Udemy Tests Flashcards
(134 cards)
1
Q
A workstation is connected to the network and receives an APIPA address but cannot reach the VLAN gateway of 10.10.100.254. Other PCs in the VLAN subnet can communicate with the VLAN gateway and access websites on the Internet. What might cause this issue?
A
The port is configured as a trunk port (802.1q) instead of an access port. Therefore the workstation is unable to contact the DHCP server.
2
Q
Network traffic is not re routed automatically if an interruption occurs.
A
Static routing. New routes must be entered manually.
3
Q
Which of the following technologies combines the functionality of a firewall, malware scanner, and other security appliances into one device?
A
UTM (Unified Threat Management) Appliance
4
Q
An additional network segment is urgently needed for QA testing on the external network. A software release could be impacted if this change is not immediate. The request comes directly from management and was just approved through the emergency change management process. Which of the following should the technician do?
A
Make the change, document the requester, and document all network changes.
5
Q
What allows an 802.11n or 802.11ac network to achieve a speed greater than 54 Mbps?
A
MIMO (Multiple-Input / Multiple-Output) and MU-MIMO (Multi User). MIMO uses multiple antennas for transmission and reception, resulting in a higher speed than 802.11a and 802.11g networks.
6
Q
This happens to data as it travels from Layer 1 to Layer 7
A
De-encapsulation
7
Q
What is a Split DNS?
A
Split DNS is an implementation in which two DNS servers are used for external and internal networks. This provides a security and privacy mechanism in which internal users use the internal DNS and untrusted, external users use the external DNS. There are two sets of DNS information, and the results are given based on the source address of the requester.
8
Q
Which type of wireless network utilizes the 2.4 GHz frequency band and reaches speeds of up to 54 Mbps?
A
802.11g utilizes the 2.4GHz frequency and can reach up to 54 Mbps
9
Q
Which type of wireless network utilizes the 5GHz frequency band and reaches speeds of up to 54 Mbps?
A
802.11a utilizes the 5GHz band and cbs reach up to 54 Mbps
10
Q
Which type of wireless network utilizes the 2.4GHz frequency and reaches speeds of up to 11 Mbps?
A
802.11b utilizes the 2.4GHz frequency band and can reach speeds up to 11Mbps
11
Q
Which type of wireless network utilizes both 5 GHz and 2.4 GHz frequency band and reaches speeds of up to 600 Mbps (5GHz) or 108 Mbps (2.4GHz). This standard also introduced MIMO.
A
802.11n can use both 5 GHz and 2.4 GHz.
12
Q
Which type of wireless network utilizes the 5 GHz frequency band and reaches speeds of up to 3.5 Gbps?
A
802.11ac (Wi-Fi 5)
13
Q
Which type of wireless network utilizes both the 5GHz and 2.4 GHz frequency band and reaches speeds of up to 9.6 Gbps?
A
802.11ax (Wi-Fi 6)
14
Q
You are configuring a network to utilize SNMPv3 to send information from your network devices back to an SNMP manager. What option should you enable to ensure the data is transferred confidentially?
A
authPriv - Ensures all data is sent with authentication and privacy
15
Q
When connecting two nearby buildings, what type of antenna should you use?
A
Parabolic Antenna
16
Q
The time delay between when a packet was sent and received
A
Latency
17
Q
What is RSSI
A
Received Signal Strength Indacator
18
Q
What command is used to create, view, or modify manual entries in the network routing tables of a computer or server.
A
Route
19
Q
Michael, a system administrator, is troubleshooting an issue remotely accessing a new Windows server on the local area network using its hostname. He cannot remotely access the new server, but he can access another Windows server using its hostname on the same subnet. What command should he enter on his workstation to resolve this connectivity issue?
A
nbtstat -r
This command purges and reloads the cached name table from the LMHOST file on their Windows workstation.
20
Q
What is a Yagi Antenna used for
A
Directional transmission over long distances
21
Q
What might cause signal attenuation?
A
Obstructions blocking the line-of-sight of antennas.
22
Q
What are the troubleshooting steps
A
- Identify the problem
- Establish a theory
- Test the theory
- Establish a plan of action
- Implement the solution
- Verify full system functionality
- Document findings and actions
23
Q
What should you use to protect IoT devices
A
- WPA2 security with a strong password
- Create a separate VLAN for IoT devices to segregate them from your normal network.
24
Q
Which of the following must be added to a VLAN’s gateway to improve the security of the VLAN?
A
Access Control List
25
What ports does SMB use and what is it used for?
- TCP 445 and TCP 139
- Network file sharing protocol that runs on top of the NetBIOS architecture
26
Your company wants to create highly available datacenters. Which of the following will allow the company to continue maintaining an Internet presence at all sites if the WAN connection at their own site goes down?
BGP (Border Gateway Protocol)
- Distance Vector
- If a WAN link goes down, BGP will route the traffic through another WAN link
27
What is the size of a Jumbo Frame and when should they be used?
- Larger than 1500
- The should only be used when you have a dedicated network or VLAN, and you can configure jumbo frames on all of the equipment.
28
What is AAA
- AAA stands for Authentication, Authorization, and Accounting.
- RADIUS
29
A technician has finished configuring AAA on a new network device. However, the technician cannot log into the device with LDAP credentials but can with a local user account. What might cause this issue.
- Shared Secret Key mismatch
- RADIUS uses a shared key for encrypting communication. If the keys don’t match, login issues will happen
30
What port does SQL Server use?
TCP 1433
31
What port does MySQL use?
TCP port 3306
32
What port does SQL Net use?
TCP Port 1521
33
You just started work as a network technician at Dion Training. You have been asked to check if DHCP snooping has been enabled on one of the network devices. What command should you enter within the command line interface?
show config
- show config shows the devices current configuration.
34
Elizabeth was replacing a client’s security device that protects their screened subnet. The client has an application that allows external users to access the application remotely. After replacing the devices, the external users cannot connect remotely to the application anymore. What was likely misconfigured and is now causing a problem?
The Firewall
- If the firewall ruleset was not configured to allow external users to access the application remotely, the default condition is to "deny by default".
35
What is the lowest layer (bottom layer) of a bare-metal virtualization environment?
Physical Hardware
- A “Bare Metal” approach does not have a host OS.
36
When a criminal or government investigation is underway, what describes the identification, recovery, or exchange of electronic information relevant to that investigation?
eDiscovery
37
What is Port Security / Sticky MAC
Port security is a security solution where the switch remembers the MAC address of a device connected to it and prevents other devices from using that port.
38
Dion Training is trying to connect two geographically dispersed offices using a VPN connection. You have been asked to configure their networks to allow VPN traffic into the network. What device should you configure FIRST?
The Firewall
- The firewall is installed at the network boundary, therefore it should be configured first to allow the VPN connection and functionally create a single intranet.
39
A third-party vendor has just released patches to resolve a major vulnerability. There are over 100 critical devices that need to be updated. What action should be taken to ensure the patch is installed with minimal downtime?
1. Deploy the patch in a lab environment to quickly conduct testing
2. Get approval for an emergency change
3. Immediately implement the patch in the production environment
40
What ports does SIP use
Port 5060/5061
41
A disgruntled employee executes an on-path attack on the company's network. Layer 2 traffic destined for the gateway is now being redirected to the employee’s computer. What type of attack is this an example of?
ARP Spoofing / Poisoning
- ARP is used to identify IP to MAC address bindings.
42
What is the purpose of DNS?
DNS servers translate FQDN (Fully Qualified Domain Name) to IP addresses.
43
What is the protocol where ports open for network access only after a user has been authenticated by the organization.
802.1x
44
What ports does SNMP use
Port 161/162
45
IEEE Spec. that defines VLANS
802.1q
46
FQDN vs Hostname
- Your hostname is the name of your computer
- Your FQDN is your hostname + your domain
ex: Mymail.somecollege.edu
- DNS servers translate FQDNs to IP
47
2.4 GHz Channels selection for the least amount of interference between 3 access points (Non overlapping frequencies)
1 , 6 , 11
48
What are the components of a Three Tier Network Architecture
1. Core
- Network Backbone
2. Distribution
- Provides boundary definition by implementing access lists / filters to define the policies of the network
3. Access
- This is where all endpoint devices will connect to each other
49
In band VS out of band management
In Band refers to managing the network through itself
Out of Band is a method of remotely controlling and managing critical IT assets and network equipment using a secure connection through a secondary interface that is physically separate from the primary network connection.
50
A user's smartphone is displaying text in other languages in their web browser when accessing the company's main website. Which of the following is the MOST likely cause of the issue?
An On Path Attack (Man in the Middle)
- The server sees that the IP address is coming from Russia, so it will utilize Russian language in the text.
51
Your network relies on the use of ATM cells. At which layer of the OSI model do ATM cells operate?
Layer 2 Data Link
52
What is 802.3af?
PoE
53
What is 802.3at?
PoE+
54
It has been determined by network operations that there is a severe bottleneck on its mesh topology network. The field technician has chosen to use log management and found that one router makes routing decisions slower than the others on the network. Which of the following types of issues would you classify this as?
Network device CPU issues
55
Stateless VS Stateful Firewall
A stateless firewall doesn’t store information about the current state of a connection.
A stateful firewall remembers what port was opened in the outbound request and keeps it open for the incoming reply.
56
You opened your web browser and attempted to visit DionTraining.com, but you appear to have been redirected to a malicious website instead. What type of attack is being conducted?
DNS poisoning
57
Which of the following network performance metrics is used to represent the **theoretical** maximum rate of data transfer from a source to a destination in a given amount of time under ideal conditions?
Bandwidth
58
Max is a network technician who just terminated the ends on a new copper cable used between two legacy switches. When he connects the two switches using the cable, they fail to establish a connection. What is MOST likely the issue?`
The technician is using a straight through cable
59
Which of the following encryption types was used by WPA to better secure wireless networks than WEP?
TKIP
60
What is an IPv6 Anycast address
An anycast address can be assigned to multiple devices.
A packet sent to an anycast address goes to the nearest interface that has that address
61
Ted, a file server administrator at Dion Training, has noticed that many sensitive files have been transferred from a corporate workstation to an IP address outside of the local area network. Ted looks up the IP address and determines that it is located in a foreign country. Ted contacts his company’s security analyst, verifying that the workstation’s **anti-malware solution is up-to-date** and the **network’s firewall** is **properly configured**. What type of attack most likely occurred to allow the exfiltration of the files from the workstation?
Zero Day Attack
62
A network administrator wants to separate web servers on the network logically. Which of the following network device will need to be configured?
Switch
63
Students at Dion Training have been reporting extreme performance degradation across the network every Friday morning. Which of the following should the network technician review FIRST to identify the root cause of the network performance issues?
Utilization
- Check the utilization to compare with the baseline
64
You are working for a brand new startup company who recently moved into an old office building because the CEO liked the "charm" of the place. You have been tasked with converting a small janitorial closet into an IDF to support the new office network. You measure the closet and determine that you can install a two-post rack inside of it, and all your necessary networking equipment will fit in the two-post rack. You test the power outlet installed in the closet, and it is sufficient for your needs. What is the NEXT thing you should be concerned with to ensure this closet can be used as your IDF?
Is there adequate airflow / cooling
65
What causes signal loss on a fiber optic network?
Dirty connectors
66
What access control model will a network switch utilize if it requires multilayer switches to use authentication via RADIUS/TACACS+?
802.1x
- Port Based Network Access Control
- The user's identity is determined based on their credentials or certificate, which is confirmed by the RADIUS server.
67
What happens if VLAN Tagging (802.3q) is not enabled
All of the VLAN traffic will be sent to the native or default VLAN, VLAN 1
68
What encryption does WPA use?
TKIP
69
What is Convergence?
Convergence occurs when all routers learn the route to all connected networks by sharing their routing information.
Ex: All routers “agree” on what the network topology looks like
70
High VS Low gain antennas
High gain antennas have increased signal strength and can transmit farther
71
What security feature should be enabled to configure a **quality of service** filter to manage the traffic flow of a Cisco router or switch and protect it against a denial-of-service attack?
Control Plane Policing
72
A company is setting up a brand new server room and would like to keep the cabling infrastructure out of sight but still accessible to the network administrators. Infrastructure cost is not an issue. What should be installed to meet the requirements?
Raised floors
- Cable can be put under the floor
73
What is an AS
Autonomous System
- An autonomous system is a collection of networks in the same administrative domain
74
A network architect is designing a highly redundant network with a distance vector routing protocol to prevent routing loops. The architect wants to configure the routers to advertise failed routes with the addition of an infinite metric. What should the architect configure to achieve this?
Route Poisoning
- Used to prevent a router from sending packets through a route that has become invalid within a network.
- Achieved by changing the route's metric to a value that exceeds the maximum allowable hop count so that the route is advertised as unreachable.
75
Dion Training believes there may be a rogue device connected to their network. They have asked you to identify every host, server, and router currently connected to the network. What tool would allow you to identify which devices are currently connected to the network?
IP Scanner
76
What is the most efficient CIDR subnet mask for a point to point link?
/30 or /31
- since /30 provides 4 addresses, two can be used for the routers and two can be used for the subnet ID and Broadcast address
77
When installing a network cable with multiple strands, a network technician pulled the cable past a sharp edge. This resulted in the copper conductors on several of the wire strands being exposed. If these exposed conductors come into contact with each other, they can form an electrical connection. What would result in this scenario?
A Short
78
Which of the following cloud services should an organization choose in order to deliver virtual desktops to end-users over the Internet on a per-user license basis?
DaaS (Desktop as a Service)
79
What port number does LDAPS utilize?
636
80
A network technician must replace a faulty network interface card on Dion Training's web server. The server currently uses a **multimode** fiber optic cable to connect to a switchport on a fiber-optic network switch. What type of NIC should the technician install on the server?
10G-Base-SR
- “S is not single”, if the name has an S in it, that means it uses multi mode fiber
81
What is an Optical Link Budget
An Optical Link Budget is a calculation that considers all the anticipated losses along the length of a fiber optic connection.
82
A company is having a new T1 line installed. Which of the following does this connection MOST likely terminate?
Demarcation Point
83
You are trying to connect to a router using SSH to check its configuration. Your attempts to connect to the device over SSH keep failing. You ask another technician to verify that SSH is properly configured, enabled on the router, and allows access from all subnets. She attempts to connect to the router over SSH from her workstation and confirms all the settings are correct. Which of the following steps might you have missed in setting up your SSH client preventing you from connecting to the router?
Generate a new SSH key
84
Each port in a router creates **one** of these
Broadcast domain
85
Where does untagged traffic go to if it traverses a trunk port?
The Native VLAN
86
What is 802.1q
VLAN Tagging + Trunks
87
What is EAP
Extensible Authentication Protocol
- Integrates with 802.1x
- Prevents access to the network until the authentication succeeds
88
Distance Vector Protocols
- RIP (Routing Information Protocol)
- EIGRP (Enhanced Interior Gateway Protocol)
- The most important criteria is number of hops, NOT speed
89
Link-State Protocols
- OSPF (Open Shortest Path First)
- The most important criteria is if the router is up or down.
- It might take into account the speed of the link too
90
Hybrid Routing Protocol
- BGP (Border Gateway Protocol)
- determines route based on paths, network policies, or configured rule sets
91
Your network relies on the use of ATM cells. At which layer of the OSI model do TAM cells operate?
Layer 2 Data Link
92
What is DAI
Dynamic ARP Inspection
- Allows administrators to intercept, log, and discard ARP packets with incorrect MAC to IP bindings
- Builds a map of all devices and their IP address
93
What tool would you use to look at the traffic patterns of a network?
NetFlow Analyzer
94
What is RAS
- Remote Access Server
95
What is PPP
- Point to Point Protocol
- A layer 2 communication protocol between two routers without any host or any other networking in between
96
What is 802.3ad
- Link Aggregation Control Protocol
97
BSSID vs ESSID
- Basic Service Set Identifier
- Uses 1 AP per network
- Extended Service Set Identifier
- Can use multiple APs to broadcast a single network
98
An administrator arrives at work and is told that network users are unable to access the shared drive on a Windows server. The administrator logs into the server and sees that some Windows Updates were automatically installed last night successfully, but now the network connection shows “limited” with no availability. What rollback action should the technician perform?
Rollback the servers NIC Drivers
99
What policy or plan would dictate how an organization would respond to a fire that left their office building unusable for the next 3 months?
Disaster Recovery Plan
100
Fail To Pass Systems has just been the victim of another embarrassing data breach. Their database administrator needed to work from home this weekend, so he downloaded the corporate database to his work laptop. On his way home, he left the laptop in an Uber, and a few days later, the data was posted on the internet. What would have provided the greatest protection against this data breach?
Encryption of the laptop
101
The Chief Information Officer (CIO) wants to improve the security of the company's data. What management control should be implemented to ensure employees are using encryption to transmit any sensitive information over the network?
Implement **policies** that dictate how users should handle date
102
DLP
Data loss prevention
Systems that ensures users cannot send sensitive corporate data outside of the network
103
WPS
Wi-Fi Protected Setup
Uses a PIN as a password for network access
104
Stella, a web developer, has asked for your assistance in troubleshooting her latest website. When she attempts to connect to the web server as a user, the web browser issues a standard HTTP request to the server but continually receives a timeout response in return. You decide to capture the entire TCP handshake between her workstation and the webserver to better troubleshoot this issue. What tool would BEST allow you to capture and review the HTTP request and response between the client and the webserver?
Protocol Analyzer / Packet Capture
Ex: WireShark
105
What network tool allows you to see what ports are opened on a target system?
Port Scanner
106
What network issue can be prevented by configuring the split-horizon options on your network devices?
Routing Loops
Split horizon router advertisements is a method of preventing routing loops in distance-vector routing protocols
107
As part of unified communications services, QoS must be implemented to provide support for DSCP and CoS. What OSI layer does QoS operate within?
Layer 2 Data-Link
108
You are troubleshooting a 3 foot long fiber patch cable that you suspect is causing intermittent connectivity between two switches. What tool should you use to measure the signal as it transmits over the fiber optic cable?
Fiber Light Meter
109
Your company wants to develop a voice solution to provide 23 simultaneous connections using VoIP. What technology would BEST provide this capability?
T1 Line
Provides 24 voice channels at the same time compared to POTS, which only has 1
110
A technician is troubleshooting a newly installed WAP that is sporadically dropping connections to devices on the network. What should the technician check FIRST during troubleshooting?
WAP Placement
111
What state is the switchport with the LEAST desirable path placed by the spanning tree protocol when a switch has multiple paths to reach the root bridge?
BLOCKING
112
802.11b + 802.11g Channels (2.4 GHz)
1,6,11
Provides three non overlapping channels
113
802.11n + 802.11ac Channels (5GHz)
1-24
Provides 24 non overlapping channels
114
What is asymmetric routing?
Asymmetric routing is when network packets leave via one path and return via a different path
115
Dion Training's network technicians are about to upgrade a Cisco 3900-series router, but they first want to create a copy of the router's configuration and IOS files to serve as a backup. What tool should the technicians utilize?
An TFTP Server
TFTP servers are commonly used to transfer images and config files to network appliances
116
What is tcpdump
tcpdump is a command line based packet capture utility
117
What policies or plans would dictate which types of websites should be added to the proxy server's content filter within an organization?
AUP
118
A network technician just finished configuring a new interface on a router, but the client workstations do not receive the addressing information from the new interface. What should be added or changed to allow the workstations to connect to the new interface?
Install an IP helper on the DHCP server
An IP Helper allows a DHCP server to lease addresses to endpoints even if they aren't on the same broadcast domain
119
An attacker has configured their machine to report itself as a switch when connected to a wired network in an attempt to exploit your enterprise network. Which of the following types of attacks is being conducted?
VLAN Hopping
120
Routing prefixes are assigned in blocks by IANA and distributed by the Regional Internet Registry (RIR). What are these known as?
Autonomous System Number (ASN)
ASNs are used with BGP to control routing decisions
121
You have been asked to troubleshoot Dion Training's T1 connection that is experiencing connectivity issues. You have already verified that the network's router is properly configured, the cable is connected properly between the router and the T1's CSU/DSU, but the T1 remains down. You want to **test the interface** on the CSU/DSU to ensure it is functioning properly. Which of the following tools should you use to test this interface?
Loopback Adapter
122
A network technician has received reports of an Internet-based application that has stopped functioning. Employees reported that after updating the Internet browsers, the application began to fail. Many users rolled back the update, but this did not correct the issue. What should the company do to reduce this type of action from causing network problems in the future?
Segment the network and deploy the patch in a test environment
123
What CIDR notation would you use if you only need two IP addresses for clients
/30
124
What is Port Mirroring used for
Port mirroring is a method of monitoring traffic. It sends a copy of all network traffic on one port (or an entire VLAN) to another port, where it can be analyzed
125
IPv4 Loopback address
127.0.0.1
126
Damaris is troubleshooting a WINS connectivity issue on a Windows server. She wants to find out the name of the server she is working on. What command should she utilize to display the NetBIOS name of the server?
hostname
127
During a recent penetration test, it was discovered that your company's wireless network could be reached from the parking lot. The Chief Security Officer has submitted a change request to your network engineering team to solve this issue because he wants to ensure that the wireless network is only accessible from within the building. Based on these requirements, what setting should be changed to ensure the wireless signal doesn't extend beyond your building's interior while maintaining a high level of availability to your users?
The APs power level for the radio transmitter
128
You have been asked to create a network where visitors can access the Internet without disrupting the office’s own intranet. What type of network should you create?
Guest Network
129
A 48-port switch on the Dion Training network just rebooted and all the clients are attempting to obtain a new DHCP address. What issue may begin to occur?
Broadcast Storm
The DHCP discover, offer, request, and acknowledge process occurs using broadcast messages
130
What characteristic does channel bonding improve?
Connection Speed
Channel bonding is when two adjacent channels within a given frequency band are combined to increase throughput between two or more wireless devices
131
WPA2-TKIP vs WPA2-CCMP encryption, which one's better?
WPA2-CCMP
132
A network technician receives the following alert from a network device: "High utilization threshold exceeded on **gi1/0/24**: current value 88%" What is being monitored to trigger the alarm?
Port utilization
133
After upgrading a fiber link from 1 Gbps to 10 Gbps. A network technician ran a test of the link and the link is not connecting properly. The two routers are 450 meters apart and are connected using a MMF fiber with 10GBaseLR SFP+ transceivers. The fiber runs through the electrical and boiler rooms of each building. What is MOST likely causing the connectivity issues?
The wrong transceivers are being used
10GBaseLR is used with single mode fiber, not multimode fiber (MMF)
134
