question 550

What PDU does SNMP manager use to query agents?

Answer 550

Get

Question 551

In an SNMP managed network, which type software does a managed device run?

Answer 551

agent

Question 552

How does an SNMP manged system categorize data that can be querried?

Answer 552

MIBs

Question 553

An SNMP manger listens on which port when used with TLS?

Answer 553

10162

Question 554

Which tool is used to capture and analyze traffic between two networked computers?

Answer 554

Packet flow monitor

Question 555

Where does a packet sniffer put information it collects?

Answer 555

Capture file

Question 556

If analysis of a network shows a lot of traffic on one machine on port 161, what kind of machine is it?

Answer 556

A managed device

Question 557

What should be created for reference, when a network is running correctly?

Answer 557

Baseline

Question 558

What network management tool can provide graphs of various types of data including traffic and current file server capacities?

Answer 558

Cacti

Question 559

What tool enables the comparison of current performance with correctly functioning network performance/

Answer 559

Performance monitor

Question 560

SNMP Protocol Data Unit… PDU

Answer 560

Specialized type of command and control packet found in SNMP management systems... 
Get;
Response;
Set;
Trap

Question 561

Name 4 main monitoring tools used to monitor, troubleshoot and optimize networks

Answer 561

Packet sniffer;
Protocol analyzers;
Interface monitors;
Performance monitor

Question 562

Packet sniffer

Answer 562

Software tool that queries a network interface and captures packets in a capture file

Question 563

Protocol analyzer

Answer 563

Program that processes and analyzers capture files from a packet sniffer… aka packet analyzer

Question 564

SIEM

Answer 564

Security Information Event Management…real time monitoring of security events and information analysis

Question 565

What does nslookup do?

Answer 565

Queries DNS for IP address of the supplied host name

Question 566

What is wireshark

Answer 566

Protocol analyzer;
Packet sniffer;
packet analyzer

Question 567

What will the command “route print” return on a Windows system?

Answer 567

The current local system’s route table

Question 568

When trying to establish symptoms over the phone, what kind of questions should be asked of a novice ore confused user?

Answer 568

Open ended questions… let user explain the problem in their own words

Question 569

While asking a user problem isolating questions, what else should a tech be doing?

Answer 569

Asking themselves if there is anything on their side of the network that could be causing the problem

Question 570

Which command shows you the detailed IP information, including DNS server address and MAC addresses?

Answer 570

ipconfig /all

Question 571

What is the last step in the troubleshooting process?

Answer 571

Documenting the solution

Question 572

If a user indicates they can’t reach a website and you cannot either, however you can successfully ping the site using it’s IP address, what is most likely the problem?

Answer 572

DSN server is having issues;

A successful ping indicates the site is up, and your LAN and gateway rea functioning properly

Question 573

Name three devices used by techs to deal with broken cables

Answer 573

Cable testers… to determine if there are continuity problems;
TDR… Time Domain Reflectometers… determines if there are cable breaks in copper wire;
OTDR… Optical Time Domain Reflectometer… determines cable breaks in fiber optic cable

Question 574

Cable certifier

Answer 574

Tests cable for rated amount of capacity;
Used for testing if slowness is an issue;
Requires loopback adapter

Question 575

Light meter

Answer 575

Measures light loss in fiber optic cables

Question 576

Tracert / traceroute

Answer 576

Traces all of the routers between two points;

If a traceroute stops at a specific router, the problem lies with the next router or the connection between them

Question 577

ARP

Answer 577

Address Resolution Protocol… resolves IP address to MAC addresses

Question 578

What is nslookup equivalent utility for Mac and Linux

Answer 578

Dig

Question 579

route command

Answer 579

Allows the display and edit of local system’s routing table… “route print”

Question 580

Netstat

Answer 580

Displays information on current sessions and running processes on a system

Question 581

iptables

Answer 581

Linux utility that enables command line control over IPv4 tables and rules that determine what happens with packets when it encounters a firewall

Question 582

Port scanner

Answer 582

Program that probes ports on another system to determine their state… open or closed

Question 583

Looking glass sites

Answer 583

Remote servers accessible with a browser that contain common collections of diagnostic tools like ping, traceroute and BGP query tools

Question 584

Identify steps of basic troubleshooting process

Answer 584

Identify problem... gather information
Establish theory probable cause
Test theory of probable cause
Establish plan of action to resolve problem
Implement solution
Verify sys functionality
Document findings

Question 585

Eliminating what, is one of the first tools in a tech’s arsenal of diagnostic techniques?

Answer 585

Variables

Question 586

Can Windows 10 have a simultaneous wired / wireless connection issue/

Answer 586

No, as long as computers are updated

Question 587

What happens if a speed mismatch between NICs occurs/

Answer 587

No link established

Question 588

What happens if only a duplex mismatch occurs between a NIC and a switch?

Answer 588

Connection will be erratic

Question 589

How can you prevent downtime due to a failure on your default gateway?

Answer 589

Implement VRRP… Virtual Router Redundancy Protocol