ExamGecko
Search Search Login
Home Home / CompTIA / CV0-004

CompTIA CV0-004 Practice Test - Questions Answers, Page 13

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A network administrator is budding a site-to-site VPN tunnel from the company's headquarters office 10 the company's public cloud development network. The network administrator confirms the following: The VPN tunnel is established on the headquarter office firewall. While inside the office, developers report that they cannot connect to the development network resources. While outside the office on a client VPN, developers report that they can connect to the development network resources. The office and the client VPN have different IP subnet ranges. The firewall flow logs show VPN traffic is reaching the development network from the office. Which of the following is the next step the next network administrator should take to troubleshoot the VPN tunnel?
An organization located in Asia connects to a cloud infrastructure hosted in North America and Europe. Sporadic slowness has been observed when using the PaaS and laaS components. A diagnostic using the following commands was run, and the following results were collected: Which of the following is the most likely reason for the latency?
A developer at a small startup company deployed some code for a new feature to its public repository. A few days later, a data breach occurred. A security team investigated the incident and found that the database was hacked. Which of the following is the most likely cause of this breach?
A cloud engineer wants to run a script that increases the volume storage size if it is below 100GB. Which of the following should the engineer run?
A company uses containers to implement a web application. The development team completed internal testing of a new feature and is ready to move the feature to the production environment. Which of the following deployment models would best meet the company's needs while minimizing cost and targeting a specific subset of its users?
Which of the following are best practices when working with a source control system? (Select two).
A company operates a website that allows customers to upload, share, and retain tull ownership of their photographs. Which of the following could affect image ownership as the website usage expands globally?
A cloud administrator is building a company-standard VM image, which will be based on a public image. Which of the following should the administrator implement to secure the image?
A company hosts various containerized applications for business uses. A client reports that one of its routine business applications fails to load the web-based login prompt hosted in the company cloud. INSTRUCTIONS Click on each device and resource. Review the configurations, logs, and characteristics of each node in the architecture to diagnose the issue. Then, make the necessary changes to the WAF configuration to remediate the issue. Web app 1 Web app 2 Web app 3 Web app 4 Client app
The company's IDS has reported an anomaly. The cloud engineer remotely accesses the cloud instance, runs a command, and receives the following information: Which of the following is the most likely root cause of this anomaly?

Question 121

Report
Export
Collapse

A company's content management system (CMS) service runs on an laaS cluster on a public cloud. The CMS service is frequently targeted by a malicious threat actor using DDoS.

Which of the following should a cloud engineer monitor to identify attacks?

A.
Network flow logs
A.
Network flow logs
Answers
B.
Endpoint detection and response logs
B.
Endpoint detection and response logs
Answers
C.
Cloud provider event logs
C.
Cloud provider event logs
Answers
D.
Instance syslog
D.
Instance syslog
Answers
Suggested answer: A

Explanation:

To identify DDoS attacks against a CMS service, a cloud engineer should monitor network flow logs. These logs provide data about the IP traffic going to and from network interfaces in a public cloud, which is essential for detecting the increased traffic volumes typically associated with DDoS attacks.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Security in the Cloud

Question 122

Report
Export
Collapse

A cloud engineer needs to integrate a new payment processor with an existing e-commerce website. Which of the following technologies is the best fit for this integration?

A.
RPC over SSL
A.
RPC over SSL
Answers
B.
Transactional SQL
B.
Transactional SQL
Answers
C.
REST API over HTTPS
C.
REST API over HTTPS
Answers
D.
Secure web socket
D.
Secure web socket
Answers
Suggested answer: C

Explanation:

The best technology for integrating a new payment processor with an existing e-commerce website is a REST API over HTTPS. This method is widely used for web services, allowing secure communication over the internet and a standardized way for applications to communicate with each other.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Cloud Integration

Question 123

Report
Export
Collapse

A company that has several branches worldwide needs to facilitate full access to a specific cloud resource to a branch in Spain. Other branches will have only read access. Which of the following is the best way to grant access to the branch in Spain?

A.
Set up MFA for the users working at the branch.
A.
Set up MFA for the users working at the branch.
Answers
B.
Create a network security group with required permissions for users in Spain.
B.
Create a network security group with required permissions for users in Spain.
Answers
C.
Apply a rule on the WAF to allow only users in Spain access to the resource.
C.
Apply a rule on the WAF to allow only users in Spain access to the resource.
Answers
D.
Implement an IPS/IDS to detect unauthorized users.
D.
Implement an IPS/IDS to detect unauthorized users.
Answers
Suggested answer: B

Explanation:

The best way to grant full access to a specific cloud resource to a branch in Spain, while other branches have only read access, is to create a network security group with the required permissions. This group can be configured to allow full access to users within the branch's IP range while restricting others to read-only access.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Security Configuration

Question 124

Report
Export
Collapse

Which of the following network types allows the addition of new features through the use of network function virtualization?

A.
Local area network
A.
Local area network
Answers
B.
Wide area network
B.
Wide area network
Answers
C.
Storage area network
C.
Storage area network
Answers
D.
Software-defined network
D.
Software-defined network
Answers
Suggested answer: D

Explanation:

A Software-Defined Network (SDN) is a network approach that allows the addition of new features through software configurations rather than hardware updates, making use of network function virtualization (NFV). NFV decouples network functions from proprietary hardware appliances, so they can run in software, which aligns with the flexibility offered by SDN.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Network Management

Question 125

Report
Export
Collapse

Which of the following migration types is best to use when migrating a highly available application, which is normally hosted on a local VM cluster, for usage with an external user population?

A.
Cloud to on-premises
A.
Cloud to on-premises
Answers
B.
Cloud to cloud
B.
Cloud to cloud
Answers
C.
On-premises to cloud
C.
On-premises to cloud
Answers
D.
On-premises to on-premises
D.
On-premises to on-premises
Answers
Suggested answer: C

Explanation:

When migrating a highly available application normally hosted on a local VM cluster for usage with an external user population, the best migration type would be on-premises to cloud. This allows the application to leverage the cloud's scalability and reach, providing better access to the external users.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Cloud Migration

Question 126

Report
Export
Collapse

A company's engineering department is conducting a month-long test on the scalability of an in-house-developed software that requires a cluster of 100 or more servers. Which of the following models is the best to use?

A.
PaaS
A.
PaaS
Answers
B.
SaaS
B.
SaaS
Answers
C.
DBaaS
C.
DBaaS
Answers
D.
laaS
D.
laaS
Answers
Suggested answer: D

Explanation:

For testing the scalability of an in-house-developed software that requires a cluster of 100 or more servers, Infrastructure as a Service (IaaS) is the best model. IaaS provides the necessary compute resources and allows the engineering department to configure the environment as needed for their specific test without the constraints that might be present in PaaS or SaaS offerings.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Cloud Service Models

Question 127

Report
Export
Collapse

Which of the following is used to deliver code quickly and efficiently across the development, test, and production environments?

A.
Snapshot
A.
Snapshot
Answers
B.
Container image
B.
Container image
Answers
C.
Serverless function
C.
Serverless function
Answers
D.
VM template
D.
VM template
Answers
Suggested answer: B

Explanation:

A container image is used to deliver code quickly and efficiently across the development, test, and production environments. Container images are lightweight, standalone, executable software packages that include everything needed to run a piece of software, including the code, runtime, system tools, libraries, and settings.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Cloud Deployment Methods

Question 128

Report
Export
Collapse

A cloud engineer is collecting web server application logs to troubleshoot intermittent issues. However, the logs are piling up and causing storage issues. Which of the following log mechanisms should the cloud engineer implement to address this issue?

A.
Splicing
A.
Splicing
Answers
B.
Rotation
B.
Rotation
Answers
C.
Sampling
C.
Sampling
Answers
D.
Inspection
D.
Inspection
Answers
Suggested answer: B

Explanation:

Log rotation is the mechanism the cloud engineer should implement to address the issue of logs piling up and causing storage issues. Log rotation involves automatically archiving old log files and creating new ones after a certain size or time period, preventing storage issues.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Cloud Monitoring and Management

Question 129

Report
Export
Collapse

A security engineer recently discovered a vulnerability in the operating system of the company VMs. The operations team reviews the issue and decides all VMs need to be updated from version 3.4.0 to 3.4.1. Which of the following best describes the type of update that will be applied?

A.
Consistent
A.
Consistent
Answers
B.
Major
B.
Major
Answers
C.
Minor
C.
Minor
Answers
D.
Ephemeral
D.
Ephemeral
Answers
Suggested answer: C

Explanation:

The update from version 3.4.0 to 3.4.1 is considered a minor update, typically involving small bug fixes or security patches that do not include major feature changes or improvements.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Systems Management

Question 130

Report
Export
Collapse

Which of the following would allow a cloud engineer to flatten a deeply nested JSON log to improve readability for analysts?

A.
Grafana
A.
Grafana
Answers
B.
Kibana
B.
Kibana
Answers
C.
Elasticsearch
C.
Elasticsearch
Answers
D.
Logstash
D.
Logstash
Answers
Suggested answer: D

Explanation:

Logstash can be used to flatten a deeply nested JSON log, which would improve readability for analysts. Logstash is a data processing pipeline that ingests data from various sources, transforms it, and then sends it to a 'stash' like Elasticsearch.

Reference: CompTIA Cloud+ Study Guide (Exam CV0-004) - Chapter on Cloud Data Management

Total 224 questions
Go to page: of 23
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms