Practice Test A

Question 1

A junior network technician is setting up a new email server on the company network. Which of the following default ports should the technician ensure is open on
the firewall so the new email server can relay email?

A. 23
B. 25
C. 110
D. 143

Answer 1

B. 25

Question 2

Which of the following policies would Joe, a user, have to agree to when he brings in his personal tablet to connect to the company’s guest wireless Internet?

A. NDA
B. IRP
C. BYOD
D. SLA

Answer 2

C. BYOD

Question 3

In a service provider network, a company has an existing IP address scheme. Company A’s network currently uses the following scheme: SEE IMAGE
Company B uses the following scheme:

Subnet 1: 192.168.1.50/28

The network administrator cannot force the customer to update its IP scheme. Considering this, which of the following is the BEST way for the company to connect these networks?

A. DMZ
B. PAT
C. NAT
D. VLAN

Answer 3

C. NAT

Question 4

A network engineer is designing a new network for a remote site. The remote site consists of ten desktop computers, ten VoIP phones, and two network printers. In
addition, two of the desktop computers at the remote site will be used by managers who should be on a separate network from the other eight computers. Which of the following represents the BEST configuration for the remote site?

A. One router connected to one 24-port switch configured with three VLANS: one for the manager’s computers and printer, one for the other computers and printer,
and one for the VoIP phones
B. Two routers with each router connected to a 12-port switch, with a firewall connected to the switch connected to the manager’s desktop computers, VoIP
phones, and printer
C. One router connected to one 12-port switch configured for the manager’s computers, phones, and printer, and one 12-port switch configured for the other
computers, VoIP phones, and printer
D. One router connected to one 24-port switch configured with two VLANS: one for the manager’s computers, VoIP phones, and printer, and one for the other
computers, VoIP phones, and printer

Answer 4

A. One router connected to one 24-port switch configured with three VLANS: one for the manager’s computers and printer, one for the other computers and printer,
and one for the VoIP phones

Question 5

A network technician is troubleshooting an end-user connectivity problem. The network technician goes to the appropriate IDF but is unable to identify the
appropriate cable due to poor labeling. Which of the following should the network technician use to help identify the appropriate cable?

A. Tone generator
B. Multimeter
C. OTDR
D. Loopback adapter

Answer 5

A. Tone generator

Question 6

A network technician notices the site-to-site VPN and Internet connection have not come back up at a branch office after a recent power outage. Which of the
following is an out-of-band method the technician would MOST likely utilize to check the branch office’s router status?

A. Use a modem to console into the router
B. Walk a user through troubleshooting the connection
C. Travel to the branch office
D. Hire a contractor to go on-site

Answer 6

A. Use a modem to console into the router

Question 7

A network technician is considering opening ports on the firewall for an upcoming VoIP PBX implementation. Which of the following protocols is the technician
MOST likely to consider? (Choose three.)

A. SIP
B. NTP
C. H.323
D. SMB
E. ICMP
F. RTP
G. IPSec
H. RDP

Answer 7

A. SIP
C. H.323
F. RTP

Question 8

A device operating at Layer 3 of the OSI model uses which of the following protocols to determine the path to a different network?

A. STP
B. RTP
C. RIP
D. NTP
E. SIP

Answer 8

C. RIP

Question 9

A network administrator is setting up a web-based application that needs to be continually accessible to the end users. Which of the following concepts would BEST ensure this requirement?

A. High availability
B. Snapshots
C. NIC teaming
D. Cold site

Answer 9

A. High availability

Question 10

Which of the following is the number of broadcast domain that are created when using an unmanaged 12-port switch?

A. 0
B. 1
C. 2
D. 6
E. 12

Answer 10

B. 1

Question 11

A network engineer wants to segment the network into multiple broadcast domains. Which of the following devices would allow for communication between the segments?

A. Layer 2 switch
B. Layer 3 switch
C. Bridge
D. Load balancer

Answer 11

B. Layer 3 switch

Question 12

The Chief Information Officer (CIO) has noticed the corporate wireless signal is available in the parking lot. Management requests that the wireless network be
changed so it is no longer accessible in public areas, without affecting the availability inside the building. Which of the following should be changed on the network?

A. Power levels
B. Overcapacity
C. Distance limitations
D. Channel overlap

Answer 12

A. Power levels

Question 13

A network technician is assisting the security team with some traffic captures. The security team wants to capture all traffic on a single subnet between the router
and the core switch. To do so, the team must ensure there is only a single collision and broadcast domain between the router and the switch from which they will
collect traffic. Which of the following should the technician install to BEST meet the goal?

A. Bridge
B. Crossover cable
C. Hub
D. Media converter

Answer 13

C. Hub

Question 14

Based on networks 10.8.16.0/22 and 10.8.31.0/21, which of the following is the BEST summarized CIDR notation?

A. 10.8.0.0/16
B. 10.8.0.0/19
C. 10.8.0.0/20
D. 10.0.0.0/24

Answer 14

A. 10.8.0.0/16

Question 15

A technician discovers that multiple switches require a major update. Which of the following policies should be followed?

A. Change management policy
B. Remote access policy
C. Acceptable use policy
D. Memorandum of understanding

Answer 15

A. Change management policy

Question 16

A technician is troubleshooting a point-to-point fiber-optic connection. The technician is at a remote site and has no connectivity to the main site. The technician confirms the switch and the send-and-receive light levels are within acceptable range. Both fiber SFPs are confirmed as working. Which of the following should the technician use to reveal the location of the fault?

A. OTDR
B. Light meter
C. Tone generator
D. CSU/DSU

Answer 16

A. OTDR

Question 17

A technician logs onto a system using Telnet because SSH is unavailable. SSH is enabled on the target device, and access is allowed from all subnets. The
technician discovers a critical step was missed. Which of the following would allow SSH to function properly?

A. Perform file hashing
B. Generate new keys
C. Update firmware
D. Change default credentials

Answer 17

B. Generate new keys

Question 18

A network administrator wants to ensure sensitive data is not exfiltrated from the system electronically. Which of the following should be implemented?

A. DLP
B. AUP
C. NDA
D. SLA

Answer 18

A. DLP

Question 19

An office network consists of one two-port router connected to a 12-port switch. A four-port hub is also connected to the switch. On this particular network, which of
the following is the number of collision domain that exist?

A. 3
B. 12
C. 13
D. 14
E. 15

Answer 19

D. 14

Question 20

A network technician wants to remotely and securely access the desktop of a Linux workstation. The desktop is running remote control software without encryption.
Which of the following should the technician use to secure the connection?

A. SSH in tunnel mode
B. RDP set to console connection
C. EAP-PEAP
D. SFTP

Answer 20

A. SSH in tunnel mode

Question 21

A network technician is able to connect the switches between two offices, but the offices cannot communicate with each other, as each office uses a different IP
addressing scheme. Which of the following devices needs to be installed between the switches to allow communication?

A. Bridge
B. Access point
C. Router
D. Range extender

Answer 21

C. Router

Question 22

A network technician is working on a proposal for email migration from an on-premises email system to a vendor-hosted email in the cloud. The technician needs to explain to management what type of cloud model will be utilized with the cloud-hosted email. Which of the following cloud models should the technician identify in
the proposal?

A. IaaS
B. PaaS
C. SaaS
D. MaaS

Answer 22

C. SaaS

Question 23

Which of the following is the correct port number for NTP?

A. 25
B. 69
C. 123
D. 161

Answer 23

C. 123

Question 24

A network technician is connecting two switches together. Which of the following protocols should the technician use to increase speed and fault tolerance?

A. SIP
B. BGP
C. LACP
D. LLDP

Answer 24

C. LACP

Question 25

A company has a web-based application that is used by many different departments. The company has experienced some overload of resources on the database
server. The network administrator implements a network device in between the servers and the database. Which of the following BEST describes the purpose of
this device?

A. Content filtering and network analysis

B. Load balancing and providing high availability
C. Port sniffing and protocol analysis
D. Clustering and NIC teaming

Answer 25

B. Load balancing and providing high availability

Question 26

A technician is replacing a switch at a branch office and discovers the existing backbone cable does not fit in the new switch. The fiber patch panel has circular
connections. The new switch has a transceiver that accepts a smaller square adapter of two strands. Which of the following patch cables would the technician need
to complete the installation?

A. LC to SC
B. SC to ST
C. LC to ST
D. ST to ST
E. SC to SC

Answer 26

C. LC to ST

Question 27

A computer lab on a campus network was recently reconfigured using recycled network cables. One of the 24 computers in the lab is unable to connect to the
network after the upgrade. A network technician successfully uses the cable in question to connect directly to another computer. Which of the following is MOST
likely issue with the cable?

A. The cable is a crossover cable
B. The cable is rollover cable
C. The cable has bent pins
D. The cable is a Cat 5 cable

Answer 27

A. The cable is a crossover cable

Question 28

A technician is setting up a branch office on a point-to-point connection. Which of the following IP network blocks is the MOST efficient use of IP address space for the router connections between the two sites?

A. /24
B. /25
C. /30
D. /32

Answer 28

C. /30

Question 29

A technician is upgrading the firmware on an older KVM switch. The specifications call for a serial port to connect to the computer on one side, and an Ethernet jack
to connect to the switch on the other side. Which of the following connectors does the technician need for this cable? (Choose two.)

A. RG-9
B. DB-9
C. RJ-11
D. DB-25
E. RJ-45
F. BNC

Answer 29

B. DB-9
E. RJ-45

Question 30

An end-user device requires a specific IP address every time it connects to the corporate network; however, corporate policy does not allow the use of static IP
addresses. Which of the following will allow the request to be fulfilled without breaking the corporate policy?

A. DHCP relay
B. DHCP exclusion
C. DHCP option
D. DHCP reservation

Answer 30

D. DHCP reservation

Question 31

A technician is planning a remote-access strategy to manage routers and switches on a dedicated management network. The management network is segregated from the production network and uses site-to-site VPN connections. Some of the equipment does not support encryption. Which of the following should the technician choose that all the equipment would support?

A. Telnet
B. SSL
C. SSH
D. IPSec

Answer 31

A. Telnet

Question 32

Which of the following protocols do MOST MITM attacks utilize?

A. ARP

B. SIP

C. FTP

D. SCP

Answer 32

A. ARP

Question 33

An ISP technician gets a call from a business that just changed equipment but can no longer connect to the Internet. The technician checks the ARP table on the ISP switch, and there is no corresponding MAC address present. Instead, the entry is “Incomplete”. Which of the following could cause this condition?

A. VLAN mismatch
B. Duplex/Speed mismatch
C. Duplicate IP address
D. TX/RX reverse

Answer 33

B. Duplex/Speed mismatch

Question 34

A systems administrator has recently purchased and installed a large electronic signage screen for the company’s parking garage. The screen’s management
software was installed on a server with public IP address to allow remote management. The systems administrator is now troubleshooting an issue with the screen displaying unknown, random, and inappropriate messages. Which of the following is MOST effective in resolving this issue?

A. Changing the management software’s default credentials
B. Disabling unnecessary services from the server and management software
C. Changing the management software’s default port
D. Replacing the management software’s self-signed certificate with a valid certificate

Answer 34

A. Changing the management software’s default credentials

Question 35

A technician is investigating a server performance issue. The technician has gathered the server utilization statistics. Which of the following should the technician
use to determine which statistics are not in the normal range?

A. Baseline review
B. Vulnerability scan
C. System life-cycle report
D. Archiving logs

Answer 35

A. Baseline review

Question 36

Which of the following devices, if implemented, would result in decreased administration time of an 802.11 network running centralized authentication services?
(Choose two.)

A. VPN concentrator
B. Proxy server
C. Wireless controller
D. RADIUS server
E. Multilayer switch

Answer 36

C. Wireless controller
D. RADIUS server

Question 37

A customer cannot access a company’s secure website. The company’s network security is reviewing the firewall for the server and finds the following output:

Which of the following changes should be made to allow all customers to access the company’s secure website?

A. Allow any any 10.5.0.10 443
B. Allow any any 12.73.15.5 443
C. Allow 10.5.0.10 443 any any
D. Allow 10.5.0.10 any 10.5.0.10 80

Answer 37

C. Allow 10.5.0.10 443 any any

Question 38

Which of the following MUST be implemented to share metrics between routing protocols within the same router?

A. Routing loop
B. Routing table
C. Route redistribution
D. Dynamic routes

Answer 38

B. Routing table

Question 39

An engineer is reviewing the implementation requirements for an upcoming project. The basic requirements identified by the customer include the following:

• WLAN architecture supporting speeds in excess of 150 Mbps
• Clientless remote network access
• Port-based network access control

Which of the following solution sets properly addresses all of the identified requirements?

A. 802.11a, IPSec VPN, 802.1x
B. 802.11ac, MPLS, 802.3
C. 802.11b, PPTP, 802.1x
D. 802.11g, MS-CHAP, 802.16
E. 802.11n, SSL-VPN, 802.1x

Answer 39

E. 802.11n, SSL-VPN, 802.1x

Question 40

Which of the following is used to classify network data for the purpose of providing QoS?

A. STP
B. VLANs
C. SIP
D. DSCP

Answer 40

D. DSCP

Question 41

A network technician needs to separate a web server listening on port 80 from the internal LAN and secure the server from the public Internet. The web server
should be accessible to the public Internet over port 80 but not the private LAN. Currently, the network is segmented with a network-based firewall using the
following IP addressing scheme on each interface:

Which of the following ones should the technician use to place the web server and which of the following firewall rules should the technician configure?

A. Place the web server in the public zone with an inbound rule from eth0 interface to accept traffic over port 80 designated to the web server
B. Place the web server in the DMZ with an inbound rule from eth0 interface to eth1 to accept traffic over port 80 designated to the web server
C. Place the web server in the private zone with an inbound rule from eth2 interface to eth1 to accept traffic over port 80 designated to the web server
D. Place the web server in the DMZ with an inbound rule from eth1 interface to eth0 to accept traffic over port 80 designated to the web server

Answer 41

B. Place the web server in the DMZ with an inbound rule from eth0 interface to eth1 to accept traffic over port 80 designated to the web server

Question 42

A company recently upgraded all of its printers to networked multifunction devices. Users can print to the new devices, but they would also like the ability to scan
and fax files from their computers. Which of the following should the technician update to allow this functionality?

A. Device software
B. Printer drivers
C. Printer firmware
D. NIC drivers

Answer 42

C. Printer firmware

Question 43

A disgruntled employee executes a man-in-the-middle attack on the company network. Layer 2 traffic destined for the gateway is redirected to the employee’s
computer. This type of attack is an example of:

A. ARP cache poisoning
B. IP spoofing
C. amplified DNS attack
D. evil twin

Answer 43

A. ARP cache poisoning

Question 44

The process of attempting to exploit a weakness in a network after being given permission by the company is known as:

A. penetration testing
B. vulnerability scanning
C. reconnaissance
D. social engineering

Answer 44

A. penetration testing

Question 45

A company has contracted with an outside vendor to perform a service that will provide hardware, software, and procedures in case of a catastrophic failure of the
primary datacenter. The Chief Information Officer (CIO) is concerned because this contract does not include a long-term strategy for extended outages. Which of
the following should the CIO complete?

A. Disaster recovery plan
B. Business continuity plan
C. Service level agreement
D. First responder training

Answer 45

B. Business continuity plan

Question 46

A typical cell tower will have microwave and cellular antennas. Which of the following network topologies do these represent? (Choose two.)

A. Point-to-multipoint
B. Bus
C. Point-to-point
D. Mesh
E. Peer-peer
F. Ring

Answer 46

C. Point-to-point
D. Mesh

Question 47

A network administrator has a monitoring system in place that is currently polling hundreds of network devices at regular intervals. The continuous polling is causing
high CPU utilization on the server. Which of the following tasks should the administrator perform to resolve the CPU issue while maintaining full monitoring
capabilities?

A. Remove SNMP polling and configure SNMP traps on each network device

B. Remove SNMP polling and implement snmpwalk on each network device
C. Upgrade SNMP to the latest version to mitigate vulnerabilities
D. Modify SNMP polling to poll only during business hours

Answer 47

A. Remove SNMP polling and configure SNMP traps on each network device

Question 48

A contractor is setting up and configuring conference rooms for a convention. The contractor sets up each room in the conference center to allow wired Internet
access going to individual tables. The contractor measured the distance between the hotel’s patch panel to the jack, and the distance is within Cat 5e specifications.
The contractor is concerned that the room will be out of specification if cables are run in each room from the wall jacks. Which of the following actions should the
contractor take to ensure the cable runs meet specifications and the network functions properly?

A. Place a switch at the hotel’s patch panel for connecting each room’s cables
B. Place a switch on each table to ensure strong connectivity
C. Place repeaters between the patch panel and the rooms
D. place a switch at the wall jack and run the cables in the room from there

Answer 48

A. Place a switch at the hotel’s patch panel for connecting each room’s cables

Question 49

Users are reporting their network is extremely slow. The technician discovers pings to external host have excessive response times. However, internal pings to printers and other PCs have acceptable response times. Which of the following steps should the technician take NEXT?

A. Determine if any network equipment was replaced recently
B. Verify malware has not disabled the users’ PC firewalls
C. Replace users’ network cables with known-good network cables
D. Power cycle the web server

Answer 49

A. Determine if any network equipment was replaced recently

Question 50

Which of the following is a system of notation that uses base 16 rather than base 10?

A. Hex
B. Octal
C. Binary
D. CIDR

Answer 50

A. Hex

Question 51

A network administrator would like to collect information from several networking devices using SNMP. Which of the following SNMP options should a network
administrator use to ensure the data transferred is confidential?

A. authpriv
B. SHA
C. MD5
D. Authentication passphrase

Answer 51

A. authpriv

Question 52

An office user cannot access local network drives but has full access to the Internet. A technician troubleshoots the issue and observes the following output of the ipconfig command:

Which of the following would MOST likely allow the network drives to be accessed?

A. Update the WLAN adapter driver
B. Disable the WLAN adapter
C. Check the wireless DHCP configuration
D. Disable the LAN adapter

Answer 52

B. Disable the WLAN adapter

Question 53

Ann, a network technician, has just installed a fiber switch in a datacenter. To run the fiber cabling, Ann plans the cable route over the top of the rack using the cable trays, down to the switch, coiling up any excess cable. As Ann configures the switch, she notices several messages in the logging buffer stating the receive signal of the SFP is too weak. Which of the following is MOST likely the cause of the errors in the logging buffer?

A. Bend radius exceeded
B. Fiber cable mismatch

C. Fiber type mismatch
D. Bad fiber switch

Answer 53

A. Bend radius exceeded

Question 54

Which of the following wireless connection types utilize MIMO on non-overlapping channels? (Choose two.)

A. 802.11a
B. 802.11ac
C. 802.11b
D. 802.11g
E. 802.11n

Answer 54

B. 802.11ac
E. 802.11n

Question 55

A network technician is creating a new subnet for 488 host machines. The technician is told to use a class B address scheme when making the subnet and is instructed to leave as much room as possible for additional subnets of the same size. Which of the following subnets would fulfill these requirements?

A. 10.5.4.0/22
B. 10.233.2.0/23
C. 172.16.0.0/22
D. 172.18.0.0/23
E. 192.168.25.0/24

Answer 55

D. 172.18.0.0/23

Question 56

A network engineer is designing a new IDF in an old building. The engineer determines the equipment will fit in a two-post rack, and there is power available for this equipment. Which of the following would be the FIRST issue to remediate?

A. Air flow and cooling
B. UPS capability
C. Circuit labeling
D. Power redundancy

Answer 56

A. Air flow and cooling

Question 57

Which of the following DNS records needs to be configured for SMTP traffic?

A. MX
B. CNAME
C. AAAA
D. PTR

Answer 57

A. MX

Question 58

In which of the following ways does a DDoS attack differ from a spoofing attack?

A. DDoS attacks target multiple networks
B. Spoofing attacks originate from a single host
C. DDoS attacks are launched from multiple hosts
D. Spoofing attacks require physical presence

Answer 58

C. DDoS attacks are launched from multiple hosts

Question 59

A user checks an IP address using an external website. The address is different than the one the user sees when opening a command prompt and typing in ipconfig/all. The user does not understand why the two tools show different IP addresses. This is BEST explained by the interworking of:

A. network devices
B. packet flow
C. public/private networks
D. traffic-routing protocols

Answer 59

C. public/private networks

Question 60

Which of the following communication media can carry many voice, data, and video channels simultaneously over multiple frequencies?

A. Broadband
B. Baseband
C. Analog modem
D. CSMA

Answer 60

A. Broadband

Question 61

To replace a defective UPS, the network administrator must take the switch offline. The administrator wants to be able to perform maintenance UPS in the future without affecting the availability of the attached switch. Which of the following would BEST allow this to happen?

A. Add a redundant power supply to the switch
B. Implement stacking on the switches in the rack
C. Add a second UPS into the rack
D. Install a power converter for the switch

Answer 61

A. Add a redundant power supply to the switch

Question 62

A forensic first responder arrives at the scene where an employee is suspected to have committed a computer-based crime. Which of the following should the first
responder do FIRST?

A. Document the scene
B. Take pictures upon arrival
C. Secure the area
D. Implement chain of custody

Answer 62

C. Secure the area

Question 63

A small town is attempting to attract tourists who visit larger nearby cities. A network engineer is asked to implement a network encompassing the five-block town center and nearby businesses. The inclusion of smartphones and portable devices is crucial to the plan. Which of the following is the network engineer being asked to implement?

A. LAN
B. PAN
C. MAN
D. WAN

Answer 63

C. MAN

Question 64

A network technician is building a network for a small office. The office currently has cable TV and now requires access to the Internet without adding any cabling other than what is already in place. Which of the following solutions should the technician install to meet these requirements?

A. DOCSIS modem
B. Wireless router
C. DSL modem
D. Access point

Answer 64

A. DOCSIS modem

Question 65

A network engineer arrives at work and discovers that many users are having problems when attempting to connect to the company network shared drives. The
network operations center (NOC) technician just completed server upgrades the night before. To which of the following documents should the NOC technician refer
to determine what potentially caused the connectivity problem?

A. Network maps
B. Cable management
C. Release notes
D. Change management

Answer 65

D. Change management

Question 66

Which of the following VPN protocols establishes a secure session that can be initiated using a browser?

A. IPSec
B. SSL VPN
C. PTP
D. PPTP

Answer 66

B. SSL VPN

Question 67

A technician is setting up a public guest network for visitors to access the Internet that must be separate from the corporate network. Which of the following are the
BEST steps for the technician to take with minimum overhead configuration? (Choose two.)

A. Enable SSID broadcasting to identify the guest network
B. Configure visitor devices to use static IP addresses
C. Enable two-factor authentication on visitor devices
D. Configure the access point to use WPA2-AES encryption

E. Ensure the access point is not running in mixed mode

Answer 67

A. Enable SSID broadcasting to identify the guest network
B. Configure visitor devices to use static IP addresses

Question 68

When choosing a type of storage that integrates with the existing network infrastructure, the storage must be easily configurable to share files and can
communicate with all existing clients over TCP/IP. Which of the following is the BEST technology for the network administrator to implement?

A. iSCSI
B. Fibre Channel
C. NAS
D. DAS

Answer 68

C. NAS

Question 69

A network technician is installing a new network switch is looking for an appropriate fiber optic patch cable. The fiber optic patch panel uses a twist-style connector.
The switch uses a SFP module. Which of the following connector types should the fiber patch cable have?

A. LC
B. ST
C. SC
D. MTRJ
E. MTP

Answer 69

B. ST

Question 70

Which of the following WAN technologies utilizes the concept of virtual circuits and point-multipoint connections?

A. ISDN
B. MPLS
C. PRI
D. Broadband cable
E. Frame relay

Answer 70

E. Frame relay

Question 71

A network administrator wishes to ensure there are no unnecessary open communication paths into a server. Using a port scanner, the administrator finds that
ports are reported as closed. Which of the following BEST explains this response?

A. The ports belong to an active system and are denying requests
B. The ports are associated with deprecated services
C. The ports do not belong to a live system
D. The ports replied with a SYN/ACK response

Answer 71

B. The ports are associated with deprecated services

Question 72

Users are reporting issues with slow connection speeds and a loss of connectivity on the newly installed wireless network. The issues are intermittent but seem to
occur most often around midday. Which of the following is the MOST likely cause?

A. There is interference from small appliances
B. The signal coverage area is too small
C. Not enough DHCP addresses have been allotted
D. The DNS cache on the users’ computers has become corrupt

Answer 72

C. Not enough DHCP addresses have been allotted

Question 73

A user reports difficulties connecting a PC to a wired network. The PC connects to an IP phone, which is working correctly. A network technician can verify that other devices successfully connect to the phone. At which of the following layers of the OSI model is the problem MOST likely located?

A. Network
B. Physical
C. Transport
D. Application

Answer 73

A. Network

Question 74

Which of the following physical security controls is MOST likely to be susceptible to a false positive?

A. Identification card
B. Biometric device
C. Proximity reader
D. Video camera

Answer 74

C. Proximity reader

Question 75

An assistant systems analyst reports the following findings of an investigation of slow Internet connections in a remote office to the senior systems analyst:

Which of the following devices is causing the issue?

A. Router
B. Firewall
C. Switch 1
D. Switch 2

Answer 75

B. Firewall

Question 76

A small business developed an in-house application that is very sensitive to network latency when a communicating between servers. Due to a lack of funds, the business had to build its own network for workstations and servers. Now a network administrator must redesign the network due to performance issues with the application. Which of the following would be the MOST cost effective for the administrator to recommend?

A. Create Ethernet VLANs
B. Disable autonegotiation on the servers
C. Install 10Gb Ethernet NICs in the servers
D. Install Fibre Channel for the server network

Answer 76

C. Install 10Gb Ethernet NICs in the servers

Question 77

Which of the following is the SHORTEST way to write 2001:0000:0d58:0000:0000:0095:7565:0001 in proper IPv6 shorthand?

A. 2001::d58::95:7565:1
B. 2001:0:d58:0:0:95:7565:1
C. 2001:0:d58::95:7565:1
D. 2001:0:0d58::95:7565:1

Answer 77

C. 2001:0:d58::95:7565:1

Question 78

A network administrator needs to transmit traffic to geographically diverse sites to improve performance. Which of the following devices would BEST direct traffic to
the remote sites?

A. Hub
B. Bridge
C. Switch
D. Router

Answer 78

D. Router

Question 79

Which of the following should a technician investigate when using a network baseline to troubleshoot?

A. Tracing a network wire connectivity issue from the datacenter to a host.
B. Determining if the server performance is degraded.
C. Changes that have been made to the network configuration.
D. Location of networking equipment in a rack.

Answer 79

B. Determining if the server performance is degraded.

Question 80

A technician needs to upgrade a SOHO wireless router’s firmware. The technician resets the router to factory settings and installs the new firmware. The technician
enters the DHCP information and sets the SSID. Which of the following configurations would provide the MOST protection from advance hackers?

A. Disable the broadcasting of the SSID.
B. Enable WPA2 authentication for all hosts.
C. Use private addressing for the DHCP scope.
D. Install unidirectional antennas.

Answer 80

B. Enable WPA2 authentication for all hosts

Question 81

Which of the following datacenter security methodologies is MOST likely to remain usable during a network outage?

A. biometric scanners
B. door locks
C. video surveillance
D. motion detectors

Answer 81

B. door locks

Question 82

A network technician is implementing a solution on the network to hide the workstation internal IP addresses across a WAN. Which of the following is the technician configuring?

A. QoS
B. DMZ
C. RIP
D. NAT

Answer 82

D. NAT

Question 83

Employees want the ability to use personal devices on the guest network while working out at the company gym. In order to meet the request, which of the following
policies requires employee adherence?

A. AUP
B. SLA
C. NDA
D. MOU

Answer 83

A. AUP

Question 84

A customer is reporting difficulty connecting some devices after replacing a wireless router with a new wireless 802.11ac router. The SSID, encryption and password are the same as the previous router. A technician goes on-site and notices the devices that are no longer connecting appear to be several years ago.
Which of the following is MOST likely the problem?

A. the password needs to be re-entered.
B. there is a security type mismatch.
C. there is insufficient antenna power.
D. there is a frequency mismatch.
E. the channel has changed.

Answer 84

D. there is a frequency mismatch.

Question 85

A technician is sent to a remote office to set up a device to connect to the Internet. The company standards document requires stateful inspection. Which of the
following should the technician install?

A. Router
B. Multiplayer switch
C. Firewall
D. Bridge

Answer 85

C. Firewall

Question 86

A technician is assigned to secure a basic wireless network. Which of the following authentication protocols should the technician use to perform this task? (Choose
two.)

A. RDP
B. SNMP
C. WPA2
D. EAP
E. SSL

Answer 86

C. WPA2
D. EAP

Question 87

A junior network technician receives a help desk ticket from an end user who is having trouble accessing a web application that was working the previous day. After
talking with the end user and gathering information about the issue, which of the following would be the most likely course of action for the technician to perform
NEXT?

A. Establish a theory of probable cause.
B. Escalate the ticket to a senior technician.
C. Implement the solution.
D. Document the findings and outcomes.

Answer 87

A. Establish a theory of probable cause.

Question 88

A system administrator receives reports from users of odd behavior in regard to a recently installed server. While reviewing the server network configuration, the
systems administrator does both a forward and a reverse DNS lookup on the host, along with the network adapter configuration.

Which of the following is the problem identified in the output above?

A. There is no reverse DNS entry for this host.
B. The server IP address is incorrectly configured.
C. The DNS lookup entry is incorrectly configured.
D. The reverse DNS entry is pointing to a different host.

Answer 88

C. The DNS lookup entry is incorrectly configured.

Question 89

A technician is utilizing SNMPv3 to monitor network statistics. Which of the following actions would occur immediately of a server’s utilization spikes above the
prescribed value?

A. A trap message is sent via UDP to the monitoring workstation.
B. The SET function pushes an alert to the MIB database.

C. The object identifier is modified and reported during the next monitoring cycle.
D. A response message is sent from the agent to the manager.

Answer 89

A. A trap message is sent via UDP to the monitoring workstation.

Question 90

In which of the following scenarios should a technician use a cross-over cable to provide connectivity?

A. PC to switch
B. Switch to AP
C. Router to switch
D. Router to modem
E. PC to PC

Answer 90

E. PC to PC

Question 91

A network technician is setting up a new router. Since it is exposed to the public, which of the following are the BEST steps the technician should take when setting
up this device? (Choose two.)

A. Disable unnecessary services.
B. Use private IP addresses.
C. Allow remote management access.
D. Disable the console port.
E. Enable encryption.
F. Upgrade to the latest firmware.

Answer 91

A. Disable unnecessary services.
F. Upgrade to the latest firmware.

Question 92

A network technician is configuring user access to a VPN concentrator and has been advised to use a protocol that supports encryption over UDP. Which of the following protocols has the technician MOST likely configured for client use?

A. TFTP
B. DTLS
C. DNS
D. SNMP

Answer 92

B. DTLS

Question 93

A Chief Information Officer (CIO) is concentrated about an attacker gaining administrative access to the company’s network devices. Which of the following is the MOST secure way to prevent this?

A. ACL allowing only HTTP
B. ACL allowing only Telnet
C. Out-of-band modem
D. Out-of-band console router

Answer 93

D. Out-of-band console router

Question 94

The Chief Executive Officer’s (CEO’s) tablet cannot connect to the wireless network from the corner office. A network technician verified the tablet can connect to the wireless network in other areas of the building. The distance between the office and the 802.11ac WAP is 150ft (46m), and there are a few cubicles in between.
Which of the following is the MOST likely cause of the tablet not connecting?

A. Absorption
B. Reflection
C. Distance
D. Refraction
E. Attenuation

Answer 94

C. Distance

Question 95

A technician is working on a new machine that has been procured for testing and development. The machine will run a hypervisor and host several operating
systems of various types so the development team can test the company’s applications in a variety of environments. The technician wants the virtual machines to be available to communicate with each other without leaving the hypervisor. Which of the following is the BEST solution to the problem?

A. The technician should connect the machine to its own separate switch.
B. The technician should add a route in each virtual machine to the default gateway.
C. The technician should configure a virtual switch.
D. The technician should set up individual routes between the machines.

Answer 95

C. The technician should configure a virtual switch.

Question 96

A network technician is repurposing a switch that has been in storage for some time. The device has been wiped to factory defaults. Which of the following should be done FIRST to ensure the device has been hardened before configuration?

A. Generate new keys.

B. Disable unused ports.
C. Check for updated firmware.
D. Configure the default VLAN.

Answer 96

C. Check for updated firmware.

Question 97

A network administrator is assigned to run and connect a Cat 6e Ethernet cable between two nodes in a datacenter. Which of the following connector types should
the network administrator use to terminate this cable?

A. DB-9
B. RS-232
C. DB-25
D. RJ-45

Answer 97

D. RJ-45

Question 98

Management has requested that services be available within 72 hours of a disaster. Budget is a major concern. A contract is signed with a company that has plenty of space, and the technician will have the option of putting infrastructure equipment in place. Which of the following BEST describes this business continuity
strategy?

A. Cold site
B. Differential backup
C. Hot site
D. Incremental backup
E. Warm site
F. Full backup

Answer 98

A. Cold site

Question 99

A network technician performs a wireless site survey at a company building and identifies that the cafeteria is not covered by a wireless signal. The cafeteria is
located in a medium-size, square-shaped room. Which of the following types of WAP antenna should the technician install in the center of the cafeteria to provide
the BEST coverage?

A. Unidirectional
B. Parabolic
C. Omnidirectional
D. Yagi

Answer 99

C. Omnidirectional

Question 100

A new building needs to be joined to an existing network, but management has decided that running fiber is too expensive. Since the buildings are about 1000ft
(305m) apart, the IT department has been asked to propose alternatives. Which of the following is the BEST device to add to each building to facilitate the extension of the network while meeting budgetary demands?

A. Switch
B. Router
C. Media converter
D. PRP wireless

Answer 100

D. PRP wireless

Question 101

A home user has purchased a new smart TV to stream online video services. The smart TV is unable to connect to the wireless network after several attempts.
After returning from vacation, the home user tries again and can connect the TV to the wireless network. However, the user notices a laptop is no longer able to
connect to the network. Which of the following is the MOST likely cause?

A. The DHCP scope has been exhausted.
B. The security passcode has been changed.
C. The SSID is hidden.
D. The AP configuration was reset.

Answer 101

A. The DHCP scope has been exhausted.

Question 102

A security guard notices an authorized individual, who is dressed like a lab technician, has entered a secure area of the hospital with a large group. Which of the
following security attacks is taking place?

A. Evil twin
B. Social engineering
C. Insider threat
D. Phishing

Answer 102

B. Social engineering

Question 103

A network technician has recently installed new VoIP phones at all employee’s desks to support a new SIP cloud VoIP solution. However, the technician is unable to make a call from the device after testing. Which of the following should the technician verify? (Choose two.)

A. TCP 443 is allowed.
B. UDP 1720 is allowed.
C. UDP 5060 is allowed.
D. UDP 5061 is allowed.
E. TCP 8080 is allowed.
F. TCP 8181 is allowed.

Answer 103

C. UDP 5060 is allowed.
D. UDP 5061 is allowed.

Question 104

Which of the following would allow a network technician to access files on a remote system? (Choose two.)

A. FTP

B. TFTP
C. VLSM
D. SIP
E. SMTP
F. IMAP

Answer 104

A. FTP

B. TFTP

Question 105

A technician set up a new SOHO network recently. The installed router has four Ethernet ports, however, the customer has seven devices that need wired
connections. Which of the following should the technician do to BEST meet the customer’s requirements?

A. Install a six-port switch.
B. Configure port forwarding on the router.
C. Install WAPs near the devices.
D. Configure the switchports as EtherChannel ports.

Answer 105

A. Install a six-port switch.

Question 106

A technician is performing a maintenance task on a weekly basis and wants to ensure the task is properly documented and able to be performed by other
technicians. Which of the following types of documentation should the technician complete?

A. Standard operating procedure
B. Work order
C. Performance baseline
D. Logical diagram
E. Change management

Answer 106

A. Standard operating procedure

Question 107

Which of the following are characteristics of jumbo frames? (Choose two.)

A. Commonly used on SAN
B. MTU size greater than 1500
C. MTU size greater than 10000

D. Commonly used on IaaS
E. MTU size greater than 12000

Answer 107

A. Commonly used on SAN
B. MTU size greater than 1500

Question 108

A network administrator gets a call regarding intermittent network outages across the country. Which of the following should be used to connect to the network so the administrator can troubleshoot this issue from home? (Choose two.)

A. FTP
B. SMTP
C. VPN
D. SSH
E. SNMP

Answer 108

C. VPN
D. SSH

Question 109

A network technician downloaded new firmware for the company firewall. Which of the following should the network technician verify to ensure the downloaded file
is correct and complete?

A. File hash
B. File date
C. File type
D. File size

Answer 109

A. File hash

Question 110

Which of the following will listen on the line to ensure there is no traffic transmitting and implement a back-off timer if a collision occurs?

A. CSMA/CD
B. CSMA/CA
C. MPLS
D. OSPF

Answer 110

A. CSMA/CD

Question 111

A network technician receives a call from a branch office about a problem with its wireless connectivity. The user states the office is hosting a large meeting that
includes some online training with local businesses. The guest users have all brought devices to connect to the guest network at the branch office. All users are
connected to a single WAP and are reporting that connections keep dropping and network spends are unusable. Which of the following is the MOST likely cause of
this issue?

A. DHCP exhaustion
B. Channel overlapping
C. Interference
D. Overcapacity

Answer 111

D. Overcapacity

Question 112

Which of the following physical security devices is used to detect unauthorized server room access?

A. Access badge
B. Biometrics
C. Smart card
D. Video surveillance

Answer 112

D. Video surveillance

Question 113

A network technician recently installed a new server on a network. The technician must ensure the server does not have any unnecessary services running. The IP
address of the server is 204.211.38.50. Which of the following commands would allow the technician to make this determination?

A. nmap
B. pathping
C. route
D. nslookup

Answer 113

A. nmap

Question 114

A technician is allocating the IP address space needed for a new remote office. This office will contain the engineering staff with six employees and the digital
marketing staff with 55 employees. The technician has decided to allocate the 192.168.1.0/24 block to the remote office. The engineering staff has been allocated
the 192.168.1.64/29 subnet. Using the LEAST amount of space possible, which of the following would be the last usable IP address in the engineering subnet?

A. 192.168.1.62
B. 192.168.1.63
C. 192.168.1.70
D. 192.168.1.71

Answer 114

A. 192.168.1.62

Question 115

An administrator is troubleshooting a user’s intermittent wireless connectivity issue. Other users across the hallway can connect and use the wireless network
properly. Upon inspection of the connection details, the administrator finds the following:

Which of the following is MOST likely the cause of the poor wireless connection?

A. Channel overlap
B. Overcapacity
C. Incorrect antenna type
D. Latency

Answer 115

C. Incorrect antenna type

Question 116

A network administrator is going to be performing a major upgrade to the network. Which of the following should the administrator use in case of a failure?

A. Baseline report
B. Vulnerability report
C. Rollback plan
D. Business continuity plan

Answer 116

C. Rollback plan

Question 117

Which of the following is networking stand-alone hardware that will permit any WiFi-compliant device to connect to a wired network?

A. Wireless hub
B. Wireless firewall
C. Wireless access point
D. Wireless bridge

Answer 117

C. Wireless access point

Question 118

A content filter is set to analyze XML and JSON that users access from the Internet. At which of the following layers is this analysis taking place?

A. 1
B. 3
C. 5
D. 7
E. 6

Answer 118

E. 6

Question 119

A technician is configuring a printer for a client. The technician connects the printer to the network, but is unsure how to determine its switchport. Which of the
following should the technician do FIRST to locate the switchport?

A. Perform a DNS lookup on the server.
B. Set up an SSH session to the desktop.
C. Reference the ARP table in the router.
D. Configure port security on the switch.

Answer 119

C. Reference the ARP table in the router.