Network Plus n10-008

Question 1

A systems administrator needs to improve WiFi performance in a densely populated office tower and use the latest standard. There is a mix of devices that use
2.4 GHz and 5 GHz. Which of the following should the systems administrator select to meet this requirement?

A. 802.11ac

B. 802.11ax

C. 802.11g

D. 802.11n

Answer 1

B. 802.11ax

Question 2

Which of the following would be BEST to use to detect a MAC spoofing attack?

A. Internet Control Message Protocol

B. Reverse Address Resolution Protocol

C. Dynamic Host Configuration Protocol

D. Internet Message Access Protocol

Answer 2

B. Reverse Address Resolution Protocol

Question 3

A technician receives feedback that some users are experiencing high amounts of jitter while using the wireless network. While troubleshooting the network, the technician uses the ping command with the IP address of the default gateway and verifies large variations in latency. The technician thinks the issue may be interference from other networks and non-802.11 devices. Which of the following tools should the technician use to troubleshoot the issue?

A. NetFlow analyzer

B. Bandwidth analyzer

C. Protocol analyzer

D. Spectrum analyzer

Answer 3

D. Spectrum analyzer
Hide Solution

A spectrum analyzer is a tool that focuses on the physical layer, which will vary based on the type of analyzer. Although vendors make these analyzers for both audio and optical signals, in most cases spectrum analyzers are used to analyze wireless or radio frequency signals. Spectrum analyzers are primarily used to identify and measure the strength of radio signals that are present in the area. They can visually display these signals by frequency on the device. These devices are used to locate sources of interference that may impact the operation of a wireless network.

Question 4

Wireless users are reporting intermittent internet connectivity. Connectivity is restored when the users disconnect and reconnect, utilizing the web authentication process each time. The network administrator can see the devices connected to the APs at all times. Which of the following steps will MOST likely determine the cause of the issue?

A. Verify the session time-out configuration on the captive portal settings

B. Check for encryption protocol mismatch on the client’s wireless settings

C. Confirm that a valid passphrase is being used during the web authentication

D. Investigate for a client’s disassociation caused by an evil twin AP

Answer 4

A. Verify the session time-out configuration on the captive portal settings

* need to study this

Question 5

A network administrator walks into a datacenter and notices an unknown person is following closely. The administrator stops and directs the person to the security desk. Which of the following attacks did the network administrator prevent?

A. Evil twin

B. Tailgating

C. Piggybacking

D. Shoulder surfing

Answer 5

B. Tailgating

Question 6

SIMULATION -
You have been tasked with setting up a wireless network in an office. The network will consist of 3 Access Points and a single switch. The network must meet the following parameters:
✑ The SSIDs need to be configured as CorpNet with a key of S3cr3t!
✑ The wireless signals should not interfere with each other
✑ The subnet the Access Points and switch are on should only support 30 devices maximum
✑ The Access Points should be configured to only support TKIP clients at a maximum speed

INSTRUCTONS -
Click on the wireless devices and review their information and adjust the settings of the access points to meet the given requirements.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

Question 7

A network is experiencing a number of CRC errors during normal network communication. At which of the following layers of the OSI model will the administrator
MOST likely start to troubleshoot?

A. Layer 1

B. Layer 2

C. Layer 3

D. Layer 4

E. Layer 5

F. Layer 6

G. Layer 7

Answer 7

A. Layer 1

Research

Question 8

A client recently added 100 users who are using VMs. All users have since reported slow or unresponsive desktops. Reports show minimal network congestion, zero packet loss, and acceptable packet delay. Which of the following metrics will MOST accurately show the underlying performance issues? (Choose two.)

A. CPU usage

B. Memory

C. Temperature

D. Bandwidth

E. Latency

F. Jitter

Answer 8

A. CPU usage

B. Memory

Question 9

Client devices cannot enter a network, and the network administrator determines the DHCP scope is exhausted. The administrator wants to avoid creating a new
DHCP pool. Which of the following can the administrator perform to resolve the issue?

A. Install load balancers

B. Install more switches

C. Decrease the number of VLANs

D. Reduce the lease time

Answer 9

D. Reduce the lease time

Reducing the lease time is the best answer here. While there isn’t much additional info regarding how long it currently is, if some jabroni configured a lease time of two weeks, there will be a bunch of lingering leases that aren’t in use and could be utilized by new devices.

Question 10

An administrator is writing a script to periodically log the IPv6 and MAC addresses of all the devices on a network segment. Which of the following switch features will MOST likely be used to assist with this task?

A. Spanning Tree Protocol

B. Neighbor Discovery Protocol

C. Link Aggregation Control Protocol

D. Address Resolution Protocol

Answer 10

B. Neighbor Discovery Protocol

Neighbor Discovery Protocol is similar to ARP but retrieves the IPV6 address. ARP retrieves IPv4.

Question 11

Which of the following DNS records works as an alias to another record?

A. AAAA

B. CNAME

C. MX

D. SOA

Answer 11

​

B. CNAME

• .AAAA record is used to find the IP address of a computer connected to the internet from a name.
• .CNAME record is a type of DNS record that maps an alias name to a true or canonical domain name.
• .MX record specifies the mail server responsible for accepting email messages on behalf of a domain name.
• .SOA record is a type of resource record in the DNS containing administrative information about the zone.

Question 12

A company built a new building at its headquarters location. The new building is connected to the company’s LAN via fiber-optic cable. Multiple users in the new building are unable to access the company’s intranet site via their web browser, but they are able to access internet sites. Which of the following describes how the network administrator can resolve this issue?

A. Correct the DNS server entries in the DHCP scope

B. Correct the external firewall gateway address

C. Correct the NTP server settings on the clients

D. Correct a TFTP Issue on the company’s server

Answer 12

A. Correct the DNS server entries in the DHCP scope

Question 13

A technician is installing a new fiber connection to a network device in a datacenter. The connection from the device to the switch also traverses a patch panel connection. The chain of connections is in the following order:
✑ Device
✑ LC/LC patch cable
✑ Patch panel
✑ Cross-connect fiber cable
✑ Patch panel
✑ LC/LC patch cable
✑ Switch
The connection is not working. The technician has changed both patch cables with known working patch cables. The device had been tested and was working properly before being installed. Which of the following is the MOST likely cause of the issue?

A. TX/RX is reversed

B. An incorrect cable was used

C. The device failed during installation

D. Attenuation is occurring

Answer 13

A. TX/RX is reversed

Question 14

A technician is searching for a device that is connected to the network and has the device’s physical network address. Which of the following should the technician review on the switch to locate the device’s network port?

A. IP route table

B. VLAN tag

C. MAC table

D. QoS tag

Answer 14

C. MAC table

The MAC address table is a way to map each port to a MAC address. The technician can use the MAC table to find which MAC address is connected to which port.

Question 15

Which of the following provides redundancy on a file server to ensure the server is still connected to a LAN even in the event of a port failure on a switch?

A. NIC teaming

B. Load balancer

C. RAID array

D. PDUs

Answer 15

A. NIC teaming

Question 16

An IT organization needs to optimize speeds for global content distribution and wants to reduce latency in high-density user locations. Which of the following technologies BEST meets the organization’s requirements?

A. Load balancing

B. Geofencing

C. Public cloud

D. Content delivery network

E. Infrastructure as a service

Answer 16

D. Content delivery network

Question 17

A user reports being unable to access network resources after making some changes in the office. Which of the following should a network technician do FIRST?

A. Check the system’s IP address

B. Do a ping test against the servers

C. Reseat the cables into the back of the PC

D. Ask what changes were made

Answer 17

D. Ask what changes were made

Question 18

A new cabling certification is being requested every time a network technician rebuilds one end of a Cat 6 (vendor-certified) cable to create a crossover connection that is used to connect switches. Which of the following would address this issue by allowing the use of the original cable?

A. CSMA/CD

B. LACP

C. PoE+

D. MDIX

Answer 18

MDIX (Media Dependent Interface Crossover) is used to connect ethernet ports

Question 19

A company hired a technician to find all the devices connected within a network. Which of the following software tools would BEST assist the technician in completing this task?

A. IP scanner

B. Terminal emulator

C. NetFlow analyzer

D. Port scanner

Answer 19

A. IP scanner

IP scanner is to find devices connected to the network

Question 20

A technician is installing a high-density wireless network and wants to use an available frequency that supports the maximum number of channels to reduce interference. Which of the following standard 802.11 frequency ranges should the technician look for while reviewing WAP specifications?

A. 2.4GHz

B. 5GHz

C. 6GHz

D. 900MHz

Answer 20

B. 5GHz

5ghz offers more channels, is used less and is faster over a small area. The question asks for “a high density network”.

Question 21

A technician is configuring a network switch to be used in a publicly accessible location. Which of the following should the technician configure on the switch to prevent unintended connections?

A. DHCP snooping

B. Geofencing

C. Port security

D. Secure SNMP

Answer 21

C. Port security

Question 22

Which of the following is used to track and document various types of known vulnerabilities?

A. CVE

B. Penetration testing

C. Zero-day

D. SIEM

E. Least privilege

Answer 22

A. CVE

CVE is the acronym for Common Vulnerabilities and Exposures

Question 23

The network administrator is informed that a user’s email password is frequently hacked by brute-force programs. Which of the following policies should the network administrator implements to BEST mitigate this issue? (Choose two.)

A. Captive portal

B. Two-factor authentication

C. Complex passwords

D. Geofencing

E. Role-based access

F. Explicit deny

Answer 23

B. Two-factor authentication

C. Complex passwords

Question 24

A network engineer performs the following tasks to increase server bandwidth:
✑ Connects two network cables from the server to a switch stack
✑ Configure LACP on the switchports
Verifies the correct configurations on the switch interfaces

Which of the following needs to be configured on the server?

A. Load balancing

B. Multipathing

C. NIC teaming

D. Clustering

Answer 24

B. NIC teaming

NIC teaming allows users to group two or more physical NICs into a single logical network device called a bond. Once a logical NIC is configured, the virtual machine is not aware of the underlying physical NICs.

Question 25

A network technician is manually configuring the network settings for a new device and is told the network block is 192.168.0.0/20. Which of the following subnets should the technician use?

A. 255.255.128.0

B. 255.255.192.0

C. 255.255.240.0

D. 255.255.248.0

Answer 25

C. 255.255.240.0

Given that theres 4 network bits in left in the C/third octet. the answer is 128+64+32+16 giving a total of 240 on the server side

Question 26

Which of the following is the LARGEST MTU for a standard Ethernet frame?

A. 1452

B. 1492

C. 1500

D. 2304

Answer 26

C. 1500

1500 is the MTU

Question 27

Given the following information:

Which of the following command-line tools would generate this output?

A. netstat

B. arp

C. dig

D. tracert

Answer 27

A. netstat

Question 28

According to troubleshooting methodology, which of the following should the technician do NEXT after determining the most likely probable cause of an issue?

A. Establish a plan of action to resolve the issue and identify potential effects

B. Verify full system functionality and, if applicable, implement preventive measures

C. Implement the solution or escalate as necessary

D. Test the theory to determine the cause

Answer 28

D. Test the theory to determine the cause

These are the steps

1. Identify the problem

2. Establish a theory of probable cause

3. Test the theory to determine the cause
4. Establish a plan of action to resolve the problem and identify potential effects
5. Implement the solution or escalate as necessary
6. Verify full system functionality and, if applicable, implement preventive measures
7. Document findings, actions, and outcomes and lessons learned

Question 29

Which of the following BEST describes a network appliance that warns of unapproved devices that are accessing the network?

A. Firewall

B. AP

C. Proxy server

D. IDS

Answer 29

D. IDS

IDS is a monitoring system that detects suspicious activities and generates alerts when they are detected.

Question 30

A technician is installing a cable modem in a SOHO. Which of the following cable types will the technician MOST likely use to connect a modem to the ISP?

A. Coaxial

B. Single-mode fiber

C. Cat 6e

D. Multimode fiber

Answer 30

A. Coaxial

Question 31

A network technician is reviewing the interface counters on a router interface. The technician is attempting to confirm a cable issue. Given the following information:

Which of the following metrics confirms there is a cabling issue?

A. Last cleared

B. Number of packets output

C. CRCs

D. Giants

E. Multicasts

Answer 31

C. CRCs

CRC errors mean that packets have been damaged. This can be caused by a faulty port on the device or a bad Ethernet cable. Changing the cable or apping the port is a relatively easy fix. Occasionally, they are generated on layer 2 by a duplex mismatch. It can also be the result of collisions or a tation transmitting bad data.

Question 32

Which of the following is the physical topology for an Ethernet LAN?

A. Bus

B. Ring

C. Mesh

D. Star

Answer 32

D. Star

A star (hub-and- spoke) topology’s computers are connected to a central point with their own individual cables or wireless connections. You’ll often find that central spot inhabited by a device like a hub, a switch, or an access point.

Question 33

An IT director is setting up new disaster and HA policies for a company. Limited downtime is critical to operations. To meet corporate requirements, the director set up two different datacenters across the country that will stay current on data and applications. In the event of an outage, the company can immediately switch from one datacenter to another. Which of the following does this BEST describe?

A. A warm site

B. Data mirroring

C. Multipathing

D. Load balancing

E. A hot site

Answer 33

E. A hot site

A hot site is a leased facility that contains all the resources needed for full operation. This environment includes computers, raised flooring, full utilities, electrical and communications wiring, networking equipment, and uninterruptible power supplies (UPSs). The only resource that must be restored at a hot site is the organization’s data, usually only partially. It should only take a few minutes to bring a hot site to full operation.

Although a hot site provides the quickest recovery, it is the most expensive to maintain. In addition, it can be administratively hard to manage if the organization requires proprietary hardware or software. A hot site requires the same security controls as the primary facility and full redundancy, including hardware, software, and communication wiring.

Question 34

The management team needs to ensure unnecessary modifications to the corporate network are not permitted and version control is maintained. Which of the following documents would BEST support this?

A. An incident response plan

B. A business continuity plan

C. A change management policy

D. An acceptable use policy

Answer 34

C. A change management policy

Question 35

Which of the following is MOST likely to generate significant East-West traffic in a datacenter?

A. A backup of a large video presentation to cloud storage for archival purposes

B. A duplication of a hosted virtual server to another physical server for redundancy

C. A download of navigation data to a portable device for offline access

D. A query from an IoT device to a cloud-hosted server for a firmware update

Answer 35

B. A duplication of a hosted virtual server to another physical server for redundancy

Question 36

A technician is troubleshooting a network switch that seems to stop responding to requests intermittently whenever the logging level is set for debugging. Which of the following metrics should the technician check to begin troubleshooting the issue?

A. Audit logs

B. CPU utilization

C. CRC errors

D. Jitter

Answer 36

B. CPU utilization

Audit logs is wrong for a few reasons. One, the question is asking which metric to review. Logs are not metrics. Furthermore audit logs are for authentication/authorization which won’t help with identifying the problem. Looking at CPU utilization will help narrow down the problem.

Question 37

A technician wants to deploy a new wireless network that comprises 30 WAPs installed throughout a three-story office building. All the APs will broadcast the same SSID for client access. Which of the following BEST describes this deployment?

A. Extended service set

B. Basic service set

C. Unified service set

D. Independent basic service set

Answer 37

A. Extended service set

Extended Service Set is configured on multiple access points to form an extended service area. The question states there is 30 wireless access points

Question 38

A user tries to ping 192.168.1.100 from the command prompt on the 192.168.2.101 network but gets the following response: U.U.U.U. Which of the following needs to be configured for these networks to reach each other?

A. Network address translation

B. Default gateway

C. Loopback

D. Routing protocol

Answer 38

B. Default gateway

The U.U.U.U is suppose to be 0.0.0.0 and A route when no other route matches The “gateway of last resort” meaning it needs a DG address.

Question 39

A branch of a company recently switched to a new ISP. The network engineer was given a new IP range to assign. The ISP assigned 196.26.4.0/26, and the branch gateway router now has the following configurations on the interface that peers to the ISP:

The network engineer observes that all users have lost Internet connectivity. Which of the following describes the issue?

A. The incorrect subnet mask was configured

B. The incorrect gateway was configured

C. The incorrect IP address was configured

D. The incorrect interface was configured

Answer 39

B. The incorrect gateway was configured

Question 40

Within the realm of network security, Zero Trust:

A. prevents attackers from moving laterally through a system.

B. allows a server to communicate with outside networks without a firewall.

C. block malicious software that is too new to be found in virus definitions.

D. stops infected files from being downloaded via websites.

Answer 40

A. prevents attackers from moving laterally through a system. Most Voted

The definition of Zero trust mentions nothing about firewalls, viruses or stopping infected files from being downloaded.

Lesson 13: Topic 13A: Privileged Access Management - Zero trust is based on the idea that perimeter security is unlikely to be completely robust. On a modern network, there are just too many opportunities for traffic to escape monitoring/filtering by perimeter devices. Zero trust uses systems such as continuous authentication and conditional access to mitigate privilege escalation and account compromise by threat actors. Another zero-trust technique is to apply micro-segmentation. Microsegmentation is a security process that is capable of applying policies to a single node, as though it was in a zone of its own.

Question 41

Which of the following service models would MOST likely be used to replace on-premises servers with a cloud solution?

A. PaaS

B. IaaS

C. SaaS

D. Disaster recovery as a Service (DRaaS)

Answer 41

B. IaaS

Question 42

Which of the following factors should be considered when evaluating a firewall to protect a datacenter’s east-west traffic?

A. Replication traffic between an on-premises server and a remote backup facility

B. Traffic between VMs running on different hosts

C. Concurrent connections generated by Internet DDoS attacks

D. VPN traffic from remote offices to the datacenter’s VMs

Answer 42

B. Traffic between VMs running on different hosts

Question 43

SIMULATION -
You are tasked with verifying the following requirements are met in order to ensure network security.
Requirements:
✑ Datacenter
- Ensure network is subnetted to allow all devices to communicate properly while minimizing address space usage
- Provide a dedicated server to resolve IP addresses and hostnames correctly and handle port 53 traffic
✑ Building A
- Ensure network is subnetted to allow all devices to communicate properly while minimizing address space usage
- Provide devices to support 5 additional different office users
- Add an additional mobile user
- Replace the Telnet server with a more secure solution
✑ Screened subnet
- Ensure network is subnetted to allow all devices to communicate properly while minimizing address space usage
- Provide a server to handle external 80/443 traffic
- Provide a server to handle port 20/21 traffic

INSTRUCTIONS -
Drag and drop objects onto the appropriate locations. Objects can be used multiple times and not all placeholders need to be filled.
Available objects are located in both the Servers and Devices tabs of the Drag & Drop menu.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

Answer 43

Correct Answer: See explanation below.

Top left subnet ג€” 206.208.134.0/28
Top right subnet ג€” 10.72.63.0/28
Bottom subnet ג€” 192.168.11.0/28
Screened Subnet devices ג€” Web server, FTP server
Building A devices ג€” SSH server top left, workstations on all 5 on the right, laptop on bottom left
DataCenter devices ג€” DNS server.

Question 44

Which of the following is used to prioritize Internet usage per application and per user on the network?

A. Bandwidth management

B. Load balance routing

C. Border Gateway Protocol

D. Administrative distance

Answer 44

A. Bandwidth management

Question 45

A network administrator needs to query the NSs for a remote application. Which of the following commands would BEST help the administrator accomplish this task?

A. dig

B. arp

C. show interface

D. hostname

Answer 45

A. dig

Question 46

Which of the following would MOST likely be used to review previous upgrades to a system?

A. Business continuity plan

B. Change management

C. System life cycle

D. Standard operating procedures

Answer 46

B. Change management

Question 47

A technician is deploying a new switch model and would like to add it to the existing network monitoring software. The technician wants to know what metrics can be gathered from a given switch. Which of the following should the technician utilize for the switch?

A. MIB

B. Trap

C. Syslog

D. Audit log

Answer 47

MIB (management Infromation Base)

Question 48

A network device is configured to send critical events to a syslog server; however, the following alerts are not being received:
Severity 5 LINK-UPDOWN: Interface 1/1, changed state to down
Severity 5 LINK-UPDOWN: Interface 1/3, changed state to down
Which of the following describes the reason why the events are not being received?

A. The network device is not configured to log that level to the syslog server

B. The network device was down and could not send the event

C. The syslog server is not compatible with the network device

D. The syslog server did not have the correct MIB loaded to receive the message

Answer 48

A. The network device is not configured to log that level to the syslog server

Question 49

A network administrator is implementing OSPF (Open Shortest Path First) on all of a company’s network devices. Which of the following will MOST likely replace all the company’s hubs?

A. A Layer 3 switch

B. A proxy server

C. A NGFW

D. A WLAN controller

Answer 49

A. A Layer 3 switch

The OSPF (Open Shortest Path First) protocol is one of a family of IP Routing protocols, and is an Interior Gateway Protocol (IGP) for the Internet, used to distribute IP routing information throughout a single Autonomous System (AS) in an IP network.

Question 50

A network administrator discovers that users in an adjacent building are connecting to the company’s guest wireless network to download inappropriate material.
Which of the following can the administrator do to MOST easily mitigate this issue?

A. Reduce the wireless power levels

B. Adjust the wireless channels

C. Enable wireless client isolation

D. Enable wireless port security

Answer 50

A. Reduce the wireless power levels

Question 51

A network administrator is designing a new datacenter in a different region that will need to communicate to the old datacenter with a secure connection. Which of the following access methods would provide the BEST security for this new datacenter?

A. Virtual network computing

B. Secure Socket Shell

C. In-band connection

D. Site-to-site VPN

Answer 51

D. Site-to-site VPN

Question 52

An attacker is attempting to find the password to a network by inputting common words and phrases in plaintext to the password prompt. Which of the following attack types BEST describes this action?

A. Pass-the-hash attack

B. Rainbow table attack

C. Brute-force attack

D. Dictionary attack

Answer 52

D. Dictionary attack

Question 53

Which of the following technologies provides a failover mechanism for the default gateway?

A. FHRP

B. LACP

C. OSPF

D. STP

Answer 53

A. FHRP

Question 54

The following configuration is applied to a DHCP server connected to a VPN concentrator:

IP Address 10.0.0.1 Subnet Mask 255.255.255.0 Gateway 10.0.0.254

There are 300 non-concurrent sales representatives who log in for one hour a day to upload reports, and 252 of these representatives are able to connect to the
VPN without any Issues. The remaining sales representatives cannot connect to the VPN over the course of the day. Which of the following can be done to resolve the issue without utilizing additional resources?

A. Decrease the lease duration

B. Reboot the DHCP server

C. Install a new VPN concentrator

D. Configure a new router

A. Decrease the lease duration

B. Reboot the DHCP server

C. Install a new VPN concentrator

D. Configure a new router

Answer 54

A. Decrease the lease duration

Question 55

A technician needs to configure a Linux computer for network monitoring. The technician has the following information:
Linux computer details:

Interface IP Address MAC Address eth0 10.1.2.2.44 A1:B2:C3:F4:E5:D6

Switch mirror port details:

Interface IP Address MAC Address eth0 10.1.2.3 A1:B2:C3:F4:E5:F6

After connecting the Linux computer to the mirror port on the switch, which of the following commands should the technician run on the Linux computer?

A. ifconfig ecth0 promisc

B. ifconfig eth1 up

C. ifconfig eth0 10.1.2.3

D. ifconfig eth1 hw ether A1:B2:C3:D4:E5:F6

Answer 55

A. ifconfig ecth0 promisc

ifconfig ecth0 promisc enables promiscuous mode which allows a network device to intercept and read each network packet that arrives in its entirety. Since the question states “Network Monitoring” this would be the best & only answer

Question 56

A network engineer is investigating reports of poor network performance. Upon reviewing a device configuration, the engineer finds that duplex settings are mismatched on both ends. Which of the following would be the MOST likely result of this finding?

A. Increased CRC errors

B. Increased giants and runts

C. Increased switching loops

D. Increased device temperature

Answer 56

A. Increased CRC errors

Question 57

Which of the following devices would be used to manage a corporate WLAN?

A. A wireless NAS

B. A wireless bridge

C. A wireless router

D. A wireless controller

Answer 57

D. A wireless controller

Question 58

Which of the following types of devices can provide content filtering and threat protection, and manage multiple IPSec site-to-site connections?

A. Layer 3 switch

B. VPN headend

C. Next-generation firewall

D. Proxy server

E. Intrusion prevention

Answer 58

C. Next-generation firewall

Question 59

An engineer notices some late collisions on a half-duplex link. The engineer verifies that the devices on both ends of the connection are configured for half duplex.
Which of the following is the MOST likely cause of this issue?

A. The link is improperly terminated

B. One of the devices is misconfigured

C. The cable length is excessive

D. One of the devices has a hardware issue

Answer 59

C. The cable length is excessive

Question 60

A network administrator is configuring a load balancer for two systems. Which of the following must the administrator configure to ensure connectivity during a failover?

A. VIP

B. NAT

C. APIPA

D. IPv6 tunneling

E. Broadcast IP

Answer 60

A. VIP

Question 61

A technician is troubleshooting a wireless connectivity issue in a small office located in a high-rise building. Several APs are mounted in this office. The users report that the network connections frequently disconnect and reconnect throughout the day. Which of the following is the MOST likely cause of this issue?

A. The AP association time is set too low

B. EIRP needs to be boosted

C. Channel overlap is occurring

D. The RSSI is misreported

Answer 61

B. EIRP needs to be boosted

Question 62

A network engineer configured new firewalls with the correct configuration to be deployed to each remote branch. Unneeded services were disabled, and all firewall rules were applied successfully. Which of the following should the network engineer perform NEXT to ensure all the firewalls are hardened successfully?

A. Ensure an implicit permit rule is enabled

B. Configure the log settings on the firewalls to the central syslog server

C. Update the firewalls with current firmware and software

D. Use the same complex passwords on all firewalls

Answer 62

C. Update the firewalls with current firmware and software

Question 63

At which of the following OSI model layers would a technician find an IP header?

A. Layer 1

B. Layer 2

C. Layer 3

D. Layer 4

Answer 63

C. Layer 3 Most Voted

Network layer

Question 64

An engineer is configuring redundant network links between switches. Which of the following should the engineer enable to prevent network stability issues?

A. 802.1Q

B. STP

C. Flow control

D. CSMA/CD

Answer 64

B. STP

STP (Spanning Tree Protocol) A switching protocol that prevents network loops by dynamically disabling links as needed.

Question 65

Several WIFI users are reporting the inability to connect to the network. WLAN users on the guest network are able to access all network resources without any performance issues. The following table summarizes the findings after a site survey of the area in question:

Which of the following should a wireless technician do NEXT to troubleshoot this issue?

A. Reconfigure the channels to reduce overlap

B. Replace the omni antennas with directional antennas

C. Update the SSIDs on all the APs

D. Decrease power in AP 3 and AP 4

Answer 65

A. Reconfigure the channels to reduce overlap

Question 66

Which of the following routing protocols is used to exchange route information between public autonomous systems?

A. OSPF

B. BGP

C. EGRIP

D. RIP

Answer 66

B. BGP

BGP (Border Gateway Protocol) A path vector routing protocol used by ISPs to establish routing between one another. BGP depends on the concept of Autonomous Systems (ASes).

Question 67

A fiber link connecting two campus networks is broken. Which of the following tools should an engineer use to detect the exact break point of the fiber link?

A. OTDR

B. Tone generator

C. Fusion splicer

D. Cable tester

E. PoE injector

Answer 67

A. OTDR

An Optical Time Domain Reflectometer (OTDR) is a device that tests the integrity of a fiber cable and is used for the building, certifying, maintaining, and troubleshooting fiber optic systems.

Fusion Splicing is a preferred way to join two fibers together by using heat. Whether the fiber was broken or not long enough, a fusion splicer will make your job easier. You would do this after finding where the break is.

Question 68

Which of the following can be used to centrally manage credentials for various types of administrative privileges on configured network devices?

A. SSO

B. TACACS+

C. Zero Trust

D. Separation of duties

E. Multifactor authentication

Answer 68

B. TACACS+

Terminal Access Controller Access Control System (TACACS+) is often used in authenticating administrative access to routers and switches

Question 69

A network technician is installing new software on a Windows-based server in a different geographical location. Which of the following would be BEST for the technician to use to perform this task?

A. RDP

B. SSH

C. FTP

D. DNS

Answer 69

A. RDP

Remote Desktop Protocol is used to installed software while FTP is for file transfer

Question 70

Branch users are experiencing issues with videoconferencing. Which of the following will the company MOST likely configure to improve performance for these applications?

A. Link Aggregation Control Protocol

B. Dynamic routing

C. Quality of service

D. Network load balancer

E. Static IP addresses

Answer 70

C. Quality of service

Qualityof Service (QoS) can be configured for latency-sensitive applications, such as Voice over IP (VoIP).

Question 71

A technician is assisting a user who cannot connect to a network resource. The technician first checks for a link light. According to troubleshooting methodology, this is an example of:

A. using a bottom-to-top approach.

B. establishing a plan of action.

C. documenting a finding.

D. questioning the obvious

Answer 71

D. questioning the obvious.

Question 72

Which of the following transceiver types can support up to 40Gbps?

A. SFP+

B. QSFP+

C. QSFP

D. SFP

Answer 72

B. QSFP+

SFP = 1Gbps

SFP+ = 10 Gbps

QSFP = 4xSFP = 4 Gbps

QSFP+ = 4xSFP = 40 Gbps

Question 73

Which of the following TCP ports is used by the Windows OS for file sharing?

A. 53

B. 389

C. 445

D. 1433

Answer 73

C. 445

53 DNS

389 LDAP

445 SMB

1433 SQL

Question 74

A network administrator redesigned the positioning of the APs to create adjacent areas of wireless coverage. After project validation, some users still report poor connectivity when their devices maintain an association to a distanced AP. Which of the following should the network administrator check FIRST?

A. Validate the roaming settings on the APs and WLAN clients

B. Verify that the AP antenna type is correct for the new layout

C. Check to see if MU-MIMO was properly activated on the APs

D. Deactivate the 2.4GHz band on the APS

Answer 74

A. Validate the roaming settings on the APs and WLAN clients

Question 75

Which of the following connector types would have the MOST flexibility?

A. SFP

B. BNC

C. LC

D. RJ45

Answer 75

A. SFP

SFP is a transceiver that allows for modular connection based on whatever is needed. Example=Converting RJ45 to SC (copper to fiber), vice versa or some other combination needed.

Question 76

Which of the following ports is commonly used by VoIP phones?

A. 20

B. 143

C. 445

D. 5060

Answer 76

D. 5060

VoIP uses UDP port 5060 unsecured and UDP port 5061 secured.

20 FTP

143 IMAP

445 SMB

5060 SIP

Question 77

A network engineer is investigating reports of poor network performance. Upon reviewing a report, the engineer finds that jitter at the office is greater than 10ms on the only WAN connection available. Which of the following would be MOST affected by this statistic?

A. A VoIP sales call with a customer

B. An in-office video call with a coworker

C. Routing table from the ISP

D. Firewall CPU processing time

Answer 77

A. A VoIP sales call with a customer

Question 78

A network technician needs to ensure outside users are unable to telnet into any of the servers at the datacenter. Which of the following ports should be blocked when checking firewall configuration?

A. 22

B. 23

C. 80

D. 3389

Answer 78

B. 23

Telnet uses UDP port 23.

Question 79

A technician is writing documentation regarding a company’s server farm. The technician needs to confirm the server name for all Linux servers. Which of the following commands should the technician run?

A. ipconfig

B. nslookup

C. arp

D. route

Answer 79

B. nslookup

Question 80

A technician is connecting multiple switches to create a large network for a new office. The switches are unmanaged Layer 2 switches with multiple connections between each pair. The network is experiencing an extreme amount of latency. Which of the following is MOST likely occurring?

A. Ethernet collisions

B. A DDoS attack

C. A broadcast storm

D. Routing loops

Answer 80

C. A broadcast storm

Question 81

A store owner would like to have secure wireless access available for both business equipment and patron use. Which of the following features should be configured to allow different wireless access through the same equipment?

A. MIMO

B. TKIP

C. LTE

D. SSID

Answer 81

D. SSID

Question 82

Which of the following systems would MOST likely be found in a screened subnet?

A. RADIUS

B. FTP

C. SQL

D. LDAP

Answer 82

B. FTP

Question 83

Which of the following would need to be configured to ensure a device with a specific MAC address is always assigned the same IP address from DHCP?

A. Scope options

B. Reservation

C. Dynamic assignment

D. Exclusion

E. Static assignment

Answer 83

B. Reservation

IP reservation assigns the same IP upon requesting IP renewal by a client

Question 84

Access to a datacenter should be individually recorded by a card reader even when multiple employees enter the facility at the same time. Which of the following allows the enforcement of this policy?

A. Motion detection

B. Access control vestibules

C. Smart lockers

D. Cameras

Answer 84

B. Access control vestibules

Question 85

A workstation is configured with the following network details:

10.1.2.23 10.1.2.0/27 10.1.2.1

Software on the workstation needs to send a query to the local subnet broadcast address. To which of the following addresses should the software be configured to send the query?

A. 10.1.2.0

B. 10.1.2.1

C. 10.1.2.23

D. 10.1.2.255

E. 10.1.2.31

IP Address | Subnet Mask | Default Gateway |

Answer 85

E. 10.1.2.31

Question 86

After the A record of a public website was updated, some visitors were unable to access the website. Which of the following should be adjusted to address the issue?

A. TTL

B. MX

C. TXT

D. SOA

Answer 86

A. TTL

Question 87

A network administrator is installing a wireless network at a client’s office. Which of the following IEEE 802.11 standards would be BEST to use for multiple simultaneous client access?

A. CDMA

B. CSMA/CD

C. CSMA/CA

D. GSM

Answer 87

C. CSMA/CA

Question 88

A technician is installing multiple UPS units in a major retail store. The technician is required to keep track of all changes to new and old equipment. Which of the following will allow the technician to record these changes?

A. Asset tags

B. A smart locker

C. An access control vestibule

D. A camera

Answer 88

A. Asset tags

Question 89

Which of the following attacks encrypts user data and requires a proper backup implementation to recover?

A. DDoS

B. Phishing

C. Ransomware

D. MAC spoofing

Answer 89

C. Ransomware

Question 90

A network administrator wants to analyze attacks directed toward the company’s network. Which of the following must the network administrator implement to assist in this goal?

A. A honeypot

B. Network segmentation

C. Antivirus

D. A screened subnet

Answer 90

A. A honeypot

Honeypot is a kind trap for attackers made available so that you can study the attack patterns.

Question 91

A network administrator is configuring a database server and would like to ensure the database engine is listening on a certain port. Which of the following commands should the administrator use to accomplish this goal?

A. nslookup

B. netstat -a

C. ipconfig /a

D. arp -a

Answer 91

B. netstat -a

Question 92

A technician is implementing a new wireless network to serve guests at a local office. The network needs to provide Internet access but disallow associated stations from communicating with each other. Which of the following would BEST accomplish this requirement?

A. Wireless client isolation

B. Port security

C. Device geofencing

D. DHCP snooping

Answer 92

A. Wireless client isolation

Wireless Client Isolation is a security feature that prevents wireless clients from communicating with one another. This feature is useful for guest and BYOD SSIDs adding a level of security to limit attacks and threats between devices connected to the wireless networks

Question 93

A company requires a disaster recovery site to have equipment ready to go in the event of a disaster at its main datacenter. The company does not have the budget to mirror all the live data to the disaster recovery site. Which of the following concepts should the company select?

A. Cold site

B. Hot site

C. Warm site

D. Cloud site

Answer 93

C. Warm site

A warm site is a leased facility that contains electrical and communications wiring, full utilities, and networking equipment. In most cases, the only thing that needs to be restored is the software and the data. A warm site takes longer to restore than a hot site but less than a cold site.

Question 94

An IT technician suspects a break in one of the uplinks that provides connectivity to the core switch. Which of the following command-line tools should the technician use to determine where the incident is occurring?

A. nslookup

B. show config

C. netstat

D. show interface

E. show counters

Answer 94

D. show interface

show interface will allow one to see the uplink states of each port.

Question 95

A technician is connecting DSL for a new customer. After installing and connecting the on-premises equipment, the technician verifies DSL synchronization. When connecting to a workstation, however, the link LEDs on the workstation and modem do not light up. Which of the following should the technician perform during troubleshooting?

A. Identify the switching loops between the modem and the workstation.

B. Check for asymmetrical routing on the modem.

C. Look for a rogue DHCP server on the network.

D. Replace the cable connecting the modem and the workstation.

Answer 95

D. Replace the cable connecting the modem and the workstation.

The link LEDs on the workstation and modem do not light up, so cable may be a root cause.

Question 96

Which of the following services can provide data storage, hardware options, and scalability to a third-party company that cannot afford new devices?

A. SaaS

B. IaaS

C. PaaS

D. DaaS

Answer 96

B. IaaS

Question 97

A network administrator is talking to different vendors about acquiring technology to support a new project for a large company. Which of the following documents will MOST likely need to be signed before information about the project is shared?

A. BYOD policy

B. NDA

C. SLA

D. MOU

Answer 97

B. NDA

Question 98

Two remote offices need to be connected securely over an untrustworthy MAN. Each office needs to access network shares at the other site. Which of the following will BEST provide this functionality?

A. Client-to-site VPN

B. Third-party VPN service

C. Site-to-site VPN

D. Split-tunnel VPN

Answer 98

C. Site-to-site VPN

Question 99

A network requirement calls for segmenting departments into different networks. The campus network is set up with users of each department in multiple buildings. Which of the following should be configured to keep the design simple and efficient?

A. MDIX

B. Jumbo frames

C. Port tagging

D. Flow control

Answer 99

C. Port tagging

Port tagging is used for connecting switches that may be on different networks (trunking)

Question 100

Which of the following protocols will a security appliance that is correlating network events from multiple devices MOST likely rely on to receive event messages?

A. Syslog

B. Session Initiation Protocol

C. Secure File Transfer Protocol

D. Server Message Block

Answer 100

A. Syslog

A log collector aggregates event messages from numerous devices to a single storage location. Syslog is an example of a protocol and supporting software that facilitates log collection

Question 101

Which of the following is MOST commonly used to address CVEs on network equipment and/or operating systems?

A. Vulnerability assessment

B. Factory reset

C. Firmware update

D. Screened subnet

Answer 101

C. Firmware update

Question 102

A network technician is investigating an issue with handheld devices in a warehouse. Devices have not been connecting to the nearest APs, but they have been connecting to an AP on the far side of the warehouse. Which of the following is the MOST likely cause of this issue?

A. The nearest APs are configured for 802.11g.

B. An incorrect channel assignment is on the nearest APs.

C. The power level is too high for the AP on the far side.

D. Interference exists around the AP on the far side.

Answer 102

C. The power level is too high for the AP on the far side.

Question 103

Which of the following uses the destination IP address to forward packets?

A. A bridge

B. A Layer 2 switch

C. A router

D. A repeater

Answer 103

C. A router

Question 104

Which of the following OSI model layers is where conversations between applications are established, coordinated, and terminated?

A. Session

B. Physical

C. Presentation

D. Data link

Answer 104

A. Session

Question 105

A business is using the local cable company to provide Internet access. Which of the following types of cabling will the cable company MOST likely use from the demarcation point back to the central office?

A. Multimode

B. Cat 5e

C. RG-6

D. Cat 6

E. 100BASE-T

Answer 105

C. RG-6 (Coaxial)

Question 106

A network administrator decided to use SLAAC in an extensive IPv6 deployment to alleviate IP address management. The devices were properly connected into the LAN but autoconfiguration of the IP address did not occur as expected. Which of the following should the network administrator verify?

A. The network gateway is configured to send router advertisements.

B. A DHCP server is present on the same broadcast domain as the clients.

C. The devices support dual stack on the network layer.

D. The local gateway supports anycast routing.

Answer 106

A. The network gateway is configured to send router advertisements.

IPv6 networks use Stateless Address Auto Configuration (SLAAC) to assign IP addresses. With SLAAC, devices send the router a request for the network prefix, and the device then uses the prefix along with its own MAC address to create an IP address.

Question 107

Which of the following is used to provide networking capability for VMs at Layer 2 of the OSI model?

A. VPN

B. VRRP

C. vSwitch

D. VIP

Answer 107

C. vSwitch

Question 108

A network administrator is required to ensure that auditors have read-only access to the system logs, while systems administrators have read and write access to the system logs, and operators have no access to the system logs. The network administrator has configured security groups for each of these functional categories. Which of the following security capabilities will allow the network administrator to maintain these permissions with the LEAST administrative effort?

A. Mandatory access control

B. User-based permissions

C. Role-based access

D. Least privilege

Answer 108

C. Role-based access

Question 109

Which of the following would be used to expedite MX record updates to authoritative NSs?

A. UDP forwarding

B. DNS caching

C. Recursive lookup

D. Time to live

Answer 109

D. Time to live

Question 110

A client moving into a new office wants the IP network set up to accommodate 412 network-connected devices that are all on the same subnet. The subnet needs to be as small as possible. Which of the following subnet masks should be used to achieve the required result?

A. 255.255.0.0

B. 255.255.252.0

C. 255.255.254.0

D. 255.255.255.0

Answer 110

C. 255.255.254.0

Question 111

A company is being acquired by a large corporation. As part of the acquisition process, the company’s address should now redirect clients to the corporate organization page. Which of the following DNS records needs to be created?

A. SOA

B. NS

C. CNAME

D. TXT

Answer 111

C. CNAME

Question 112

Which of the following systems would MOST likely be found in a screened subnet?

A. RADIUS

B. FTP

C. SQL

D. LDAP

Answer 112

B. FTP

Use a screened subnet - previously known as a demilitarized zone (DMZ) - for all publicly viewable servers, including web servers, FTP servers, and email relay servers. A screened subnet is a version of the DMZ that is created with two firewalls (each of the routers are operating as a firewall) and the DMZ (also called the perimeter between them)

Question 113

A user is having difficulty with video conferencing and is looking for assistance. Which of the following would BEST improve performance?

A. Packet shaping

B. Quality of service

C. Port mirroring

D. Load balancing

Answer 113

B. Quality of service

Question 114

A network technician is configuring a new firewall for a company with the necessary access requirements to be allowed through the firewall. Which of the following would normally be applied as the LAST rule in the firewall?

A. Secure SNMP

B. Port security

C. Implicit deny

D. DHCP snooping

Answer 114

C. Implicit deny

Question 115

A technician wants to install a WAP in the center of a room that provides service in a radius surrounding a radio. Which of the following antenna types should the
AP utilize?

A. Omni

B. Directional

C. Yagi

D. Parabolic

Answer 115

A. Omni

Question 116

The following instructions were published about the proper network configuration for a videoconferencing device:
“Configure a valid static RFC1918 address for your network. Check the option to use a connection over NAT.”
Which of the following is a valid IP address configuration for the device?

A. FE80::1

B. 100.64.0.1

C. 169.254.1.2

D. 172.19.0.2

E. 224.0.0.12

Answer 116

D. 172.19.0.2

Question 117

A network administrator is reviewing interface errors on a switch. Which of the following indicates that a switchport is receiving packets in excess of the configured
MTU?

A. CRC errors

B. Giants

C. Runts

D. Flooding

Answer 117

B. Giants

Question 118

A network administrator needs to implement an HDMI over IP solution. Which of the following will the network administrator MOST likely use to ensure smooth video delivery?

A. Link aggregation control

B. Port tagging

C. Jumbo frames

D. Media access control

Answer 118

C. Jumbo frames

Question 119

A network administrator wants to reduce overhead and increase efficiency on a SAN. Which of the following can be configured to achieve these goals?

A. Port aggregation

B. Traffic shaping

C. Jumbo frames

D. Flow control

Answer 119

C. Jumbo frames

Question 120

A rogue AP was found plugged in and providing Internet access to employees in the break room. Which of the following would be BEST to use to stop this from happening without physically removing the WAP?

A. Password complexity

B. Port security

C. Wireless client isolation

D. Secure SNMP

Answer 120

B. Port security

Question 121

A company’s network is set up so all Internet-bound traffic from all remote offices exits through a main datacenter. Which of the following network topologies would
BEST describe this setup?

A. Bus

B. Spine-and-leaf

C. Hub-and-spoke

D. Mesh

Answer 121

C. Hub-and-spoke

a hub-and-spoke can be WAN configured between a central office and branch offices

Question 122

To comply with industry requirements, a security assessment on the cloud server should identify which protocols and weaknesses are being exposed to attackers on the Internet. Which of the following tools is the MOST appropriate to complete the assessment?

A. Use tcpdump and parse the output file in a protocol analyzer.

B. Use an IP scanner and target the cloud WAN network addressing.

C. Run netstat in each cloud server and retrieve the running processes.

D. Use nmap and set the servers’ public IPs as the targets.

Answer 122

D. Use nmap and set the servers’ public IPs as the targets.

Question 123

A systems administrator is configuring a firewall using NAT with PAT. Which of the following would be BEST suited for the LAN interface?

A. 172.15.0.0/18

B. 172.18.0.0/10

C. 172.23.0.0/16

D. 172.28.0.0/8

E. 172.32.0.0/14

Answer 123

C. 172.23.0.0/16

Question 124

A packet is assigned a value to ensure it does not traverse a network indefinitely . Which of the following best represents this value?

Answer 124

C. Time to live

Time to Live (TTL) IP header field is decreased by at least 1. This could be greater if the router is congested. The TTL is nominally the number of seconds a packet can stay on the network before being discarded

Question 125

Which of the following policies should be referenced when a user wants to access work email on a personal cell phone?

A. Offboarding policy

B. Acceptable use policy

C. BYOD policy

D. Remote access policy

Answer 125

C. BYOD policy

Acceptable use of COMPANY equipment… Ex. Can i mine bitcoin on the company laptop, no, that is not acceptable. This is in reference to user equipment thus BYOD, bring your own device. Some CompTIA questions are straightforward, others are confusing, I think this one is straightforward. Hope that helps

Question 126

After a firewall replacement, some alarms and metrics related to network availability stopped updating on a monitoring system relying on SNMP. Which of the following should the network administrator do FIRST?

A. Modify the device’s MIB on the monitoring system.

B. Configure syslog to send events to the monitoring system.

C. Use port mirroring to redirect traffic to the monitoring system.

D. Deploy SMB to transfer data to the monitoring system.

Answer 126

A. Modify the device’s MIB on the monitoring system.

Question 127

At the destination host, which of the following OSI model layers will discard a segment with a bad checksum in the UDP header?

A. Network

B. Data link

C. Transport

D. Session

Answer 127

C. Transport

Question 128

A voice engineer is troubleshooting a phone issue. When a call is placed, the caller hears echoes of the receiver’s voice. Which of the following are the causes of this issue? (Choose two.)

A. Jitter

B. Speed mismatch

C. QoS misconfiguration

D. Protocol mismatch

E. CRC errors

F. Encapsulation errors

Answer 128

A. Jitter

C. QoS misconfiguration

Question 129

Which of the following VPN configurations should be used to separate Internet and corporate traffic?

A. Split-tunnel

B. Remote desktop gateway

C. Site-to-site

D. Out-of-band management

Answer 129

A. Split-tunnel

Question 130

Which of the following is required when connecting an endpoint device with an RJ45 port to a network device with an ST port?

A. A media converter

B. A bridge

C. An MDIX

D. A load balancer

Answer 130

A. A media converter

Question 131

The management team has instituted a 48-hour RTO as part of the disaster recovery plan. Which of the following procedures would meet the policy’s requirements?

A. Recover all systems to a loss of 48 hours of data.

B. Limit network downtime to a maximum of 48 hours per year.

C. Recover all systems within 48 hours.

D. Require 48 hours of system backup maintenance.

Correct Answer: C

Answer 131

C. Recover all systems within 48 hours.

Recovery time objective (RTO) is the period following a disaster that an individual IT system may remain offline. This represents the maximum amount of time allowed to identify that there is a problem and then perform recovery (restore from backup or switch in an alternative system, for instance).

Question 132

Which of the following cable types would MOST likely be used to provide high-speed network connectivity between nearby buildings?

A. UTP

B. Coaxial

C. Fiber

D. Cat 5

E. Twinaxial

Answer 132

C. Fiber

Question 133

Which of the following is the physical security mechanism that would MOST likely be used to enter a secure site?

A. A landing page

B. An access control vestibule

C. A smart locker

D. A firewall

Answer 133

B. An access control vestibule

Question 134

Which of the following BEST describes a North-South traffic flow?

A. A public Internet user accessing a published web server

B. A database server communicating with another clustered database server

C. A Layer 3 switch advertising routes to a router

D. A management application connecting to managed devices

Answer 134

D. A management application connecting to managed devices

Question 135

A network switch was installed to provide connectivity to cameras monitoring wildlife in a remote location. The organization is concerned that intruders could potentially leverage unattended equipment in the remote location to connect rogue devices and gain access to the organization’s resources. Which of the following techniques would BEST address the concern?

A. Configure port security using MAC filtering.

B. Manually register the cameras on the switch address table.

C. Activate PoE+ on the active switchports.

D. Disable Neighbor Discovery Protocol on the switch.

Answer 135

A. Configure port security using MAC filtering.

Question 136

A technician is documenting an application that is installed on a server and needs to verify all existing web and database connections to the server. Which of the following tools should the technician use to accomplish this task?

A. tracert

B. ipconfig

C. netstat

D. nslookup

Answer 136

C. netstat

Question 137

A technician is assisting a user who cannot access network resources when the workstation is connected to a VoIP phone. The technician identifies the phone as faulty and replaces it. According to troubleshooting methodology, which of the following should the technician do NEXT?

A. Implement the solution.

B. Test the theory.

C. Duplicate the issue.

D. Document the findings.

E. Verify functionality.

Answer 137

E. Verify functionality.

Question 138

Which of the following OSI model layers contains IP headers?

A. Presentation

B. Application

C. Data link

D. Network

E. Transport

Answer 138

D. Network

Question 139

A small office is running WiFi 4 APs, and neighboring offices do not want to increase the throughput to associated devices. Which of the following is the MOST cost-efficient way for the office to increase network performance?

A. Add another AP.

B. Disable the 2.4GHz radios.

C. Enable channel bonding.

D. Upgrade to WiFi 5

Answer 139

C. Enable channel bonding.

Question 140

A network technician is troubleshooting an application issue. The technician is able to recreate the issue in a virtual environment. According to the troubleshooting methodology, which of the following actions will the technician most likely perform NEXT?

A. Gather information from the initial report.

B. Escalate the issue to a supervisor.

C. Implement a solution to resolve the issue.

D. Establish a theory of probable cause.

Answer 140

D. Establish a theory of probable cause.

Question 141

Which of the following types of datacenter architectures will MOST likely be used in a large SDN and can be extended beyond the datacenter? (Choose two.)

A. iSCSI

B. FCoE

C. Three-tiered network

D. Spine and leaf

E. Top-of-rack switching

Answer 141

C. Three-tiered network

D. Spine and leaf

Question 142

A technician is troubleshooting a client’s report about poor wireless performance. Using a client monitor, the technician notes the following information:

SSID SIGNAL (RSSI) CHANEL

Corporate -50 | 9

Corporate -69 | 10

Corporate -67 | 11

Corporate -63 | 6

Which of the following is MOST likely the cause of the issue?

A. Channel overlap

B. Poor signal

C. Incorrect power settings

D. Wrong antenna type

Answer 142

A. Channel overlap

Question 143

A network technician reviews an entry on the syslog server and discovers the following message from a switch:

SPANNING-TREE Port 1/1 BLOCKED -
Which of the following describes the issue?

A. A loop was discovered, and the impact was mitigated.

B. An incorrectly pinned cable was disconnected.

C. The link-local address on the port is incorrect.

D. The port was shut down, and it needs to be reactivated.

Answer 143

A. A loop was discovered, and the impact was mitigated.

Question 144

A company just migrated its email service to a cloud solution. After the migration, two-thirds of the internal users were able to connect to their mailboxes, but the connection fails for the other one-third of internal users. Users working externally are not reporting any issues. The network administrator identifies the following output collected from an internal host: c:\user> nslookup newmail.company.com
Non-Authoritative answer:

Name: newmail.company.com -
IPs: 3.219.13.186, 64.58.225.184, 184.168.131.243
Which of the following verification tasks should the network administrator perform NEXT?

A. Check the firewall ACL to verify all required IP addresses are included.

B. Verify the required router PAT rules are properly configured.

C. Confirm the internal DNS server is replying to requests for the cloud solution.

D. Validate the cloud console to determine whether there are unlicensed requests.

Answer 144

A. Check the firewall ACL to verify all required IP addresses are included.

Question 145

A network technician was hired to harden the security of a network. The technician is required to enable encryption and create a password for AP security through the web browser. Which of the following would BEST support these requirements?

A. ESP

B. WPA2

C. IPSec

D. ACL

Answer 145

B. WPA2

Question 146

Which of the following ports are associated with IMAP? (Choose two.)

A. 25

B. 110

C. 143

D. 587

E. 993

F. 995

Answer 146

C. 143

E. 993

Question 147

A network administrator is trying to identify a device that is having issues connecting to a switchport. Which of the following would BEST help identify the issue?

A. A syslog server

B. Change management records

C. A rack diagram

D. The security log

Answer 147

A. A syslog server

Question 148

A company with multiple routers would like to implement an HA network gateway with the least amount of downtime possible. This solution should not require changes on the gateway setting of the network clients. Which of the following should a technician configure?

A. Automate a continuous backup and restore process of the system’s state of the active gateway.

B. Use a static assignment of the gateway IP address on the network clients.

C. Configure DHCP relay and allow clients to receive a new IP setting.

D. Configure a shared VIP and deploy VRRP on the routers.

Answer 148

D. Configure a shared VIP and deploy VRRP on the routers.

Question 149

Which of the following protocols would allow a secure connection to a Linux-based system?

A. SMB

B. FTP

C. RDP

D. SSH

Answer 149

D. SSH

Question 150

A network administrator is troubleshooting the communication between two Layer 2 switches that are reporting a very high runt count. After trying multiple ports on both switches, the issue persists. Which of the following should the network administrator perform to resolve the issue?

A. Increase the MTU size on both switches.

B. Recertify the cable between both switches.

C. Perform a factory reset on both switches.

D. Enable debug logging on both switches.

Answer 150

A. Increase the MTU size on both switches.

Question 151

Users attending security training at work are advised not to use single words as passwords for corporate applications. Which of the following does this BEST protect against?

A. An on-path attack

B. A brute-force attack

C. A dictionary attack

D. MAC spoofing

E. Denial of service

Answer 151

C. A dictionary attack