ExamGecko
Login
Home / CompTIA / CV0-004 / List of questions
Ask Question

CompTIA CV0-004 Practice Test - Questions Answers, Page 13

Add to Whishlist

List of questions

Question 121

Report Export Collapse

A company's content management system (CMS) service runs on an laaS cluster on a public cloud. The CMS service is frequently targeted by a malicious threat actor using DDoS.

Which of the following should a cloud engineer monitor to identify attacks?

Network flow logs
Network flow logs
Endpoint detection and response logs
Endpoint detection and response logs
Cloud provider event logs
Cloud provider event logs
Instance syslog
Instance syslog
Suggested answer: A
Explanation:

To identify DDoS attacks against a CMS service, a cloud engineer should monitor network flow logs. These logs provide data about the IP traffic going to and from network interfaces in a public cloud, which is essential for detecting the increased traffic volumes typically associated with DDoS attacks.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Security in the Cloud

asked 02/10/2024
Faviola Gomez Carbajal
30 questions

Question 122

Report Export Collapse

A cloud engineer needs to integrate a new payment processor with an existing e-commerce website. Which of the following technologies is the best fit for this integration?

RPC over SSL
RPC over SSL
Transactional SQL
Transactional SQL
REST API over HTTPS
REST API over HTTPS
Secure web socket
Secure web socket
Suggested answer: C
Explanation:

The best technology for integrating a new payment processor with an existing e-commerce website is a REST API over HTTPS. This method is widely used for web services, allowing secure communication over the internet and a standardized way for applications to communicate with each other.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Cloud Integration

asked 02/10/2024
Quoc Nguyen
49 questions

Question 123

Report Export Collapse

A company that has several branches worldwide needs to facilitate full access to a specific cloud resource to a branch in Spain. Other branches will have only read access. Which of the following is the best way to grant access to the branch in Spain?

Set up MFA for the users working at the branch.
Set up MFA for the users working at the branch.
Create a network security group with required permissions for users in Spain.
Create a network security group with required permissions for users in Spain.
Apply a rule on the WAF to allow only users in Spain access to the resource.
Apply a rule on the WAF to allow only users in Spain access to the resource.
Implement an IPS/IDS to detect unauthorized users.
Implement an IPS/IDS to detect unauthorized users.
Suggested answer: B
Explanation:

The best way to grant full access to a specific cloud resource to a branch in Spain, while other branches have only read access, is to create a network security group with the required permissions. This group can be configured to allow full access to users within the branch's IP range while restricting others to read-only access.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Security Configuration

asked 02/10/2024
An Khang Nguyen
50 questions

Question 124

Report Export Collapse

Which of the following network types allows the addition of new features through the use of network function virtualization?

Local area network
Local area network
Wide area network
Wide area network
Storage area network
Storage area network
Software-defined network
Software-defined network
Suggested answer: D
Explanation:

A Software-Defined Network (SDN) is a network approach that allows the addition of new features through software configurations rather than hardware updates, making use of network function virtualization (NFV). NFV decouples network functions from proprietary hardware appliances, so they can run in software, which aligns with the flexibility offered by SDN.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Network Management

asked 02/10/2024
Elvis WANDJI NGASSA
45 questions

Question 125

Report Export Collapse

Which of the following migration types is best to use when migrating a highly available application, which is normally hosted on a local VM cluster, for usage with an external user population?

Cloud to on-premises
Cloud to on-premises
Cloud to cloud
Cloud to cloud
On-premises to cloud
On-premises to cloud
On-premises to on-premises
On-premises to on-premises
Suggested answer: C
Explanation:

When migrating a highly available application normally hosted on a local VM cluster for usage with an external user population, the best migration type would be on-premises to cloud. This allows the application to leverage the cloud's scalability and reach, providing better access to the external users.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Cloud Migration

asked 02/10/2024
Carson Plunkett
55 questions

Question 126

Report Export Collapse

A company's engineering department is conducting a month-long test on the scalability of an in-house-developed software that requires a cluster of 100 or more servers. Which of the following models is the best to use?

PaaS
PaaS
SaaS
SaaS
DBaaS
DBaaS
laaS
laaS
Suggested answer: D
Explanation:

For testing the scalability of an in-house-developed software that requires a cluster of 100 or more servers, Infrastructure as a Service (IaaS) is the best model. IaaS provides the necessary compute resources and allows the engineering department to configure the environment as needed for their specific test without the constraints that might be present in PaaS or SaaS offerings.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Cloud Service Models

asked 02/10/2024
Sam K
35 questions

Question 127

Report Export Collapse

Which of the following is used to deliver code quickly and efficiently across the development, test, and production environments?

Snapshot
Snapshot
Container image
Container image
Serverless function
Serverless function
VM template
VM template
Suggested answer: B
Explanation:

A container image is used to deliver code quickly and efficiently across the development, test, and production environments. Container images are lightweight, standalone, executable software packages that include everything needed to run a piece of software, including the code, runtime, system tools, libraries, and settings.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Cloud Deployment Methods

asked 02/10/2024
roberto gaccetta
41 questions

Question 128

Report Export Collapse

A cloud engineer is collecting web server application logs to troubleshoot intermittent issues. However, the logs are piling up and causing storage issues. Which of the following log mechanisms should the cloud engineer implement to address this issue?

Splicing
Splicing
Rotation
Rotation
Sampling
Sampling
Inspection
Inspection
Suggested answer: B
Explanation:

Log rotation is the mechanism the cloud engineer should implement to address the issue of logs piling up and causing storage issues. Log rotation involves automatically archiving old log files and creating new ones after a certain size or time period, preventing storage issues.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Cloud Monitoring and Management

asked 02/10/2024
Jerome Fortin
41 questions

Question 129

Report Export Collapse

A security engineer recently discovered a vulnerability in the operating system of the company VMs. The operations team reviews the issue and decides all VMs need to be updated from version 3.4.0 to 3.4.1. Which of the following best describes the type of update that will be applied?

Consistent
Consistent
Major
Major
Minor
Minor
Ephemeral
Ephemeral
Suggested answer: C
Explanation:

The update from version 3.4.0 to 3.4.1 is considered a minor update, typically involving small bug fixes or security patches that do not include major feature changes or improvements.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Systems Management

asked 02/10/2024
Anand Dillikumar
32 questions

Question 130

Report Export Collapse

Which of the following would allow a cloud engineer to flatten a deeply nested JSON log to improve readability for analysts?

Grafana
Grafana
Kibana
Kibana
Elasticsearch
Elasticsearch
Logstash
Logstash
Suggested answer: D
Explanation:

Logstash can be used to flatten a deeply nested JSON log, which would improve readability for analysts. Logstash is a data processing pipeline that ingests data from various sources, transforms it, and then sends it to a 'stash' like Elasticsearch.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Cloud Data Management

asked 02/10/2024
Subha Mishra
44 questions
Total 239 questions
Go to page: of 24
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A cloud server needs to automatically allocate more resources during sudden peak times. This allocation does not need to occur in regular intervals. Which of the following scaling approaches should be used?
Which of the following is the most cost-effective way to store data that is infrequently accessed?
An organization located in Asia connects to a cloud infrastructure hosted in North America and Europe. Sporadic slowness has been observed when using the PaaS and laaS components. A diagnostic using the following commands was run, and the following results were collected: Which of the following is the most likely reason for the latency?
Which of the following application migration strategies will best suit a customer who wants to move a simple web application from an on-premises server to the cloud?
A bank informs an administrator that changes must be made to backups for long-term reporting purposes. Which of the following is the most important change the administrator should make to satisfy these requirements?
Which of the following provides secure, private communication between cloud environments without provisioning additional hardware or appliances?
An organization's security policy states that software applications should not exchange sensitive data in cleartext. The security analyst is concerned about a software application that uses Base64 to encode credit card data. Which of the following would be the best algorithm to replace Base64?
A network administrator is budding a site-to-site VPN tunnel from the company's headquarters office 10 the company's public cloud development network. The network administrator confirms the following: The VPN tunnel is established on the headquarter office firewall. While inside the office, developers report that they cannot connect to the development network resources. While outside the office on a client VPN, developers report that they can connect to the development network resources. The office and the client VPN have different IP subnet ranges. The firewall flow logs show VPN traffic is reaching the development network from the office. Which of the following is the next step the next network administrator should take to troubleshoot the VPN tunnel?
A company hosts various containerized applications for business uses. A client reports that one of its routine business applications fails to load the web-based login prompt hosted in the company cloud. INSTRUCTIONS Click on each device and resource. Review the configurations, logs, and characteristics of each node in the architecture to diagnose the issue. Then, make the necessary changes to the WAF configuration to remediate the issue. Web app 1 Web app 2 Web app 3 Web app 4 Client app
An IT manager needs to deploy a cloud solution that meets the following requirements: . Users must use two authentication methods to access resources. * Each user must have 10GB of storage space by default. Which of the following combinations should the manager use to provision these requirements?