ExamGecko
Search Search Login
Home Home / CompTIA / N10-008

CompTIA N10-008 Practice Test - Questions Answers, Page 43

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

The cybersecurity department needs to monitor historical IP network traffic on the WAN interface of the outside router without installing network sensors. Which of the following would be best to allow the department to complete this task?
Staff members notify a network technician that the wireless network is not working as expected and connectivity to wireless devices is intermittent. Some devices connect but then disconnect. The technician reviews the logs on the WAP controller and identifies thousands of connection attempts from unrecognized devices within a short amount of time. Which of the following is the most likely reason for the wireless network connectivity issue?
A firewall administrator observes log entries of traffic being allowed to a web server on port 80 and port 443. The policy for this server is to only allow traffic on port 443. The firewall administrator needs to investigate how this change occurred to prevent a reoccurrence. Which of the following should the firewall administrator do next?
Which of the following is the most accurate NTP time source that is capable of being accessed across a network connection?
Which of the following BEST describes a network appliance that warns of unapproved devices that are accessing the network?
A user is unable to perform a reverse DNS lookup of an IP address to a hostname. Which of the following DNS record types is missing?
A global company has acquired a local company. The companies are geographically separate. The IP address ranges for the two companies are as follows: * Global company: 10.0.0.0/16 * Local company: 10.0.0.0/24 Which of the following can the network engineer do to quickly connect the two companies?
Which of the following records is the main type in a reverse DNS lookup zone?
A network administrator is designing a new datacenter in a different region that will need to communicate to the old datacenter with a secure connection. Which of the following access methods would provide the BEST security for this new datacenter?
A network is experiencing a number of CRC errors during normal network communication. At which of the following layers of the OSI model will the administrator MOST likely start to troubleshoot?

Question 421

Report
Export
Collapse

Which of the following can be used to centrally manage credentials for various types of administrative privileges on configured network devices?

A.
SSO
A.
SSO
Answers
B.
TACACS+
B.
TACACS+
Answers
C.
Zero Trust
C.
Zero Trust
Answers
D.
Separation of duties
D.
Separation of duties
Answers
E.
Multifactor authentication
E.
Multifactor authentication
Answers
Suggested answer: B

Explanation:

TACACS+ is used to authenticate users and authorize access to network resources. This protocol provides greater network security by encrypting the authentication credentials and reducing the risk of unauthorized access. According to the CompTIA Network+ Study Manual, “TACACS+ is an authentication protocol used to centralize authentication and authorization for network devices. It is a more secure alternative to Telnet for handling logins and for granting privileges to users.”

Question 422

Report
Export
Collapse

Which of the following OSI model layers would allow a user to access and download files from a remote computer?

A.
Session
A.
Session
Answers
B.
Presentation
B.
Presentation
Answers
C.
Network
C.
Network
Answers
D.
Application
D.
Application
Answers
Suggested answer: D

Explanation:

The application layer of the OSI model (Open Systems Interconnection) is responsible for providing services to applications that allow users to access and download files from a remote computer. These services include file transfer, email, and web access, as well as other related services. In order for a user to access and download files from a remote computer, the application layer must provide the necessary services that allow the user to interact with the remote computer.

Question 423

Report
Export
Collapse

All packets arriving at an interface need to be fully analyzed. Which of me following features should be used to enable monitoring of the packets?

A.
LACP
A.
LACP
Answers
B.
Flow control
B.
Flow control
Answers
C.
Port mirroring
C.
Port mirroring
Answers
D.
NetFlow exporter
D.
NetFlow exporter
Answers
Suggested answer: D

Explanation:


Question 424

Report
Export
Collapse

A PC user who is on a local network reports very slow speeds when accessing files on the network server The user's PC Is connecting, but file downloads are very slow when compared to other users' download speeds The PC's NIC should be capable of Gigabit Ethernet. Which of the following will MOST likely fix the issue?

A.
Releasing and renewing the PC's IP address
A.
Releasing and renewing the PC's IP address
Answers
B.
Replacing the patch cable
B.
Replacing the patch cable
Answers
C.
Reseating the NIC inside the PC
C.
Reseating the NIC inside the PC
Answers
D.
Flushing the DNS cache
D.
Flushing the DNS cache
Answers
Suggested answer: B

Explanation:

A slow download speed can be caused by a faulty patch cable, which is the cable used to connect the user's PC to the network server. If the patch cable is damaged, the connection will be slower than expected, resulting in slow download speeds. Replacing the patch cable is the most likely solution to this issue, as it will provide a new, reliable connection that should allow for faster download speeds.

Question 425

Report
Export
Collapse

An administrator would like to have two servers at different geographical locations provide fault tolerance and high performance while appearing as one URL to users. Which of the following should the administrator implement?

A.
Load balancing
A.
Load balancing
Answers
B.
Multipathing
B.
Multipathing
Answers
C.
NIC teaming
C.
NIC teaming
Answers
D.
Warm site
D.
Warm site
Answers
Suggested answer: B

Explanation:


Question 426

Report
Export
Collapse

AGRE tunnel has been configured between two remote sites. Which of the following features, when configured, ensures me GRE overhead does not affect payload?

A.
jumbo frames
A.
jumbo frames
Answers
B.
Auto medium-dependent Interface
B.
Auto medium-dependent Interface
Answers
C.
Interface crossover
C.
Interface crossover
Answers
D.
Collision detection
D.
Collision detection
Answers
Suggested answer: A

Explanation:

One of the features that can be configured to ensure that GRE overhead does not affect payload is A. jumbo frames. Jumbo frames are Ethernet frames that have a payload size larger than 1500 bytes, which is the standard maximum transmission unit (MTU) for Ethernet. By using jumbo frames, more data can be sent in each packet, reducing the overhead ratio and improving efficiency. Auto medium-dependent interface (MDI), interface crossover, and collision detection are features related to Ethernet physical layer connectivity, but they do not affect GRE overhead or payload.

Question 427

Report
Export
Collapse

A network administrator views a network pcap and sees a packet containing the following:

Which of the following are the BEST ways for the administrator to secure this type of traffic? (Select TWO).

A.
Migrate the network to IPv6.
A.
Migrate the network to IPv6.
Answers
B.
Implement 802.1 X authentication
B.
Implement 802.1 X authentication
Answers
C.
Set a private community siring
C.
Set a private community siring
Answers
D.
Use SNMPv3.
D.
Use SNMPv3.
Answers
E.
Incorporate SSL encryption
E.
Incorporate SSL encryption
Answers
F.
Utilize IPSec tunneling.
F.
Utilize IPSec tunneling.
Answers
Suggested answer: C, D

Explanation:

The packet shown in the image is an SNMP (Simple Network Management Protocol) packet, which is used to monitor and manage network devices. SNMP uses community strings to authenticate requests and responses between SNMP agents and managers. However, community strings are sent in clear text and can be easily intercepted by attackers. Therefore, one way to secure SNMP traffic is to set a private community string that is not the default or well-known value. Another way to secure SNMP traffic is to use SNMPv3, which is the latest version of the protocol that supports encryption and authentication of SNMP messages.

Reference: CompTIA Network+ Certification Exam Objectives Version 7.0 (N10-007), Objective 2.5:

Given a scenario, use remote access methods.

Question 428

Report
Export
Collapse

On a network with redundant switches, a network administrator replaced one of the switches but was unable to get a connection with another switch. Which of the following should the administrator chock after successfully testing the cable that was wired for TIA/EIA-568A on both ends?

A.
If MDIX is enabled on the new switch
A.
If MDIX is enabled on the new switch
Answers
B.
If PoE is enabled
B.
If PoE is enabled
Answers
C.
If a plenum cable is being used
C.
If a plenum cable is being used
Answers
D.
If STP is disabled on the switches
D.
If STP is disabled on the switches
Answers
Suggested answer: A

Explanation:

Auto-MDIX (or medium dependent interface crossover) is a feature that automatically detects the type of cable connection and configures the interface accordingly (i.e. straight-through or crossover). This ensures that the connection between the two switches is successful. This is referenced in the CompTIA Network+ Study Manual, page 519.

Question 429

Report
Export
Collapse

A coffee shop owner hired a network consultant to provide recommendations for installing a new wireless network. The coffee shop customers expect high speeds even when the network is congested. Which of the following standards should the consultant recommend?

A.
802.11ac
A.
802.11ac
Answers
B.
802.11ax
B.
802.11ax
Answers
C.
802.11g
C.
802.11g
Answers
D.
802.11n
D.
802.11n
Answers
Suggested answer: B

Explanation:

802.11ax is the latest and most advanced wireless standard, providing higher speeds, lower latency, and more capacity than previous standards. It also supports OFDMA, which allows multiple devices to share a channel and reduce congestion. The other options are older standards that have lower bandwidth, range, and efficiency than 802.11ax. Therefore, 802.11ax is the best option for the coffee shop owner who wants to provide high speeds even when the network is congested.

Question 430

Report
Export
Collapse

An IT technician successfully connects to the corporate wireless network at a hank. While performing some tests, the technician observes that the physical address of the DHCp server has changed even though the network connection has not been lost. Which of the following would BEST explain this change?

A.
Server upgrade
A.
Server upgrade
Answers
B.
Duplicate IP address
B.
Duplicate IP address
Answers
C.
Scope exhaustion
C.
Scope exhaustion
Answers
D.
Rogue server
D.
Rogue server
Answers
Suggested answer: D

Explanation:

A rogue server is a DHCP server on a network that is not under the administrative control of the network staff1. It may provide incorrect IP addresses or other network configuration information to devices on the network, causing them to lose connectivity or be vulnerable to attacks2. The physical address of the DHCP server may change if a rogue server takes over the role of assigning IP addresses to devices on the network. This can be detected by monitoring DHCP traffic or using tools such as RogueChecker2.

Total 865 questions
Go to page: of 87
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms