TEST 3 Flashcards

1
Q

Which of the following is a system of notation that uses base 16 rather than base 10?

A. Hex
B. Octal
C. Binary
D. CIDR

A

A. Hex

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

A network administrator would like to collect information from several networking devices using SNMP. Which of the following SNMP options should a network administrator use to ensure the data transferred is confidential?

A. authpriv
B. SHA
C. MD5
D. Authentication passphrase

A

A. authpriv

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

The IT manager at a small firm is in the process of renegotiating an SLA with the organization’s ISP. As part of the agreement, the organization will agree to a dynamic bandwidth plan to provide 150Mbps of bandwidth. However, if the ISP determines that a host on the organization’s internal network produces malicious traffic, the ISP reserves the right to reduce available bandwidth to 1.5 Mbps. Which of the following policies is being agreed to in the SLA?

A. Session hijacking
B. Blocking
C. Throttling
D. Data usage limits
E. Bandwidth quotas
A

C. Throttling

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

A network technician has just configured NAC for connections using Cat 6 cables. However, none of the Windows clients can connect to the network.
Which of the following components should the technician check on the Windows workstations? (Choose two.)

A. Start the Wired AutoConfig service in the Services console
B. Enable IEEE 802.1q Authentication in Network Interface Card Properties
C. Enable IEEE 802.1x Authentication in Network Interface Card Properties
D. Start the Wireless AutoConfig service in the Services console
E. Enable IEEE 802.3 Ethernet IPv6 in Network Interface Card Properties

A

A. Start the Wired AutoConfig service in the Services console
C. Enable IEEE 802.1x Authentication in Network Interface Card Properties

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

The security manager reports that individual systems involved in policy or security violations or incidents cannot be located quickly. The security manager notices the hostnames all appear to be randomly generated characters. Which of the following would BEST assist the security manager identifying systems involved in security incidents?

A. Enforce port security to require system authentication
B. Implement a standardized UNC
C. Label existing systems with current hostnames
D. Forward the DHCP logs to the security manager every day

A

B. Implement a standardized UNC

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

A building is equipped with light sensors that turn off the fluorescent lights when natural light is above a certain brightness. Users report experiencing network connection issues only during certain hours. The west side of the building experiences connectivity issues in the morning hours and the east side near the end of the day. At night the connectivity issues affect the entire building. Which of the following could be the cause of the connectivity issues?

A. Light sensors are interfering with the network
B. EMI from the lights is interfering with the network cables
C. Network wiring is run perpendicular to electrical conduit
D. Temperature changes are causing attenuation in copper cabling

A

C. Network wiring is run perpendicular to electrical conduit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

A network technician configures a firewall’s ACL to allow outgoing traffic for several popular services such as email and web browsing. However, after the firewall’s deployment, users are still unable to retrieve their emails. Which of the following would BEST resolve this issue?

A. Allow the firewall to accept inbound traffic to ports 25, 67, 179, and 3389
B. Allow the firewall to accept inbound traffic to ports 80, 110, 143, and 443
C. Set the firewall to operate in transparent mode
D. Allow the firewall to accept inbound traffic to ports 21, 53, 69, and 123

A

B. Allow the firewall to accept inbound traffic to ports 80, 110, 143, and 443

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

A network security technician observes multiple attempts to scan network hosts and devices. All the attempts originate from a single host on the network. Which of the following threats is MOST likely involved?

A. Smurf attack
B. Rogue AP
C. Compromised system
D. Unintentional DoS

A

C. Compromised system

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Which of the following would be the MOST efficient subnet mask for a point-to-point link?

A. /28
B. /29
C. /31
D. /32

A

C. /31

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

An office user cannot access local network drives but has full access to the Internet. A technician troubleshoots the issue and
observes the following output of the ipconfig command:

Windows ip configuation

Ethernet LAN Adapter: 980GTS
Connection-specific DNS Suffix: ... comptia.net
APv4 Address:  .........10.0.5.99
Subnet Mask:    .........255.255.255.0
Default Gateway: .....10.0.5.0
Wireless LAN Adapter:  FastWifi  99
Connection-specific DNS Suffix: ...guestwireless.local
IPv4 Address:  .........172.16.0.5
Subnet Mask:    .........255.255.255.0
Default Gateway: .....172.16.0.254

Which of the following would MOST likely allow the network drives to be accessed?

A. Update the WLAN adapter driver
B. Disable the WLAN adapter
C. Check the wireless DHCP configuration
D. Disable the LAN adapter

A

B. Disable the WLAN adapter

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Ann, a network technician, has just installed a fiber switch in a datacenter. To run the fiber cabling, Ann plans the cable route over the top of the rack using the cable trays, down to the switch, coiling up any excess cable. As Ann configures the switch, she notices several messages in the logging buffer stating the receive signal of the SFP is too weak. Which of the following is MOST likely the cause of the errors in the logging buffer?

A. Bend radius exceeded
B. Fiber cable mismatch
C. Fiber type mismatch
D. Bad fiber switch

A

A. Bend radius exceeded

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which of the following wireless connection types utilize MIMO on non-overlapping channels? (Choose two.)

A. 802.11a
B. 802.11ac
C. 802.11b
D. 802.11g
E. 802.11n
A

B. 802.11ac

E. 802.11n

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

A network technician is creating a new subnet for 488 host machines. The technician is told to use a class B address scheme when making the subnet and is instructed to leave as much room as possible for additional subnets of the same size. Which of the following subnets would fulfill these requirements?

A. 10.5.4.0/22
B. 10.233.2.0/23
C. 172.16.0.0/22
D. 172.18.0.0/23
E. 192.168.25.0/24
A

D. 172.18.0.0/23

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

A network engineer is designing a new IDF in an old building. The engineer determines the equipment will fit in a two-post rack, and there is power available for this equipment. Which of the following would be the FIRST issue to remediate?

A. Air flow and cooling
B. UPS capability
C. Circuit labeling
D. Power redundancy

A

A. Air flow and cooling

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Which of the following DNS records needs to be configured for SMTP traffic?

A. MX
B. CNAME
C. AAAA
D. PTR

A

A. MX

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

In which of the following ways does a DDoS attack differ from a spoofing attack?

A. DDoS attacks target multiple networks
B. Spoofing attacks originate from a single host
C. DDoS attacks are launched from multiple hosts
D. Spoofing attacks require physical presence

A

C. DDoS attacks are launched from multiple hosts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

A user checks an IP address using an external website. The address is different than the one the user sees when opening a command prompt and typing in ipconfig/all. The user does not understand why the two tools show different IP addresses. This is BEST explained by the interworking of:

A. network devices
B. packet flow
C. public/private networks
D. traffic-routing protocols

A

C. public/private networks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Which of the following communication media can carry many voice, data, and video channels simultaneously over multiple frequencies?

A. Broadband
B. Baseband
C. Analog modem
D. CSMA

A

A. Broadband

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

To replace a defective UPS, the network administrator must take the switch offline. The administrator wants to be able to perform maintenance UPS in the future without affecting the availability of the attached switch. Which of the following would BEST allow this to happen?

A. Add a redundant power supply to the switch
B. Implement stacking on the switches in the rack
C. Add a second UPS into the rack
D. Install a power converter for the switch

A

A. Add a redundant power supply to the switch

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

A forensic first responder arrives at the scene where an employee is suspected to have committed a computer-based crime.
Which of the following should the first responder do FIRST?

A. Document the scene
B. Take pictures upon arrival
C. Secure the area
D. Implement chain of custody

A

C. Secure the area

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

A small town is attempting to attract tourists who visit larger nearby cities. A network engineer is asked to implement a network encompassing the five-block town center and nearby businesses. The inclusion of smartphones and portable devices is crucial to the plan. Which of the following is the network engineer being asked to implement?

A. LAN
B. PAN
C. MAN
D. WAN

A

C. MAN

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

An employee wishes to use a personal cell phone for work-related purposes, including storage of sensitive company data, during long business trips. Which of the following is needed to protect BOTH the employee and the company?

A. An NDA ensuring work data stored on the personal phone remains confidential
B. An AUP covering how a personal phone may be used for work matters
C. A consent to monitoring policy covering company audits of the personal phone
D. Real-time remote monitoring of the phone’s activity and usage

A

D. Real-time remote monitoring of the phone’s activity and usage

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

Which of the following protocols can be both connection-oriented and connectionless?

A. 20 FTP
B. 53 DNS
C. 67 DHCP
D. 80 HTTP

A

B. 53 DNS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

Which of the following BEST describes the differences between VLAN hopping and session hijacking?

A. VLAN hopping involves the unauthorized transition from one VLAN to another to gain additional access. Session hijacking involves overriding a user’s web connection to execute commands
B. VLAN hopping is a brute force attack executed to gain additional access. Session hijacking involves physically disrupting a network connection
C. VLAN hopping involves overriding a user network connection to execute malicious commands. Session hijacking involves compromising a host to elevate privileges
D. VLAN hopping is the act of exploiting poor VLAN tagging. Session hijacking is a web-based attack aimed at privilege escalation

A

A. VLAN hopping involves the unauthorized transition from one VLAN to another to gain additional access. Session hijacking involves overriding a user’s web connection to execute commands

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

An analyst is developing a proof of concept of a wireless-based attack as part of a penetration test against an organization’s network. As part of the attack, the analyst launches a fake access point matching the SSID of the organization’s guest access network. When a user connects to the fake access point, the analyst allows the traffic to flow through the access point to the legitimate site while the data traversing the network is logged for latest analysis and exploitation. Which of the following attacks has the analyst successfully performed in this scenario?

A. Bluesnarfing
B. Session hijacking
C. MAC spoofing
D. VLAN hopping
E. Man-in-the-middle
A

E. Man-in-the-middle

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

A network administrator receives a call from the sales department requesting ports 20 and 21 be opened on the company’s firewall to allow customers to retrieve a large file. Which of the following should the administrator perform BEFORE making the needed changes? (Choose two.)

A. Document the reason for the request
B. Scan the file for malware to protect the sales department’s computers
C. Follow the company’s approval process for the implementation
D. Install a TFTP server for the customers to use for the transfer
E. Create a honeypot to store the file on for the customers to use
F. Write the SLA for the sales department authorizing the change

A

A. Document the reason for the request

C. Follow the company’s approval process for the implementation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

A user reports that a laptop cannot connect to the Internet despite the fact the wireless Internet was functioning on it yesterday. The user did not modify the laptop in any way, and the wireless Internet is functional on other users’ laptops. Which of the following issues should be reviewed to help the user to connect to the wireless network?

A. Wireless switch toggled off
B. WAP settings
C. WLAN IP address out of scope
D. Wireless controller misconfiguration

A

A. Wireless switch toggled off

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

A network administrator wants to increase the confidentiality of the system by hardening the authentication process. Currently, the users log in using usernames and passwords to access the system. Which of the following will increase the authentication factor to three?

A. Adding a fingerprint reader to each workstation and providing a RSA authentication token
B. Adding a fingerprint reader and retina scanner
C. Using a smart card and RSA token
D. Enforcing a stronger password policy and using a hand geometry scan

A

A. Adding a fingerprint reader to each workstation and providing a RSA authentication token

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

A network technician is building a network for a small office. The office currently has cable TV and now requires access to the Internet without adding any cabling other than what is already in place. Which of the following solutions should the technician install to meet these requirements?

A. DOCSIS modem
B. Wireless router
C. DSL modem
D. Access point

A

A. DOCSIS modem

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

A network engineer arrives at work and discovers that many users are having problems when attempting to connect to the company network shared drives. The network operations center (NOC) technician just completed server upgrades the night before. To which of the following documents should the NOC technician refer to determine what potentially caused the connectivity problem?

A. Network maps
B. Cable management
C. Release notes
D. Change management

A

D. Change management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q

Which of the following VPN protocols establishes a secure session that can be initiated using a browser?

A. IPSec
B. SSL VPN
C. PTP
D. PPTP

A

B. SSL VPN

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q

A technician is setting up a public guest network for visitors to access the Internet that must be separate from the corporate network. Which of the following are the BEST steps for the technician to take with minimum overhead configuration? (Choose two.)

A. Enable SSID broadcasting to identify the guest network
B. Configure visitor devices to use static IP addresses
C. Enable two-factor authentication on visitor devices
D. Configure the access point to use WPA2-AES encryption
E. Ensure the access point is not running in mixed mode

A

A. Enable SSID broadcasting to identify the guest network

B. Configure visitor devices to use static IP addresses

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q

When choosing a type of storage that integrates with the existing network infrastructure, the storage must be easily configurable to share files and can communicate with all existing clients over TCP/IP. Which of the following is the BEST technology for the network administrator to implement?

A. iSCSI
B. Fibre Channel
C. NAS
D. DAS

A

C. NAS

34
Q

A network technician is installing a new network switch is looking for an appropriate fiber optic patch cable. The fiber optic patch panel uses a twist-style connector. The switch uses a SFP module. Which of the following connector types should the fiber patch cable have?

A. LC
B. ST
C. SC
D. MTRJ
E. MTP
A

B. ST

35
Q

Which of the following WAN technologies utilizes the concept of virtual circuits and point-multipoint connections?

A. ISDN
B. MPLS
C. PRI
D. Broadband cable
E. Frame relay
A

E. Frame relay

36
Q

A network administrator wishes to ensure there are no unnecessary open communication paths into a server. Using a port scanner, the administrator finds that ports are reported as closed. Which of the following BEST explains this response?

A. The ports belong to an active system and are denying requests
B. The ports are associated with deprecated services
C. The ports do not belong to a live system
D. The ports replied with a SYN/ACK response

A

B. The ports are associated with deprecated services

37
Q

Users are reporting issues with slow connection speeds and a loss of connectivity on the newly installed wireless network. The issues are intermittent but seem to occur most often around midday. Which of the following is the MOST likely cause?

A. There is interference from small appliances
B. The signal coverage area is too small
C. Not enough DHCP addresses have been allotted
D. The DNS cache on the users’ computers has become corrupt

A

C. Not enough DHCP addresses have been allotted

38
Q

A user reports difficulties connecting a PC to a wired network. The PC connects to an IP phone, which is working correctly. A network technician can verify that other devices successfully connect to the phone. At which of the following layers of the OSI model is the problem MOST likely located?

A. Network
B. Physical
C. Transport
D. Application

A

A. Network

39
Q

Which of the following physical security controls is MOST likely to be susceptible to a false positive?

A. Identification card
B. Biometric device
C. Proximity reader
D. Video camera

A

C. Proximity reader

40
Q

An assistant systems analyst reports the following findings of an investigation of slow Internet connections in a remote office to the senior systems analyst:
Device CPU utiliz. Memory Utiliz. Link Status
Router 5% 43% Good
Which of the following devices is causing the issue?

A. Router
B. Firewall
C. Switch 1
D. Switch 2

A

B. Firewall

41
Q

A small business developed an in-house application that is very sensitive to network latency when a communicating between servers. Due to a lack of funds, the business had to build its own network for workstations and servers. Now a network administrator must redesign the network due to performance issues with the application. Which of the following would be the MOST cost effective for the administrator to recommend?

A. Create Ethernet VLANs
B. Disable autonegotiation on the servers
C. Install 10Gb Ethernet NICs in the servers
D. Install Fibre Channel for the server network

A

C. Install 10Gb Ethernet NICs in the servers

42
Q

A network technician is configuring a firewall access list to secure incoming connections to an email server. The internal address of this email server is 192.168.1.143. The firewall should allow external email servers to send email to the email server. The email server also supports client access via a web browser. Only secure protocols should be used, and only the necessary ports should be open. Which of the following ACL rules should be configured in the firewall’s WAN port? (Choose two.)

A. Permit 192.168.1.143.25
B. Permit 192.168.1.143.80
C. Permit 192.168.1.143.110
D. Permit 192.168.1.143.143
E. Permit 192.168.1.143.443
F. Permit 192.168.1.143.587
A

E. Permit 192.168.1.143.443

F. Permit 192.168.1.143.587

43
Q

A network administrator is testing connectivity at a new corporate site. The site has a wireless guest as well as a wired employee network. After verifying connectivity, the administrator checks link speeds by using a speed testing website. The speed testing website shows lower download and upload speeds for the wired network than the wireless network. Which of the following is the MOST likely explanation?

A. There is less local congestion on the wireless network
B. The testing server for the wired network was farther away
C. The firewall is configured to throttle traffic to specific websites
D. The wireless access points were misconfigured

A

B. The testing server for the wired network was farther away

44
Q

A technician replaces a failed router with a spare that has been in inventory for some time. After attempting to enable HTTPS on the spare router, the technician discovers the feature is unavailable. The support office was able to connect to the previous router. Which of the following actions should the technician perform to enable HTTPS access for the support team?

A. Reboot the router
B. Enable HTTP on the router
C. Update the firmware of the spare router
D. Perform a factory reset on the router

A

C. Update the firmware of the spare router

45
Q

A technician is trying to configure a previously owned WAP. The technician successfully logs into the administrative console and attempts to input the IP address on the WAP. However, the WAP is not accepting the command. Which of the following is causing the problem?

A. The WAP antenna is damaged
B. The WAP transmitter light is dim
C. The terminal emulation software is misconfigured
D. The LWAPP image is installed on the WAP

A

C. The terminal emulation software is misconfigured

46
Q

A technician has installed a Linux server in the tax office. The server can access most of the resources on the network, but it cannot connect to another server that has a share for backup. The technician learns that the target server is on a different subnet. Which of the following tools should the technician use to ensure the Linux server can reach the backup location?

A. netstat
B. traceroute
C. route
D. dig
E. ifconfig
A

B. traceroute

47
Q

Which of the following WAN technologies provides a guaranteed throughput rate?

A. DSL
B. T-1
C. Cable broadband
D. Dial-up

A

B. T-1

48
Q

Which of the following is the SHORTEST way to write 2001:0000:0d58:0000:0000:0095:7565:0001 in proper IPv6 shorthand?

A. 2001::d58::95:7565:1
B. 2001:0:d58:0:0:95:7565:1
C. 2001:0:d58::95:7565:1
D. 2001:0:0d58::95:7565:1

A

C. 2001:0:d58::95:7565:1

49
Q

A network administrator needs to transmit traffic to geographically diverse sites to improve performance. Which of the following devices would BEST direct traffic to the remote sites?

A. Hub
B. Bridge
C. Switch
D. Router

A

D. Router

50
Q

Which of the following should a technician investigate when using a network baseline to troubleshoot?

A. Tracing a network wire connectivity issue from the datacenter to a host.
B. Determining if the server performance is degraded.
C. Changes that have been made to the network configuration.
D. Location of networking equipment in a rack.

A

B. Determining if the server performance is degraded.

51
Q

A technician needs to upgrade a SOHO wireless router’s firmware. The technician resets the router to factory settings and installs the new firmware. The technician enters the DHCP information and sets the SSID. Which of the following configurations would provide the MOST protection from advance hackers?

A. Disable the broadcasting of the SSID.
B. Enable WPA2 authentication for all hosts.
C. Use private addressing for the DHCP scope.
D. Install unidirectional antennas.

A

B. Enable WPA2 authentication for all hosts.

52
Q

A technician notices clients are receiving a 169.254.x.x IP address following the upgrade of a server. Which of the following ports should the technician check on the local server firewall?

A. ports 20 and 21
B. ports 67 and 68
C. ports 80 and 443
D. port 123 and 8080

A

B. ports 67 and 68

53
Q

Which of the following datacenter security methodologies is MOST likely to remain usable during a network outage?

A. biometric scanners
B. door locks
C. video surveillance
D. motion detectors

A

B. door locks

54
Q

A network technician is implementing a solution on the network to hide the workstation internal IP addresses across a WAN. Which of the following is the technician configuring?

A. QoS
B. DMZ
C. RIP
D. NAT

A

D. NAT

55
Q

Employees want the ability to use personal devices on the guest network while working out at the company gym. In order to meet the request, which of the following policies requires employee adherence?

A. AUP
B. SLA
C. NDA
D. MOU

A

A. AUP

56
Q

Which of the following BEST describes the BGP routing protocol?

A. distance vector
B. hybrid
C. static
D. link state

A

B. hybrid

57
Q

A customer is reporting difficulty connecting some devices after replacing a wireless router with a new wireless 802.11ac router. The SSID, encryption and password are the same as the previous router. A technician goes on-site and notices the devices that are no longer connecting appear to be several years ago. Which of the following is MOST likely the problem?

A. the password needs to be re-entered.
B. there is a security type mismatch.
C. there is insufficient antenna power.
D. there is a frequency mismatch.
E. the channel has changed.
A

D. there is a frequency mismatch.

58
Q

Which of the following should be performed to verify that unnecessary services are disabled on all switches in an environment?

A. Packet capturing
B. Port scanning
C. Log scanning
D. Baseline review

A

B. Port scanning

59
Q

A technician is sent to a remote office to set up a device to connect to the Internet. The company standards document requires stateful inspection. Which of the following should the technician install?

A. Router
B. Multiplayer switch
C. Firewall
D. Bridge

A

C. Firewall

60
Q

A technician is assigned to secure a basic wireless network. Which of the following authentication protocols should the technician use to perform this task? (Choose two.)

A. RDP
B. SNMP
C. WPA2
D. EAP
E. SSL
A

C. WPA2

D. EAP

61
Q

Which of the following should a first responder perform when arriving at a site to perform a basic forensic investigation?

A. Isolate the area and block radio transmissions to the device.
B. Search for hidden storage devices and duplicate them on site.
C. Power off all computers and devices to stop them from erasing data.
D. Utilize a strong magnet to secure all data on drives from being erased.

A

B. Search for hidden storage devices and duplicate them on site.

62
Q

A technician wants to configure the inbound port of a router to prevent FTP traffic from leaving the LAN.
Which of the following should be placed on the router interface to accomplish this goal?

A. Static routes for all port 80 traffic
B. DHCP reservations for all /24 subnets
C. ACL for ports 20 and 21
D. MAC filtering using wildcards

A

C. ACL for ports 20 and 21

63
Q

A technician has replaced the Internet gateway router, and now no users can reach the Internet. The technician can ping the router Ethernet port but not the ISP’s router IP address. Which of the following is the MOST likely problem?

A. Faulty crossover cable
B. DNS server is down
C. Switching loop
D. Outside interface shutdown

A

D. Outside interface shutdown

64
Q

Which of the following commands will display the associated IP address of a network adapter in Windows and Linux environments? (Select TWO).

A. dig
B. nslookup
C. nbstat
D. ifconfig
E. ipconfig
A

D. ifconfig

E. ipconfig

65
Q

When querying a DNS server for an AAAA record, which of the following is an appropriate response?

A. 192.168.2.1
B. 00:f3:82:99:a2:b8
C. 61.23.168.192.in-addr.arpa
D. 3ffe:1900:4545:3:200:f8ff:fe21:67cf

A

D. 3ffe:1900:4545:3:200:f8ff:fe21:67cf

66
Q

A computer on VLAN 10 with the IP address of 192.168.1.45/27 cannot ping a computer on VLAN 20 with the IP address of 192.168.1.65/27. Which configuration change will allow the PING to be successful?

A. Replace the router with a Layer 2 switch that supports VLANs
B. Change VLAN 20 computers Default Gateway to 192.168.1.127/27
C. Change VLAN 10 computers Default Gateway to 192.168.1.32/27
D. AllowICMP to pass through the Router

A

D. AllowICMP to pass through the Router

67
Q

Which of the following network devices restricts traffic based on words, signatures, and URLs?

A. Layer 2 switch
B. Content filter
C. Load balancer
D. Traffic analyzer

A

B. Content filter

68
Q

A new firewall was recently installed blocking SMTP traffic. As a result, no one has Internet access. Which of the following has MOST likely occurred?

A. Port security is blocking all traffic.
B. An IDS is blocking all traffic.
C. Implicit deny is blocking all traffic.
D. SMTP is blocking all traffic.

A

C. Implicit deny is blocking all traffic.

69
Q

A user is unable to open up websites on the Internet from a browser. The administrator determines that the workstation can ping its local gateway, but not the remote web server. At which of the following layers of the OSI model does the problem MOST likely
exist?

A. Data link
B. Network
C. Session
D. Physical

A

B. Network

70
Q

Which of the following uses types and codes rather than ports?

A. EIGRP
B. ICMP
C. UDP
D. IPv6

A

B. ICMP

71
Q

A technician, Joe, visits a site that has reported a network down emergency. He immediately reboots the switches and the router since the network is down. Which of the following network troubleshooting methodology steps should Joe have performed FIRST?

A. Determine if anything has changed
B. Once a theory is confirmed determine the next step is to resolve the problem
C. Implement the solution or escalate as necessary
D. Question the obvious

A

A. Determine if anything has changed

72
Q

Which of the following defines an IP address that is NOT routed on the Internet?

A. Multicast
B. Public
C. Private
D. Classfu

A

C. Private

73
Q

Matt, an administrator, notices a flood fragmented packet and retransmits from an email server. After disabling the TCP offload setting on the NIC, Matt sees normal traffic with packets flowing in sequence again. Which of the following utilities was he MOST likely
using to view this issue?

A. Spam filter
B. Protocol analyzer
C. Web application firewall
D. Load balancer

A

B. Protocol analyzer

74
Q

Which of the following specifications would Sara, an administrator, implement as a network access control?

A. 802.1q
B. 802.3
C. 802.11n
D. 802.1x

A

D. 802.1x

75
Q

Which of the following is characterized by an attacker attempting to map out an organization’s staff hierarchy in order to send targeted emails?

A. Whaling
B. Impersonation
C. Privilege escalation
D. Spear phishing

A

A. Whaling

76
Q

Which of the following defines when Pete, an attacker, attempts to monitor wireless traffic in order to perform malicious activities?

A. XSS
B. SQL injection
C. Directory traversal
D. Packet sniffing

A

D. Packet sniffing

77
Q

Which of the following provides the MOST protection against zero day attacks via email attachments?

A. Anti-spam
B. Anti-virus
C. Host-based firewalls
D. Patch management

A

A. Anti-spam

78
Q

Which of the following access controls enforces permissions based on data labeling at specific levels?

A. Mandatory access control
B. Separation of duties access control
C. Discretionary access control
D. Role based access control

A

A. Mandatory access control

79
Q

A username provides which of the following?

A. Biometrics
B. Identification
C. Authorization
D. Authentication

A

B. Identification

80
Q

Use of group accounts should be minimized to ensure which of the following?

A. Password security
B. Regular auditing
C. Baseline management
D. Individual accountability

A

D. Individual accountability