← Exams and Quizzes | Professional Exams →
Notice
If you get a question wrong, you can still click on the other answers. This will open up hints and explanations (if available), which will provide additional information. Exam should be 1 minute per question and please time accordingly.It is not required to have CompTIA A+ certification prior to obtaining CompTIA Network+ certification. It is recommended to have CompTIA A+ certification or the knowledge of the subject matter that is covered under A+ certification exam before taking Network+ certification exam. It is also recommended, but not required, that you have about 12 months of IT networking work experience.
Go to: Set I | Set III
CompTIA Network+ N10-007 - Set II
Some questions have hints and explanations. Click Start to begin.
Start
Congratulations - you have completed CompTIA Network+ N10-007 - Set II.
You scored %%SCORE%% out of %%TOTAL%%. With incorrect multiple attempts, your score is %%PERCENTAGE%%. Your performance has been rated as %%RATING%%
Your answers are highlighted below.
Question 1 |
Which of the following solution sets properly addresses all of the identified requirements below? (ID-NTIA-221)
-WLAN architecture supporting speeds in excess of 150 Mbps
-Client less remote network access
-Port-based network access control
-WLAN architecture supporting speeds in excess of 150 Mbps
-Client less remote network access
-Port-based network access control
A | 802.11g, MS-CHAP, 802.16 |
B | 802.11n, SSL-VPN, 802.1x |
C | 802.11b, PPTP,802.1x |
D | 802.11ac, MPLS, 802.3 |
E | 802.11a, IPSec VPN, 802.1x |
Question 2 |
A company hires another firm to test the integrity of its information security controls. This is an example of: (ID-NTIA-257)
A | penetration testing. |
B | role separation. |
C | device hardening. |
D | risk assessment. |
Question 3 |
Review the following figure. Note that each store-and-forward switch (SANUJA_01, SANUJA_02, and SANUJA_03) has three connected node ports and one port for switch-to-switch connections. All node ports and links are configured for half-duplex communication. The switch-to-switch links are configured for full-duplex communication. Which of the following statements about the switched network is true? (ID-NTIA-327)
A | There is one collision domain for this network. |
B | There are 3 collision domains, one for each switch-to-switch connection. |
C | There are 12 collision domains, one for each switch connection. |
D | There are 9 collision domains, one for each half-duplex connection. |
Question 4 |
A metric that compares the amount of usable data and the background noise that is being sent over a transmission channel is known as ___________. (ID-NTIA-234)
A | SNR |
B | RFI |
C | SVC |
D | BRI |
Question 4 Explanation:
Signal-to-noise ratio (SNR)
Question 5 |
A shop owner wants to ensure that only a specified group of devices can access the wireless network. Which of the following methodologies will best ensure unauthorized devices cannot consume the shop owner’s limited Internet bandwidth? (ID-NTIA-268)
A | Implement WEP authentication. |
B | Change the WiFi password. |
C | Activate MAC address filtering. |
D | Disable the SSID broadcast. |
Question 6 |
Which of the following technologies should be used in high-throughput network to reduce network overhead? (ID-NTIA-299)
A | Jumbo frames |
B | QoS tags |
C | iSCSI |
D | Port aggregation |
Question 7 |
A technician is sent to troubleshoot a faulty network connection. The technician tests the cable, and data passes through successfully. No changes were made in the environment, however, when a network device is connected to the switch using the cable, the switchport will not light up. Which of the following should the technician attempt next? (ID-NTIA-324)
A | Replace the NIC |
B | Change the switch |
C | Plug in to another port |
D | Modify the speed and duplex |
Question 8 |
Jessica, a network technician, wants to locally back up several router and switch configurations. He wants to store them on a server that can be accessed easily for recovery without authentication. Which of the following servers should Jessica use? (ID-NTIA-391)
A | Samba |
B | TFTP |
C | Telnet |
D | LDAP |
Question 9 |
Which of the following datacenter security methodologies is most likely to remain usable during a company-wide network outage? (ID-NTIA-372)
A | Door locks |
B | Motion detectors |
C | Biometric scanners |
D | Video surveillance |
Question 10 |
A customer has submitted a request for a new wireless connection in the main office so visitors can reach the Internet to check their email. The customer is concerned about security and does not want visitors to be able to access the internal finance server. Which of the following BEST describes the correct configuration? (ID-NTIA-301)
A | The LAN and WLAN should be marked as trusted during work hours and untrusted during off hours. |
B | The LAN and WLAN should be configured in the DMZ so traffic is denied automatically. |
C | The LAN and WLAN should be configured in separate zones with a firewall in between. |
D | The LAN and WLAN should be configured in the same zone with dynamic DENY ALL rules. |
Question 11 |
A technician logs onto a system using Telnet because SSH is unavailable. SSH is enabled on the target device, and access is allowed from all subnets. The technician discovers a critical step was missed. Which of the following would allow SSH to function properly? (ID-NTIA-340)
A | Change default credentials |
B | Generate new keys |
C | Perform file hashing |
D | Update firmware |
Question 12 |
At which of the following layers of the OSI model does compression occur? (ID-NTIA-273)
A | Data link |
B | Session |
C | Presentation |
D | Transport |
Question 13 |
A technician is setting up a direct connection between two older PCs so they can communicate but not be on the corporate network. The technician does not have access to a spare switch but does have spare Cat 6 cables, RJ-45 plugs, and a crimping tool. The technician cuts off one end of the cable. Which of the following should the technician do to make a crossover cable before crimping the new plug? (ID-NTIA-336)
A | Reverse the wires leading to pins 1 and 3 |
B | Reverse the wires leading to pins 1 and 2 |
C | Reverse the wires leading to pins 2 and 4 |
D | Reverse the wires leading to pins 2 and 3 |
Question 14 |
Which of the following should be configured to allow for IP-to-name resolutions? (ID-NTIA-396)
A | MX |
B | A |
C | CNAME |
D | NS |
E | PTR |
Question 15 |
Which of the following policies prohibits a network administrator from using spare servers in the datacenter to mine bitcoins? (ID-NTIA-383)
A | BYOD |
B | MOU |
C | NDA |
D | AUP |
Question 16 |
Lauren, a user, reports that her desktop phone is not working on one cable. However, that cable provides connectivity to her laptop. A technician determines PoE is not provided to the end device. Which of the following is most likely the cause? (ID-NTIA-271)
A | Crosstalk |
B | Jitter |
C | Transceiver mismatch |
D | Open/short on the cable |
Question 17 |
Which of the following answers refers to a system containing mappings of domain names to various types of data, such as numerical IP addresses? (ID-NTIA-225)
A | SQL |
B | DHCP |
C | TCP/IP |
D | DNS |
Question 18 |
A network technician is designing a network cable upgrade in a newly acquired office space. The IT manager wants to install a standardized twisted pair cable solution that supports speeds up to 1 Gbps and terminates with a standard RJ45 connector. Which of the following cable types should the technician suggest? (ID-NTIA-204)
A | RG-6 |
B | Cat 5 |
C | SMF |
D | Cat 6 |
E | Cat 3 |
Question 19 |
Users have been experiencing slow network response times, and management has asked the network technician to provide evidence of network improvement. After optimizing the network, which of the following would be required? (ID-NTIA-346)
A | IDF/MDF documentation |
B | Physical diagram |
C | Change management |
D | Performance baseline |
Question 20 |
A company is expanding and building a new remote branch office. Marketing will need 78 IP addresses, finance will need 150 IP addresses, legal will need 39 IP addresses, and R&D will need 12 IP addresses. The network administrator gives the technician a network of 172.16.48.0/23 and wants the technician to use VLSM for the design. Which of the following are possible solutions? Choose three answers. (ID-NTIA-211)
A | The legal department should have usable IPs ranging from 172.16.49.129 to 172.16.49.190. |
B | The R&D department should have 172.16.49.207 as a broadcast address. |
C | The R&D department should receive a /27 network. |
D | The legal department should have a first usable IP address of 172.16.49.190. |
E | The marketing department should receive a /25 network. |
F | The finance department should have 172.16.49.127 as a broadcast address. |
G | The marketing department should have usable IPs ranging from 172.16.49.129 to 172.16.49.190. |
H | The R&D department should have a last usable IP address of 172.16.49.190. |
Question 21 |
Sanuja wants to set an IP address to a specific MAC address on a host machine. Which of the following commands should he use? (ID-NTIA-205)
A | arp |
B | nslookup |
C | ipconfig |
D | dig |
Question 22 |
An office user cannot access local network drives but has full access to the Internet. A technician troubleshoots the issue and observes the following output of the ipconfig: (ID-NTIA-353)
Which of the following would MOST likely allow the network drives to be accessed?
Which of the following would MOST likely allow the network drives to be accessed?
A | Disable the LAN adapter |
B | Check the wireless DHCP configuration |
C | Update the WLAN adapter driver |
D | Disable the WLAN adapter |
Question 23 |
Which utility is shown in the following figure (portions of which have been obscured for this question)? (ID-NTIA-375)
A | pathping |
B | netstat |
C | nbtstat |
D | nslookup |
Question 24 |
A network technician is assisting a user who has relocated to a newly constructed office space. The user has no network connectivity. A cable tester was used on the port and is reporting that the pairs are open. Which of the following should be used to remedy this problem? (ID-NTIA-298)
A | Punchdown tool |
B | Tone generator |
C | Multimeter |
D | Loopback adapter |
Question 25 |
A government employee breaches privacy by accessing server data without permission and as a result, his employment contract was terminated abruptly. Which of the following IT policies would best describe this situation? (ID-NTIA-203)
A | DLP |
B | Incident response |
C | Offboarding |
D | Remote access |
E | AUP |
Question 26 |
Which of the answers listed below refers to a possible symptom of exhausted DHCP scope? (ID-NTIA-231)
A | Duplicate IP addresses |
B | Loopback address |
C | APIPA address |
D | Duplicate MAC addresses |
Question 27 |
A network technician is creating a new subnet for 488 host machines. The technician is told to use a class B address scheme when making the subnet and is instructed to leave as much room as possible for additional subnets of the same size. Which of the following subnets would fulfill these requirements? (ID-NTIA-354)
A | 10.233.2.0/23 |
B | 192.168.25.0/24 |
C | 172.18.0.0/23 |
D | 10.5.4.0/22 |
E | 172.16.0.0/22 |
Question 28 |
Review the following figure. How many collision domains and broadcast domains are there in the network diagram? (ID-NTIA-328)
A | There are three collision domains and one broadcast domain. |
B | There are seven collision domains and three broadcast
domains. |
C | There is one collision domain and one broadcast domain. |
D | There are three collision domains and three broadcast
domains. |
E | There are nine collision domains and three broadcast
domains. |
Question 29 |
A user reports difficulties connecting a PC to a wired network. The PC connects to an IP phone, which is working correctly. A network technician can verify that other devices successfully connect to the phone. At which of the following layers of the OSI model is the problem MOST likely located? (ID-NTIA-367)
A | Network |
B | Physical |
C | Transport |
D | Application |
Question 30 |
A zero-day vulnerability is discovered that affects a specific network device. This vulnerability only affects services on port 21. This network device is restricted to use only secure protocols and services. Which of the following explains why this device is secure? (ID-NTIA-290)
A | Because SCP is not a secure service |
B | Because FTP is not a secure service |
C | Because a secure firewall will protect the device |
D | Because secure protocols would reject malicious packets |
Question 31 |
A user calls the help desk for assistance with setting up a new SOHO router. The user has three employees who all have laptops that need to connect to the wireless network. The users need to have firewall rules allowing access to an internal server, but cannot be configured with static IP addresses. Which of the following BEST describes what the technician should implement? (ID-NTIA-399)
A | IP helper relay system for configuration hops |
B | Additional lease time for the laptop computers |
C | CNAME record in the users dynamic DNS accounts |
D | DHCP reservation for the laptops MACs |
Question 32 |
Which of the following is a type of Out of Band Access; also known as out-of-band management? (ID-NTIA-216)
A | Telnet into the router over a secure VPN. |
B | Using a secure SSH connection over the WAN link to connect to a server. |
C | Implementing a modem on the AUX port to access a network device. |
D | Accessing a DSL router via the console port. |
Question 33 |
While testing an ACL on the default gateway router to allow only web browsing, ports TCP 80 and TCP 443 were the only ports open. When tested, no websites were accessible via their URLs inside the network. Which of the following configurations should be added to the ACL? (ID-NTIA-388)
A | permit udp any any eq 53 |
B | permit udp any any eq 25 |
C | permit tcp any any eq 110 |
D | permit udp any any eq 68 |
E | permit tcp any any eq 8080 |
F | permit tcp any any eq 20 |
Question 34 |
A home user is unable to get to the Internet from a workstation that is connected to a wireless network. When reviewing the results of the ipconfig command, the user wants to verify the default gateway is correct. Which of the following devices should be the gateway? (ID-NTIA-398)
A | Cable modem |
B | Layer 2 switch |
C | SOHO router |
D | DNS server |
Question 35 |
Which of the following type of technique is used to block access to websites and web-based advertisements by providing a false result of a requested domain name? (ID-NTIA-202)
A | DNS sinkhole |
B | DDoS |
C | DDoS |
D | MITM |
E | IDS firewall |
Question 36 |
When configuring a new switch in a packet-switched network, which of the following helps protect against network loops? (ID-NTIA-395)
A | BPDU guard |
B | Spanning tree |
C | Flood guard |
D | DHCP snooping |
Question 37 |
A vulnerability that would allow an unauthenticated, remote attacker to originate a DoS attack was found in a DHCP client implementation of a switch. Which of the following would best resolve the issue? (ID-NTIA-286)
A | Upgrade to the latest firmware |
B | Generate new SSH keys |
C | Review and modify the firewall rules |
D | Verify the default passwords have been changed |
Question 38 |
A technician needs to add ten additional Ethernet ports to a small office network. A new basic function switch is added. Hosts connected to the new switch are unable to see any computers on the network other than those connected to the new switch. Which of the following should the technician perform to ensure the hosts on the new switch can communicate with the existing network? (ID-NTIA-297)
A | Add a second cable connecting the switches for redundancy and disabling STP on both switches. |
B | Connect the switches with a cable that has a TIA/EIA 586A wired connector end and a TIA/EIA 586B wired end. |
C | Replace the new switch with a hub to ensure Layer1 connectivity on the new network segment. |
D | Move the straight-through Ethernet cable connecting the switches to the first port on both switches. |
Question 39 |
A network manager is concerned about visitors taking advantage of open cubicles at a company’s facilities. Which of the following would mitigate this issue? (ID-NTIA-246)
A | Implement root guard on all switches. |
B | Implement a DMZ for all external services. |
C | Create a honeypot to attract attackers. |
D | Create a VLAN for all unused switchports. |
Question 40 |
Which of the following allow for higher fault tolerance, availability, and performance across multiple systems? Choose all the correct answers. (ID-NTIA-280)
A | Clustering |
B | Jumbo frames |
C | Load balancer |
D | TCP offloading |
E | Round robin |
Question 41 |
Which of the following network topologies typically has all devices on a network directly connected to every other network device? (ID-NTIA-206)
A | Ad hoc |
B | Mesh |
C | Ring |
D | Star |
Question 42 |
A technician has been assigned to capture packets on a specific switchport. Which of the following switch feature must be used to accomplish this? (ID-NTIA-323)
A | Port mirroring |
B | Trunking |
C | Spanning tree |
D | Port aggregation |
Question 43 |
Which of the following tools would be of help in troubleshooting wireless signal loss and low wireless network signal coverage? (ID-NTIA-235)
A | Network mapper |
B | Protocol analyzer |
C | Logical network diagram |
D | WAP power level controls |
Question 44 |
A network technician needs to separate a web server listening on port 80 from the internal LAN and secure the server from the public Internet. The web server should be accessible to the public Internet over port 80 but not the private LAN. Currently, the network is segmented with a network-based firewall using the following IP addressing scheme on each interface: (ID-NTIA-350)
Which of the following ones should the technician use to place the webserver and which of the following firewall rules should the technician configure?
Which of the following ones should the technician use to place the webserver and which of the following firewall rules should the technician configure?
A | Place the web server in the private zone with an inbound rule from eth2 interface to eth1 to accept traffic over port 80 designated to the webserver |
B | Place the web server in the public zone with an inbound rule from eth0 interface to accept traffic over port 80 designated to the webserver |
C | Place the web server in the DMZ with an inbound rule from eth1 interface to eth0 to accept traffic over port 80 designated to the webserver |
D | Place the web server in the DMZ with an inbound rule from eth0 interface to eth1 to accept traffic over port 80 designated to the webserver |
Question 45 |
Two buildings used to be connected by a wireless bridge, but they are upgrading to fiber. Which of the following new devices would be required at the demarcation points? (ID-NTIA-212)
A | Network switch |
B | Media converter |
C | Firewall |
D | Wireless access point |
E | Router |
Question 46 |
Which of the following must be implemented to share metrics between routing protocols within the same router? (ID-NTIA-224)
A | Routing table |
B | Dynamic routes |
C | Routing loop |
D | Route redistribution |
E | DHCP |
Question 47 |
A network technician is considering opening ports on the firewall for an upcoming VoIP PBX implementation. Which of the following protocols is the technician most likely to consider? Choose three answers. (ID-NTIA-335)
A | RTP |
B | H.323 |
C | SMB |
D | NTP |
E | SIP |
F | ICMP |
Question 48 |
A technician wants to configure a SOHO network to use a specific public DNS server. Which of the following network components should the technician configure to point all clients on a network to a new DNS server? (ID-NTIA-313)
A | Proxy server |
B | Switch |
C | Router |
D | Load balancer |
Question 49 |
An ISP technician gets a call from a business that just changed equipment but can no longer connect to the Internet. The technician checks the ARP table on the ISP switch, and there is no corresponding MAC address present. Instead, the entry is "Incomplete". Which of the following could cause this condition? (ID-NTIA-348)
A | VLAN mismatch |
B | Duplex/Speed mismatch |
C | Duplicate IP address |
D | TX/RX reverse |
Question 50 |
Which of the following technologies is used when multiple Ethernet adapters work to increase speed and fault tolerance? (ID-NTIA-382)
A | NIC teaming |
B | Load balancing |
C | Clustering |
D | Multiple NAT |
E | Redundant circuits |
Question 51 |
NTP is used for which of the following function? (ID-NTIA-240)
A | Synchronization of clocks over a computer network |
B | Retrieving contents of an Internet page from a web server |
C | Allocation of IP addresses |
D | Monitoring of network-attached devices |
Question 52 |
Employees want the ability to use personal devices on the guest network while working out at the company gym. In order to meet the request, which of the following policies requires employee adherence? (ID-NTIA-373)
A | MOU |
B | AUP |
C | SLA |
D | NDA |
Question 52 Explanation:
Acceptable Use Policy (AUP)
Question 53 |
A large company uses an AAA server to manage network device access. The engineers can use their domain credentials to access all other servers. Currently, the network engineers cannot access the AAA server using domain credentials, but they can access it using a local account. Which of the following should the engineers update? (ID-NTIA-267)
A | Server IP address |
B | DNS SRV record |
C | Host-based firewall settings |
D | TACAS+ server time |
Question 54 |
Which of the following communication media can carry many voice, data, and video channels simultaneously over multiple frequencies? (ID-NTIA-357)
A | Baseband |
B | Analog modem |
C | Broadband |
D | CSMA |
Question 55 |
A small company is requesting a quote to refresh its wireless network. The company currently runs 60 autonomous APs and has plans to increase wireless density by 50% in the near future. The requirements state that the chosen solution should significantly decrease the management overhead of the current wireless network. Which of the following should the vendors recommend in response to the quote request? (ID-NTIA-243)
A | The use of lightweight APs with a load balancer |
B | The use of autonomous APs with a load balancer |
C | The use of lightweight APs with a wireless controller |
D | The use of autonomous APs with a wireless controller |
Question 56 |
A network administrator wants to reduce the amount of time each user takes to log in to different systems in the network. Which of the following would reduce the time spent authenticating? (ID-NTIA-278)
A | Certificate |
B | MFA |
C | NAC |
D | Kerberos |
E | RADIUS |
F | SSO |
Question 56 Explanation:
Single sign-on (SSO)
Question 57 |
An employee reports an error when visiting a website using SSL, and a message is displayed warning of an invalid certificate. Which of the following could be occurring? (ID-NTIA-320)
A | OCSP stapling |
B | DDoS |
C | Evil twin |
D | MITM |
E | Phishing |
Question 58 |
A network technician is setting up the wireless network for a company’s new branch office. After doing a site survey, the technician discovers there is a lot of interference from 2.4GHz devices at the location on channel 11. Which of the following would be the BEST channel on which to set up the WAPs? (ID-NTIA-284)
A | Channel 7 |
B | Channel 10 |
C | Channel 9 |
D | Channel 6 |
Question 59 |
A company has just installed a new cloud VoIP solution, however, users occasionally report poor call quality or dead air being present. Which of the following describes the next troubleshooting step the technician should take? (ID-NTIA-394)
A | The technician should reset all the phones and deprovision information from the provider |
B | The technician should check the internal diagnostics on all the phones to look for a common thread |
C | The technician should run ping tests on the Internet line to monitor for packet loss and latency |
D | The technician should use a packet tracer to see if the traffic is getting out of the network |
Question 60 |
A gaming company released a new game that is downloadable on April 20, 2020. On the day of the launch, the majority of customers could not reach the company's website. A message appears on their web browser stating the website is unavailable due to unusually high traffic. This technical issue is very similar to which of the following? (ID-NTIA-356)
A | MITM attack |
B | Session hijacking |
C | Wardriving |
D | Spoofing attack |
E | DDoS attack |
Question 61 |
Before upgrading the firmware on several routers, a technician must verify the firmware file received is the same one the vendor provided. Which of the following should the technician use? (ID-NTIA-296)
A | 3DES encryption |
B | Digital signatures |
C | Digital signatures |
D | SSL certificate |
Question 62 |
Which of the following best describes the characteristics of a differential backup solution? (ID-NTIA-282)
A | Backs up all files and sets the archive bit. |
B | Backs up files with the archive bit set but does not clear the bit. |
C | Backs up files with the creation or modified date as the current date. |
D | Backs up files with a date earlier than today’s date with a clear archive bit. |
Question 63 |
A network printer error report indicates that it may have an expired IP address. A failure with which of the following will cause this issue? (ID-NTIA-232)
A | DNS |
B | LADP |
C | DHCP |
D | HTTP |
E | ICMP |
Question 63 Explanation:
Dynamic Host Configuration Protocol (DHCP)
Question 64 |
A user checks an IP address using an external website. The address is different than the one the user sees when opening a command prompt and typing in ipconfig/all. The user does not understand why the two tools show different IP addresses. This is BEST explained by the interworking of ___________. (ID-NTIA-217)
A | network devices |
B | packet flow |
C | traffic-routing protocols |
D | public/private networks |
Question 65 |
A network administrator would like to collect information from several networking devices using SNMP. Which of the following SNMP options should a network administrator use to ensure the data transferred is confidential? (ID-NTIA-351)
A | Authentication passphrase |
B | MD5 |
C | authpriv |
D | SHA |
Question 66 |
A network support specialist is setting up wireless networks for several small companies that are leasing adjacent spaces in an office building. The network support specialist has already configured an access point for each office with WPA2-AES encryption and minimized any overlap of the wireless channels. Several of the companies have expressed concerns about performance and security issues due to the high volume of wireless networks being installed in close proximity. Which of the following actions will best mitigate the companies’ concerns? (ID-NTIA-242)
A | Disable the SSID broadcast on each access point. |
B | Reduce the TX power on each access point. |
C | Enable AP isolation on each access point. |
D | Enable MAC address filtering on each access point. |
Question 67 |
Two computers are connected to a multilayer switch, and both can access the corporate file server. The computers cannot talk to one another. Which of the following is most likely the cause? (ID-NTIA-400)
A | ACL misconfiguration |
B | Bad port |
C | Duplex/speed mismatch |
D | Crosstalk |
Question 68 |
A network technician is building a network for a small office. The office currently has cable TV and now requires access to the Internet without adding any cabling other than what is already in place. Which of the following solutions should the technician install to meet these requirements? (ID-NTIA-362)
A | DSL modem |
B | Demarc |
C | DOCSIS modem |
D | Wireless router |
E | Access point |
Question 69 |
When speaking with a client, an employee realizes a proposed solution may contain a specific cryptographic technology that is prohibited for non-domestic use. Which of the following documents or regulations should be consulted for confirmation? (ID-NTIA-306)
A | Incident response policy |
B | Remote access policies |
C | Data loss prevention |
D | International export controls |
E | Licensing restrictions |
Question 70 |
A forensic first responder arrives at the scene where an employee is suspected to have committed a computer-based crime. Which of the following should the first responder do first? (ID-NTIA-359)
A | Secure the area |
B | Implement a chain of custody |
C | Document the scene |
D | Take pictures upon arrival |
Question 71 |
Which of the following is used to define the duration during which a client can use an IP address? (ID-NTIA-244)
A | IP helper |
B | DHCP timer |
C | Lease time |
D | MAC reservation |
E | Pool |
Question 72 |
A network technician has been asked to create secure private networks between a company’s headquarters and several branch locations. The company has provided the on-premises equipment, but each branch has a different ISP. Which of the following technologies should the technician consider using to accomplish this? (ID-NTIA-270)
A | Point-to-point |
B | Client-to-site |
C | Site-to-site |
D | Point-to-multipoint |
Question 73 |
An analyst is developing a proof of concept of a wireless-based attack as part of a penetration test against an organization's network. As part of the attack, the analyst launches a fake access point matching the SSID of the organization's guest access network. When a user connects to the fake access point, the analyst allows the traffic to flow through the access point to the legitimate site while the data traversing the network is logged for latest analysis and exploitation. Which of the following attacks has the analyst successfully performed in this scenario? (ID-NTIA-360)
A | Session hijacking |
B | Bluesnarfing |
C | MAC spoofing |
D | Man-in-the-middle |
E | VLAN hopping |
Question 74 |
A network engineer is designing a new network for a remote site. The remote site consists of ten desktop computers, ten VoIP phones, and two network printers. In addition, two of the desktop computers at the remote site will be used by managers who should be on a separate network from the other eight computers. Which of the following represents the BEST configuration for the remote site? (ID-NTIA-334)
A | One router connected to one 24-port switch configured with three VLANS: one for the manager's computers and printer, one for the other computers and printer, and one for the VoIP phones |
B | One router connected to one 12-port switch configured for the manager's computers, phones, and printer, and one 12-port switch configured for the other computers, VoIP phones, and printer |
C | Two routers with each router connected to a 12-port switch, with a firewall connected to the switch connected to the manager's desktop computers, VoIP phones, and printer |
D | One router connected to one 24-port switch configured with two VLANS: one for the manager's computers, VoIP phones, and printer, and one for the other computers, VoIP phones, and printer |
Question 75 |
The help desk is receiving reports of intermittent connections to a server. A help desk technician suspects the server is unable to establish a three-way handshake due to a DoS attack. Which of the following commands should a network administrator use to confirm the help desk technician’s claim? (ID-NTIA-259)
A | dig |
B | nmap |
C | tcpdump |
D | arp |
Question 76 |
In which of the following ways does a DDoS attack differ from a spoofing attack? (ID-NTIA-355)
A | Spoofing attacks require physical presence |
B | DDoS attacks target multiple networks |
C | Spoofing attacks originate from a single host |
D | DDoS attacks are launched from multiple hosts |
Question 77 |
Clients are connected to a switch on the gigabit Ethernet interface; the ISP is connected to the Serial 0 interface. When the router configuration is complete and client devices are reconfigured, all clients report that they are unable to connect to the Internet. Which of the following is the MOST likely reason? Answer the question based on the following IP address information. (ID-NTIA-332)
Gigabit Ethernet 1 Interface: 10.10.0.1/24 Serial 0 Interface: 10.10.0.253/30
Gigabit Ethernet 1 Interface: 10.10.0.1/24 Serial 0 Interface: 10.10.0.253/30
A | The router was configured with an incorrect default gateway |
B | The router was configured with an incorrect subnet mask |
C | The router was configured with an incorrect IP address |
D | The router was configured with an incorrect loopback address |
Question 78 |
A technician notices clients are receiving a 169.254.x.x IP address following the upgrade of a server. Which of the following ports should the technician check on the local server firewall? (ID-NTIA-371)
A | Port 123 and 8080 |
B | Ports 80 and 443 |
C | Ports 67 and 68 |
D | Ports 56 and 57 |
E | Ports 20 and 21 |
Question 78 Explanation:
Ports 67 and 68 are used by DHCP and 169.254.x.x IP addresses are APIPAs.
Question 79 |
Which of the following is the number of broadcast domain(s) that are created when using an unmanaged 12-port switch? (ID-NTIA-222)
A | 0 |
B | 12 |
C | 1 |
D | 2 |
E | 6 |
Question 80 |
A network administrator is installing a campus network of two routers, 24 switches, 76 APs, and 492 VoIP phone sets. Which of the following additional devices should the administrator install to help manage this network? (ID-NTIA-385)
A | Content filter |
B | RADIUS server |
C | VoIP PBX |
D | Wireless controller |
Question 81 |
A network technician needs to configure a device with an embedded OS so it can be connected to a wireless handheld scanner. Which of the following technologies should be configured on the OS to create the wireless connection? (ID-NTIA-393)
A | Bus |
B | Partial mesh |
C | Ad hoc |
D | Ring |
Question 82 |
Which of the following is an object held within an MIB? (ID-NTIA-276)
A | OUI |
B | SNMP agent |
C | OID |
D | SNMP host |
E | OTDR |
Question 83 |
Client PCs are unable to receive addressing information from a newly configured interface on a router. Which of the following should be added to allow the clients to connect? (ID-NTIA-338)
A | Ping table |
B | DHCP lease time |
C | TTL |
D | IP helper |
E | DNS record type |
Question 84 |
Which of the following protocols is used by Active Directory for authentication? (ID-NTIA-289)
A | LDAP |
B | TLS |
C | SFTP |
D | SSH |
Question 85 |
A bookstore uses a Faraday cage to comply with credit card regulations. Customers report that their cellular phones have no signal when they are in the bookstore. Which of the following is the most likely cause? (ID-NTIA-251)
A | The Faraday cage prevents access by redirecting signals. |
B | The Faraday cage is creating attenuation of the cellular network. |
C | The Faraday cage is creating interference within the bookstore. |
D | The Faraday cage is creating latency on the cellular network. |
Question 86 |
Which of the following technologies is used to attach multiple guest operating systems to a single physical network port? (ID-NTIA-307)
A | vSAN |
B | FCoE |
C | Fiber Channel |
D | Virtual switch |
E | VPC |
Question 87 |
A network technician does not have access to the GUI of a server and needs to adjust some network properties. Using the following command, what is this the technician attempting to alter? (ID-NTIA-305)
route add 0.0.0.0 mask 0.0.0.0 192.169.1.222 metric 1
A | The technician is adding a static IP address. |
B | The technician is clearing the subnet mas setting. |
C | The technician is clearing the route table. |
D | The technician is setting the default gateway. |
Question 88 |
Select all statements that apply to Telnet. (ID-NTIA-228)
A | Provides username & password authentication. |
B | Encrypts network connection. |
C | It cannot be used on modern Windows computers. |
D | Enables remote login and command execution. |
E | Transmits data in an unencrypted form. |
F | It does not provide authentication. |
Question 89 |
A network technician works in a large environment with several thousand users. Due to the needs of the organization, the network manager has asked the technician to design a solution that accommodates the data needs of all the users, while keeping all data on-site. Which of the following solutions should the technician implement? (ID-NTIA-254)
A | SaaS |
B | SAN |
C | IaaS |
D | NAS |
Question 90 |
Log files show the admin user has logged into a public-facing device on several occasions in the evening. None of the technicians admit to doing any after-hours work, and the password has been changed several times but failed to prevent the logins. Which of the following should be the NEXT step to attempt to harden the device? (ID-NTIA-285)
A | Disable unused ports. |
B | Reset the two-factor token. |
C | Disable virtual ports. |
D | Upgrade the firmware. |
Question 91 |
After a server outage, a technician discovers that a physically damaged fiber cable appears to be the problem. After replacing the cable, the server will still not connect to the network. Upon inspecting the cable at the server end, the technician discovers light can be seen through one of the two fiber strands. Which of the following should the technician do first to reconnect the server to the network? (ID-NTIA-344)
A | Replace the server's single-mode fiber cable with multimode fiber |
B | Move the fiber cable to a different port on the switch where both strands function |
C | Reverse the fiber strands of the cable and reconnect them to the server |
D | Use a TDR to test both strands of a new replacement cable prior to connecting it to the server |
Question 92 |
A wireless access point that was working in a large warehouse last week is now offline. The technician observes there is no power to the device. The technician verifies PoE is working on the switchport, and then confirms the wireless access point is still not powering up. Which of the following is the MOST likely issue? (ID-NTIA-294)
A | Incorrect pin-out |
B | Damaged cable |
C | Switch configuration |
D | Attenuation |
Question 93 |
A network technician receives a trouble ticket and speaks to the user who is experiencing the issues with the application. Which of the following should the technician perform next? (ID-NTIA-241)
A | Document the findings |
B | Gather information |
C | Establish a plan of action |
D | Determine the symptoms |
Question 94 |
A network administrator wants to ensure sensitive data is not exfiltrated from the system electronically. Which of the following should be implemented? (ID-NTIA-341)
A | DLP |
B | AUP |
C | NDA |
D | SLA |
Question 95 |
Which of the following is the SHORTEST way to write 2001:0000:0d58:0000:0000:0095:7565:0001 in proper IPv6 shorthand? (ID-NTIA-331)
A | 2001::d58::95:7565:1 |
B | 2001:0:d58:0:0:95:7565:1 |
C | 2001:0:0d58::95:7565:1 |
D | 2001:0:d58::95:7565:1 |
Question 96 |
To replace a defective UPS, the network administrator must take the switch offline. The administrator wants to be able to perform maintenance UPS in the future without affecting the availability of the attached switch. Which of the following would best allow this to happen? (ID-NTIA-358)
A | Add a redundant power supply to the switch |
B | Implement stacking on the switches in the rack |
C | Install a power converter for the switch |
D | Add a second UPS into the rack |
Question 97 |
A network engineer is trying to determine where to place a firewall based on the flow of traffic. Which of the following types of documentation would assist the engineer in doing this? (ID-NTIA-293)
A | Change management |
B | Network configuration |
C | Network diagram |
D | Rack diagram |
Question 98 |
A network administrator wants to ensure all traffic is inspected and abides by the AUP, and that malicious traffic is stopped. Which of the following features should be enabled on a firewall to meet this requirement? (ID-NTIA-265)
A | Intrusion detection |
B | Content filtering |
C | Dynamic DNS |
D | Proxy service |
Question 99 |
A network engineer is working on a network connectivity problem between a site in Calgary and a site in New York. The connection went down overnight, and the engineer is unsure where the connection failed. The technician is logged into the primary switch in the customer’s network, which is also the company’s connection to the WAN. Which of the following tools should the technician use to determine the last available network hop? (ID-NTIA-247)
A | pathping |
B | traceroute |
C | netstat |
D | Nmap |
Question 100 |
Which of the following storage network technologies has the HIGHEST throughput? (ID-NTIA-275)
A | OC3 |
B | FCoE |
C | iSCSI |
D | InfiniBand |
Question 101 |
A company wishes to allow employees with company-owned mobile devices to connect automatically to the corporate wireless network upon entering the facility. Which of the following would best accomplish this objective? (ID-NTIA-312)
A | Geofencing |
B | MAC filtering |
C | Open wireless |
D | Pre-shared key |
Question 102 |
A junior network technician receives a help desk ticket from an end-user who is having trouble accessing a web application that was working the previous day. After talking with the end-user and gathering information about the issue, which of the following would be the most likely course of action for the technician to perform next? (ID-NTIA-378)
A | Implement the solution |
B | Do nothing |
C | Establish a theory of probable cause |
D | Escalate the ticket to a senior technician |
E | Document the findings and outcomes |
Question 103 |
A network technician arrives at a remote office and is unable to connect a laptop to corporate resources using the wireless network. After checking the IP address, the network technician notices the assigned IP address does not belong to the corporate network IP scheme. Which of the following has the network technician discovered? (ID-NTIA-277)
A | ARP poisoning |
B | Social engineering |
C | Session hijacking |
D | Evil twin |
E | DHCP exhaustion |
Question 104 |
A network technician has purchased a 10GBase-T switch and wishes to connect it to 30 computers with 10GB network cards. The computers are 225ft (69m) away, and all need to establish a 10 Gbps connection to meet business requirements. To minimize costs while still meeting these requirements, which of the following cable types should the technician choose? (ID-NTIA-264)
A | Cat 7 |
B | Cat 6 |
C | Cat 5e |
D | Cat 6a |
Question 105 |
Users report that the network is slow. Upon investigation, the technician notices all users are on one large subnet. Which of the following devices should be used to break up broadcast domains? (ID-NTIA-272)
A | Layer 2 switch |
B | Bridge |
C | Signal repeater |
D | Layer 3 switch |
E | Domain server |
Question 106 |
In a service provider network, a company has an existing IP address scheme. Company A's network currently uses the following scheme: (ID-NTIA-333)
Subnet 1: 192.168.1.0/26
Subnet 2: 192.168.1.65/26
Company B uses the following scheme:
Subnet 1: 192.168.1.50/28
A | VLAN |
B | NAT |
C | PAT |
D | DMZ |
Question 107 |
Which of the following is created on a 48-port switch with five active VLANs? (ID-NTIA-309)
A | 48 collision domains, 5 broadcast domains |
B | 240 private networks |
C | 48 networks, 5 segments |
D | 5 collision domains, 48 segments |
E | 240 usable IP addresses |
Question 108 |
A user reports network resources can no longer be accessed. The PC reports a link but will only accept static IP addresses. The technician pings other devices on the subnet, but the PC displays the message Destination unreachable. Which of the following are most likely the causes of this issue? Choose all suitable answers. (ID-NTIA-389)
A | VLAN mismatch |
B | TX/RX reverse |
C | Crosstalk |
D | Duplex mismatch |
E | Damaged cables |
F | Bent pins |
Question 109 |
A department is reporting network issues. Users can ping each other and the switch, but not the default gateway. When looking at a wiring diagram and a physical blueprint, a technician notices the 1000BaseLX SFP connects to a distribution switch via a cable that runs behind a large industrial refrigerator. The technician also notices both switches have been worked on recently. Which of the following is most likely the issue? (ID-NTIA-269)
A | EMI |
B | Open/short |
C | Attenuation |
D | TX/RX reverse |
Question 110 |
An NGFW alerts that a web server in the DMZ is sending suspicious traffic. A network administrator finds that port 25 is open, and the traffic is originating from this port. The only purpose of this server is to deliver website traffic. Which of the following should the network administrator recommend to the systems administrator? (ID-NTIA-392)
A | Disable FTP service on the server |
B | Disable the SMTP service on the server |
C | Disable DHCP service on the server |
D | Disable Telnet service on the server |
Question 111 |
Which of the following VPN protocols establishes a secure session that can be initiated using a browser? (ID-NTIA-363)
A | PPTP |
B | SSL VPN |
C | IPSec |
D | PTP |
Question 112 |
Which of the following protocols is responsible for inserting the tags into frames that enable switches to forward them to the appropriate VLAN? (ID-NTIA-318)
A | IEEE 802.1X |
B | IEEE 802.3x |
C | IEEE 802.1q |
D | IEEE 802.11ac |
Question 113 |
A network technician has created a network that consists of a router, a firewall, a switch, and several PCs. Which of the following physical network topologies was created? (ID-NTIA-347)
A | Star |
B | Bus |
C | Mesh |
D | Ring |
Question 114 |
A network engineer wants to segment the network into multiple broadcast domains. Which of the following devices would allow for communication between the segments? (ID-NTIA-219)
A | Load balancer |
B | Layer 2 switch |
C | Bridge |
D | Layer 3 switch |
Question 115 |
Which user has requested the performance monitoring in the following figure (click on figure to enlarge)? (ID-NTIA-321)
A | sanuja |
B | gdm |
C | systemd |
D | top |
E | root |
Question 116 |
A network technician needs to distribute an updated OS for all network switches at company locations throughout the world. The technician wants to ensure file integrity since several locations do not have high-quality connectivity to the Internet. Which of the following methods should be used to distribute the images while ensuring integrity? (ID-NTIA-249)
A | Use an FTP server and provide the file hash. |
B | Use a TFTP server and UDP protocol. |
C | Use an HTTP server to share the file. |
D | Use a modem and dial-up connection. |
Question 117 |
What is the name of the tool shown in the following figure? (ID-NTIA-319)
Image Credits: https://www.homedepot.com/p/ Ideal-Punchdown-Tool- with-110-and-66- Blades-35-485/ 203761571
A | Punchdown tool |
B | Tone generator and locator |
C | Butt set |
D | Crimper |
Question 118 |
An IT technician at a university was told to block all students from accessing the wireless network in the examination building. Which of the following would be the best method to prevent students from accessing the wireless network while in the examination building? (ID-NTIA-208)
A | Require PEAP for authentication to the wireless network |
B | Use MAC filtering for authorization to the wireless network |
C | Require a pre-shared key for authentication to the wireless network |
D | Implement a Faraday cage within the building premises |
Question 119 |
A network technician is installing a new wireless network for a client. The client has experienced issues with other building tenants connecting to the wireless network and utilizing the bandwidth. The client wants to prevent this from happening by using certificate-based authentication. Which of the following technologies should the network administrator implement? (ID-NTIA-386)
A | WEP-TKIP |
B | EAP-TLS |
C | WPA-PSK |
D | AES-CCMP |
Question 120 |
A technician has been asked to diagnose problems with DHCP addressing on a VLAN. The DHCP server responds to pings from the technician’s machine. Which of the following should the technician use to help diagnose the problem? (ID-NTIA-281)
A | netstat |
B | nslookup |
C | Spectrum analyzer |
D | Packet sniffer |
Question 121 |
A company has decided to allow certain users to work remotely by opening up a VPN connection through the firewall. The security policy has been updated to allow VPN connections only from certain users and to specific areas on the network. Along with configuring the correct policies on the firewall, which of the following also needs to be configured on users’ mobile devices to allow these VPN connections? (ID-NTIA-248)
A | Geotagging application |
B | VNC application |
C | Credentials |
D | Kerberos |
Question 122 |
Which of the cabling types listed below is the most susceptible to EMI/RFI? (ID-NTIA-239)
A | Coaxial cabling |
B | STP cabling |
C | Fiber-optic cabling |
D | UTP cabling |
Question 123 |
Which of the following WAN technologies utilizes the concept of virtual circuits and point-multipoint connections? (ID-NTIA-365)
A | ISDN |
B | Broadband cable |
C | Frame relay |
D | MPLS |
E | PRI |
Question 124 |
A systems administrator has recently purchased and installed a large electronic signage screen for the company's parking garage. The screen's management software was installed on a server with public IP address to allow remote management. The systems administrator is now troubleshooting an issue with the screen displaying unknown, random, and inappropriate messages. Which of the following is most effective in resolving this issue? (ID-NTIA-349)
A | Changing the management software's default port |
B | Changing the management software's default credentials |
C | Replacing the management software's self-signed certificate with a valid certificate |
D | Disabling unnecessary services from the server and management software |
Question 125 |
A type of protocol used in network management systems for monitoring network-attached devices is called _________. (ID-NTIA-229)
A | RDP |
B | NTP |
C | SNMP |
D | SSL |
E | SMB |
Question 125 Explanation:
Simple Network Management Protocol (SNMP)
Question 126 |
A network administrator is adding a new WAN circuit from the ISP to a new building. In which of the following locations would the network administrator find the utility entry point? (ID-NTIA-260)
A | DMZ |
B | Demarc |
C | Data tier |
D | IDF |
Question 127 |
A network technician has deployed a new 802.11ac network and discovers some of the legacy POS equipment only supports WPA and 802.11a. Which of the following is the most secure method of connecting all devices while avoiding a performance impact to modern wireless devices? (ID-NTIA-283)
A | Connect the legacy devices with a PSK while the modern devices should use the more secure EAP. |
B | Configure the APs to use LEAP authentication to support WPA rather than WPA2 for full compatibility. |
C | Configure modern devices under the 5GHz band while dedicating the 2.4GHz band to legacy devices. |
D | Create two SSIDs, one to support CCMP-AES encryption and one with TKIP-RC4 encryption. |
Question 128 |
A technician is installing two new servers that collect logs. After installing the servers, the technician reviews the logical output from various commands. Which of the following should be included in a logical network diagram? (ID-NTIA-379)
A | Hostname |
B | Room number |
C | Rack location |
D | Media type |
Question 129 |
Sanuja has a separate guest network at his home with the SSID SanujaGuest. When a visitor connects to SanujaGuest, a web page is presented to the user asking for login credentials. What type of WiFi security is most likley being used? (ID-NTIA-364)
A | MAC filtering |
B | EAP-TLS |
C | SSL certificate |
D | WPA2 |
E | Captive portal |
Question 130 |
A company has procured a new office building and started the process of assigning employees to work at that location. The company has also purchased equipment for the new location. There are 5033 laptops, 6000 monitors, and 857 printers. Which of the following steps is the technician most likely to complete first? (ID-NTIA-310)
A | Create an inventory database |
B | Create a port location diagram |
C | Create a network baseline |
D | Create a rack diagram |
Question 131 |
A few weeks after starting a new position, Joe, a junior network administrator, receives a call from an internal number asking for his username and password to update some records. Joe realizes this may be a type of attack on the network since he has full access to network resources. Which of the following attacks is described? (ID-NTIA-325)
A | Insider threat |
B | Trojan horse |
C | Logic bomb |
D | Social engineering |
E | Session hijacking |
Question 132 |
A network technician sets up a new schedule on the backup server. Management has informed the technician that a full backup does not need to be completed every day. The technician sets up weekly full backups. Which of the following should the technician configure for the remaining days to MINIMIZE the daily backup size? (ID-NTIA-207)
A | Incremental |
B | Replica |
C | Differential |
D | Snapshots |
Question 133 |
When you accessed this website, https://sanuja.com is most likely using which port number on its the webserver? (ID-NTIA-263)
A | Port 80 |
B | Port 443 |
C | Port 22 |
D | Port 110 |
E | Port 110 |
Question 134 |
When enabling jumbo frames on a network device, which of the following parameters is being adjusted? (ID-NTIA-339)
A | Speed |
B | TTL |
C | Duplex |
D | MTU |
Question 135 |
A network technician is installing and configuring a new router for the sales department. Once the task is complete, which of the following needs to be done to record the change the technician is masking to the company network? (ID-NTIA-303)
A | Network diagrams |
B | Change management |
C | Labeling report |
D | Inventory report |
Question 136 |
What is the most likely reason that User A cannot communicate with User B based on the following network configuration? (ID-NTIA-376)
User A
IP address: 192.168.1.121
Subnet mask: 255.255.255.0
Default gateway: 192.168.1.1
User B
IP address: 192.168.1.125
Subnet mask: 255.255.248.0
Default gateway: 192.168.1.1
A | The subnet values should be the same |
B | User B's IP address is not a loopback address |
C | There is no problem identifiable by the values given. |
D | The default gateway should have different values |
Question 137 |
Which of the following is used to classify network data for the purpose of providing QoS? (ID-NTIA-223)
A | STP |
B | DSCP |
C | SIP |
D | VLANs |
Question 137 Explanation:
Differentiated Services Code Point (DSCP)
Question 138 |
A network administrator wants to increase the confidentiality of the system by hardening the authentication process. Currently, the users log in using usernames and passwords to access the system. Which of the following will increase the authentication factor to three? (ID-NTIA-361)
A | Enforcing a stronger password policy and using a hand geometry scan |
B | Using a smart card and RSA token |
C | Adding a fingerprint reader and retina scanner |
D | Adding a fingerprint reader to each workstation and providing a RSA authentication token |
Question 139 |
A computer lab on a campus network was recently reconfigured using recycled network cables. One of the 24 computers in the lab is unable to connect to the network after the upgrade. A network technician successfully uses the cable in question to connect directly to another computer. Which of the following is most likely the issue with the cable? (ID-NTIA-345)
A | The cable is a Cat 5 cable |
B | The cable has bent pins |
C | The cable is damaged |
D | The cable is a crossover cable |
E | The cable is rollover cable |
Question 140 |
A network engineer for a manufacturing company is implementing a wireless network that provides reliable coverage throughout the facility. There are several large, electric, motorized machines installed on the shop floor for automating the manufacturing process. These machines are known to be significant sources of RF interference. Which of the following frequencies should the wireless network use to minimize this interference? (ID-NTIA-311)
A | 5GHz |
B | 900MHz |
C | 56MHz |
D | 2.4 GHz |
Question 141 |
Which of the answers listed below refer to iptables? Choose all correct answers. (ID-NTIA-329)
A | MS Windows command-line tool |
B | Linux command-line tool |
C | Packet capturing utility |
D | Packet filtering utility |
E | Packet tracing utility |
Question 142 |
A network technician is reviewing switch ACLs to determine if they are causing communication issues with one PC. The PCs IP address is 192.168.12.66. Which of the following is the network range found in the ACL that could have affected this PC? (ID-NTIA-381)
A | 192.168.12.97 to 255.255.255.224 |
B | 192.168.12.97 to 255.255.255.248 |
C | 192.168.12.97 to 255.255.255.240 |
D | 192.168.12.97 to 255.255.255.192 |
Question 143 |
A customer wants to set up a guest wireless network for visitors. The customer prefers to not have a password on the network. Which of the following should a technician set up to force guests to provide information before using the network? (ID-NTIA-291)
A | Single sign-on |
B | RADIUS |
C | TACACS+ |
D | Captive portal |
Question 144 |
An assistant systems analyst reports the following findings of an investigation of slow Internet connections in a remote office to the senior systems analyst: (ID-NTIA-369)
Which of the following devices is causing the issue?
Which of the following devices is causing the issue?
A | Router |
B | Switch 2 |
C | Firewall |
D | Switch 1 |
Question 145 |
A technician discovered a company computer had a virus but was unable to remove it. The technician decided to erase the hard drive to eliminate the threat. Which of the following policies did the technician violate? (ID-NTIA-258)
A | Acceptable use |
B | Incident response |
C | Asset disposal |
D | Data loss prevention |
Question 146 |
Which of the following is the physical location where the customer-premise equipment comes together with the ISP or third-party telecommunications equipment? (ID-NTIA-287)
A | Equipment closet |
B | Demarcation point |
C | Intermediate distribution frame |
D | Server room |
Question 147 |
Which of the following is the most secure type of remote administration? (ID-NTIA-295)
A | Telnet over PSTN |
B | RDP over SSLv2 HTTPS terminal services gateway |
C | SSH over IPsec client-to-site VPN |
D | HTTP over WPA2-TKIP WiFi |
Question 148 |
A network technician has been asked to install an additional switch in an IDF, but all of the single-mode fiber is in use between the IDF and MDF. The technician has deployed new transceivers that allow for the use of a single fiber stand, providing the additional fiber needed for the new switch. Which of the following has the technician deployed? (ID-NTIA-266)
A | Duplex SFP+ |
B | 1000BaseLX SFP |
C | Bidirectional SFP |
D | Duplex GBIC |
Question 149 |
A new technician is connecting an access switch to a distribution switch uplink in a datacenter using fiber cables. Which of the following are transceivers the technician should use to perform this job? Select all correct answers. (ID-NTIA-380)
A | GBIC |
B | LC |
C | SFTP |
D | DB-9 |
E | SC |
F | RJ45 |
Question 150 |
A technician arrives at a new building to find cabling has been run and terminated, but only the wall ports have been labeled. Which of the following tools should be utilized to best facilitate labeling the patch panel? (ID-NTIA-384)
A | Tone generator |
B | Loopback adapter |
C | Cable tester |
D | Multimeter |
Question 151 |
Based on networks 10.8.16.0/22 and 10.8.31.0/21, which of the following is the BEST summarized CIDR notation? (ID-NTIA-337)
A | 10.8.0.0/19 |
B | 10.8.0.0/20 |
C | 10.0.0.0/24 |
D | 10.8.0.0/16 |
Question 152 |
A home security company has installed a wireless device at a residence that allows the company to view security status of the home online. The resident reports the 802.11ac home wireless intermittently loses connectivity for about 15 minutes twice a day. Which of the following is the most likely cause? (ID-NTIA-213)
A | There is additional data being transferred over the wireless network |
B | There is interference with the smart reader |
C | The utility company throttles power during peak hours |
D | An IoT device is causing a DoS attack on the wireless network |
Question 153 |
A WAP has been dropping off the network sporadically and reconnecting shortly thereafter. The Cat5 wire connecting the access point is a long run of 265ft (81m) and goes through the business area and the mechanical room. Which of the following should the technician do to fix the AP connectivity issue? (ID-NTIA-314)
A | Install a repeater to boost the signal to its destination |
B | Set the AP to half-duplex to compensate for signal loss |
C | Replace the UTP cable with plenum cable |
D | Upgrade the cable from Cat 5 to Cat 5e or Cat 6 |
Question 154 |
After several changes to the network, a technician needs to ensure a client is checking for new hostname and IP pairings. Which of the following commands should the technician use to force new lookups? (ID-NTIA-210)
A | ipconfig /release |
B | ipconfig /flushdns |
C | ipconfig /all |
D | ipconfig /renew |
Question 155 |
A network technician wants to remotely and securely access the desktop of a Linux workstation. The desktop is running remote control software without encryption. Which of the following should the technician use to secure the connection? (ID-NTIA-343)
A | EAP-PEAP |
B | SFTP |
C | SSH in tunnel mode |
D | RDP set to console connection |
Question 156 |
A network technician receives reports indicating some users are unable to gain access to any network resources. During troubleshooting, the technician discovers the workstations have an IP address of 169.254.x.x. Which of the following is the most likely cause? (ID-NTIA-302)
A | Misconfigured VLSM |
B | Rogue DHCP server |
C | Exhausted dynamic scope |
D | Expired IP address |
Question 156 Explanation:
The 169.254.x.x is part of Automatic Private IP Addressing (APIPA).
Question 157 |
A network protocol that allows for secure file transfer over Secure Shell (SSH) is called _________. (ID-NTIA-227)
A | Telnet |
B | TFTP |
C | SFTP |
D | FTPS |
E | SSL |
Question 157 Explanation:
SSH File Transfer Protocol (SFTP)
Question 158 |
Users have been experiencing connection timeout issues when using a web-based program. The network technician determines the problem happened due to a TTL setting that was set too low on the firewall. Which of the following BEST enabled the network technician to reach this conclusion? (ID-NTIA-387)
A | Reviewing SLA requirements |
B | Reviewing application logs |
C | Reviewing a vulnerability scan |
D | Reviewing a baseline report |
Question 159 |
What is the fastest way for validating a digital certificate? (ID-NTIA-230)
A | CRL |
B | Key escrow |
C | CSR |
D | OCSP |
Question 159 Explanation:
Online Certificate Status Protocol (OCSP)
Question 160 |
A technician is investigating an issue related to a single host that is unable to access the Internet. The technician records the following information: Host IP 169.254.1.10. The network IP address range on the DHCP server is 10.10.5.2-10.10.5.250 with a default gateway 10.10.5.1 and a DNS of 8.8.8.8. Which of the following should the technician perform to troubleshoot the issue? (ID-NTIA-279)
A | Perform a traceroute command to identify the router that is not functioning. |
B | Verify the host has physical connectivity and is on the correct VLAN. |
C | Configure the DNS address in the DHCP scope to a 10.10.5.0/24 address. |
D | Change the IP scope on the DHCP server to a public IP address range. |
Question 161 |
An office network consists of one two-port router connected to a 12-port switch. A four-port hub is also connected to the switch. On this particular network, which of the following is the number of collision domains that exist? (ID-NTIA-342)
A | 15 |
B | 13 |
C | 12 |
D | 14 |
E | 3 |
Question 162 |
The security manager reports that individual systems involved in policy or security violations or incidents cannot be located quickly. The security manager notices the hostnames all appear to be randomly generated characters. Which of the following would best assist the security manager in identifying systems involved in security incidents? (ID-NTIA-352)
A | Enforce port security to require system authentication |
B | Label existing systems with current hostnames |
C | Implement a standardized UNC |
D | Forward the DHCP logs to the security manager every day |
Question 163 |
Which of the following protocols are included in a Fibre Channel packet? (ID-NTIA-316)
A | TCP |
B | UDP |
C | IP |
D | Ethernet |
E | None of the answers are correct. |
Question 163 Explanation:
The Fibre Channel standard defines a unique, five-layer
protocol stack that does not correspond to the OSI model layers.
Question 164 |
A network technician is troubleshooting an issue routing TCP packets to an email server. At which of the following OSI layers is the issue occurring? (ID-NTIA-256)
A | Layer 1 – Physical |
B | Layer 3 – Network |
C | Layer 4 – Transport |
D | Layer 6 - Presentation |
E | Layer 7 – Application |
Question 165 |
Which of the answers listed below refers to a secure replacement for Telnet? (ID-NTIA-226)
A | SNMP |
B | FTP |
C | CHAP |
D | SSL |
E | SSH |
Question 165 Explanation:
SSH (Secure Shell)
Question 166 |
A Chief Information Security Officer (CISO) has decided to implement a secure and user-friendly way to connect to the corporate wireless network. Each workstation will be authenticated individually using a unique certificate that will be deployed to the workstation by the organization’s certificate authority. Which of the following authentication methods would meet this requirement? (ID-NTIA-252)
A | PEAP |
B | WP2-PSK |
C | Captive portal |
D | EAP-TLS |
Question 166 Explanation:
Extensible Authentication Protocol-Transport Layer Security (EAP-TLS)
Question 167 |
Sanuja, a user, is having issues when trying to access certain web pages. Upon navigating to a web page, it seems like it connects, but then presents the following message: (ID-NTIA-245)
“The Security certificate presented by this website was not trusted by trusted certificate authority.”
Sanuja has cleared his cache and cookies, rebooted his machine, and attempted to browse to the website from a coworker’s desktop, but it still presented with this error. Which of the following is the MOST likely cause of this error?
“The Security certificate presented by this website was not trusted by trusted certificate authority.”
Sanuja has cleared his cache and cookies, rebooted his machine, and attempted to browse to the website from a coworker’s desktop, but it still presented with this error. Which of the following is the MOST likely cause of this error?
A | TLS is not enabled in the browser. |
B | The website is missing an HTTPS certificate. |
C | The SSL certificate has expired. |
D | The web server is missing an intermediate certificate. |
Question 168 |
Which of the following physical security controls is most likely to be susceptible to a false positive? (ID-NTIA-368)
A | Proximity reader |
B | Biometric device |
C | Identification card |
D | Video camera |
Question 169 |
An employee, who using a laptop connected to the wireless network, is able to connect to the Internet but not to internal company resources. A systems administrator reviews the following information from the laptop: (ID-NTIA-300)
IP: 192.168.1.100
Mask: 255.255.255.0
Router: 192.168.1.1
A | Wrong SSID |
B | Security type mismatch |
C | Channel overlap |
D | Interference |
Question 170 |
Which of the following is the best option for controlling and limiting users from accessing resources on the Internet using your companies network? (ID-NTIA-215)
A | IPS |
B | VPN concentrator |
C | IDS |
D | Proxy server |
E | Load balancer |
Question 171 |
A company is experiencing exponential growth and has hired many new employees. New users are reporting they cannot log into their systems, even though they are on the same network. The technician can see physical connectivity to the network switch along with their MAC addresses. Which of the following should the technician check next? (ID-NTIA-304)
A | VLAN routing |
B | Patch cable type |
C | DHCP scope availability |
D | Server-based firewall configuration issue |
Question 172 |
A company has hundreds of nodes on a single subnet and has decided to implement VLANs. Which of the following BEST describes the benefit of this approach? (ID-NTIA-218)
A | It provides multiple broadcast domains within a single collision domain |
B | It segments broadcast domains in the network infrastructure |
C | It provides a faster port to all servers |
D | It provides multiple collision domains on one switchport |
Question 173 |
What kind of tool would be used for troubleshooting short/open circuits inside a copper cable? (ID-NTIA-238)
A | Spectrum analyzer |
B | Loopback adapter |
C | OTDR |
D | TDR |
Question 173 Explanation:
Time-Domain Reflectometer (TDR)
Question 174 |
A network administrator needs to transmit traffic to geographically diverse sites to improve performance. Which of the following devices would BEST direct traffic to the remote sites? (ID-NTIA-370)
A | Bridge |
B | Switch |
C | Hub |
D | Router |
Question 175 |
You have been called in to inspect a network configuration. You are given only one network diagram, shown in the following figure (click to enlarge). Using the diagram, what recommendation might you make? (ID-NTIA-377)
A | None, the network looks good. |
B | Cable 3 should be an STP cable. |
C | Cable 2 should be an STP cable. |
D | Cable 1 does not need to be plenum rated. |
Question 175 Explanation:
In this diagram, Cable i is plenum rated and should be fine. Cable 3 is a path cable and does not need to be STP rated. However, Cable 2 goes through walls and ceilings. Therefore, it should be recommended to have a better grade of cable than regular UTP. STP provides greater resistance to EMI.
Question 176 |
A technician is troubleshooting intermittent connectivity on a line-of-sight wireless bridge. Which of the following tools should the technician use to determine the cause of the packet loss? (ID-NTIA-397)
A | Multimeter |
B | OTDR |
C | Spectrum analyzer |
D | Packet sniffer |
Question 177 |
When deploying UTP cables in a networking environment, which of the following are acceptable standards? Choose all the correct answers. (ID-NTIA-288)
A | 1000BaseSX |
B | 10Base5 |
C | 1000BaseLX |
D | 10Base2 |
E | 1000BaseT |
F | 10GBaseT |
Question 178 |
Which of the answers listed below refers to an ipconfig command parameter used for displaying the full TCP/IP configuration information for all adapters? (ID-NTIA-330)
A | -a |
B | /all |
C | -i address |
D | eth_addr |
Question 179 |
A network technician is setting up a WiFi network in an apartment complex for seniors. When trying to determine the best channel, which of the following is the best tool to use? (ID-NTIA-209)
A | Protocol analyzer |
B | Tone generator |
C | Spectrum analyzer |
D | OTDR |
E | Multimeter |
Question 180 |
A technician is configuring a new email server and needs to modify DNS records. Which of the following records should the technician update to ensure email functions as expected? (ID-NTIA-262)
A | CNAME |
B | MX |
C | SRV |
D | AAAA |
Question 181 |
A user believes a work email account has been compromised. A technician discovers that an email seeming to be from the user’s bank shares the same origin IP address as the last login to the email account. Which of the following types of attack is described in this scenario? (ID-NTIA-292)
A | Phishing |
B | Ransomware |
C | Man-in-the-middle |
D | Spam |
Question 182 |
A technician wants to have the ability to transfer files from home to the company’s network on a regular basis. Which of the following is a remote access protocol the technician can utilize to bypass interactive user authentication by using a list of known host public keys? (ID-NTIA-201)
A | DHCP |
B | TFTP |
C | SCP |
D | FTP |
E | Telnet |
Question 183 |
According to the troubleshooting methodology, which of the following steps will help a technician gather information about a network problem? Choose all correct answers. (ID-NTIA-390)
A | Test solutions |
B | Establish a theory of probable cause |
C | Question users |
D | Implement preventive measures |
E | Duplicate the problem |
F | Document findings |
Question 184 |
The IEEE 802.11g standard is backwards compatible with which of the following? (ID-NTIA-236)
A | 802.11b |
B | 802.11ac |
C | 802.11a |
D | 802.11n |
Question 185 |
Which of the following is the correct port number for NTP? (ID-NTIA-220)
A | Port 161 |
B | Port 69 |
C | Port 25 |
D | Port 123 |
Question 186 |
A corporate manager says wireless phones do not work properly inside the main building. After a troubleshooting process, the network administrator detects that the voice packets are arriving on the wireless phones with different delay times. Which of the following performance issues is the company facing? (ID-NTIA-308)
A | Jitter |
B | Attenuation |
C | Latency |
D | Frequency mismatch |
Question 187 |
Which of the following would require troubleshooting if a network connectivity problem originates from mismatched transceiver types? (ID-NTIA-237)
A | ASIC |
B | SPF |
C | GBIC |
D | SFP |
E | MDI-X |
Question 188 |
A network administrator is configuring the 172.16.40.0/22 network for a new building. Which of the following is the number of hosts that will be supported on this network? (ID-NTIA-274)
A | 512 |
B | 1022 |
C | 510 |
D | 2048 |
E | 2046 |
F | 1024 |
Question 189 |
Which of the following BEST describes the functionality of the root guard feature on a switch? (ID-NTIA-261)
A | Loop protection is enabled on the root port of a switch. |
B | BPDUs entering the root bridge are ignored. |
C | The STP root bridge cannot be changed. |
D | Broadcast storms entering from a root port are blocked. |
Question 190 |
A system administrator receives reports from users of odd behavior in regard to a recently installed server. While reviewing the server network configuration, the system administrator does both a forward and a reverse DNS lookup on the host, along with the network adapter configuration. Which of the following is the problem identified in the output below? (ID-NTIA-374)
A | The server IP address is incorrectly configured |
B | The reverse DNS entry is pointing to a different host |
C | There is no reverse DNS entry for this host |
D | The DNS lookup entry is incorrectly configured |
Question 191 |
Which of the following operate only within the UDP protocol? (ID-NTIA-322)
A | Frames |
B | Datagrams |
C | Packets |
D | Segments |
Question 192 |
Which of the following can be used to prevent unauthorized employees from entering restricted areas? (ID-NTIA-253)
A | Video cameras |
B | Motion sensors |
C | Sign-in sheets |
D | Swipe badges |
Question 193 |
A network admin can ping remote host by its IP address, but not by FQDN. Which of the following is the most probable source of the problem? (ID-NTIA-233)
A | DNS |
B | NetBIOS |
C | HTTP |
D | ICMP |
E | DHCP |
Question 194 |
A network administrator wishes to ensure there are no unnecessary open communication paths into a server. Using a port scanner, the administrator finds that ports are reported as closed. Which of the following best explains this response? (ID-NTIA-366)
A | The ports replied with a SYN/ACK response |
B | The ports are associated with deprecated services |
C | The ports belong to an active system and are denying requests |
D | The ports do not belong to a live system |
Question 195 |
Which of the following explains why splitting a large switched Ethernet LAN into two LANs by adding a router can help to alleviate traffic congestion and improve performance? Choose all correct answers. (ID-NTIA-326)
A | Adding a router diverts traffic to an alternate path through the network. |
B | Adding a router reduces the amount of unicast traffic on each of the two LANs. |
C | Adding a router prevents computers on one LAN from communicating with computers on another LAN. |
D | Adding a router reduces the amount of broadcast traffic on each of the two LANs. |
Question 196 |
Which of the following protocol standards defines a layered implementation that does not correspond to the layers of the Open Systems Interconnection (OSI) model? (ID-NTIA-317)
A | Fibre Channel |
B | PPP |
C | RDMA |
D | iSCSI |
Question 197 |
A vendor is installing an Ethernet network in a new hospital wing. The cabling is primarily run above the celling grid near air conditioning ducts and sprinkler pipes. Which of the following cable types is required for this installation? (ID-NTIA-255)
A | Cat 7 |
B | PVC |
C | Single-mode |
D | Plenum |
Question 198 |
An administrator is redesigning a company’s network and wants to reduce the amount of hardware needed. Currently, all VLAN routing goes out a single switch interface to a router. Which of the following would reduce the number of devices in this configuration? (ID-NTIA-250)
A | Switch |
B | Bridge |
C | Next-generation firewall |
D | Multilayer switch |
Question 199 |
A university has a lecture hall containing 100 students. Currently, the lecture hall has two 802.11ac wireless access points, which can accommodate up to 50 devices each. Several students report they are unable to connect devices to the wireless network. Which of the following is most likely the issue? (ID-NTIA-315)
A | The students are attempting to connect 802.11g devices |
B | Distance limitations are preventing the students from connecting |
C | One of the wireless access points is on the wrong frequency |
D | The students are using more than one wireless device port seat |
Question 200 |
You are an IT consultant for a small business where maintaining physical security is difficult. Implementing which of the following standards would best help to prevent unauthorized connections to the wired network? (ID-NTIA-214)
A | 802.1q |
B | 802.1X |
C | 802.11ac |
D | 802.3af |
E | 802.3at |
Once you are finished, click the button below. Any items you have not completed will be marked incorrect.
Get Results
There are 200 questions to complete.
← |
List |
→ |
Return
Shaded items are complete.
| 1 | 2 | 3 | 4 | 5 |
| 6 | 7 | 8 | 9 | 10 |
| 11 | 12 | 13 | 14 | 15 |
| 16 | 17 | 18 | 19 | 20 |
| 21 | 22 | 23 | 24 | 25 |
| 26 | 27 | 28 | 29 | 30 |
| 31 | 32 | 33 | 34 | 35 |
| 36 | 37 | 38 | 39 | 40 |
| 41 | 42 | 43 | 44 | 45 |
| 46 | 47 | 48 | 49 | 50 |
| 51 | 52 | 53 | 54 | 55 |
| 56 | 57 | 58 | 59 | 60 |
| 61 | 62 | 63 | 64 | 65 |
| 66 | 67 | 68 | 69 | 70 |
| 71 | 72 | 73 | 74 | 75 |
| 76 | 77 | 78 | 79 | 80 |
| 81 | 82 | 83 | 84 | 85 |
| 86 | 87 | 88 | 89 | 90 |
| 91 | 92 | 93 | 94 | 95 |
| 96 | 97 | 98 | 99 | 100 |
| 101 | 102 | 103 | 104 | 105 |
| 106 | 107 | 108 | 109 | 110 |
| 111 | 112 | 113 | 114 | 115 |
| 116 | 117 | 118 | 119 | 120 |
| 121 | 122 | 123 | 124 | 125 |
| 126 | 127 | 128 | 129 | 130 |
| 131 | 132 | 133 | 134 | 135 |
| 136 | 137 | 138 | 139 | 140 |
| 141 | 142 | 143 | 144 | 145 |
| 146 | 147 | 148 | 149 | 150 |
| 151 | 152 | 153 | 154 | 155 |
| 156 | 157 | 158 | 159 | 160 |
| 161 | 162 | 163 | 164 | 165 |
| 166 | 167 | 168 | 169 | 170 |
| 171 | 172 | 173 | 174 | 175 |
| 176 | 177 | 178 | 179 | 180 |
| 181 | 182 | 183 | 184 | 185 |
| 186 | 187 | 188 | 189 | 190 |
| 191 | 192 | 193 | 194 | 195 |
| 196 | 197 | 198 | 199 | 200 |
| End |
Return
You have completed
questions
question
Your score is
Correct
Wrong
Partial-Credit
You have not finished your quiz. If you leave this page, your progress will be lost.
Correct Answer
You Selected
Not Attempted
Final Score on Quiz
Attempted Questions Correct
Attempted Questions Wrong
Questions Not Attempted
Total Questions on Quiz
Question Details
Results
Date
Score
Hint
Time allowed
minutes
seconds
Time used
Answer Choice(s) Selected
Question Text
All done
Need more practice!
Keep trying!
Not bad!
Good work!
Perfect!
Based on general knowledge and CompTIA guidelines published in 2020.
FAQ | Report an Error
Study outline at: CompTIA Exams Guide
Disclaimer: While every reasonable effort is made to ensure that the information provided is accurate, no guarantees for the currency or accuracy of information are made. It takes several proof readings and rewrites to bring the quiz to an exceptional level. If you find an error, please contact me as soon as possible. Please indicate the question ID-Number or description because server may randomize the questions and answers.