N10-007.5

Question 1

Port Aggregation

Answer 1

Joining multiple network device ports together for increased bandwidth and redundancy.

Question 2

Reliability

Answer 2

The measure of how error-free a network transmits packets.

Question 3

Marking

Answer 3

Alters bits within a frame, cell, or packet to indicate how a network should treat that traffic. Marking alone does not change how a network treats a packet. Other tools (such as queuing tools) can, however, reference markings and make decisions (for example, forwarding decisions or dropping decisions) based on those markings.

Question 4

(Unix) traceroute

Answer 4

A UNIX command that displays every router hop along the path from a source host to a destination host on an IP network.

Question 5

nbtstat

Answer 5

Displays NetBIOS information for IP-based networks.

Question 6

(Unix) dig

Answer 6

Can resolve an FQDN to an IP address on UNIX hosts.

Question 7

route

Answer 7

Can add, modify, or delete routes in the IP routing table of Microsoft Windows and UNIX hosts. In addition, the route command can be used to view the IP routing table of Microsoft Windows hosts.

Question 8

nslookup

Answer 8

Can resolve an FQDN to an IP address on Microsoft Windows and UNIX hosts.

Question 9

tracert

Answer 9

A Microsoft Windows–based command that displays every router hop along the path from a source host to a destination host on an IP network.

Question 10

netstat

Answer 10

Can display a variety of information about IP-based connections on a Windows or UNIX host.

Question 11

nmap

Answer 11

This management tool permits the scanning of the network for hosts and services.

Question 12

tcpdump

Answer 12

A common packet analyzer that runs under the command line. It allows the user to display TCP/IP and other packets being transmitted or received over a network to which the computer is attached.

Question 13

host

Answer 13

Can resolve an FQDN to an IP address on hosts.

Question 14

(Linux) iptables

Answer 14

The software firewall that is included with most Linux distributions.

Question 15

Cable Certifier

Answer 15

Used to determine the category and the data throughput of a cable

Question 16

Time Domain Reflectometer (TDR)

Answer 16

Detects the location of a fault in a copper cable by sending an electric signal down the copper cable and measuring the time required for the signal to bounce back from the cable fault. A TDM can then mathematically calculate the location of the fault.

Question 17

Syslog

Answer 17

A syslog-logging solution consists of two primary components: syslog servers (which receive and store log messages sent from syslog clients) and syslog clients (which can be a variety of network devices that send logging information to a syslog server).

Question 18

security information and event management (SIEM)

Answer 18

These products seek to monitor the network for security issues and notify personnel should issues arise.

Question 19

Management Information Base (MIB)

Answer 19

This is the database of variables that exist on an SNMP-managed device.

Question 20

ATM Cells are at which layer of the OSI model?

Answer 20

Layer 2 (cells are also known as frames)

Question 21

Port Scanning

Answer 21

The process of scanning for open TCP or UDP ports on the network.

Question 22

Change Management Documentation

Answer 22

This important documentation explains the process whereby changes are permitted in the network. This often consists of a series of approvals and testing steps.

Question 23

Intermediate Distribution Frame (IDF) Documentation

Answer 23

The documentation related to a distribution frame in a central office or customer premises, which cross-connects the user cable media to individual user line circuits and may serve as a distribution point for multipair cables from the main distribution frame (MDF) or combined distribution frame (CDF) to individual cables connected to equipment in areas remote from these frames.

Question 24

Virtual Network Computing (VNC)

Answer 24

An alternative to RDP, VNC allows the access of a desktop from another system on the network.

Question 25

bit-error rate tester (BERT)

Answer 25

Has a pattern generator (generates a variety of bit patterns) and error detector (which is synced with the pattern generator and can determine the number of bit errors) and can calculate a BER for the tested transmission link

Question 26

Bandwidth

Answer 26

The measure of network throughput capable on a network media or path.

Question 27

Layer 2 Forwarding (L2F)

Answer 27

A VPN protocol designed (by Cisco Systems) with the intent of providing a tunneling protocol for PPP. Like L2TP, L2F lacks native security features.

Question 28

pathping

Answer 28

Pathping is a TCP/IP based utility (command-line tool) that provides useful information about network latency and network loss at intermediate hops between a source address and a destination address. Similar to tracert/traceroute

Question 29

Remote Authentication Dial-In User Service (RADIUS)

Answer 29

A UDP-based protocol used to communicate with an AAA server. Unlike TACACS+, RADIUS does not encrypt an entire authentication packet, but only the password. However, RADIUS offers more robust accounting features than TACACS+. Also, RADIUS is a standards-based protocol, whereas TACACS+ is a Cisco proprietary protocol.

Question 30

Authentication Header (AH)

Answer 30

An IPSec protocol that provides authentication and integrity services. However, it does not provide encryption services.

Question 31

IP Security (IPSec)

Answer 31

A type of VPN that provides confidentiality, integrity, and authentication.

Question 32

Advanced Encryption Standard (AES)

Answer 32

AES is typically considered the preferred symmetric encryption algorithm. AES is available in 128-bit key, 192-bit key, and 256-bit key versions.

Question 33

Kerberos

Answer 33

A client/server authentication protocol that supports mutual authentication between a client and a server. Kerberos uses the concept of a trusted third party (a key distribution center) that hands out tickets to be used instead of a username and password combination.

Question 34

RSA

Answer 34

A popular and widely deployed asymmetric encryption algorithm.

Question 35

BPDU Guard

Answer 35

The ability of a switch to block a port where unexpected BPDUs are arriving from another switch or attacker.