Test 4

Question 1

Which of the following companents of IPSec? (Select TWO)

A. AH

B. ESP

C. SSH

D. ICA

E. TLS

Answer 1

A. AH

B. ESP

Question 2

In IPSec. which of the following is an agreement on how devices wil lsecurely transmit information?

A. SA

B. ESP

C. AH

D. ISAKMP

Answer 2

A. SA

Question 3

An organization recently installed a firewall on the network. Employees must have access to their work computers from their home computer. In which of the following ways should the firewall be configured?

A. Allow TCP port 3389 outbound

B. Allow UDP port 3389 inbound

C. Allow UDP port 3389 outbound

D. Allow TCP port 3389 inbound

Answer 3

D. Allow TCP port 3389 inbound

Question 4

An organization recently installed a firewall on the network. Employees must be able toe send and receive email from a POP3 server. In which of the following ways should the firewall be configured? (Select TWO)
A. Allow TCP port 23
B. Allow TCP port 25
C. Allow TCP port 110
D. Allow UDP port 25
E. Allow UDP port 110

Answer 4

B. Allow TCP port 25

C. Allow TCP port 110

Question 5

Which of the following OSI model layers is responsible for data encryption? 
A. Application
B. Presentation
C. Physical
D. Data link

Answer 5

B. Presentation

Question 6

Lisa, a technician, replaced the CAT6 cable from the server to the patch panel. Before the cable was replaced, there were no issues with connectivity. Immediately after the cable was replaced, users report that they are unable to access a database application on the server. Which of the following is the MOST likely reason for the inaccessibility?
A. Lisa used a short patch cable
B. Lisa used a cable with an RJ-45 connector
C. Lisa used a crossover cable
D. Lisa used a patch cable that was over 5o meters long

Answer 6

C. Lisa used a crossover cable

Question 7

Which of the following exterior routing protocols uses an algorithm to determine the quickest route to a destination?
A. RIP
B. OSPF
C. BGP
D. RIPv2

Answer 7

C. BGP

Question 8

Which of the following is occurring when Jeff, an employee, unintentionally gives information that is used maliciously? 
A. Tailgating
B. DoS attack
C. DDoS attack
D. Social engineering

Answer 8

D. Social engineering

Question 9

Which of the following OSI model layers is used for logical addressing?
A. Physical
B. Transport
C. Network
D. Data link

Answer 9

C. Network

Question 10

Which of the following attacks creates a buffer overflow to stop access to a system?
A. Blue jacking
B. DoS
C. Netstat
D. Man-in-the-middle

Answer 10

B. DoS

Question 11

In which of the following layers of the OSI model dpes TCP operate? 
A. Session
B. Network
C. Data Link
D. Transport

Answer 11

D. Transport

Question 12

Which of the following basic devices blocks ports and can sometimes filter data?
A. Repeater
B. Hub
C. Firewall
D. Switch

Answer 12

C. Firewall

Question 13

At which of the following layers of the OSI model does an unmanaged switch operate? 
A. Layer 1
B. Layer 2
C. Layer 3
D. Layer 4

Answer 13

B. Layer 2

Question 14

Which of the following devices will monitor for propagating worms?
A. Firewall
B. Proxy server
C. Mail server
D. IDS

Answer 14

D. IDS

Question 15

Which of the following is an authentication, authorization, and accounting method that provides administrative access to network devices. 
A. PKI
B. TACACS+
C. CHAP
D. SSH

Answer 15

B. TACACS+

Question 16

Which of the following network tools is used to identify running services on host devices?
A. IDS
B. IPS
C. Firewall
D. NMAP

Answer 16

D. NMAP

Question 17

Which of the following security devices is used in providing packet and MAC address filtering services for the network?
A. Host-based proxy server
B. Network-based firewall
C. IDS
D. IPS

Answer 17

B. Network-based firewall

Question 18

Which of the following would Kim, a technician, use in voice over IP communications?
A. SNTP
B. SCP
C. SMTP
D. SIP

Answer 18

D. SIP

Question 19

Which of the following is the MOST appropriate to use when routing Internet traffic through multiple ISP connections?
A. BGP
B. SNAT
C. RIP
D. GPG

Answer 19

A. BGP

Question 20

Which of the following protocols allows more than three non-overlapping channels?
A. 802.11a
B. 802.11g
C. 802.1q
D. 802.15

Answer 20

A. 802.11a

Question 21

Which of the following represents the physical address of a network access card?
A. FF01:D2:C4:87::11
B. 00-30-48-83-9B-C8
C. 08-9D-35-22-L2-34-FF-21
D. 2D1A:C3:0:1C3B:2AD:FF:FEBE:9D3A

Answer 21

B. 00-30-48-83-9B-C8

Question 22

ADSL, PPP, and ATM all operate at which of the following layers of the OSI model?
A. Layer 1
B. Layer 2
C. Layer 4
D. Layer 7

Answer 22

B. Layer 2

Question 23

Which of the following OSI layers BEST describes where an HTTP proxy operates?
A. Transport
B. Application
C. Presentation
D. Session

Answer 23

B. Application

Question 24

Which of the following would be MOST useful to alert Jeff, an administrator, that a denial of service attack is occurring?
A. RAS
B. RDP
C. IDS
D. VPN

Answer 24

C. IDS

Question 25

A MAC address is used at which of the following layers of the OSI model?
A. Layer 1
B. Layer 2
C. Layer 3
D. Layer 4

Answer 25

B. Layer 2

Question 26

Multimode fiber should be used in place of copper when:
A. Distances are short
B. EMI is a concern
C. PoE is necessary
D. Th switch has BNC connectors

Answer 26

B. EMI is a concern

Question 27

Zach, an administrator, needs to install a new 100 foot (30 meter) cable run from an IDF switch to the MDF, through a room that has a large number of motors. Which of the following would be the BEST cable type to choose?
A. CAT3
B. STP
C. Coaxial
D. Fiber

Answer 27

D. Fiber

Question 28

A network device is more than 100 meters (328 feet) from a 24-port copper switch. Which of the following can be used to connect the device to the network?
A. River multiplexer
B. Repeater
C. Attenuator
D. OTDR

Answer 28

Repeater

Question 29

Which of the following regulates the amount of network traffic a single node receives in a server cluster?
A. Load balancer
B. Proxy server
C. Content filter
D. Quality of Service

Answer 29

A. Load balancer

Question 30

Lisa, an administrator, wants to limit the wireless guest network traffic to 100Kbps so that utilization issues do not occur on the company's T1 internet access network. Which of the following optimizations should Lisa implement?
A. Load balancing
B. Caching engine
C. Traffic shaping
D. Quality of service

Answer 30

C. Traffic shaping

Question 31

Which of the following evaluates packet payload when detecting network threats?
A. IPS
B. Proxy server
C. Caching server
D. Content filter

Answer 31

A. IPS

Question 32

A disassociation request is a way to mitigate which of the following threats?
A. ARP poisoning
B. Rogue AP
C. Man-in-the-middle attack
D. Botnet

Answer 32

B. Rogue AP

Question 33

A crossover cable  is MOST commonly associated with which of the following layers of the OSI model?
A. Session
B. Application
C. Network
D. Physical

Answer 33

D. Physical

Question 34

Which of the following documents will allow Kim, an administrator, to determine a change from the standard default system configuration? 
A. Baseline
B. Physical network diagram
C. Wiring schematic
D. Logical diagram

Answer 34

A. Baseline

Question 35

Which of the following capabilities of a firewall allows Zach, an administrator, to block traffic based on key words determined by the company? 
A. Stateless traffic monitor
B. Stateful traffic monitor
C. Signature identification
D. Content filter

Answer 35

D. Content filter

Question 36

Which of the following allows a malicious attacker to view network traffic if the attacker is on the same network segment as Jeff, an administrator?
A. DoS attack
B. Man-in-the-middle attack
C. Smurf attack
D. Xmas attack

Answer 36

B. Man-in-the-middle attack

Question 37

Which of the following cable types would have the LEAST amount of EMI? 
A. CAT3
B. CAT5
C. STP CAT6
D. Plenum CAT6

Answer 37

C. STP CAT6

Question 38

Which of the following WAN technologies uses four wires for digital and a 66 block?
A. Cable
B. ATM
C. T3
D. POTS

Answer 38

D. POTS

Question 39

Which of the following has the HIGHEST data rate speed?
A. T1
B. ADSL
C. SDSL
D. OC-3

Answer 39

D. OC-3

Question 40

Which of the following is designed to be used with multitude fiber over a short wavelengths? 
A. 10GBaseLW
B. 10GBaseER
C. 10GBaseSW
D. 10GBaseLR

Answer 40

C. 10GBaseSW

Question 41

Kim, an administrator, wants to list all the network connections to and from the server. Which of the following commands would MOST likely be used?
A. traceroute
B. ping
C. ipconfig
D. netstat

Answer 41

D. netstat

Question 42

Kim, an administrator, finds a phone line but does not know where the line goes or if it is active. Which of the following can be used to test if it is active?
A. Butts set
B. Punch down tool
C. Cable tester
D. Cable stripper

Answer 42

A. Butts set

Question 43

Which of the following is used to verify configuration updates on a firewall?
A. Signature identification 
B. Access control list
C. Scanning services
D. Content filter

Answer 43

A. Signature identification

Question 44

Which of the following sizes is the fixed cell length in ATM?
A. 8 bytes
B. 53 bytes
C. 64 kilobytes
D. 128 kilobytes

Answer 44

B. 53 bytes

Question 45

Which of the following devices should Jeff, an admin, connect to a protocol analyzer in order to collect all of the traffic on a LAN segment?
A. Hub
B. VLAN
C. Router
D. Server

Answer 45

A. Hub

Question 46

In the 2.4GHz range, which of the following channel combinations are non-overlapping?
A. 1,6,11
B. 2,7,10
C. 2,8,13
D. 3,6,9

Answer 46

A. 1,6,11

Question 47

Which of the following tools would Zach, an admin, use to identify opens and shorts? 
A. Ohmmeter
B. protocol analyzer
C. Cable tester
D. Multimeter

Answer 47

C. Cable tester

Question 48

Which of the following technologies relies on a ticket granting server to allow clients to verify their identity?
A. TACACS+
B. Kerberos
C. PKI
D. RADIUS

Answer 48

B. Kerberos

Question 49

Which of the following is used to transfer files between computers?
A. FTP
B. DHCP
C. ARP
D. NTP

Answer 49

A. FTP

Question 50

Lisa, an admin, determines there are an excessive number of packets being sent to a web server repeatedly by a small number of external IP addresses. This is an example of which of the following attacks? 
A. DDoS
B. Viruses
C. Worms
D. Man-in-the-middle

Answer 50

A. DDoS

Question 51

Which of the following authenticates, allows, and controls the execution of router commands? 
A. PKI
B. RADIUS
C. Kerberos
D. TACACS+

Answer 51

D. TACACS+

Question 52

Which of the following is true of NIPS?
A. Routes traffic to the proper port
B. Detects malicious host traffic
C. Detects and prevents harmful traffic
D. Prevents traffic on network hosts

Answer 52

C. Detects and prevents harmful traffic

Question 53

A user’s new computer is not able to connect to the network at all. Upon further investigation, Kim, an admin, finds that the wall jack is terminated with a 568B configuration. After locating the correct cable in the IDF, which of the following is the MOST likely cause of the problem?
A. Other end of the cable is terminated with a 568B configuration
B. Trunk port on the switch is disabled
C. Other end of the cable is terminated with a 568A configuration
D. Wall jack needs to be replaced with a smart jack

Answer 53

C. Other end of the cable is terminated with a 568A configuration

Question 54

Which of the following network access methods is the MOST secure?
A. PPPoE
B. SIP
C. RSH
D. IPSec

Answer 54

D. IPSec

Question 55

Lisa, a technician, is reporting wireless transmission speed of 300Mbps. Which of the following wireless standards is being used?
A. 802.11a
B. 802.11b
C. 802.11g
D. 802.11n

Answer 55

D. 802.11n

Question 56

Which of the following handles HTTP requests on behalf of the client?
A. Bandwidth shaper
B. DNS server
C. Proxy server
D. Load balancer

Answer 56

C. Proxy server

Question 57

The selection of the correct punch down tool used depends on which of the following?
A. connector type
B. Demarcation point location
C. Block type
D. Switch location

Answer 57

C. Block type

Question 58

Which of the following services do TCP connections provide to application layer protocols? (Select TWO)
A. transport services without error recovery
B. Large data size manageability using segmentation
C. Secure Kerberos password encryption on data
D. Delivery through error recovery
E. Proxy server authentication

Answer 58

B. Large data size manageability using segmentation

D. Delivery through error recovery

Question 59

Which of the following devices monitors and reroutes malicious traffic being sent to a host?
A. Bandwidth shaper
B. IPS
C. DNS server
D. Load balancer

Answer 59

B. IPS

Question 60

Which of the following devices will allow Lisa, a user, to see a cached copy of websites?
A. Content switch
B. DNS server
C. Proxy server
D. Load balancer

Answer 60

C. Proxy server

Question 61

Kim, a user, reports that the web browser is indicating the site certificate is not trusted. Which of the following attacks may be in progress?
A. Man-in-the-middle
B. Denial of service
C. Ping flooding
D. Smurfing

Answer 61

A. Man-in-the-middle

Question 62

Which of the following uses a ring topology?
A. DSL
B. Ethernet
C. DOCSIS
D. SONET

Answer 62

D. SONET

Question 63

Which of the following has a DB-9 connector?
A. SC
B. RS-232
C. LC
D. RJ-45

Answer 63

B. RS-232

Question 64

Which of the following technologies is used to connect public networks using POTS lines?
A. OC3
B. OC12
C. PSTN
D. Cable

Answer 64

C. PSTN

Question 65

Users are unable to access the company's intranet website. Which of the following attacks has the network MOST likely experienced?
A. Man-in-the-middle
B. Smurf
C. Trojan
D. DoS

Answer 65

D. DoS

Question 66

Which of the following defines access for a network?
A. ACL
B. RDP
C. RAS
D. ARP

Answer 66

A. ACL

Question 67

which of the following is a form of encrypting packets for safe, secure data transmission within a network?
A. RAS
B. PPTP
C. IPSec
D. ICA

Answer 67

C. IPSec

Question 68

Which of the following is the BEST to ensure network performance on a VoIP network?
A. Traffic shaping
B. Quality of service
C. Load balancing
D. Caching engines

Answer 68

B. Quality of service

Question 69

Which of the following tools would Lisa, an admiin, use to determine if there is a problem with a telephone line?
A. Port scanner
B. Punch down tool
C. Butt set
D. Toner probe

Answer 69

C. Butt set

Question 70

Which of the following tools would BEST be used to verify if a network cable is properly terminated?
A. Multimeter
B. Cable certifier
C. Toner probe
D. Cable stripper

Answer 70

B. Cable certifier

Question 71

Kim, an admin, would like to inspect all traffic flowing over the SMTP protocol on a given network. Which of the following tools would accomplish this? (Select TWO)
A. Packet sniffer
B. Honeypot
C. Port mirroring
D. IPS
E. Port scanner
F. IDS

Answer 71

A. Packet sniffer

C. Port mirroring

Question 72

Which of the following colors represents the oute leads on a connector of a 568B patch cable? (Select TWO)
A. Blue, brown/white
B. Green/white, blue
C. Orange/white, orange
D. Blue, blue/white
E. Brown/white, brown

Answer 72

C. Orange/white, orange

E. Brown/white, brown

Question 73

Kim an administrator, has created a patch cable. Which of the following tools should she use to check the integrity of the cable?
A. Protocol analyzer
B. Toner probe
C. Cable certifier
D. Cable stripper

Answer 73

C. Cable certifier

Question 74

PKI is a method  of user authentication which uses  which of the following?
A. Various router commands
B. Access control lists
C. Certificate Services
D. A RADIUS server

Answer 74

C. Certificate Services

Question 75

Kim and Zach, attacker, use which of the following network scanners to see the protocols that are being used? (Select TWO)
A. IDS
B. Packet sniffer
C. Port scanners
D. Malware scanner
E. Ping sweep

Answer 75

B. Packet sniffer

C. Port scanners

Question 76

Lisa, an admin, believes that the network has been attacked and MAC addresses have been captured allowing unauthorized computers to access the network. Which of the following tools did the attackers MOST likely use to accomplish this?
A. Intrusion prevention software
B. Packet sniffer
C. Intrusion detection software
D. Port scanner

Answer 76

B. Packet sniffer

Question 77

Lisa, an admin, believes that the network has been attacked and there is no known definition or prevention method to help avoid this attack. Which of the following BEST describes this scenario?
A. Zero day attack
B. DDoS
C. DoS
D. SQL injection

Answer 77

A. Zero day attack

Question 78

Kim, and admin, wants to verify which protocols are in use on the network. Which of the following tools should she use?
A. Intrusion detection software
B. PoE
C. Packet sniffer
D. Intrusion prevention software

Answer 78

C. Packet sniffer

Question 79

Lisa, an admin, needs to install a wireless network that will allow legacy devices to connect to the network and also offer both 5GHz and 2.4GHz frequencies. Which of the following would BEST describe the type of WAP needed?
A. 802.11a
B. 802.11b
C. 802.11g
D. 802.11n

Answer 79

D. 802.11n

Question 80

Which of the following is the MAXIMUM distance a single 1000BaseT segment can convert?
A. 100 kilometers (62 miles)
B. 10 Kilometers (6 miles)
C. 1000 meters (3281 feet)
D. 100 meters (328 meters)

Answer 80

D. 100 meters (328 meters)

Question 81

Which of the following wireless standardsoperates on the same frequency as 802.11a?
A. Compatible with 802.11b wireless networks
B. Compatible with 802.11g wireless networks
C. Compatible with 802.11i wireless networks
D. Compatible with 802.11n wireless networks

Answer 81

D. Compatible with 802.11n wireless networks

Question 82

Which of the following components would a technician plug into a smart jack?
A. 25 pair cable
B. 100 pair cable
C. Patch cable
D. Patch panel

Answer 82

C. Patch cable

Question 83

Which of the following is used by RADIUS to encrypt messages between the server and client? 
A. Public sever
B. CSU/DSU
C. Private key
D. Shared host

Answer 83

D. Shared host

Question 84

Which of the following security measures is the LEAST intrusive on an end device?
A. NIPS
B. Host-based firewall
C. Antivirus
D. HIDS

Answer 84

A. NIPS

Question 85

Which of the following is the MAXIMUM distance of a CAT5e cable on a single run when using Ethernet?
A. 1000 meters (2381 feet)
B. 323 meters (1060 feet)
C. 512 meters (1680)
D. 100 meters (328 feet)

Answer 85

D. 100 meters (328 feet)

Question 86

Which of the following physical network topologies  is MOST likely to be used in an FDDI network?
A. Star
B. Mesh
C. Bus
D. Ring

Answer 86

D. Ring

Question 87

Which of the following network scanners detects and sends out alerts for malicious network activity? 
A. Packet sniffers
B. IDS
C. Post scanners
D. IPS

Answer 87

B. IDS

Question 88

Which of the following connections push and twist-on?
A. LC
B. Sc
C. ST
D. RJ-45

Answer 88

C. ST

Question 89

Which of the following is a social engineering attack?
A. Worms
B. Man-in-the-middle
C. Phishing
D. Evil twin

Answer 89

C. Phishing

Question 90

Which of the following performs posture assessments for unknown devices that connect to the network?
A. PKI
B. EAP
C. NAC
D. AAA

Answer 90

C. NAC

Question 91

Peer to peer networks are used to pass information in between which of the following?
A. Several clients to a centralized server
B. One client to another
C. Several servers to several centralized clients
D. One client to a centralized server

Answer 91

B. One client to another

Question 92

Which of the following threats is MOST likely to enable an attacker to modify data in transit?
A. DoS
B. Smurf attack
C. Virus
D. Man-in-the-middle

Answer 92

D. Man-in-the-middle

Question 93

Which of the following mitigation techniques is MOST effective against a DoS attack?
A. IDS
B. Anitvirus
C. Redundancy
D. Backups

Answer 93

C. Redundancy

Question 94

Which of the following solutions will detect and disable a rogue access point?
A. Port scan
B. Packet sniffer
C. IPS
D. IDS

Answer 94

C. IPS

Question 95

Which of the following is a valid MAC address?
A. 00:AB:C4:FE:60:D3
B. 00-AE-S3-BC-90-F7
C. 13-12-BC-DA-97
D. 15:FA:97:44:AB

Answer 95

A. 00:AB:C4:FE:60:D3

Question 96

Which of the following connector types will MOST likely be located on a serial cable?
A. DB-9
B. LC
C. ST
D. BNC

Answer 96

A. DB-9

Question 97

T568B wiring scheme is typically found on which of the following components?
A. Demarc extension
B. 66 block
C. Patch panel
D. Vertical cross connect

Answer 97

C. Patch panel

Question 98

Which of the following is an encrypted remote access protocol?
A. RDP
B. PoE
C. RAS
D. PPP

Answer 98

A. RDP

Question 99

Port scanner and packet sniffer differ in functionality because:
A. Packet sniffers and port scanners are just different names for the same device
B. Packet sniffers can only log events on traffic activity and port scanners can route malicious packets
C. Packet sniffers watch all traffic over certain ports and port scanners watch traffic on certain NICs
D. port scanners are limited to detecting open ports and packet sniffers watch all traffic

Answer 99

D. port scanners are limited to detecting open ports and packet sniffers watch all traffic