ExamGecko
Search Search Login
Home Home / CWNP / CWNA-109
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

When using a spectrum to look for non Wi-Fi interference sources, you notice significant interference across the entire 2.4 GHz band (not on a few select frequencies) within the desktop area of a users workspace, but the interference disappears quickly after just 2 meters. What is the most likely cause of this interference?
ABC Company is planning a point-to-multipoint outdoor bridge deployment with standalone (autonomous) 802.11 bridge units. 802.1X/EAP will be used for bridge authentication. A Linux-based RADIUS server will be used for authentication. What device in the bridge implementation acts as the 802.1X Authenticator?
Which one of the following channels can be used for VHT transmissions according to the 802.11 specification?
What statement describes the authorization component of a AAA implementation?
A WLAN is implemented using wireless controllers. The APs must locate the controllers when powered on and connected to the network. Which one of the following methods is commonly used to locate the controllers by the APs?
An IEEE 802.11 amendment is in the daft state. What impact does this draft amendment have on the 802.11 standard?
You must plan for POE in an office environment. Which one of these devices is least likely to be a POE PSE?
You have received a report of poor wireless connections on the third floor of a building under your administration. Three individuals have reported the problem. Apparently, the connections are reporting a strong signal, but the users cannot access the Internet. With the problem identified, what is the next logical step in the troubleshooting process?
A dual-band 802.11ac AP must be powered by PoE. As a class 4 device, what power level should be received at the AP?
In an 802.11n (H T) 2.4 GHz BSS, what prevents each station from using all the airtime when other client stations are actively communicating in the same BSS?

Question 5 - CWNA-109 discussion

Report
Export

Lynne runs a small hotel, and as a value added service for his customers he has implemented a Wi-Fi hot-spot. Lynne has read news articles about how hackers wait at hot-spots trying to take advantage of unsuspecting users. He wants to avoid this problem at his hotel.

What is an efficient and practical step that Lynne can take to decrease the likelihood of active attacks on his customers' wireless computers?

A.
Enable station-to-station traffic blocking by the access points in the hotel.
Answers
A.
Enable station-to-station traffic blocking by the access points in the hotel.
B.
Implement Network Access Control (NAC) and require antivirus and firewall software along with OS patches.
Answers
B.
Implement Network Access Control (NAC) and require antivirus and firewall software along with OS patches.
C.
Implement an SSL VPN in the WLAN controller that initiates after HTTPS login.
Answers
C.
Implement an SSL VPN in the WLAN controller that initiates after HTTPS login.
D.
Require EAP-FAST authentication and provide customers with a username/password on their receipt.
Answers
D.
Require EAP-FAST authentication and provide customers with a username/password on their receipt.
Suggested answer: A

Explanation:

In a public Wi-Fi hotspot, like the one Lynne runs in his hotel, ensuring customer security against active attacks is crucial. Active attacks involve unauthorized access, eavesdropping, or manipulation of the network traffic. To mitigate such threats, an effective and practical step is:

Station-to-Station Traffic Blocking: Also known as client isolation, this feature prevents direct communication between devices connected to the Wi-Fi network. By enabling this on the access points, Lynne can significantly decrease the likelihood of active attacks like man-in-the-middle (MITM) attacks, where an attacker intercepts and possibly alters the communication between two parties.

The other options, while beneficial for network security, might not be as straightforward or practical for Lynne's situation:

Network Access Control (NAC) requires a more complex infrastructure and management, which might not be ideal for a small hotel setup.

Implementing an SSL VPN adds an extra layer of security but might complicate the login process for users, potentially affecting the user experience.

Requiring EAP-FAST authentication provides secure authentication but may not be feasible for transient customers who expect quick and easy network access.

Therefore, enabling station-to-station traffic blocking is a practical and efficient measure that Lynne can implement to enhance customer security on the Wi-Fi network.

CWNA Certified Wireless Network Administrator Official Study Guide: Exam CWNA-109, by David D. Coleman and David A. Westcott.

Best practices for securing a wireless network in a public hotspot environment.

Show Answer
asked 16/09/2024
Nils Stelling
26 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms