Network Plus Exam Flashcards
1
Q
A UTM ( unified threat management ) is deployed on the external edge of the main corporate office. The office connects to the WAN port of the edge router. The edge router at the main office connects to the remote offices using GRE IPsec ( generic routing encapsulation & internet protocol security ) tunnels. A network administrator notices that a worm that was not detected by the UTM has spread from the remote sites into the corporate network. Which of the following steps would MOST likely correct the issue.
A
C. Enable stateful inspection on the UTM ( unified threat management )
2
Q
A technician has racked a new access switch and has run multimode fiber to a new location. After installing an extended-range 10Gb SFP in the core switch, the technician installed a 10 Gb SFP in the access switch and connected the port to the new extension with a fiber jumper. However, the link does not display and the technician cannot see light emitting from the core switch, Which of the following solutions is MOST likely to resolve the problem
A
B. Replace the jumpers with single-mode fiber
3
Q
A network technician has implemented ACL’s to limit access to cloud based storage. Which of the following security mechanisms has the technician enforced?
A
C. WAF ( web application firewall )
4
Q
A network technician receives a call from a user in the accounting department stating that internet connectivity has been lost after receiving a new workstation. No other users in accounting are reporting similar issues. The network technician is able to ping the machine from the IT network. Which of the following is MOST likely the cause.
A
A. Incorrect default gateway
5
Q
A firewall administrator is implementing a rule that directs HTTP traffic to an internal server listening on a non-standard socket. Which of the following types of rules is the administrator implementing?
A
B. PAT ( port address translation )
6
Q
A technician is installing a new wireless badging system on a hospital network. The requirements of the badging system are for it to have its own SSID ( service set identifier ) and low power levels. The badging system has to cover 99.9% of the hospital. Which of the following is the BEST action to take to meet the system requirements ?
A
A. install additional WAP’s ( wireless access points)
7
Q
A technician attempts to replace a switch with a new one of similar model from the same vendor. When the technician moves the fiber and SFP plug, the switch does not completely boot up. Considering that the config files are the same, which of the following is the most likely cause of the failure.
A
B. corrupt operating system
8
Q
A company has hundreds of nodes on a single subnet and has decided to implement VLAN’s. Which of the following BEST describes the benefit of this approach?
A
A. It segments broadcast domains in the network infrastructure.
9
Q
A company has completed construction of a new datacenter and the IT staff is now planning to relocate all server and network equipment from the old site to the new site. Which of the following should the IT staff reference to determine the location of the equipment being moved.
A
A. rack diagrams
10
Q
Which of the following would allow a device to maintain the same IP address lease based on the physical address of the network card?
A
A. MAC ( media access control ) address reservation
11
Q
A technician wants to prevent an unauthorized host from connecting to the network via Ethernet. Which of the following is a layer 2 access control the technician should implement ?
A
D. Port security
12
Q
A network engineer is configuring wireless access for guest at an organization. Access to other areas in the organization should not be accessible to guests. Which of the following represents the MOST secure method to configure guest access to the wireless network.
A
A. Guests should log into a separate wireless network using a captive portal.
13
Q
The server team has just installed an application across three different servers. They are asking that all requests to the application are spread evenly across all three servers. Which of the following should the network team implement to fulfill the request?
A
D. Load balancer.
14
Q
A network technician is deploying mobile phones for a company sales staff, Salespeople frequently travel nationally and internationally to meet with clients and often have to roam or switch cellular providers. Which of the following standards is the BEST option to fit the requirements ?
A
A. GSM ( global system for mobile communication )
15
Q
A network administrator has been given a network of 172.16.85.0/21 and wants to know the usable range of IP addresses on that subnet. Which of the following indicates the correct IP address range?
A
C. 172.16.80.1 -172.16.87.254
16
Q
A network technician is troubleshooting wireless network issues in a crowded office complex and suspects there is interference from nearby wireless networks. Which of the following should the technician perform to discover possible interference?
A
A. site survey
17
Q
A network technician is troubleshooting an issue and has established a theory of probable cause. Which of the following steps should the network technician take NEXT ?
A
A. Test the possible solution
18
Q
A network technician has discovered a rogue access point under an empty cubicle desk. Which of the following should the technician perform to ensure another cannot be placed on the network?
A
B. enable DHCP ( dynamic host configuration protocol ) guard to detect rogue servers.
19
Q
Which of the following provides the ability to deploy consistent access point configurations from a central location ?
A
A. wireless controller
20
Q
A network technician is configuring a wireless network at a branch office. Users at this office work with large files and must be able to access their files on the server quickly. Which of the following 802.11 standards provides the MOST bandwidth?
A
B. ac
21
Q
A network administrator configures a router with the following IP address information. Gigabit Ethernet 1 interface 10.10.01/24 and serial 0 interface 10.10.0253/30 Clients are connected to a switch on the gigabit Ethernet interface: the ISP is connected to the serial 0 interface. When the router configuration is complete and client devices are reconfigured all clients report that they are unable to connect to the internet. Which of the following is the MOST likely reason ?
A
C. the router was configured with an incorrect subnet mask.
22
Q
A penetration tester has been tasked with reconnaissance to determine which ports are open on the network. Which of the following tasks should be done FIRST ? ( choose 2 )
A
A. network scan
C. tracert.
23
Q
Users are reporting internet connectivity issues. The network administrator wants to determine if the issues are internal to the company network or if there is an issue with the ISP. Which of the following tools should be used to BEST determine where the outage is occurring?
A
A. traceroute
24
Q
Which of the following security mechanisms dynamically assigns a layer 2 address and restricts traffic only to that layer 2 address.
A
A. sticky MAC ( media access control )
25
Which of the following is a vulnerable system to detect and log unauthorized access?
B. honeypot
26
According to the OSI model, at which of the following layers is data encapsulated into a packet.
B. layer 3 ( network layer )
27
Which of the following WAN technologies is MOST preferred when developing a VOIP system with 23 concurrent channels
C. T1
28
A junior network technician is setting up a new email server on the company network. Which of the following default port should the technician ensure is open on the firewall so the new email server can relay email?
B. port 25 ( simple mail transfer protocol )
29
Which of the following policies would Joe, a user, have to agree to when he brings his personal tablet to connect to the company guest internet.
C. BYOD
30
In a service provider network, a company has an existing IP address scheme. Company A's network currently uses the following scheme. Subnet 1: 192.168.1.0/26 and subnet 2 192.168.1.65/26. Company B uses the following scheme: Subnet 1 192.168.1.50/28
The network admin cannot force the customer to update it's IP scheme. Considering this, which of the following is the BEST way for the company to connect these networks ?
C. NAT ( network address translation )
31
A network engineer is designing a new network for a remote site. The remote site consists of ten desktop computers, ten VOIP phones and 2 network printers. In addition, 2 of the desktop computers at the remote site will be used by managers who should be on a separate network from the other eight computers. Which of the following represents the BEST configuration for the remote site.
A. 1 router connected to one 24 port switch configured with three VLANS: one for the managers computers and printer, one for the other computers and printer and one for the VOIP phones.
32
A network technician is troubleshooting an end-user connectivity problem. The network technician goes to the appropriate IDF ( intermediate distribution frame ) but is unable to identify the appropriate cable due to the poor labeling. Which of the following should the network technician use to help identify the appropriate cable?
A. tone generator
33
A network technician notices the site to site VPN and internet connection have not come back up at a branch office after a recent power outage. Which of the following is an out of band method the technician would MOST likely utilize to check the branch office's router status?
A. use a modem to console into the router.
34
A network technician is considering opening ports on the firewall for an upcoming VOIP PBX implementation. Which of the following protocols is the technician MOST likely to consider? ( choose 3 )
A. SIP ( session initiation protocol )
B. H.323
F. RTP ( real time transport protocol )
35
A device operating at Layer 3 of the OSI model uses which of the following protocols to determine the path to a different network.
C. RIP ( routing information protocol )
36
A network administrator is setting up a web based application that needs to be continually accessible to the end user, Which of the following concepts would BEST ensure this requirement?
A. high availability
37
Which of the following devices should a network administrator configure on the outermost part of the network ?
D. firewall
38
A company finds that many desktops are being reported as missing or lost. Which of the following would BEST assist in recovering these devices ?
D. computer locks
39
A technician is connecting a router directly to a PC using the G1/0/1 interface. Without the use of auto-sensing ports, which of the following cables should be used.
D. crossover
40
A technician is diagnosing an issue with a new T1 connection. The router is configured, the cable is connected, but the T1 is down. To verify the configuration of the router, which of the following tools should the technician use?
A. Loopback adapter
41
A network technician receives a call from a user who is experiencing network connectivity issues. The network technician questions the user and learns the user brought in a personal wired router to use multiple computers and connect to the network. Which of the following has the user MOST likely introduced to the network?
A. Rogue DHCP ( dynamic host configuration protocol ) server
42
A technician is setting up a direct connection between 2 older PC's so they can communicate but not be on the corporate network. The technician does not have access to a spare switch but does have spare Cat 6 cables, RJ-45 plugs and crimping tool. The technician cuts off one end of the cable. Which of the following should the technician do to make a crossover cable before crimping the new tool?
D. reverse the wires leading to pins 2 and 4
43
Which of the following is the number of broadcast domain that are created when using an unmanaged 12 port switch ?
B. 1
44
A network engineer wants to segment the network into multiple domains. Which of the following devices would allow for communication between the segments?
B. layer 3 switch
45
The chief information officer ( CIO ) has notices the corporate wireless signal is available in the parking lot. Management request that the wireless network be changed so it is no longer accessible in public areas, without affecting the availability inside the building. Which of the following should be changed on the network.
A. power levels
46
A network technician is assisting the security team with some traffic captures. The security team wants to capture all traffic on a single subnet between the router and the core switch. To do so, the team must ensure there is only a single collision and broadcast domain between the router and the switch from which they will collect traffic. Which of the following should the technician install to BEST meet the goal?
C. hub
47
Based on networks 10.8.16.0/22 and 10.8.31.0/21 which of the following is the BEST summarized CIDR ( classless inter domain routing )
A. 10.8.0.0/16
48
A technician discovers that multiple switches require a major update. Which of the following policies should be followed ?
A. change management policy
49
A technician is troubleshooting a point to point fiber-optic connection. The technician is at a remote site and has no connectivity to the main site. The technician confirms the switch and the send and receive light levels are within acceptable range. Both fiber SFP's are confirmed as working. Which of the following should the technician use to reveal the location of the fault?
A. OTDR ( optical time domain reflectometer )
50
A CIO wants to move IT services to a cloud service offering. However the network admin still wants to be able to control some parts of the cloud services networking component. Which of the following should be leveraged to complete this task?
B. PaaS ( platform as a service )
51
Client PC's are unable to receive addressing information from a newly configured interface on a router. Which of the following should be added to allow the clients to connect?
B. IP helper
52
When enabling jumbo frames on a network device, which of the following parameters is being adjusted?
C. MTU ( maximum transmission unit )
53
A technician logs onto a system using Telnet because SSH is unavailable. SSH is enabled on the target device and access is allowed from all subnets. The technician discovers a critical step was missed, Which of the following would allow SSH to function.
B. generate new keys
54
A network admin wants to ensure sensitive data is not exfiltrated from the system electronically. Which of the following should be implemented?
A. DLP ( data loss prevention )
55
An office network consists of one two-port router connected to a 12 port switch. A four port hub is also connected to the switch. On this particular network, which of the following is the number of collision domain that exist?
D. 14
56
A network technician wants to remotely and securely access the desktop of a Linux workstation. The desktop is running remote control software without encryption. Which of the following should the technician use to secure the connection ?
A. SSH in tunnel mode
57
Which of the following should current network performance be compared against to determine network anomalies ?
A. baseline
58
A network admin configures an email server to use secure protocols. When the upgrade is completed, which of the following ports on the firewall should be configured to allow for connectivity ? (choose 3)
E. TCP 587
F. TCP 993
G. TCP 995
59
After a server outage, a technician discovers that a physically damaged fiber cable appears to be the problem, After replacing the cable, the server will still not connect to the network. Upon inspecting the cable at the server end, the technician discovers light can be seen thru one of the fibers strands. Which of the following should the technician do FIRST to reconnect the server to the network.
A. reverse the fiber strands of the cable and reconnect them to the server.
60
The backup server connects to a NAS ( network attached storage) device using block-level storage over Ethernet. The performance is very low, however the network technician suspects the performance issues are network related. Which of the following should the technician do to improve performance ?
C. Enable jumbo frames on the NAS and server
61
A technician is trying to determine the IP address of a customer router. The customer has an IP address of 192.168.1.55/24. Which of the following is the address of the customers router ?
B. 192.168.1.0
62
A network technician is able to connect the switches between 2 offices, but the offices cannot communicate with each other, as each office uses a different IP addressing scheme. Which of the following devices needs to be installed between the switches to allow communication?
C. router
63
A network technician is working on a proposal for email migration from an on premises email system to a vendor hosted email in the cloud. The technician needs to explain to management what type of cloud model will be utilized with the cloud hosted email. Which of the following cloud models should the technician identify in the proposal ?
C. SaaS ( Software as a Service )
64
Which of the following is the correct port number for NTP ( network time protocol )
C. 123
65
A network technician is connecting 2 switches together, Which of the following protocols should the technician use to increase speed and fault tolerance
C. LACP ( Link aggregation control protocol )
66
A company has a web-based application that is used by many different departments. The company has experienced some overload of resources on the database server. The network admin implements a network device in between the servers and the database, Which of the following BEST describes the purpose of this device?
B. Load balancing and providing high availability
67
A technician is replacing a switch at a branch office and discovers the existing backbone cable does not fit in the new switch. The fiber patch panel has circular connections. The new switch has a transceiver that accepts a smaller square adapter of two strands. Which of the following patch cables would the technician need to complete the installation ?
C. LC ( lucent connector ) to ST ( straight tip )
68
A computer lab on a campus network was recently reconfigured using recycled network cables. One of the 24 computers in the lab is unable to connect to the network after the upgrade. A network technician successfully uses the cable in question to connect directly to another computer. Which of the following is MOST likely the issue with the cable?
A. the cable is a crossover cable.
69
Which of the following is a reason why a business may be hesitant to move sensitive data to a SaaS cloud service ?
B. loss of full control over data resources
70
Users have been experiencing slow network response times and management has asked the network tech to provide evidence of network improvement. After optimizing the network, which of the following would be required ?
C. performance baseline
71
A network technician has created a network that consists of a router, a firewall, a switch and several PC's. Which of the following physical network topologies was created?
D. bus
72
A tech is setting up a branch office on a point to point connection, Which of the following IP network blocks is the MOST efficient use of IP address space for the router connections between the two sites.
C. /30
73
A tech is upgrading the firmware on an older KVM switch, The specifications call for a serial port to connect to the computer on one side and an Ethernet jack to connect to the switch on the other side, Which of the following connectors does the tech need for this cable? ( choose 2 )
B. DB-9
| E. RJ-45
74
An end-user device requires a specific IP address every time it connects to the corporate network: however, corporate policy does not allow the use of static IP addresses. Which of the following will allow the request to be fulfilled without breaking the corporate policy?
D. DHCP ( dynamic host configuration protocol ) reservation
75
A tech is planning a remote access strategy to manage routers and switches on a dedicated management network, The management network is segregated from the production network and uses site to site VPN connections. Some of the equipment does not support encryption. Which of the following should the tech choose that the equipment would support?
A. telnet
76
Which of the following protocols do MOST MITM attacks utilize ?
A. ARP ( address resolution protocol )
77
An ISP tech gets a call from a business that just changed equipment but can no longer connect to the internet. The tech checks the ARP table on the ISP switch and there is no corresponding MAC address present. instead the entry is incomplete. Which of the following causes this condition ?
B. duplex/speed mismatch
78
A system admin has recently purchased and installed a large electronic signage screen for the company's parking garage. The screens management software was installed on a server with a public IP address to allow remote management. The system admin is now troubleshooting an issue with the screen displaying unknown, random and inappropriate messages. Which of the following is MOST effective in resolving this issue?
A. Changing the management software's default credentials
79
A tech is investigating a server performance issue, The tech has gathered the server utilization statistics. Which of the following should the technician use to determine which statistics are not on the normal range?
A. baseline review
80
Which of the following devices, if implemented would result in decreased administration time of an 802.11 network running centralized authentication services ? (choose 2 )
C. wireless controller
| D. RADIUS ( remote authentication dial-in user server )
81
A tech must determine if a web page user's visits are connecting to a suspicious website's IP address in the background. Which of the following tools would provide the information on TCP connections ?
A. netstat
82
An administrator is moving to a new office. There will be several network runs through the ceiling area of the office. Which of the following is the BEST to utilize in these areas ?
D. plenum-rated cable
83
A network tech receives a spool of Cat 6a cable and is asked to build several cables for a new set of Ethernet runs between devices. Which of the following tools are MOST likely needed to complete the task. ( choose 3 )
A. wire stripper
B. cable crimper
D. RJ-45 connectors
84
As part of a transition from a static to a dynamic routing protocol on an organization's internal network, the routing protocol must support IPv4 and VLSM ( variable length subnet mask ) . Based on those requirements, which of the following should the network admin use ? ( choose 2 )
A. OSPF ( open shortest path first )
| B. IS-IS ( intermediate system to intermediate system )
85
A telecommunications provider has just deployed a new OC ( optical carrier ) -12 circuit at a customer site. While the circuit showed no errors from the provider end to the customer's demarcation point, a network admin is trying to determine the cause of dropped packets and errors on the circuit. Which of the following should the network admin do to rule out any problems at layer 1? ( choose 2 )
A. use a loopback and router at the demark and check for a link light.
B. Use an OTDR ( optical time domain reflectometer ) to validate the cable integrity )
86
A single PRI ( primary rate interface ) can deliver multiple voice calls simultaneously using which of the following layer 1 technologies?
A. time division multiplexing
87
A network tech is diagnosing a time-out issue generated from an end user web browser. The web browser issues standard HTTP get and post commands to interact with the website. Given this information, the technician would like to analyze the entire TCP ( transfer control protocol ) handshake of the HTTP requests offline. Which of the following tools would allow the technician to view the handshake?
A. packet analyzer
88
A customer cannot access a company's secure website. The company's network security is reviewing the firewall for the server and finds the following output.
Time Action Src IP Src Port Dat IP Dst Port
0902 Allow 12.73.15.5 31865 10.5.0.10 80
1005 Deny 12.73.15.5 31866 10.5.0.10 443
1006 Deny 12.73.15.5 31890 10.5.0.10 443
Which of the following changes should be made to allow all customers to access the company's website?
C. allow 10.5.0.10 443 any any
89
Which of the following MUST be implemented to share metrics between routing protocols within the same router ?
B. routing table
90
An engineer is reviewing the implementation requirements for and upcoming project. The basic requirements identified by the customer include the following :
WLAN architecture supporting speeds in excess of 150 Mbps.
Clientless remote network access.
Port based network access control.
Which of the following solution sets properly addresses all of the identified requirements?
E. 802.11n, SSL-VPN, 802.1x
91
Which of the following is used to classify network data for the purpose of providing QoS?
D. DSCP ( differential services code point )
92
A network tech needs to separate a web server listening on port 80 from the internal LAN and secure the server from the public internet. The web server should be accessible to the public internet over port 80 but not the private LAN. Currently, the network is segmented with a network-based firewall using the following IP addressing scheme on each interface.
Zone Interface IP address
Public eth0 10.0.0.1/24
DMZ eth1 10.0.1.1/24
Private eth2 10.0.2.1/24
Which of the following ones should the tech use to place the web server and which of the following firewalls rules should the technician configure?
B. place the web server in the DMZ with an inbound rule from eth0 interface to eth1 to accept traffic over port 80 designated to the web server .
93
A company recently upgraded all of its printers to networked multifunction devices. Users can print to the new devices, but they would also like the ability to scan and fax files from their computers. Which of the following should the technician update to allow this functionality?
C. printer firmware
94
A disgruntled employee executes a man in the middle attack on the company network. Layer 2 traffic destined for the gateway is redirected to the employee's computer. This type of attack is an example of :
A. ARP cache poisoning
95
The process of attempting to exploit a weakness in a network being given permission by the company is known as?
A. penetration testing
96
A company has contracted with an outside vendor to perform a service that will provide hardware, software and procedures in case of a catastrophic failure of the primary datacenter. The CIO is concerned because this contract does not include a long term strategy for extended outages, Which of the following should the CIO complete?
B. business continuity plan
97
A typical cell tower will have microwave and cellular antennas. Which of the following network topologies do these represent ? ( choose 2 )
C. point to point
| D. mesh
98
A network admin has a monitoring system in place that is currently polling hundreds of network devices at regular intervals. The continuous polling is causing high CPU utilization on the server. Which of the following tasks should the admin perform to resolve the CPU issue while maintaining full monitoring capabilities.
A. Remove SNMP (simple network management protocol ) polling and configure SNMP traps on each network device.
99
A contractor is setting up and configuring conference rooms for a convention. The contractor sets up each room in the conference center to allow wired internet access going to individual tables. The contractor measured the distance between the hotels patch panel to the jack and the distance is within Cat5e specifications. The contractor is concerned that the room will be out of specification if cables are run in each room from the wall jacks. Which of the following actions should the contractor take to ensure the cables runs meet specifications and the network functions properly?
A. Place a switch at the hotel's patch panel for connecting each room's cable.
100
Users are reporting their network is extremely slow. The tech discovers pings to external host have excessive response times. However, internal pings to printers and other PC's have acceptable response times. Which of the following steps should the technician take NEXT?
A. determine if any network equipment was replaced recently
101
Which of the following is a system of notation that uses base 16 rather then base 10?
A. hex
102
A network admin would like to collect information from several networking devices using SNMP. Which of the following SNMP options should a network admin use to ensure the data transferred is confidential ?
A. authpriv ( authentication & privacy )
103
The IT manager at a small firm is in the process of renegotiating and SLA ( service level agreement ) with the organizations ISP. As part of the agreement, the organization will agree to a dynamic bandwidth plan to provide 150Mbps of bandwidth. However, if the ISP determines that a host on the organizations internal network produces malicious traffic, the ISP reserves the right to reduce available bandwidth to 1.5Mbps. Which of the following policies is being agreed to in the SLA?
C. Throttling
104
A network tech has just configured NAC ( network access control ) for connections using Cat 6 cables. However, none of the windows clients can connect to the network.
Which of the following components should the technician check on the windows workstations? ( choose 2 )
A. start the wired autoconfig service in the service console.
C. enable IEEE 802.1x authentication in network interface card properties
105
The security manager reports that individual systems involved in policy or security violations of incidents cannot be located quickly. The security manager notices the hostnames all appear to be randomly generated characters. Which of the following would BEST assist the security manager identifying systems involved in security incidents?
B. implement a standardized UNC ( universal naming convention )
106
A building is equipped with light sensors that turn off the fluorescent when natural light is above a certain brightness, Users report experiencing network connection issues only during certain hours. The west side of the building experiences connectivity issues in the morning hours and the east side near the end of the day. At night the connectivity issues affect the entire building. Which of the following could be the cause of the connectivity issues?
C. Network wiring is run perpendicular to electrical conduit
107
A network tech configures a firewall's ACL to allow outgoing traffic for several popular services such as email and web browsing. However, after the firewall's deployment, users are still unable to retrieve their emails. Which of the following would best resolve the issue?
B. allow the firewall to accept inbound traffic to ports 80,110,143 and 443
108
A network security tech observes multiple attempts to scan network hosts and devices. All the attempts originate from a single host on the network. Which of the following threats is MOST likely involved?
C. compromised system
109
Which of the following would be the MOST efficient subnet mask for a point to point link?
C. /31
110
An office user cannot access local network drives but has full access to the internet. A tech troubleshoots the issue and observes the following output of the ipconfig command:
Windows IP configuration
```
Ethernet LAN adapter : 980GTS
Connection-specification DNS suffix ....comptia.net
APv4 Address : .......10.0.5.99
Subnet Mask ........255.255.255.0
Default Gateway ......10.0.5.1
```
```
Wireless LAN adapter : Fastwifi 99
Connection - specific DNS suffix ....guestwireless.local
IPv4 address.......172.16.0.5
Subnet mask.............255.255.255.0
Default Gateway ............172.16.0.254
```
Which of the following would most likely allow the network drives to be accesses?
B. disable the WLAN adapter
111
Ann a network technician has just installed a fiber switch in a datacenter. To run the fiber cabling. Ann plans the cable route over the top of the rack using the cable trays, down to the switch, coiling up any excess cable. As Ann configures the switch, she notices several messages in the logging buffer stating the signal of the SFP is too weak. Which of the following is MOST likely the cause of the errors in the logging buffer?
A. Bend radius exceeded
112
Which of the following wireless connections types utilize MIMO ( multi input multi output ) on non-overlapping channels ? ( choose 2 )
B. 802.11ac
| E. 802.11n
113
A network tech is creating subnet for 488 host machines, The tech is told to use a class B address scheme when making the subnet and is instructed to leave as much room as possible for additional subnets of the same size. Which of the following subnets would fulfill these requirements?
D. 172.16.0.0/22
114
A network engineer is designing a new IDF ( intermediat distribution frame ) in and old building . The engineer determines the equipment will fit in a two post rack and there is power available for this equipment. Which of the following would be the FIRST issue to remediate?
A. air flow cooling
115
Which of the following DNS ( domain name system ) records needs to be configured for SMTP ( simple mail transfer protocol ) traffic?
A. mail exchanger record
116
In which of the following ways does a DDoS ( distributed Denial of Service attack differ from a spoofing attack?
C. DDoS attacks are launched from multiple hosts.
117
A user checks an IP address using an external website. The address using is different than the one the user sees when opening a command prompt and typing in ipconfig/all. The user does not understand why the two tools show different IP addresses. This is BEST explained by the interworking of ?
C. public/private networks
118
Which of the following communication media can carry many voice, data and video channels simultaneously over multiple frequencies ?
A. broadband
119
To replace a defective UPS, the network admin must take the switch offline. The admin wants to be able to perform maintenance on the UPS in the future without affecting the availability of the attached switch. Which of the following would BEST allow this to happen?
A. Add a redundant power supply to the switch.
120
A forensic first responder arrives at the scene where an employee is suspected to have committed a computer crime. Which of the following should the first responder do FIRST?
C. secure the area
121
A small town is attempting to attract tourists who visit larger nearby cities. A network engineer is asked to implement a network encompassing the five block town and nearby businesses. The inclusion of smartphones and portable devices is crucial to the plan. Which of the following is the network engineer being asked to implement?
C. MAN ( metropolitan area network )
122
An employee wishes to use a personal cell phone for work related purposes, including storage of sensitive company data, during long business trips. Which of the following is needed to protect BOTH the employee and the company?
D. real time remote monitoring of the phone's activity and usage.
123
Which of the following protocols can be both connection-oriented and connectionless?
B. Domain Name System
124
Which of the following BEST describes the differences between VLAN hopping and session hijacking ?
A. VLAN hopping involves the authorized transition from one VLAN to another to gain additional access. Session hijacking involves overriding a user's web connection to execute commands.
125
An analysis is developing a proof of concept of a wireless based attack as part of a penetration test against an organizations network. As part of the attack, the analyst launches a fake access point matching the SSID ( service set identifier) of the organizations guest access network. When a user connects to the fake
access point, the analyst allows the traffic to flow though the access point to the legitimate site while the data traversing the network is logged for latest analysis and exploitation. Which of the following attacks has the analyst successfully performed in this scenario?
E. man in the middle
126
A network admin receives a call from the sales department requesting ports 20 and 21 be opened on the company's firewall to allow customers to retrieve a large file. Which of the following should the admin perform BEFORE making the needed changes ? ( choose 2 )
A. document the reason for the request
| C. follow the company's approval process for the implementation.
127
A user reports that a laptop cannot connect to the internet despite the fact the wireless internet was functioning on the other users laptop. Which of the following issues should be reviewed to help the user to connect to the wireless network ?
A. Wireless switch toggled off
128
A network admin wants to increase the confidentially of the system by hardening the authentication process. Currently the users log in using usernames and passwords to access the system. Which of the following will increase the authentication factor to three?
A. adding a fingerprint reader to each workstation and providing a RSA authentication token
129
A network technician is building a network for a small office. The office currently has cable TV and now requires access to the internet without adding any cabling other than what is already in the place. Which of the following solutions should the technician install to meet these requirements?
A. DOCSIS ( data over cable services interface specifications ) modem
130
A network engineer arrives at work and discovers that many users are having problems when attempting to connect to the company network shared drives. The network operations center ( NOC ) technician just completed server upgrades the night before. To which of the following documents should the NOC technician refer to determine what potentially caused the connectivity problem?
D. change management.
131
Which of the following VPN protocols establishes a secure session that can be initiated using a browser?
B. SSL VPN
132
A tech is setting up a public guest network for visitors to access the internet that must be separate from the corporate network. Which of the following are the BEST steps for the technician to take with minimum overhead configuration ? ( choose 2 )
A. enable SSID ( service set identifier ) broadcasting to identify the guest network.
B. configure visitor devices to use static IP addresses.
133
When choosing a type of storage that integrates with the existing network infrastructure, the storage must be easily configured to share files and can communicate with all existing clients over TCP/IP. Which of the following is the best technology for the network admin to implement?
C. network attached storage
134
A network tech is installing a new network switch and is looking for an appropriate fiber optic patch cable. The fiber optic patch panel uses a twist style connector . The switch uses a SFP module. Which of the following connector types should the fiber patch cable have?
B. ST ( single twist )
135
Which of the following WAN technologies utilizes the concept of virtual circuits and point-multipoint connections.
E. Frame relay
136
A network admin wishes to ensure there are no unnecessary open communications paths into a server. Using a port scanner, the admin finds that ports are reported as closed. Which of the following BEST explains this response?
B. the ports are associated with deprecated servcies
137
Users are reporting issues with slow connection speeds and a loss of connectivity on the newly installed wireless network. The issues are intermittent but seem to occur most often around midday. Which of the following is the MOST likely cause?
C. Not enough DHCP addresses have been allotted.
138
A user reports difficulties connecting a PC to a wired network. The PC connects to an IP phone, which is working. A network technician can verify that other devices successfully connect to the phone. At which of the following layers of the OSI model is the problem MOST likely located?
A. network
139
Which of the following physical security controls is MOST likely to be susceptible to a false positive ?
C. proximity reader
140
An assistant systems analyst reports the following findings of an investigation of slow internet connections in a remote office to the senior systems analyst?
Device CPU utilization Memory Utilization Link
Router 5% 43% Good
Firewall 92% 58% Good
Switch 1 23% 32% Good
Switch 2 8% 81% Good
Which of the following devices is causing the issues?
B. Firewall
141
A small business developed an in house application that is very sensitive to network latency when communicating between servers. Due to lack of funds , the business has to build it's own network for workstations and servers. Now a network admin must redesign the network due to performance issues with the application. Which of the following would be MOST cost effective for the admin to ?
C. Install 10Gb Ethernet NIC's in the servers
142
A network tech is configuring a firewall access list to secure incoming connections to an email server. The internal address of this email server is 192.198.1.143. The firewall should allow external servers to send email to the email server. The server also supports client access via a web browser. Only secure protocols should be used, and only the necessary ports should be open. Which of the following ACL rules should be configured in the firewall's WAN port? ( choose 2 )
E. permit 192.168.1.1.443
F. permit 192.168.1.143.587
143
A network tech is testing connectivity at a new site. The site has wireless guest as well as a wired employee network. After verifying connectivity. the admin checks link speeds by using a speed testing website. The speed testing website shows lower download and upload speeds for the wired network than the wireless network. Which of the following is the MOST likely explanation?
B. the testing server for the wired network was farther away.
144
A tech replaces a failed router with a spare that has been in inventory for some time. After attempting to enable HTTPS on the spare router, the technician discovers the feature is unavailable. The support office was able to connect to the previous router. Which of the following actions should the tech perform to enable HTTPS access for the support team?
C. update the firmware of the spare router
145
A tech is trying to configure a previously owned WAP. The technician successfully logs into the administrative console and attempts to input the IP address on the WAP. However, the WAP is not accepting the command. Which of the following is causing the problem?
C. The terminal emulation software is misconfigured
146
Your company recently purchased a new building down the street from the existing office. For each of the tasks below, select the appropriate type and encryption object for all wireless access point?
1. Create an encrypted wireless connection between the 2 buildings that BEST controls signal propagation, while maximizing security.
2. Restrict the wireless signal generated by the access points inside building 1. so that it minimizes broadcast beyond the building.
3. maximize wireless coverage inside building 1.
4. building 1's internal wireless network is for visitors only and must not require any special configuration on the visitor's device to connect.
This is a simulation ?
147
A tech has installed a Linux server in a tax office. The server can access most of the resources on the network, but it cannot connect to another server that has a share for backup. The tech learns that the target server is on a different subnet. Which of the following tools should the technician use to ensure the Linux server can reach the backup location?
B. traceroute
148
Which of the following WAN technologies provides a guarantee throughput rate?
B. T-1
149
Which of the following is the SHORTEST way to write. 2001:0000:0d58:0000:0000:0095:7565:0001 in proper IPv6 shorthand ?
C. 2001:0:d58::95:7565:1
150
A network admin needs to transmit to geographically diverse sites to improve performance. Which of the following devices would BEST direct traffic to the remote sites?
D. router
151
Which of the following should a tech investigate when using a network baseline to troubleshoot?
B. determining if the server performance is degraded.
152
A tech needs to upgrade a SOHO wireless router's firmware. The tech resets the router to factory settings and installs the new firmware. The tech enters the DHCP information and sets the SSID. Which of the following configurations would provide the MOST protection from advance hackers?
B. enable WPA2 ( wireless point access 2 ) authentication for all hosts.
153
A tech notices clients are receiving a 169.254.X.X IP address following the upgrade of a server. Which of the following ports should the tech check on the local server firewall?
B. ports 67 and 68
154
Which of the following datacenter security methodologies is MOST likely to remain usable during a network outage?
B. door locks
155
A network tech is implementing a solution on the network to hide the workstation internal IP addresses across a WAN. Which of the following is the tech configuring ?
D. NAT network address translation
156
Employees want the ability to use personal devices on the guest network while working out at the company gym. In order to meet the request which if the following policies requires employee adherence?
A. acceptable use policy
157
Which of the following BEST describes the BGP ( border gateway protocol ) routing protocol?
B. hybrid
158
A customer is reporting difficulty connecting some devices after replacing a wireless router with a new wireless 802.11ac router. The SSID, encryption and password are the same as the previous router. A tech goes on-site and notices the devices that are no longer connecting appear to be several years ago. Which of the following is MOST likely the problem ?
D. there is a frequency mismatch
159
Multiple users are reporting that they are unable to access the network. The ENTIRE network is shown in the diagram, PC's are not statically assigned IP addresses. The following devices will display.
This is a simulation question.
160
Which of the following should be performed to verify that unnecessary services are disable on all switches in an environment ?
B. port scanning
161
A tech is sent to a remote office to set up a device to connect to the internet. The company standards document requires stateful inspection. Which of the following should the tech install?
C. firewall
162
A tech is assigned to secure a basic wireless network. Which of the following authentication protocols should the tech use to perform this task? ( choose 2 )
C. WPA2 ( wi-fi protected access 2 )
| D. EAP ( extensible authentication protocol )
163
A tech is investigating the cause of a network outage. Which of the following documents should be checked to rule out configuration issues ?
A. change management records.
164
A junior network technician receives a help desk ticket from an end user who is having trouble accessing a web application that was working the previous day. After talking with the end user and gathering information about the issue, which of the following would be the most likely course of action for the tech to perform NEXT?
A. establish a theory of probable cause
165
A system admin receives reports from users of odd behavior in regard to a recently installed server. While reviewing the server network configuration, the systems admin does both a forward and a reverse DNS lookup on the host, along with the network adapter configuration.
$ host server.company.com
server.company.com has address 129.168.0.100
server.company.com is handled by 100 mail company
$ host 192.168.0.100
100.0.168.192.in-addr.apr domain name pointr
$ host web.company.com
server.company.com has address 129.168.0.50
server.company.com is handled by 100 mail.company.com
Which of the following is the problem identified in the output above?
C. The DNS lookup entry is incorrectly configured
166
A network tech at a small office upgrades the LAN switch. After the upgrade a user reports being unable to access network resources. When the tech checks the switchport, the LED light is not lit. Which of the following should the tech check FIRST?
C. the device is connected to the switch
167
A network admin wants to employ a username and password authentication system for guest WiFi. Which of the following is the BEST option to provide this type of authentication?
D. captive portal
168
A tech is responsible for configuring a new firewall. The hardware team has already installed, powered and connected the system. Which of the following types of documentation should the tech utilize to complete the task?
D. logical and physical diagrams
169
Which of the following storage network technologies inherently leverages block-level storage?
A. NAS ( network attached storage )
170
Which of the following networking devices operates at layer 1?
C. Hub
171
A disgruntled employee decides to leak critical information about a company's new product. The employee places keyloggers on the department computers, allowing the information to be sent out to the internet. Which of the following attacks is occurring?
C. insider threat
172
A network tech needs to set up an access method for Ann, a manager, to work from home. Ann needs to locally mapped corporate resources to perform her job. Which of the following would provide secure access to the corporate resources?
D. connect utilizing client to site VPN
173
Which of the following DNS record types is an alias ?
A. CNAME ( canonical name record )
174
A recently constructed building makes use of glass and natural light. Users in the building are reporting poor cellular connectivity and speeds. Which of the following is MOST likely the cause?
C. reflection
175
A network technician is working on a new switch implementation to expand the network. Which of the following is the BEST option to ensure the implementation goes according to business requirements ?
SOP ( standard operating procedure )
176
A tech is utilizing SNMPv3( simple network management protocol ) to monitor network statistics. Which of the following actions would occur immediately if a server's utilization spikes above the prescribed value?
A. a trap message is sent via UDP ( user datagram protocol ) to the monitoring workstation.
177
In which of the following scenarios should a technician use a cross-over cable to provide connectivity?
E. PC to PC
178
802.11n clients currently have no way to connect to the network. Which of the following devices should be implemented to let the clients connect ?
D. access point
179
A network tech is setting up a new router. Since it is exposed to the public which of the following are the BEST steps the tech should take when setting up this device? ( choose 2 )
A. disable unnecessary services
F. upgrade to the latest firmware
180
A network tech is configuring user access to a VPN concentrator and has been advised to use protocol that supports encryption over UDP ( user datagram protocol ). Which of the following protocols has the tech MOST likely configured for client use?
B. DTLS ( datagram transport layer security )
181
A switch has detected duplicate broadcast messages sourced from a second port. The broadcast continue to be transmitted and duplicated until the amount of traffic causes severe performance issues, Which of the following should be configured to prevent this behavior?
D. spanning tree
182
A CIO is concerned about an attacker gaining administrative access to the company's network devices. Which of the following is the MOST secure way to prevent this?
D. out of band console router.
183
The CEO's tablet cannot connect to the wireless network from the corner office. A network technician verified the tablet can connect to the wireless network in other areas of the building. The distance between the office and the 802.11ac WAP is 150ft ( 46m ) and there are a few cubicle in between. Which of the following is the most likely cause of the tablet not connecting?
C. distance
184
A company has two geographically separate locations that need to connect using a VPN. Which of the following devices must be specifically configured to allow VPN traffic into the network.
A. firewall
185
A tech is working on a new machine that has been procured for testing and development. The machine will run a hypervisor and host several operating systems of various types so the development team can test the company's applications in a variety of environments. The tech wants the virtual machines to be available to communicate with each other without leaving the hypervisor. Which of the following is the BEST solution to the problem.
C. The tech should configure a virtual switch.
186
A network tech is repurposing a switch that has been in storage for some time. The device has been wiped to factory defaults. Which of the following should be done FIRST to ensure the device has been hardened before configuration?
C. check for updated firmware.
187
A tech is setting up a wireless access point in a coffee shop. The shop is not concerned with security but only wants to allow customers to have access. Which of the following configurations should the tech deploy?
A. use a per-shared key.
188
A network admin is assigned to run and connect a Cat 6e Ethernet cable between two nodes in a datacenter. Which of the following connector types should the network admin use to terminate this cable?
D. RJ-45
189
Management has requested that services be available within 72 hours of a disaster. Budget is a major concern. A contract is signed with a company that has plenty of space and the tech will have the option of putting infrastructure equipment in place. Which of the following BEST describes this business continuity strategy?
A. cold site
190
A network tech is planning to update the firmware on a router on the network. The technician has downloaded the file from the vendor's website. Before installing the firmware update, which of the following steps should the tech perform to ensure integrity?
B. perform a hash on the file for comparison with the vendor's hash.
191
A network tech performs a wireless site survey at a company building and identifies that the cafeteria is not covered by a wireless signal. The cafeteria is located in a medium-size, square shaped room. Which of the following types of WAP antenna should the tech install in the center of the cafeteria to provide BEST coverage?
C. Omnidirectional
192
An entire enterprise cannot access a specific website. The network technician knows the website was accessible last week. The tech can also ping the website. Which of the following is the tech MOST likely to find upon investigation ?
D. the SSL ( secure socket layers ) certification has expired
193
At which of the following OSI model layers would a router operate?
B. network
194
Which of the following are DNS ( domain name system ) records types? ( choose 3 )
A. CNAME ( canonical name record )
C. PTR ( pointer )
G. Service Record
195
Which of the following backup techniques is used to capture all the data that has changed since the last full backup?
C. differential
196
A network admin frequently needs to assist users with troubleshooting network hardware remotely, but the users are non-technical and unfamiliar with networks devices. Which of the following would BEST help the administrator and users during hands on troubleshooting ?
D. standard operating procedures
197
A tech is observing brownout issues at a smaller office. At least once a week, the edge switch power cycles. Which of the following should the technician do to resolve the issues?
B. Install a UPS ( uninterruptible power supply )
198
A tech is troubleshooting a workstation's network connectivity and wants to confirm which switchport corresponds to the wall jack the PC is using. Which of the following concepts would best help the technician ?
A. consistent labeling
199
Under which of the following layers of the OSI model do ATM ( asynchronous transfer mode ) cells operate?
A. data link layer
200
A new building needs to be joined to an existing network, but management has decided that running fiber is too expensive. Since the buildings are about 1000ft ( 305m) apart, the IT department has been asked to propose alternatives. Which of the following is the BEST device to add to each building to facilitate the extension of the network while meeting budgetary demands?
D. PRP wireless ( Parallel Redundancy Protocol )
201
A junior network tech is working in the field and needs to connect to the company's remote server, however doing so will require the junior tech to use the public internet. Because security is a concern, which of the following is the BEST method to use?
B. SSH ( secure shell )
202
A home user has purchased a new smart TV to stream online video services. The smart TV is unable to connect to the wireless network after several attempts After returning from vacation the home user tries again and can connect the TV to the wireless network. However, the user notices a laptop is no longer able to connect to the network. which of the following is the MOST likely cause?
A. the DHCP scope has been exhausted
203
A security guard notices an authorized individual who is dressed like a lab tech has entered a secure area of the hospital with a large group. Which of the following security attacks is taking place?
B. social engineering
204
Which of the following DNS ( domain name system ) records types allow IPv6 records to be resolved to DNS names ?
C. AAAA
205
A network tech has recently installed new VoIP phones at all employee's desks to support a new SIP ( session initiation protocol ) cloud VoIP solution, However the tech is unable to make a call from the device after testing. Which of the following should the tech verify? ( choose 2 )
C. UDP ( user datagram protocol ) 5060 allowed
| D. UDP 5061 allowed
206
Which of the following would allow a network technician to access files on a remote system? ( choose 2 )
A. FTP ( file transfer protocol )
| B. TFTP ( trivial file transfer protocol )
207
Which of the following provides two-factor authentication ?
B. smart card + PIN
208
A tech set up a new SOHO network recently, the installed router has four Ethernet ports, however, the customer has seven devices that need wired connections. Which of the following should the tech do to BEST meet the customers requirements ?
A. install a 6 port switch.
209
A tech is performing a maintenance task on a weekly basis and wants to ensure the task is properly documented and able to be performed by other tech's. Which of the following types of documentation should the technician complete?
A. standard operating procedure
210
A company is allowing it's employees to use their personal computers, tablets and IoT devices while at work. However, there are rules and guidelines to which employees must adhere. Which of the following documents applies to these employees?
C. BYOD
211
Which of the following are characteristics of jumbo frames ? ( choose 2 )
A. commonly used on SAN (storage area network )
| B. MTU (maximum transfer unit ) size greater than 1500
212
A network admin gets a call regarding intermittent network outages across the country. Which of the following should be used to connect to the network so the admin can troubleshoot this issue from home? ( choose 2 )
C. VPN
| D. SSH
213
A network technician downloaded new firmware for the company firewall. Which of the following should the network tech verify to ensure the download file is correct and complete ?
A. file hash
214
A tech is troubleshooting network connectivity with a remote host. Which of the following tools would BEST inform the technician of nodes between the client and the remote host? ( choose 2 )
A. tracert
| D. pathping
215
Which of the following will listen on the line to ensure there is no traffic transmitting and implement a back off timer if a collision occurs?
A. CSMA/CD ( carrier sense multiple access with collision detection )
216
A network tech receives a call from a branch office about a problem with it's wireless connectivity. The user states the office is hosting a large meeting that includes some online training with local businesses. The guest users have all brought devices to connect to the guest network at the branch office. All users are connected to a single WAP and are reporting that connections keep dropping and network speeds are unusable. Which of the following is the MOST likely cause of this issue?
D. overcapacity
217
Which of the following BEST describes an exploit ?
D. a privilege escalation script
218
A server in a LAN was configured to act as a gateway between all company computers and an external network. Which of the following networking devices offers the ability to increase both performance and security ?
C. proxy server
219
A tech is setting up VoIP phones on a wireless network. Users report that calls are choppy and sometimes dropped. The tech has measured two characteristics using simple command line tools to verify the problem . Which of the following characteristics did the tech measure? ( choose 2 )
B. latency
| D. packet loss
220
Which of the following ports should a network tech open on a firewall to back up the configuration and operating system files of a router to a remote server using the FASTEST method possible?
E. UDP port 69
221
A tech is replacing a failed SOHO router for a customer who has an existing switch, cable modem and static IP address. The user has a web server that faces the internet so users can visit and leave comments. Which of the following BEST describes the correct configuration for this customer's requirements?
A. the modem is placed in bridge mode , the router is placed behind the modem and the web server is placed behind the router.
222
A network technician is attempting to troubleshoot a connectivity issue. The issue is only reported during the evening hours and only a single workstation loses connectivity. Which of the following is the MOST likely cause of the issue?
D. The user has violated the AUP ( acceptable use policy ) and the internet access has been restricted
223
A network admin is redesigning network security after an attack. During the attack an attacker used open cubicle locations to attach devices to the network. The admin wants to be able to monitor future attacks in a safe environment and determine the method of attack. Which of the following should the admin do to BEST meet this requirement ?
A. create a VLAN for the unused ports and create a honeypot on the VLAN.
224
A company has just refreshed the hardware in it's datacenter with new 10G Ethernet switches . A tech wishes to set up a new storage area network but must use existing infrastructure. Which of the following storage standards should the tech use?
C. NAS ( network attached storage )
225
A network tech needs to install a new access switch. After installing the new switch. The old switch used a GBIC (gigabit interface converter ) and SC connectors and the new switch uses an SFP with LC connecters. After connecting the SC connector to the SC to LC adapter and plugging it into the switch, the link does not come up as expected. Which of the following should a network tech perform NEXT?
C. transpose the fiber pairs
226
A network tech is installing a new SOHO branch office that requires the use of a DOCSIS ( data over cable services interface specification ) compatible modem. The modem needs to be connected to the ISP network at the demarc. Which of the following cable types should be used ?
C. Coaxial
227
A tech needs to order cable that meets 10GBase and fire safety requirements for an installation between a drop ceiling and a standard ceiling. Which of the following should the tech order to ensure compliance with requirements ?
C. plenum Cat 6a
228
Which of the following physical security devices is used to detect unauthorized server room access?
D. video surveillance
229
A network tech recently installed a new server on a network. The tech must ensure the server does not have any unnecessary services running. The IP address of the server is 204.211.38.50. Which of the following commands would allow the tech to make this determination ?
A. nmap ( network mapper )
230
Joe, an employee at a large regional bank, wants to receive company email on his personal smartphone and tablet. To authenticate on the mail server, he must first install a custom security application on those mobile devices. Which of the following policies would BEST enforce this requirement?
B. BYOD policy
231
A tech is allocating the IP address space needed for a new remote office. This office will contain the engineering staff with six employees and the digital marketing staff with 55 employees. The tech has decided to allocate the 192.168.1.0/24 block to the remote office. The engineering staff has been allocated the 192.168.1.64/29 subnet. Using the least amount of space possible, which of the following would be the last usable IP address in the engineering subnet?
A. 192.168.1.62
232
An admin is troubleshooting a user's intermittent wireless connectivity issue. Other users across the hallway can connect and use the wireless network properly. Upon inspection of the connection details , the admin finds the following ?
SSID Company-WiFi
Signal 5%
SNR 2
Which of the following is MOST likely the cause of the poor wireless connection ?
C. incorrect antenna type
233
A VoIP system will require 23 concurrent voice channels and one signaling channel. Which of the following types of WAN service would provide the BEST connectivity to the PSTN?
A. PRI ( primary rate interface )
234
A network admin is going to be performing a major upgrade to the network. Which of the following should the admin use in case of a failure?
C. rollback plan
235
A web application is unable to authenticate customers so they can access their bills. The server admin has tested the LDAP query but is not receiving results. Which of the following is the NEXT step the server admin should take to correct the problem ?
A. Check port 636 to see if it is being blocked
236
Which of the following is networking standalone hardware that will permit any WiFi-complaint device to connect to a wired network?
C. wireless access point
237
Which of the following devices are MOST often responsible for 802.1q tagging? ( choose 2 )
A. switch
| B. router
238
A network tech is installing a new wireless network in a small office. Due to environmental concerns, the customer wants the network to run exclusively on the 5Ghz frequency, Which of the following wireless technologies should the technician install to BEST meet this requirement? ( choose 2 )
A. 802.11ac
| D. 802.11n
239
Which of the following concepts would BEST describe when a company chooses to use a third party vendor to host and administer a critical application ?
C. PaaS ( platform as a service )
240
A content filter is set to analyze XML ( extensible markup language ) and JSON ( javascript object notation ) that users access from the internet. Which of the following layers is this analysis taking place ?
E. 6
241
Ann a new employee within the department cannot print to any of the printers in the department or access any of the resources that others can. However, she can access the internet. The network engineer has confirmed that Ann's account has been set up the same as the others. There are no access lists restricting Ann's access. Which of the following could be the issue for this lack of access?
B. VLAN mismatch
242
A tech is configuring a printer for a client. The tech connects the printer to the network, but is unsure how to determine its switchport. Which of the following should the tech do FIRST to locate the switchport?
C. Reference the ARP ( address resolution protocol ) table in the router
243
A router is set up to utilize RIPv2 to route traffic throughout the network. which of the following routing metrics is used to determine the path?
D. hop count
244
A second router was installed on a network to be used as a backup for the primary router that works as a gateway. The infrastructure team does not want to change the IP address of the gateway on the devices. Which of the following network components should be used in this scenario?
B. virtual IP
245
Which of the following can be done to implement network device hardening ? ( choose 2 )
C. patch and update
| F. change default admin password
246
A critical vulnerability is discovered on a network device. The vendor states it has already patched this vulnerability in its current release. Which of the following actions should an administrator take?
C. update the firmware
247
A tech has been alerted of incoming HTTP traffic on the LAN segment that should not contain any web servers. The technician has the IP address of the destination host and wants to determine if the socket for HTTP is open. Which of the following should the tech perform?
C. port scan
248
Which of the following creates a secure connection at the OSI network layer?
D. IPSec ( IP security )
249
A network tech has salvaged several Ethernet cables from a datacenter. The tech attempts to use the cables to connect desktops to the network without success. Which of the following is MOST likely the issue?
A. the cables have an incorrect pin-out
250
A company decides to deploy customer-facing, touch-screen kiosks. The kiosks appear to have several open source service ports that could potentially become compromised. Which of the following is the MOST effective way to protect the kiosks?
D. create a new network segment with ACLs limiting kiosks traffic with the internal network.
251
While working on a LINUX-based OS a technician experience an issue accessing some servers and some sites by name. Which of the following command-line tools should the tech use to assist in troubleshooting?
A. dig
252
A network admin has had difficulty keeping track of IP address assignments on networking devices and clients recently. Which of the following is the BEST technology to aid in this scenario?
C. IPAM ( IP address management )
253
A tech is surveying a college's network rooms and connectivity. Which of the following types of documentation does the tech need to perform a detailed site survey? ( choose 3 )
A. IDF/MDF ( intermediate distribution frame/main distribution frame ) documentation
C. network configuration documentation
G. Rack diagram documentation
254
A tech is connecting a PC to a switchport. At the wiring closet, the tech is unable to identify which cable goes from patch panel A connected to the switch to patch panel B connected to the PC. Which of the following tools should the tech use to resolve the issue?
C. tone generator
255
A tech wants to deploy a network that will require wireless client devices to prompt for a username and password before granting access to the wireless network. Which of the following must be configured to implement this solution ?
A. EAP-PEAP ( protected extensible authentication protocol )
256
Which of the following protocols are classified as connectionless ( choose 2 )
A. TFTP ( trivial file transfer protocol )
| D. SNMP ( simple network management protocol )
257
Users in a school lab are reporting slow connections to the servers and the internet. Other users in the school have no issues. The lab has 25 computers and is connected with a single 1Gb ethernet connection on Cat 5e wiring to an unmanaged switch. There are also three spare Cat 5e cable runs, which are not in use. The school wants to double the connection speed between between the lab and the servers without running new cables. Which of the following would be the BEST solution?
Replace the switches with ones that utilize port bonding and use the spare cables.
258
A tech is downloading an ISO from a vender's website. To ensure the integrity of the download, which of the following should be verified?
C. file hashing
259
An administrator wants to implement an additional authentication to the remote SSH servers. Which of the following accomplishes this goal with the principle of ( something you have )?
A. certificate
260
A junior technician is setting up a voice control device so the CEO will be able to control various things in the office. Of which of the following types of IoT technologies is this an example ?
D. Personal area network
261
Users on a LAN segment are reporting a loss of connectivity services. The client PC's have been assigned with 169.254.X.X. IP addresses. Which of the following IP address schemas is being utilized ?
C. APIPA ( automatic private IP addressing )
262
A network admin has created a new VLAN for server and clients within the accounting department and wants to outline how it integrates with the existing network. Which of the following should the administrator create?
A. Logical diagram
263
Which of the following would indicate that a circuit speed should be increased?
D. high packet drops
264
A tech has installed an older IP camera as a temporary replacement for a recently failed newer one. The tech notices that when the camera's video stream is off, the ping roundtrip time between the camera and network DVR is consistently less than 1ms without dropped packets. When the camera video stream is turned on, the ping roundtrip time increases dramatically and network communication is slow and inconsistent. Which of the following is MOST likely the issue in this scenario?
B. Duplex mismatch
265
Wireless users have been experiencing connectivity problems. Investigation shows neighboring wireless appliances, which are not connected to the network, have been on the same 5GHz frequency to communicate. Which of the following wireless performances problem concepts defines this issue?
A. interference
266
Which of the following BEST explains the purpose of signature management as a mitigation technique?
C. detecting malicious activity
267
A network technician installs a web server on the firewall. Which of the following methods should the technician implement to allow access to outside users without giving access to the inside network?
B. DMZ
268
A CIO tasks the network engineer with protecting the network from outside attacks. Placing which of the following devices on the network perimeter would provide the MOST security for the system ?
B. NGFW ( next generation firewall )
269
Management has requested that a wireless solution be installed at a new office. Which of the following is the FIRST thing the network tech should do?
C. perform a site survey
270
A tech has deployed an additional DHCP server for redundancy. Clients in certain subnets are not receiving DHCP leases from the new DHCP server. Which of the following is the MOST likely cause?
A. the new DHCP server's IP address was not added to the router's IP helper list .
271
Greater bandwidth and availability are required between 2 switches. Each switch has multiple 100Mb Ethernet ports available. Which of the following should a technician implement to help achieve these requirements?
D. port aggregation
272
A tech is configuring a new server with an IP address of 10.35.113.47 on the 10.35.112.0 subnet to allow for the maximum number of hosts. When configuring network settings, which of the following is the correct subnet mask?
C. 255.255.240.0
273
Ann, a customer, recently upgraded her SOHO internet to gigabit fiber from cable. She was previously getting speeds around 75Mbps down and 25Mbps up. After the upgrade, Ann runs a speed test on her desktop and gets results of 1000Mbps down and 100Mbps up. A tech connects directly to the router and sees the correct 1000Mbps speeds. Which of the following is MOST likely the cause ? ( select 2 )
A. all ports should be configured for full duplex
| C. the connections are using Cat 5 cable
274
A user reports intermittent performance issues on a segment of the network. According to the troubleshooting methodology, which of the following steps should the technician do NEXT after collecting initial information from the customer ?
D. duplicate the problem , if possible
275
Which of the following protocols is associated with a three way handshake ?
D. TCP ( transmission control protocol )
276
Which of the following would a company place at the edge of its network if it wants to view and control which internet applications are being used?
B. NGFW ( next generation firewall )
277
A tech wants to physically connect two offices buildings networks. The office buildings are located 600ft ( 183m ) apart. Which of the following cable types is the BEST choice?
C. multimode
