N10-007 : CompTIA Network+ : Part 01

NS – Modules 20 – 22

  1. A UTM is deployed on the external edge of the main corporate office. The office connects to the WAN port of the edge router. The edge router at the main office connects to the remote offices using GRE IPSec tunnels. A network administrator notices that a worm that was not detected by the UTM has spread from the remote sites into the corporate network. The UTM currently has traffic rules applied that should block the port used by the worm. Which of the following steps would MOST likely correct this issue?

    • Move the UTM onto the LAN side of the network
    • Enable TLS inspection on the UTM
    • Enable stateful inspection on the UTM
    • Configure the UTM to deny encrypted files from being transferred
  2. A technician has racked a new access switch and has run multimode fiber to a new location. After installing an extended-range 10Gb SFP in the core switch, the technician installed a 10Gb SFP in the access switch and connected the port to the new extension with a fiber jumper. However, the link does not display, and the technician cannot see light emitting from the core switch. Which of the following solutions is MOST likely to resolve the problem?

    • Swap the fiber pairs in one of the SFPs
    • Replace the jumpers with single-mode fiber
    • Set the correct MTU on the new interface
    • Install an optic that matches the fiber type
  3. A network technician has implemented ACLs to limit access to cloud-based file storage. Which of the following security mechanisms has the technician enforced?

    • DLP
    • IDS
    • WAF
    • WPA
    • TPM
  4. A network technician receives a call from a user in the accounting department stating that Internet connectivity has been lost after receiving a new workstation. No other users in accounting are reporting similar issues. The network technician is able to ping the machine from the accounting department’s router, but is not able to ping the machine from the IT network. Which of the following is MOST likely the cause?

    • Incorrect default gateway
    • Duplicate IP address
    • Misconfigured OSPF
    • Improper VLAN assignment
  5. A firewall administrator is implementing a rule that directs HTTP traffic to an internal server listening on a non-standard socket. Which of the following types of rules is the administrator implementing?

    • NAT
    • PAT
    • STP
    • SNAT
    • ARP
  6. A technician is installing a new wireless badging system on a hospital network. The requirements of the badging system are for it to have its own SSID and low power levels. The badging system has to cover 99.9% of the hospital. Which of the following is the BEST action to take to meet the system requirements?

    • Install additional WAPs
    • Install external antennas
    • Move the WAPs closer to the more populated area
    • Change the antenna types
  7. A technician attempts to replace a switch with a new one of similar model from the same vendor. When the technician moves the fiber and SFP plug, the switch does not completely boot up. Considering that the config files are the same, which of the following is the MOST likely cause of the failure?

    • Damaged fiber
    • Corrupted operating system
    • VLAN mismatch
    • Bad port
  8. A company has hundreds of nodes on a single subnet and has decided to implement VLANs. Which of the following BEST describes the benefit of this approach?

    • It segments broadcast domains in the network infrastructure
    • It provides a faster port to all servers
    • It provides multiple collision domains on one switchport
    • It provides multiple broadcast domains within a single collision domain
  9. A company has completed construction of a new datacenter, and the IT staff is now planning to relocate all server and network equipment from the old site to the new site. Which of the following should the IT staff reference to determine the location of the equipment being moved?

    • Rack diagrams
    • Network topology
    • Standard operating procedures
    • Wiring documentation
  10. Which of the following would allow a device to maintain the same IP address lease based on the physical address of the network card?

    • MAC address reservation
    • Static IP address
    • IP address exclusion
    • Custom DNS server entry
  11. A technician wants to prevent an unauthorized host from connecting to the network via Ethernet. Which of the following is a Layer 2 access control the technician should implement?

    • Access control lists
    • Captive portal
    • WPA2
    • Port security
  12. A network engineer is configuring wireless access for guests at an organization. Access to other areas in the organization should not be accessible to guests. Which of the following represents the MOST secure method to configure guest access to the wireless network?

    • Guests should log into a separate wireless network using a captive portal
    • Guests should log into the current wireless network using credentials obtained upon entering the facility
    • The existing wireless network should be configured to allow guest access
    • An additional wireless network should be configured to allow guest access
  13. The server team has just installed an application across three different servers. They are asking that all requests to the application are spread evenly across the three servers. Which of the following should the network team implement to fulfil the request?

    • Proxy server
    • UTM appliance
    • Content filter
    • Load balancer
  14. A network technician is deploying mobile phones for a company’s sales staff. Salespeople frequently travel nationally and internationally to meet with clients, and often have to roam or switch cellular providers. Which of the following standards is the BEST option to fit the requirements?

    • GSM
    • TDM
    • CDMA
    • PSTN
    • MIMO
  15. A network administrator has been given a network of 172.16.85.0/21 and wants to know the usable range of IP addresses on that subnet. Which of the following indicates the correct IP address range?

    • 172.16.80.0-172.16.85.254
    • 172.16.80.0-172.16.88.255
    • 172.16.80.1-172.16.87.254
    • 172.16.80.1-172.16.85.255
  16. A network technician is troubleshooting wireless network issues in a crowded office complex and suspects there is interference from nearby wireless networks. Which of the following should the technician perform to discover possible interference?

    • Site survey
    • Vulnerability scanning
    • Wardriving
    • Checking logical diagram
    • Bandwidth test
  17. A network technician is troubleshooting an issue and has established a theory of probable cause. Which of the following steps should the network technician take NEXT?

    • Test the possible solution
    • Question the users
    • Determine what has changed
    • Document the theory
  18. A network technician has discovered a rogue access point placed under an empty cubicle desk. Which of the following should the technician perform to ensure another cannot be placed on the network?

    • Disable unused ports on switches
    • Enable DHCP guard to detect rogue servers
    • Configure WPA2 on all access points
    • Use TACACS+ authentication
  19. Which of the following provides the ability to deploy consistent access point configurations from a central location?

    • Wireless controller
    • AAA server
    • WiFi-protected setup
    • Proxy server
    • VPN concentrator
  20. A network technician is configuring a wireless network at a branch office. Users at this office work with large files and must be able to access their files on the server quickly. Which of the following 802.11 standards provides the MOST bandwidth?

    • a
    • ac
    • g
    • n

NS – Modules 20 – 22