Sample Test Questions Domain 4

Question 1

OSI Layer 2 is divided into two functional sublayers. The upper sublayer is the ___ and is defined in the IEEE 802.2 specification. It communicates with the network layer, which is immediately above the data link layer. Below that is the ___ sublayer, which specifies the interface with the protocol requirements of the physical layer

Answer 1

Logical Link Control (LLC); Media Access Control (MAC)

Question 2

The ___ architecture often used in e-commerce is a client/server architecture in which the user interface, functional process logic, and data storage run as independent components that are developed and maintained, often on separate platforms

Answer 2

three-tier

Question 3

a ___ architecture means that one firewall is in place to protect one server

Answer 3

screened-host

Question 4

___ is an e-mail validation system designed to prevent spam and malicious e-mail by detecting e-mail spoofing. The e-mail server is configured to check with the ___ to verify that an e-mail coming from a specific domain was sent from an IP address that has been sanctioned

Answer 4

Sender Policy Framework (SPF); DNS server

Question 5

__ in sockets help packets know how to communicate with the right service or protocol on the destination computer

Answer 5

port numbers

Question 6

___ has been the de facto industry-standard tunneling protocol for years, and but the new de facto standard for VPNs is ___, which is not used over dial-up connections

Answer 6

PPTP; IPSec

Question 7

___ is often used to send an attacker’s business card to be added to the victim’s contact list in their address book

Answer 7

Bluejacking

Question 8

Attackers use ___ queries to poison the cache of a DNS server

Answer 8

recursive

Question 9

when routing takes place on the internet, The ___ functions between each autonomous system (AS) so that each entity just has to know and be using the same exterior routing protocols.

Answer 9

Exterior Gateway Protocol (EGP)

Question 10

in reality, the Internet is just a network made up of ___ (regions of nodes (networks) that share characteristics and behaviors) and routing protocols

Answer 10

autonomous systems (ASs)

Question 11

Compared to hardware-based IP phones, ___ make an IP network more vulnerable

Answer 11

softphones

Question 12

E-mail spoofing is easy to execute because SMTP lacks ___

Answer 12

an adequate authentication mechanism

Question 13

Many ___ autoconfigure themselves to work on another port if their default port is unavailable and blocked by the firewall

Answer 13

IM clients

Question 14

___ allows for scoped addresses, which enables an administrator to restrict specific addresses for specific servers or file and print sharing, for example

Answer 14

IPv6

Question 15

802. 1__ provides a unique ID for a device
803. 1__ provides data encryption, integrity, and origin authentication functionality
804. 1__ carries out key agreement functions for the session keys used for data encryption

Answer 15

AR;
AE;
AF

Question 16

primary and secondary DNS servers synchronize their information through a ___

Answer 16

zone transfer

Question 17

a DNS server contains records that map hostnames to IP addresses, which are referred to as ___

Answer 17

resource records

Question 18

Virtual firewalls can be ___, which monitor individual traffic links between virtual machines, or they can be integrated within the hypervisor of a virtualized environment

Answer 18

bridge-mode products

Question 19

___ is intended to decouple the router’s logical function of making routing decisions and its mechanical function of passing data between interfaces, and to make routing decisions more centrally manageable

Answer 19

Software-defined networking (SDN)

Question 20

___ are designed to optimize the delivery of content to clients based on their global topological position

Answer 20

Content distribution networks (CDNs)

Question 21

___ Protocol is commonly used for all VoIP transactions except the actual media exchange between calling or receiving stations

Answer 21

Session Initiation

Question 22

PPTP encryption takes place in OSI layer ___

Answer 22

2 (the layer VPN operates at)

Question 23

IP spoofing can be used to hijack sessions between users, but not if they are ___

Answer 23

SSL or IPsec encrypted traffic

Question 24

SSL is a proprietary protocol, but ___ was developed by a standards body, making it an open-community protocol

Answer 24

TLS

Question 25

___ encryption encrypts all the data along a specific communication path and provides protection against packet sniffers and eavesdroppers, whereas with ___ encryption only the data payload is encrypted

Answer 25

Link;

end-to-end

Question 26

the purpose of the ___ layer is to ensure reliable data transfer

Answer 26

transport

Question 27

With ___, each station senses if a collision has occurred, and notifies all other stations that they need to back off before trying again. With ___ each station announces that it will transmit, notifying all other stations that they will have to wait.

Answer 27

CSMA/CD;

CSMA/CA

Question 28

A network ___ is anything and everything that is not an infrastructure device

Answer 28

“endpoint”

Question 29

Virtualized networking means that data transmission does not cross a physical link, creating the security risk that ___

Answer 29

a single compromise of the hypervisor can essentially result in a compromise of the entirety of the virtual network