Network Plus Brain Dump

A UTM is deployed on the external edge of the main corporate office. The office connects to the WAN port of the edge router. The edge router at the main office connects to the remote offices using GRE IPSec tunnels. A network administrator notices that a worm that was not detected by the UTM has spread from the remote sites into the corporate network. The UTM currently has traffic rules applied that should block the port used by the worm. Which of the following steps would MOST likely correct this issue? A. Move the UTM onto the LAN side of the network B. Enable TLS inspection on the UTM C. Enable stateful inspection on the UTM D. Configure the UTM to deny encrypted files from being transferred

A technician has racked a new access switch and has run multimode fiber to a new location. After installing an extended-range 10Gb SFP in the core switch, the technician installed a 10Gb SFP in the access switch and connected the port to the new extension with a fiber jumper. However, the link does not display, and the technician cannot see light emitting from the core switch. Which of the following solutions is MOST likely to resolve the problem? A. Swap the fiber pairs in one of the SFPs B. Replace the jumpers with single-mode fiber C. Set the correct MTU on the new interface D. Install an optic that matches the fiber type

A network technician has implemented ACLs to limit access to cloud-based file storage. Which of the following security mechanisms has the technician enforced? A. DLP B. IDS C. WAF D. WPA E. TPM

A network technician receives a call from a user in the accounting department stating that Internet connectivity has been lost after receiving a new workstation. No other users in accounting are reporting similar issues. The network technician is able to ping the machine from the accounting department's router, but is not able to ping the machine from the IT network. Which of the following is MOST likely the cause? A. Incorrect default gateway B. Duplicate IP address C. Misconfigured OSPF D. Improper VLAN assignment

A firewall administrator is implementing a rule that directs HTTP traffic to an internal server listening on a non-standard socket. Which of the following types of rules is the administrator implementing? A. NAT B. PAT C. STP D. SNAT E. ARP

A technician is installing a new wireless badging system on a hospital network. The requirements of the badging system are for it to have its own SSID and low power levels. The badging system has to cover 99.9% of the hospital. Which of the following is the BEST action to take to meet the system requirements? A. Install additional WAPs B. Install external antennas C. Move the WAPs closer to the more populated area D. Change the antenna types

A technician attempts to replace a switch with a new one of similar model from the same vendor. When the technician moves the fiber and SFP plug, the switch does not completely boot up. Considering that the config files are the same, which of the following is the MOST likely cause of the failure? A. Damaged fiber B. Corrupted operating system C. VLAN mismatch D. Bad port

A company has hundreds of nodes on a single subnet and has decided to implement VLANs. Which of the following BEST describes the benefit of this approach? A. It segments broadcast domains in the network infrastructure. B. It provides a faster port to all servers. C. It provides multiple collision domains on one switchport. D. It provides multiple broadcast domains within a single collision domain

A company has completed construction of a new datacenter, and the IT staff is now planning to relocate all server and network equipment from the old site to the new site. Which of the following should the IT staff reference to determine the location of the equipment being moved? A. Rack diagrams B. Network topology C. Standard operating procedures D. Wiring documentation

Which of the following would allow a device to maintain the same IP address lease based on the physical address of the network card? A. MAC address reservation B. Static IP address C. IP address exclusion D. Custom DNS server entry

A technician wants to prevent an unauthorized host from connecting to the network via Ethernet. Which of the following is a Layer 2 access control the technician should implement? A. Access control lists B. Captive portal C. WPA2 D. Port security

A network engineer is configuring wireless access for guests at an organization. Access to other areas in the organization should not be accessible to guests. Which of the following represents the MOST secure method to configure guest access to the wireless network? A. Guests should log into a separate wireless network using a captive portal B. Guests should log into the current wireless network using credentials obtained upon entering the facility C. The existing wireless network should be configured to allow guest access D. An additional wireless network should be configured to allow guest access

The server team has just installed an application across three different servers. They are asking that all requests to the application are spread evenly across the three servers. Which of the following should the network team implement to fulfill the request? A. Proxy server B. UTM appliance C. Content filter D. Load balancer

A network technician is deploying mobile phones for a company's sales staff. Salespeople frequently travel nationally and internationally to meet with clients, and often have to roam or switch cellular providers. Which of the following standards is the BEST option to fit the requirements? A. GSM B. TDM C. CDMA D. PSTN E. MIMO

A network administrator has been given a network of 172.16.85.0/21 and wants to know the usable range of IP addresses on that subnet. Which of the following indicates the correct IP address range? A. 172.16.80.0-172.16.85.254 B. 172.16.80.0-172.16.88.255 C. 172.16.80.1-172.16.87.254 D. 172.16.80.1-172.16.85.255

A network technician is troubleshooting wireless network issues in a crowded office complex and suspects there is interference from nearby wireless networks. Which of the following should the technician perform to discover possible interference? A. Site survey B. Vulnerability scanning C. Wardriving D. Checking logical diagram E. Bandwidth test

A network technician is troubleshooting an issue and has established a theory of probable cause. Which of the following steps should the network technician take NEXT? A. Test the possible solution B. Question the users C. Determine what has changed D. Document theory

A network technician has discovered a rogue access point under an empty cubicle desk. Which of the following should the technician perform to ensure another cannot be placed on the network? A. Disable unused ports on switches B. Enable DHCP guard to detect rogue servers C. Configure WPA2 on all access points D. Use TACACS+ authentication

Which of the following provides the ability to deploy consistent access point configurations from a central location? A. Wireless controller B. AAA server C. WiFi-protected setup D. Proxy server E. VPN concentrator

A network technician is configuring a wireless network at a branch office. Users at this office work with large files and must be able to access their files on the server quickly. Which of the following 802.11 standards provides the MOST bandwidth? A. a B. ac C. g D. n

A network administrator configures a router with the following IP address information: Gigabit Ethernet 1 Interface: 10.10.0.1/24 Serial 0 Interface: 10.10.0.253/30 Clients are connected to a switch on the gigabit Ethernet interface; the ISP is connected to the Serial 0 interface. When the router configuration is complete and client devices are reconfigured all clients report that they are unable to connect to the Internet. Which of the following is the MOST likely reason? A. The router was configured with an incorrect IP address B. The router was configured with an incorrect default gateway C. The router was configured with an incorrect subnet mask D. The router was configured with an incorrect loopback address

A penetration tester has been tasked with reconnaissance to determine which ports are open on the network. Which of the following tasks should be done FIRST? (Choose two.) A. Network scan B. Banner grab C. Tracert D. DHCP server check E. Brute-force attack

Users are reporting Internet connectivity issues. The network administrator wants to determine if the issues are internal to the company network or if there is an issue with the ISP. Which of the following tools should be used to BEST determine where the outage is occurring? A. traceroute B. ping C. nslookup D. netstat

Which of the following security mechanisms dynamically assigns a Layer 2 address and restricts traffic only to that Layer 2 address? A. Sticky MAC B. 802.1x C. ACL D. NAC

Which of the following is a vulnerable system designed to detect and log unauthorized access? A. SIEM B. Honeypot C. DMZ D. Proxy server

According to the OSI model, at which of the following layers is data encapsulated into a packet? A. Layer 2 B. Layer 3 C. Layer 4 D. Layer 5 E. Layer 6

Which of the following WAN technologies is MOST preferred when developing a VoIP system with 23 concurrent channels? A. DSL B. POTS C. T1 D. DOCSIS

A junior network technician is setting up a new email server on the company network. Which of the following default ports should the technician ensure is open on the firewall so the new email server can relay email? A. 23 B. 25 C. 110 D. 143

Which of the following policies would Joe, a user, have to agree to when he brings in his personal tablet to connect to the company's guest wireless Internet? A. NDA B. IRP C. BYOD D. SLA

In a service provider network, a company has an existing IP address scheme. Company A's network currently uses the following scheme: Subnet 1: 192.168.1.0/26 Subnet 2: 192.168.1.65/26 Company B uses the following scheme: Subnet 1: 192.168.1.50/28 The network administrator cannot force the customer to update its IP scheme. Considering this, which of the following is the BEST way for the company to connect these networks? A. DMZ B. PAT C. NAT D. VLAN

A network engineer is designing a new network for a remote site. The remote site consists of ten desktop computers, ten VoIP phones, and two network printers. In addition, two of the desktop computers at the remote site will be used by managers who should be on a separate network from the other eight computers. Which of the following represents the BEST configuration for the remote site? A. One router connected to one 24-port switch configured with three VLANS: one for the manager's computers and printer, one for the other computers and printer, and one for the VoIP phones B. Two routers with each router connected to a 12-port switch, with a firewall connected to the switch connected to the manager's desktop computers, VoIP phones, and printer C. One router connected to one 12-port switch configured for the manager's computers, phones, and printer, and one 12-port switch configured for the other computers, VoIP phones, and printer D. One router connected to one 24-port switch configured with two VLANS: one for the manager's computers, VoIP phones, and printer, and one for the other computers, VoIP phones, and printer

A network technician is troubleshooting an end-user connectivity problem. The network technician goes to the appropriate IDF but is unable to identify the appropriate cable due to poor labeling. Which of the following should the network technician use to help identify the appropriate cable? A. Tone generator B. Multimeter C. OTDR D. Loopback adapter

A network technician notices the site-to-site VPN and Internet connection have not come back up at a branch office after a recent power outage. Which of the following is an out-of-band method the technician would MOST likely utilize to check the branch office's router status? A. Use a modem to console into the router B. Walk a user through troubleshooting the connection C. Travel to the branch office D. Hire a contractor to go on-site

A network technician is considering opening ports on the firewall for an upcoming VoIP PBX implementation. Which of the following protocols is the technician MOST likely to consider? (Choose three.) A. SIP B. NTP C. H.323 D. SMB E. ICMP F. RTP G. IPSec H. RDP

A device operating at Layer 3 of the OSI model uses which of the following protocols to determine the path to a different network? A. STP B. RTP C. RIP D. NTP E. SIP

A network administrator is setting up a web-based application that needs to be continually accessible to the end users. Which of the following concepts would BEST ensure this requirement? A. High availability B. Snapshots C. NIC teaming D. Cold site

Which of the following devices should a network administrator configure on the outermost part of the network? A. Media converter B. Switch C. Modem D. FirewalL

A company finds that many desktops are being reported as missing or lost. Which of the following would BEST assist in recovering these devices? A. Asset tracking tags B. Motion detectors C. Security guards D. Computer locks

A technician is connecting a router directly to a PC using the G1/0/1 interface. Without the use of auto-sensing ports, which of the following cables should be used? A. Straight-through B. Console C. Rollover D. Crossover

A technician is diagnosing an issue with a new T1 connection. The router is configured, the cable is connected, but the T1 is down. To verify the configuration of the router, which of the following tools should the technician use? A. Loopback adapter B. Cable tester C. Tone generator D. Multimeter

A network technician receives a call from a user who is experiencing network connectivity issues. The network technician questions the user and learns the user brought in a personal wired router to use multiple computers and connect to the network. Which of the following has the user MOST likely introduced to the network? A. Rogue DHCP server B. Evil twin C. VLAN mismatch D. Honeypot

A technician is setting up a direct connection between two older PCs so they can communicate but not be on the corporate network. The technician does not have access to a spare switch but does have spare Cat 6 cables, RJ-45 plugs, and a crimping tool. The technician cuts off one end of the cable. Which of the following should the technician do to make a crossover cable before crimping the new plug? A. Reverse the wires leading to pins 1 and 2 B. Reverse the wires leading to pins 1 and 3 C. Reverse the wires leading to pins 2 and 3 D. Reverse the wires leading to pins 2 and 4

Which of the following is the number of broadcast domain that are created when using an unmanaged 12-port switch? A. 0 B. 1 C. 2 D. 6 E. 12

A network engineer wants to a segment the network into multiple broadcast domains. Which of the following devices would allow for communication between the segments? A. Layer 2 switch B. Layer 3 switch C. Bridge D. Load balancer

The Chief Information Officer (CIO) has noticed the corporate wireless signal is available in the parking lot. Management requests that the wireless network be changed so it is no longer accessible in public areas, without affecting the availability inside the building. Which of the following should be changed on the network? A. Power levels B. Overcapacity C. Distance limitations D. Channel overlap

A network technician is assisting the security team with some traffic captures. The security team wants to capture all traffic on a single subnet between the router and the core switch. To do so, the team must ensure there is only a single collision and broadcast domain between the router and the switch from which they will collect traffic. Which of the following should the technician install to BEST meet the goal? A. Bridge B. Crossover cable C. Hub D. Media converter

Based on networks 10.8.16.0/22 and 10.8.31.0/21, which of the following is the BEST summarized CIDR notation? A. 10.8.0.0/16 B. 10.8.0.0/19 C. 10.8.0.0/20 D. 10.0.0.0/24

A technician discovers that multiple switches require a major update. Which of the following policies should be followed? A. Change management policy B. Remote access policy C. Acceptable use policy D. Memorandum of understanding

A technician is troubleshooting a point-to-point fiber-optic connection. The technician is at a remote site and has no connectivity to the main site. The technician confirms the switch and the send-and-receive light levels are within acceptable range. Both fiber SFPs are confirmed as working. Which of the following should the technician use to reveal the location of the fault? A. OTDR B. Light meter C. Tone generator D. CSU/DSU

A Chief Information Officer (CIO) wants to move some IT services to a cloud service offering. However, the network administrator still wants to be able to control some parts of the cloud service's networking components. Which of the following should be leveraged to complete this task? A. IaaS B. PaaS C. SaaS D. DaaS

Client PCs are unable to receive addressing information from a newly configured interface on a router. Which of the following should be added to allow the clients to connect? A. DHCP lease time B. IP helper C. TTL D. DNS record type

When enabling jumbo frames on a network device, which of the following parameters is being adjusted? A. Speed B. Duplex C. MTU D. TTL

A technician logs onto a system using Telnet because SSH is unavailable. SSH is enabled on the target device, and access is allowed from all subnets. The technician discovers a critical step was missed. Which of the following would allow SSH to function properly? A. Perform file hashing B. Generate new keys C. Update firmware D. Change default credentials

A network administrator wants to ensure sensitive data is not ex-filtrated from the system electronically. Which of the following should be implemented? A. DLP B. AUP C. NDA D. SLA

An office network consists of one two-port router connected to a 12-port switch. A four-port hub is also connected to the switch. On this particular network, which of the following is the number of collision domains that exist? A. 3 B. 12 C. 13 D. 14 E. 15

A network technician wants to remotely and securely access the desktop of a Linux workstation. The desktop is running remote control software without encryption. Which of the following should the technician use to secure the connection? A. SSH in tunnel mode B. RDP set to console connection C. EAP-PEAP D. SFTP

Which of the following should current network performance be compared against to determine network anomalies? A. Baseline B. Traffic analysis C. Packet capture D. Logs

A network administrator configures an email server to use secure protocols. When the upgrade is completed, which of the following ports on the firewall should be configured to allow for connectivity? (Choose three.) A. TCP 25 B. TCP 110 C. TCP 143 D. TCP 389 E. TCP 587 F. TCP 993 G. TCP 995

After a server outage, a technician discovers that a physically damaged fiber cable appears to be the problem. After replacing the cable, the server will still not connect to the network. Upon inspecting the cable at the server end, the technician discovers light can be seen through one of the two fiber strands. Which of the following should the technician do FIRST to reconnect the server to the network? A. Reverse the fiber strands of the cable and reconnect them to the server B. Use a TDR to test both strands of a new replacement cable prior to connecting it to the server C. Replace the server's single-mode fiber cable with multimode fiber D. Move the fiber cable to different port on the switch where both strands function

The backup server connects to a NAS device using block-level storage over Ethernet. The performance is very slow, however, and the network technician suspects the performance issues are network related. Which of the following should the technician do to improve performance? A. Utilize UDP to eliminate packet overhead B. Turn off MDIX settings on the NAS and server switchports C. Enable jumbo frames on the NAS and server D. Encapsulate the storage traffic in a GRE tunnel

A technician is trying to determine the IP address of a customer's router. The customer has an IP address of 192.168.1.55/24. Which of the following is the address of the customer's router? A. 192.168.0.55 B. 192.168.1.0 C. 192.168.1.1 D. 192.168.5.5 E. 255.255.255.0

A network technician is able to connect the switches between two offices, but the offices cannot communicate with each other, as each office uses a different IP addressing scheme. Which of the following devices needs to be installed between the switches to allow communication? A. Bridge B. Access point C. Router D. Range extender

A network technician is working on a proposal for email migration from an on-premises email system to a vendor-hosted email in the cloud. The technician needs to explain to management what type of cloud model will be utilized with the cloud-hosted email. Which of the following cloud models should the technician identify in the proposal? A. IaaS B. PaaS C. SaaS D. MaaS

Which of the following is the correct port number for NTP? A. 25 B. 69 C. 123 D. 161

A network technician is connecting two switches together. Which of the following protocols should the technician use to increase speed and fault tolerance? A. SIP B. BGP C. LACP D. LLDP

A company has a web-based application that is used by many different departments. The company has experienced some overload of resources on the database server. The network administrator implements a network device in between the servers and the database. Which of the following BEST describes the purpose of this device? A. Content filtering and network analysis B. Load balancing and providing high availability C. Port sniffing and protocol analysis D. Clustering and NIC teaming

A technician is replacing a switch at a branch office and discovers the existing backbone cable does not fit in the new switch. The fiber patch panel has circular connections. The new switch has a transceiver that accepts a smaller square adapter of two strands. Which of the following patch cables would the technician need to complete the installation? A. LC to SC B. SC to ST C. LC to ST D. ST to ST E. SC to SC

A computer lab on a campus network was recently reconfigured using recycled network cables. One of the 24 computers in the lab is unable to connect to the network after the upgrade. A network technician successfully uses the cable in question to connect directly to another computer. Which of the following is MOST likely the issue with the cable? A. The cable is a crossover cable B. The cable is a rollover cable C. The cable has bent pins D. The cable is a Cat 5 cable

Which of the following is a reason why a business may be hesitant to move sensitive data to a SaaS cloud service? A. Decreased performance of internal network B. Loss of full control over data resources C. Increased malware exposure D. Incompatibility with the current network

Users have been experiencing slow network response times, and management has asked the network technician to provide evidence of network improvement.After optimizing the network, which of the following would be required? A. IDF/MDF documentation B. Change management C. Performance baseline D. Physical diagram

A network technician has created a network that consists of a router, a firewall, a switch, and several PCs. Which of the following physical network topologies was created? A. Star B. Mesh C. Ring D. Bus

A technician is setting up a branch office on a point-to-point connection. Which of the following IP network blocks is the MOST efficient use of IP address space for the router connections between the two sites? A. /24 B. /25 C. /30 D. /32

A technician is upgrading the firmware on an older KVM switch. The specifications call for a serial port to connect to the computer on one side, and an Ethernet jack to connect to the switch on the other side. Which of the following connectors does the technician need for this cable? (Choose two.) A. RG-9 B. DB-9 C. RJ-11 D. DB-25 E. RJ-45 F. BNC

An end-user device requires a specific IP address every time it connects to the corporate network; however, corporate policy does not allow the use of static IP addresses. Which of the following will allow the request to be fulfilled without breaking the corporate policy? A. DHCP relay B. DHCP exclusion C. DHCP option D. DHCP reservation

A technician is planning a remote-access strategy to manage routers and switches on a dedicated management network. The management network is segregated from the production network and uses site-to-site VPN connections. Some of the equipment does not support encryption. Which of the following should the technician choose that all the equipment would support? A. Telnet B. SSL C. SSH D. IPSec

Which of the following protocols do MOST MITM attacks utilize? A. ARP B. SIP C. FTP D. SCP

An ISP technician gets a call from a business that just changed equipment but can no longer connect to the Internet. The technician checks the ARP table on the ISP switch, and there is no corresponding MAC address present. Instead, the entry is "Incomplete". Which of the following could cause this condition? A. VLAN mismatch B. Duplex/Speed mismatch C. Duplicate IP address D. TX/RX reverse

A systems administrator has recently purchased and installed a large electronic signage screen for the company's parking garage. The screen's management software was installed on a server with a public IP address to allow remote management. The systems administrator is now troubleshooting an issue with the screen displaying unknown, random, and inappropriate messages. Which of the following is MOST effective in resolving this issue? A. Changing the management software's default credentials B. Disabling unnecessary services from the server and management software C. Changing the management software's default port D. Replacing the management software's self-signed certificate with a valid certificate

A technician is investigating a server performance issue. The technician has gathered the server utilization statistics. Which of the following should the technician use to determine which statistics are not in the normal range? A. Baseline review B. Vulnerability scan C. System life-cycle report D. Archiving logs

Which of the following devices, if implemented, would result in decreased administration time of an 802.11 network running centralized authentication services?(Choose two.) A. VPN concentrator B. Proxy server C. Wireless controller D. RADIUS server E. Multilayer switch

A technician must determine if a web page userג€™s visits are connecting to a suspicious website's IP address in the background. Which of the following tools would provide the information on TCP connections? A. netstat B. tracert C. arp D. ipconfig E. route Reveal Solution

An administrator is moving to a new office. There will be several network runs through the ceiling area of the office. Which of the following is the BEST to utilize in these areas? A. Single-mode fiber-optic cabling B. Cat 5e-rated cabling C. Cat 6-rated cabling D. Plenum-rated cabling

A network technician receives a spool of Cat 6a cable and is asked to build several cables for a new set of Ethernet runs between devices. Which of the following tools are MOST likely needed to complete the task? (Choose three.) A. Wire stripper B. Cable crimper C. RJ-11 connectors D. RJ-45 connectors E. Multimeter F. Punchdown tool G. Tone generator

As part of a transition from a static to a dynamic routing protocol on an organization's internal network, the routing protocol must support IPv4 and VLSM. Based on those requirements, which of the following should the network administrator use? (Choose two.) A. OSPF B. IS-IS C. RIPv1 D. BGP E. VRRP

A telecommunications provider has just deployed a new OC-12 circuit at a customer site. While the circuit showed no errors from the provider end to the customer's demarcation point, a network administrator is trying to determine the cause of dropped packets and errors on the circuit. Which of the following should the network administrator do to rule out any problems at Layer 1? (Choose two.) A. Use a loopback at the demark and router, and check for a link light B. Use an OTDR to validate the cable integrity C. Use a pinout tester to validate the cable integrity D. Use a multimeter to validate the cable integrity E. Check for any devices that may be causing EMI on the cable F. Clean the cables to be sure they are free of dust and debris

A single PRI can deliver multiple voice calls simultaneously using which of the following Layer 1 technologies? A. Time division multiplexing B. Analog circuit switching C. CSMA/CD D. Time division spread spectrum

A network technician is diagnosing a time-out issue generated from an end user's web browser. The web browser issues standard HTTP get and post commands to interact with the website. Given this information, the technician would like to analyze the entire TCP handshake of the HTTP requests offline. Which of the following tools would allow the technician to view the handshake? A. Packet analyzer B. Port analyzer C. SNMP traps D. Spectrum analyzer

A customer cannot access a company's secure website. The company's network security is reviewing the firewall for the server and finds the following output: (see image on paper) Which of the following changes should be made to allow all customers to access the company's secure website? A. Allow any any 10.5.0.10 443 B. Allow any any 12.73.15.5 443 C. Allow 10.5.0.10 443 any any D. Allow 10.5.0.10 any 10.5.0.10 80

Which of the following MUST be implemented to share metrics between routing protocols within the same router? A. Routing loop B. Routing table C. Route redistribution D. Dynamic routes

An engineer is reviewing the implementation requirements for an upcoming project. The basic requirements identified by the customer include the following: ✑ WLAN architecture supporting speeds in excess of 150 Mbps ✑ Clientless remote network access ✑ Port-based network access controlWhich of the following solution sets properly addresses all of the identified requirements? A. 802.11a, IPSec VPN, 802.1x B. 802.11ac, MPLS, 802.3 C. 802.11b, PPTP, 802.1x D. 802.11g, MS-CHAP, 802.16 E. 802.11n, SSL-VPN, 802.1x

Which of the following is used to classify network data for the purpose of providing QoS? A. STP B. VLANs C. SIP D. DSCP

A network technician needs to separate a web server listening on port 80 from the internal LAN and secure the server from the public Internet. The web server should be accessible to the public Internet over port 80 but not the private LAN. Currently, the network is segmented with a network-based firewall using the following IP addressing scheme on each interface: see image on paper Which of the following ones should the technician use to place the web server and which of the following firewall rules should the technician configure? A. Place the web server in the public zone with an inbound rule from eth0 interface to accept traffic over port 80 designated to the web server B. Place the web server in the DMZ with an inbound rule from eth0 interface to eth1 to accept traffic over port 80 designated to the web server C. Place the web server in the private zone with an inbound rule from eth2 interface to eth1 to accept traffic over port 80 designated to the web server D. Place the web server in the DMZ with an inbound rule from eth1 interface to eth0 to accept traffic over port 80 designated to the web server

A company recently upgraded all of its printers to networked multifunction devices. Users can print to the new devices, but they would also like the ability to scan and fax files from their computers. Which of the following should the technician update to allow this functionality? A. Device software B. Printer drivers C. Printer firmware D. NIC drivers

A disgruntled employee executes a man-in-the-middle attack on the company network. Layer 2 traffic destined for the gateway is redirected to the employeeג€™s computer. This type of attack is an example of: A. ARP cache poisoning B. IP spoofing C. amplified DNS attack D. evil twin

The process of attempting to exploit a weakness in a network after being given permission by the company is known as: A. penetration testing B. vulnerability scanning C. reconnaissance D. social engineering

A company has contracted with an outside vendor to perform a service that will provide hardware, software, and procedures in case of a catastrophic failure of the primary datacenter. The Chief Information Officer (CIO) is concerned because this contract does not include a long-term strategy for extended outages. Which of the following should the CIO complete? A. Disaster recovery plan B. Business continuity plan C. Service level agreement D. First responder training

A typical cell tower will have microwave and cellular antennas. Which of the following network topologies do these represent? (Choose two.) A. Point-to-multipoint B. Bus C. Point-to-point D. Mesh E. Peer-peer F. Ring

A network administrator has a monitoring system in place that is currently polling hundreds of network devices at regular intervals. The continuous polling is causing high CPU utilization on the server. Which of the following tasks should the administrator perform to resolve the CPU issue while maintaining full monitoring capabilities? A. Remove SNMP polling and configure SNMP traps on each network device B. Remove SNMP polling and implement snmpwalk on each network device C. Upgrade SNMP to the latest version to mitigate vulnerabilities D. Modify SNMP polling to poll only during business hours

A contractor is setting up and configuring conference rooms for a convention. The contractor sets up each room in the conference center to allow wired Internet access going to individual tables. The contractor measured the distance between the hotel' patch panel to the jack, and the distance is within Cat 5e specifications. The contractor is concerned that the room will be out of specification if cables are run in each room from the wall jacks. Which of the following actions should the contractor take to ensure the cable runs meet specifications and the network functions properly? A. Place a switch at the hotel's patch panel for connecting each room's cables B. Place a switch on each table to ensure strong connectivity C. Place repeaters between the patch panel and the rooms D. place a switch at the wall jack and run the cables in the room from there

Users are reporting their network is extremely slow. The technician discovers pings to external host have excessive response times. However, internal pings to printers and other PCs have acceptable response times. Which of the following steps should the technician take NEXT? A. Determine if any network equipment was replaced recently B. Verify malware has not disabled the users' PC firewalls C. Replace users' network cables with known-good network cables D. Power cycle the web server

Which of the following is a system of notation that uses base 16 rather than base 10? A. Hex B. Octal C. Binary D. CIDR

A network administrator would like to collect information from several networking devices using SNMP. Which of the following SNMP options should a network administrator use to ensure the data transferred is confidential? A. authpriv B. SHA C. MD5 D. Authentication passphrase

The IT manager at a small firm is in the process of renegotiating an SLA with the organization's ISP. As part of the agreement, the organization will agree to a dynamic bandwidth plan to provide 150Mbps of bandwidth. However, if the ISP determines that a host on the organization's internal network produces malicious traffic, the ISP reserves the right to reduce available bandwidth to 1.5 Mbps. Which of the following policies is being agreed to in the SLA? A. Session hijacking B. Blocking C. Throttling D. Data usage limits E. Bandwidth quotas

A network technician has just configured NAC for connections using Cat 6 cables. However, none of the Windows clients can connect to the network.Which of the following components should the technician check on the Windows workstations? (Choose two.) A. Start the Wired AutoConfig service in the Services console B. Enable IEEE 802.1q Authentication in Network Interface Card Properties C. Enable IEEE 802.1x Authentication in Network Interface Card Properties D. Start the Wireless AutoConfig service in the Services console E. Enable IEEE 802.3 Ethernet IPv6 in Network Interface Card Properties

The security manager reports that individual systems involved in policy or security violations or incidents cannot be located quickly. The security manager notices the hostnames all appear to be randomly generated characters. Which of the following would BEST assist the security manager identifying systems involved in security incidents? A. Enforce port security to require system authentication B. Implement a standardized UNC C. Label existing systems with current hostnames D. Forward the DHCP logs to the security manager every day Reveal Solution Discussion

A building is equipped with light sensors that turn off the fluorescent lights when natural light is above a certain brightness. Users report experiencing network connection issues only during certain hours. The west side of the building experiences connectivity issues in the morning hours and the east side near the end of the day. At night the connectivity issues affect the entire building. Which of the following could be the cause of the connectivity issues? A. Light sensors are interfering with the network B. EMI from the lights is interfering with the network cables C. Network wiring is run perpendicular to electrical conduit D. Temperature changes are causing attenuation in copper cabling

A network technician configures a firewall's ACL to allow outgoing traffic for several popular services such as email and web browsing. However, after the firewall's deployment, users are still unable to retrieve their emails. Which of the following would BEST resolve this issue? A. Allow the firewall to accept inbound traffic to ports 25, 67, 179, and 3389 B. Allow the firewall to accept inbound traffic to ports 80, 110, 143, and 443 C. Set the firewall to operate in transparent mode D. Allow the firewall to accept inbound traffic to ports 21, 53, 69, and 123

A network security technician observes multiple attempts to scan network hosts and devices. All the attempts originate from a single host on the network. Which of the following threats is MOST likely involved? A. Smurf attack B. Rogue AP C. Compromised system D. Unintentional DoS

Which of the following would be the MOST efficient subnet mask for a point-to-point link? A. /28 B. /29 C. /31 D. /32

An office user cannot access local network drives but has full access to the Internet. A technician troubleshoots the issue and observes the following output of the ipconfig command: see image on paper Which of the following would MOST likely allow the network drives to be accessed? A. Update the WLAN adapter driver B. Disable the WLAN adapter C. Check the wireless DHCP configuration D. Disable the LAN adapter

Ann, a network technician, has just installed a fiber switch in a datacenter. To run the fiber cabling, Ann plans the cable route over the top of the rack using the cable trays, down to the switch, coiling up any excess cable. As Ann configures the switch, she notices several messages in the logging buffer stating the receive signal of the SFP is too weak. Which of the following is MOST likely the cause of the errors in the logging buffer? A. Bend radius exceeded B. Fiber cable mismatch C. Fiber type mismatch D. Bad fiber switch

Which of the following wireless connection types utilize MIMO on non-overlapping channels? (Choose two.) A. 802.11a B. 802.11ac C. 802.11b D. 802.11g E. 802.11n

A network technician is creating a new subnet for 488 host machines. The technician is told to use a class B address scheme when making the subnet and is instructed to leave as much room as possible for additional subnets of the same size. Which of the following subnets would fulfill these requirements? A. 10.5.4.0/22 B. 10.233.2.0/23 C. 172.16.0.0/22 D. 172.18.0.0/23 E. 192.168.25.0/24

A network engineer is designing a new IDF in an old building. The engineer determines the equipment will fit in a two-post rack, and there is power available for this equipment. Which of the following would be the FIRST issue to remediate? A. Air flow and cooling B. UPS capability C. Circuit labeling D. Power redundancy

In which of the following ways does a DDoS attack differ from a spoofing attack? A. DDoS attacks target multiple networks B. Spoofing attacks originate from a single host C. DDoS attacks are launched from multiple hosts D. Spoofing attacks require physical presence

A user checks an IP address using an external website. The address is different than the one the user sees when opening a command prompt and typing in ipconfig/all. The user does not understand why the two tools show different IP addresses. This is BEST explained by the interworking of: A. network devices B. packet flow C. public/private networks D. traffic-routing protocols

Which of the following communication media can carry many voice, data, and video channels simultaneously over multiple frequencies? A. Broadband B. Baseband C. Analog modem D. CSMA

To replace a defective UPS, the network administrator must take the switch offline. The administrator wants to be able to perform maintenance UPS in the future without affecting the availability of the attached switch. Which of the following would BEST allow this to happen? A. Add a redundant power supply to the switch B. Implement stacking on the switches in the rack C. Add a second UPS into the rack D. Install a power converter for the switch

A forensic first responder arrives at the scene where an employee is suspected to have committed a computer-based crime. Which of the following should the first responder do FIRST? A. Document the scene B. Take pictures upon arrival C. Secure the area D. Implement chain of custody

Which of the following DNS records needs to be configured for SMTP traffic? A. MX B. CNAME C. AAAA D. PTR

A small town is attempting to attract tourists who visit larger nearby cities. A network engineer is asked to implement a network encompassing the five-block town center and nearby businesses. The inclusion of smartphones and portable devices is crucial to the plan. Which of the following is the network engineer being asked to implement? A. LAN B. PAN C. MAN D. WAN

An employee wishes to use a personal cell phone for work-related purposes, including storage of sensitive company data, during long business trips. Which of the following is needed to protect BOTH the employee and the company? A. An NDA ensuring work data stored on the personal phone remains confidential B. An AUP covering how a personal phone may be used for work matters C. A consent to monitoring policy covering company audits of the personal phone D. Real-time remote monitoring of the phone's activity and usage

Which of the following protocols can be both connection-oriented and connectionless? A. 20 FTP B. 53 DNS C. 67 DHCP D. 80 HTTP

Which of the following BEST describes the differences between VLAN hopping and session hijacking? A. VLAN hopping involves the unauthorized transition from one VLAN to another to gain additional access. Session hijacking involves overriding a user's web connection to execute commands B. VLAN hopping is a brute force attack executed to gain additional access. Session hijacking involves physically disrupting a network connection C. VLAN hopping involves overriding a user network connection to execute malicious commands. Session hijacking involves compromising a host to elevate privileges D. VLAN hopping is the act of exploiting poor VLAN tagging. Session hijacking is a web-based attack aimed at privilege escalation

An analyst is developing a proof of concept of a wireless-based attack as part of a penetration test against an organization's network. As part of the attack, the analyst launches a fake access point matching the SSID of the organization's guest access network. When a user connects to the fake access point, the analyst allows the traffic to flow through the access point to the legitimate site while the data traversing the network is logged for latest analysis and exploitation. Which of the following attacks has the analyst successfully performed in this scenario? A. Bluesnarfing B. Session hijacking C. MAC spoofing D. VLAN hopping E. Man-in-the-middle

A network administrator receives a call from the sales department requesting ports 20 and 21 be opened on the company's firewall to allow customers to retrieve a large file. Which of the following should the administrator perform BEFORE making the needed changes? (Choose two.) A. Document the reason for the request B. Scan the file for malware to protect the sales department's computers C. Follow the company's approval process for the implementation D. Install a TFTP server for the customers to use for the transfer E. Create a honeypot to store the file on for the customers to use F. Write the SLA for the sales department authorizing the change

A user reports that a laptop cannot connect to the Internet despite the fact the wireless Internet was functioning on it yesterday. The user did not modify the laptop in any way, and the wireless Internet is functional on other usersג€™ laptops. Which of the following issues should be reviewed to help the user to connect to the wireless network? A. Wireless switch toggled off B. WAP settings C. WLAN IP address out of scope D. Wireless controller misconfiguration

A network administrator wants to increase the confidentiality of the system by hardening the authentication process. Currently, the users log in using usernames and passwords to access the system. Which of the following will increase the authentication factor to three? A. Adding a fingerprint reader to each workstation and providing a RSA authentication token B. Adding a fingerprint reader and retina scanner C. Using a smart card and RSA token D. Enforcing a stronger password policy and using a hand geometry scan

A network technician is building a network for a small office. The office currently has cable TV and now requires access to the Internet without adding any cabling other than what is already in place. Which of the following solutions should the technician install to meet these requirements? A. DOCSIS modem B. Wireless router C. DSL modem D. Access point

A network engineer arrives at work and discovers that many users are having problems when attempting to connect to the company network shared drives. The network operations center (NOC) technician just completed server upgrades the night before. To which of the following documents should the NOC technician refer to determine what potentially caused the connectivity problem? A. Network maps B. Cable management C. Release notes D. Change management

Which of the following VPN protocols establishes a secure session that can be initiated using a browser? A. IPSec B. SSL VPN C. PTP D. PPTP

A technician is setting up a public guest network for visitors to access the Internet that must be separate from the corporate network. Which of the following are the BEST steps for the technician to take with minimum overhead configuration? (Choose two.) A. Enable SSID broadcasting to identify the guest network B. Configure visitor devices to use static IP addresses C. Enable two-factor authentication on visitor devices D. Configure the access point to use WPA2-AES encryption E. Ensure the access point is not running in mixed mode

When choosing a type of storage that integrates with the existing network infrastructure, the storage must be easily configurable to share files and can communicate with all existing clients over TCP/IP. Which of the following is the BEST technology for the network administrator to implement? A. iSCSI B. Fibre Channel C. NAS D. DAS

A network technician is installing a new network switch is looking for an appropriate fiber optic patch cable. The fiber optic patch panel uses a twist-style connector. The switch uses a SFP module. Which of the following connector types should the fiber patch cable have? A. LC B. ST C. SC D. MTRJ E. MTP

Which of the following WAN technologies utilizes the concept of virtual circuits and point-multipoint connections? A. ISDN B. MPLS C. PRI D. Broadband cable E. Frame relay

A network administrator wishes to ensure there are no unnecessary open communication paths into a server. Using a port scanner, the administrator finds that ports are reported as closed. Which of the following BEST explains this response? A. The ports belong to an active system and are denying requests B. The ports are associated with deprecated services C. The ports do not belong to a live system D. The ports replied with a SYN/ACK response

Users are reporting issues with slow connection speeds and a loss of connectivity on the newly installed wireless network. The issues are intermittent but seem to occur most often around midday. Which of the following is the MOST likely cause? A. There is interference from small appliances B. The signal coverage area is too small C. Not enough DHCP addresses have been allotted D. The DNS cache on the usersג€™ computers has become corrupt

A user reports difficulties connecting a PC to a wired network. The PC connects to an IP phone, which is working correctly. A network technician can verify that other devices successfully connect to the phone. At which of the following layers of the OSI model is the problem MOST likely located? A. Network B. Physical C. Transport D. Application

Which of the following physical security controls is MOST likely to be susceptible to a false positive? A. Identification card B. Biometric device C. Proximity reader D. Video camera

An assistant systems analyst reports the following findings of an investigation of slow Internet connections in a remote office to the senior systems analyst: see image on paper Which of the following devices is causing the issue? A. Router B. Firewall C. Switch 1 D. Switch 2

A small business developed an in-house application that is very sensitive to network latency when a communicating between servers. Due to a lack of funds, the business had to build its own network for workstations and servers. Now a network administrator must redesign the network due to performance issues with the application. Which of the following would be the MOST cost effective for the administrator to recommend? A. Create Ethernet VLANs B. Disable autonegotiation on the servers C. Install 10Gb Ethernet NICs in the servers D. Install Fibre Channel for the server network

A network technician is configuring a firewall access list to secure incoming connections to an email server. The internal address of this email server is 192.168.1.143. The firewall should allow external email servers to send email to the email server. The email server also supports client access via a web browser.Only secure protocols should be used, and only the necessary ports should be open. Which of the following ACL rules should be configured in the firewall's WAN port? (Choose two.) A. Permit 192.168.1.143.25 B. Permit 192.168.1.143.80 C. Permit 192.168.1.143.110 D. Permit 192.168.1.143.143 E. Permit 192.168.1.143.443 F. Permit 192.168.1.143.587

A network administrator is testing connectivity at a new corporate site. The site has a wireless guest as well as a wired employee network. After verifying connectivity, the administrator checks link speeds by using a speed testing website. The speed testing website shows lower download and upload speeds for the wired network than the wireless network. Which of the following is the MOST likely explanation? A. There is less local congestion on the wireless network B. The testing server for the wired network was farther away C. The firewall is configured to throttle traffic to specific websites D. The wireless access points were misconfigured

A technician replaces a failed router with a spare that has been in inventory for some time. After attempting to enable HTTPS on the spare router, the technician discovers the feature is unavailable. The support office was able to connect to the previous router. Which of the following actions should the technician perform to enable HTTPS access for the support team? A. Reboot the router B. Enable HTTP on the router C. Update the firmware of the spare router D. Perform a factory reset on the router

A technician is trying to configure a previously owned WAP. The technician successfully logs into the administrative console and attempts to input the IP address on the WAP. However, the WAP is not accepting the command. Which of the following is causing the problem? A. The WAP antenna is damaged B. The WAP transmitter light is dim C. The terminal emulation software is misconfigured D. The LWAPP image is installed on the WAP

DRAG DROP Your company recently purchased a new building down the street from the existing office. INSTRUCTIONS -For each of the tasks below, select the appropriate antenna type and encryption object for all wireless access point (AP). 1. Create an encrypted wireless connection between the two buildings that BEST controls signal propagation, while maximizing security. 2. Restrict the wireless signal generated by the access points (APs) inside Building 1, so that it minimizes broadcast beyond the building. 3. Maximize wireless coverage inside Building 1. 4. Building 1's internal wireless network is for visitors only and must not require any special configuration on the visitor's device to connect. If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.When you have completed the simulation, select the Done button to submit. If you previously made any changes to the simulated environment for the question, those changes were saved and will be present when you continue.

A technician has installed a Linux server in the tax office. The server can access most of the resources on the network, but it cannot connect to another server that has a share for backup. The technician learns that the target server is on a different subnet. Which of the following tools should the technician use to ensure theLinux server can reach the backup location? A. netstat B. traceroute C. route D. dig E. ifconfig

Which of the following WAN technologies provides a guaranteed throughput rate? A. DSL B. T-1 C. Cable broadband D. Dial-up

Which of the following is the SHORTEST way to write 2001:0000:0d58:0000:0000:0095:7565:0001 in proper IPv6 shorthand? A. 2001::d58::95:7565:1 B. 2001:0:d58:0:0:95:7565:1 C. 2001:0:d58::95:7565:1 D. 2001:0:0d58::95:7565:1

A network administrator needs to transmit traffic to geographically diverse sites to improve performance. Which of the following devices would BEST direct traffic to the remote sites? A. Hub B. Bridge C. Switch D. Router

Which of the following should a technician investigate when using a network baseline to troubleshoot? A. Tracing a network wire connectivity issue from the data center to a host. B. Determining if the server performance is degraded. C. Changes that have been made to the network configuration. D. Location of networking equipment in a rack.

A technician needs to upgrade a SOHO wireless router's firmware. The technician resets the router to factory settings and installs the new firmware. The technician enters the DHCP information and sets the SSID. Which of the following configurations would provide the MOST protection from advance hackers? A. Disable the broadcasting of the SSID. B. Enable WPA2 authentication for all hosts. C. Use private addressing for the DHCP scope. D. Install unidirectional antennas.

A technician notices clients are receiving a 169.254.x.x IP address following the upgrade of a server. Which of the following ports should the technician check on the local server firewall? A. ports 20 and 21 B. ports 67 and 68 C. ports 80 and 443 D. port 123 and 8080

Which of the following datacenter security methodologies is MOST likely to remain usable during a network outage? A. biometric scanners B. door locks C. video surveillance D. motion detectors

A network technician is implementing a solution on the network to hide the workstation internal IP addresses across a WAN. Which of the following is the technician configuring? A. QoS B. DMZ C. RIP D. NAT

Employees want the ability to use personal devices on the guest network while working out at the company gym. In order to meet the request, which of the following policies requires employee adherence? A. AUP B. SLA C. NDA D. MOU

Which of the following BEST describes the BGP routing protocol? A. distance vector B. hybrid C. static D. link state

A customer is reporting difficulty connecting some devices after replacing a wireless router with a new wireless 802.11ac router. The SSID, encryption and password are the same as the previous router. A technician goes on-site and notices the devices that are no longer connecting appear to be several years ago.Which of the following is MOST likely the problem? A. the password needs to be re-entered. B. there is a security type mismatch. C. there is insufficient antenna power. D. there is a frequency mismatch. E. the channel has changed.

Multiple users are reporting that they are unable to access the network. The ENTIRE network is shown in the diagram. PCs are not statically assigned IP addresses. The following devices will display settings: ✑ WorkstationA ✑ WorkstationB ✑ WorkstationC ✑ WorkstationD ✑WorkstationE ✑ WorkstationF ✑ WorkstationG ✑ Laptop1 ✑ Laptop2 ✑ DHCP server1 ✑ DHCP server2 Instructions: Review the settings and select the box in the diagram that identifies the device causing the issue. Only one device can be selected at a time.After checking the device that is causing the issue, select the second tab in the lower left hand corner. Identify the reason as to why some users are unable to access the network.When the simulation is complete, select the Done button to submit. Part 1 - Part 2 -Identify the reason as to why some users are unable to access the network. A. Workstation(s) are plugged into switch ports configured with half duplex. B. The site-to-site router was configured with the incorrect ACL. C. The DHCP server scope is full and is not providing IP addresses. D. WAN and LAN ports are reversed on the router. E. STP has disabled some of the ports on the switch. F. The NIC driver is not installed. G. A wireless client is unable to associate to the AP.

Which of the following should be performed to verify that unnecessary services are disabled on all switches in an environment? A. Packet capturing B. Port scanning C. Log scanning D. Baseline review

A technician is sent to a remote office to set up a device to connect to the Internet. The company standards document requires stateful inspection. Which of the following should the technician install? A. Router B. Multiplayer switch C. Firewall D. Bridge

A technician is assigned to secure a basic wireless network. Which of the following authentication protocols should the technician use to perform this task?(Choose two.) A. RDP B. SNMP C. WPA2 D. EAP E. SSL

A technician is investigating the cause of a network outage. Which of the following documents should be checked to rule out configuration issues? A. Change management records B. Inventory management C. Network log files D. Logical diagrams

A junior network technician receives a help desk ticket from an end user who is having trouble accessing a web application that was working the previous day. After talking with the end user and gathering information about the issue, which of the following would be the most likely course of action for the technician to perform NEXT? A. Establish a theory of probable cause. B. Escalate the ticket to a senior technician. C. Implement the solution. D. Document the findings and outcomes.

A system administrator receives reports from users of odd behavior in regard to a recently installed server. While reviewing the server network configuration, the systems administrator does both a forward and a reverse DNS lookup on the host, along with the network adapter configuration. see image on paper Which of the following is the problem identified in the output above? A. There is no reverse DNS entry for this host. B. The server IP address is incorrectly configured. C. The DNS lookup entry is incorrectly configured. D. The reverse DNS entry is pointing to a different host.

A network technician at a small office upgrades the LAN switch. After the upgrade, a user reports being unable to access network resources. When the technician checks the switchport, the LED light is not lit. Which of the following should the technician check FIRST? A. The device is using the correct cable type. B. The switchport is functioning properly. C. The device is connected to the switch. D. The switch is connected to the router.

A network administrator wants to employ a username and password authentication system for guest WiFi. Which of the following is the BEST option to provide this type of authentication? A. Port security B. MAC filtering C. Network access control D. Captive portal

A technician is responsible for configuring a new firewall. The hardware team has already installed, powered, and connected the system. Which of the following types of documentation should the technician utilize to complete the task? A. Rack diagram B. IDF/MDF documentation C. Network performance baseline D. Logical and physical diagrams

Which of the following storage network technologies inherently leverages block-level storage? A. NAS B. SAN C. FCoE D. iSCSI E. FTP

Which of the following networking devices operates at Layer 1? A. Router B. Firewall C. Hub D. Bridge

A disgruntled employee decides to leak critical information about a company's new product. The employee places keyloggers on the department's computers, allowing the information to be sent out to the Internet. Which of the following attacks is occurring? A. Man-in-the-middle B. Logic bomb C. Insider threat D. Social engineering

A network technician needs to set up an access method for Ann, a manager, to work from home. Ann needs to locally mapped corporate resources to perform her job. Which of the following would provide secure access to the corporate resources? A. Utilize an SSH connection to the corporate server. B. Use TFTP to transfer files to corporate resources. C. Allow RDP through an external firewall. D. Connect utilizing client-to-site VPN.

Which of the following DNS record types is an alias? A. CNAME B. PTR C. NS D. SRV

A recently constructed building makes use of glass and natural light. Users in the building are reporting poor cellular connectivity and speeds. Which of the following is MOST likely the cause? A. Absorption B. Channel overlap C. Reflection D. Frequency mismatch

A network technician is working on a new switch implementation to expand the network. Which of the following is the BEST option to ensure the implementation goes according to business requirements? A. AUP B. NDA C. SOP D. SLA

A technician is utilizing SNMPv3 to monitor network statistics. Which of the following actions would occur immediately of a server's utilization spikes above the prescribed value? A. A trap message is sent via UDP to the monitoring workstation. B. The SET function pushes an alert to the MIB database. C. The object identifier is modified and reported during the next monitoring cycle. D. A response message is sent from the agent to the manager.

In which of the following scenarios should a technician use a cross-over cable to provide connectivity? A. PC to switch B. Switch to AP C. Router to switch D. Router to modem E. PC to PC

802.11n clients currently have no way to connect to the network. Which of the following devices should be implemented to let the clients connect? A. Router B. Range extender C. VoIP endpoint D. Access point

A network technician is setting up a new router. Since it is exposed to the public, which of the following are the BEST steps the technician should take when setting up this device? (Choose two.) A. Disable unnecessary services. B. Use private IP addresses. C. Allow remote management access. D. Disable the console port. E. Enable encryption. F. Upgrade to the latest firmware.

A network technician is configuring user access to a VPN concentrator and has been advised to use a protocol that supports encryption over UDP. Which of the following protocols has the technician MOST likely configured for client use? A. TFTP B. DTLS C. DNS D. SNMP

A switch has detected duplicate broadcast messages sourced from a second port. The broadcasts continue to be transmitted and duplicated until the amount of traffic causes severe performance issues. Which of the following should be configured to prevent this behavior? A. BPDU guard B. DHCP snooping C. ARP protection D. Spanning tree

A Chief Information Officer (CIO) is concentrated about an attacker gaining administrative access to the company's network devices. Which of the following is the MOST secure way to prevent this? A. ACL allowing only HTTP B. ACL allowing only Telnet C. Out-of-band modem D. Out-of-band console router

The Chief Executive Officer's (CEO's) tablet cannot connect to the wireless network from the corner office. A network technician verified the tablet can connect to the wireless network in other areas of the building. The distance between the office and the 802.11ac WAP is 150ft (46m), and there are a few cubicles in between. Which of the following is the MOST likely cause of the tablet not connecting? A. Absorption B. Reflection C. Distance D. Refraction E. Attenuation

A company has two geographically separate locations that need to connect using a VPN. Which of the following devices must be specifically configured to allowVPN traffic into the network? A. Firewall B. Switch C. Router D. Modem

A technician is working on a new machine that has been procured for testing and development. The machine will run a hypervisor and host several operating systems of various types so the development team can test the company's applications in a variety of environments. The technician wants the virtual machines to be available to communicate with each other without leaving the hypervisor. Which of the following is the BEST solution to the problem? A. The technician should connect the machine to its own separate switch. B. The technician should add a route in each virtual machine to the default gateway. C. The technician should configure a virtual switch. D. The technician should set up individual routes between the machines.

A network technician is re-purposing a switch that has been in storage for some time. The device has been wiped to factory defaults. Which of the following should be done FIRST to ensure the device has been hardened before configuration? A. Generate new keys. B. Disable unused ports. C. Check for updated firmware. D. Configure the default VLAN.

A technician is setting up a wireless access point in a coffee shop. The shop is not concerned with security but only wants to allow customers to have access.Which of the following configurations should the technician deploy? A. Use a pre-shared key. B. Set up EAP. C. Configure RADIUS. D. Configure MAC filtering.

A network administrator is assigned to run and connect a Cat 6e Ethernet cable between two nodes in a datacenter. Which of the following connector types should the network administrator use to terminate this cable? A. DB-9 B. RS-232 C. DB-25 D. RJ-45

Management has requested that services be available within 72 hours of a disaster. Budget is a major concern. A contract is signed with a company that has plenty of space, and the technician will have the option of putting infrastructure equipment in place. Which of the following BEST describes this business continuity strategy? A. Cold site B. Differential backup C. Hot site D. Incremental backup E. Warm site F. Full backup

A network technician is planning to update the firmware on a router on the network. The technician has downloaded the file from the vendor's website. Before installing the firmware update, which of the following steps should the technician perform to ensure file integrity? A. Perform antivirus and anti-malware scans of the file. B. Perform a hash on the file for comparison with the vendor's hash. C. Download the file a second time and compare the version numbers. D. Compare the hash of the file to the previous firmware update.