CompTIA N10-008 Online Practice Questions and Exam Preparation

CompTIA N10-008 Online Questions & Answers

• Question 1151:

  In which of the following locations is a VPN headend found?

  A. Distribution
  B. Access
  C. Core
  D. WAN edge
  D. WAN edge

• Question 1152:

  An international company is transferring its IT assets including a number of WAPs from the United States to an office in Europe for deployment. Which of the following considerations should the company research before Implementing the wireless hardware?

  A. WPA2 cipher
  B. Regulatory Impacts
  C. CDMA configuration
  D. 802.11 standards
  B. Regulatory Impacts

  ---

  Explanation/Reference:

  When transferring IT assets, including wireless access points (WAPs), from one country to another, it's important to research the regulatory impacts of the move. Different countries have different regulations and compliance requirements for wireless devices, such as frequency bands, power levels, and encryption standards. Failing to comply with these regulations can result in fines or other penalties.

• Question 1153:

  A newly installed VoIP phone is not getting the DHCP IP address it needs to connect to the phone system. Which of the following tasks need to be completed to allow the phone to operate correctly?

  A. Assign the phone's switchport to the correct VLAN
  B. Statistically assign the phone's gateway address
  C. Configure a route on the VoIP network router
  D. Implement a VoIP gateway
  A. Assign the phone's switchport to the correct VLAN

  ---

  Explanation/Reference:

  Assign the phone's switchport to the correct VLAN: This is the most likely solution as the phone is not getting the DHCP IP address it needs, which typically indicates an issue with the VLAN configuration on the switch. By assigning the phone's switchport to the correct VLAN, the phone will be able to receive an IP address via DHCP from the phone system.

• Question 1154:

  Which of the following objectives does an evil twin achieve?

  A. DNS poisoning
  B. Log-in credentials
  C. ARP spoofing
  D. Denial of service
  B. Log-in credentials

  ---

  Explanation/Reference:

  The objective that an evil twin achieves is log-in credentials. An evil twin is a type of rogue access point that mimics a legitimate wireless network by using the same SSID, encryption, and authentication methods. An evil twin can trick unsuspecting users into connecting to it instead of the real network, and then capture their log-in credentials or other sensitive data. An evil twin can also perform man-in-the-middle attacks, redirecting or modifying the user's traffic.

• Question 1155:

  A homeowner frequently has guests visit and would like to install a wireless router for their personal devices. The homeowner wants to ensure that the wireless router is compatible with the widest range of devices possible. Which of the following standards should a technician suggest?

  A. 802 11ac
  B. 802.11b
  C. 802.11g
  D. 802.11n
  D. 802.11n

  ---

  Explanation/Reference:

  802.11n is one of two of the WiFi standards that can operate on 2.4 AND 5 GHz but it's the only one that is listed and so therefore, it's D since they wanted to have "a wide range of devices."

• Question 1156:

  A network device needs to discover a server that can provide it with an IPv4 address. Which of the following does the device need to send the request to?

  A. Default gateway
  B. Broadcast address
  C. Unicast address
  D. Link local address
  B. Broadcast address

  ---

  Explanation/Reference:

  The DHCP client sends broadcast request packets to the network; the DHCP servers respond with broadcast packets that offer IP parameters, such as an IP address for the client. After the client chooses the IP parameters, communication

  between the client and server is by unicast packets.

  "When a DHCP client boots up, it automatically sends out a DHCP Discover UDP datagram to the broadcast address, 255.255.255.255. This DHCP Discover message asks "Are there any DHCP servers out there?" The client can't send

  unicast traffic yet, as it doesn't have a valid IP address that can be used."

• Question 1157:

  A network technician is troubleshooting a new web server connectivity issue. The network technician discovers the following on the support ticket

  1.

  The server's IP address can be pinged from the client PCs

  2.

  Access to the web resource works correctly when on the server's console.

  3.

  No clients can access the servers data via URL.

  4.

  The server does not have a firewall configured

  5.

  No ACLs are preventing connectivity from the client's network. All services on the server are operating normally, which was confirmed by the server team.

  Which of the following actions will resolve the issue?

  A. Reset port security on the switchport connecting the server.
  B. Adjust the web server's NTP settings to match the client settings.
  C. Configure A records for the web server.
  D. Install the correct MIB on the web server
  C. Configure A records for the web server.

• Question 1158:

  A technician is working on a solution to isolate traffic between specific types of devices, servers, and users on the internal firewall. Which of the following traffic flows should be isolated?

  A. East-west
  B. Access/edge
  C. Core/distribution
  D. North-south
  A. East-west

• Question 1159:

  A company just migrated its email service to a cloud solution. After the migration, two-thirds of the internal users were able to connect to their mailboxes, but the connection fails for the other one-third of internal users. Users working externally are not reporting any issues. The network administrator identifies the following output collected from an internal host:

  1.

  c:\user> nslookup newmail.company.com

  2.

  Non-Authoritative answer:

  3.

  Name: newmail.company.com

  4.

  IPs: 3.219.13.186, 64.58.225.184, 184.168.131.243

  Which of the following verification tasks should the network administrator perform NEXT?

  A. Check the firewall ACL to verify all required IP addresses are included.
  B. Verify the required router PAT rules are properly configured.
  C. Confirm the internal DNS server is replying to requests for the cloud solution.
  D. Validate the cloud console to determine whether there are unlicensed requests.
  A. Check the firewall ACL to verify all required IP addresses are included.

  ---

  Explanation/Reference:

  The output of the nslookup command indicates that the newmail.company.com domain name resolves to three different IP addresses, which suggests that the email service has been migrated to a cloud solution. However, one-third of the internal users are not able to connect to their mailboxes, which may indicate that the firewall is blocking traffic to the cloud email service.

• Question 1160:

  Which of the following types of connections would need to be set up to provide access from the internal network to an external network so multiple satellite offices can communicate securely using various ports and protocols?

  A. Client-to-site VPN
  B. Clientless VPN
  C. RDP
  D. Site-to-site VPN
  E. SSH
  D. Site-to-site VPN

  ---

  Explanation/Reference:

  A site-to-site VPN is a type of VPN connection that allows communication between two or more networks. In this case, the internal network of the corporate client would be connected to an external network, such as the internet, using a siteto-site VPN. This would allow the satellite offices to communicate securely with each other and with the headquarters using various ports and protocols.In summary, client-to-site VPN allows a single user to access a network remotely, while site-to-site VPN allows multiple networks to communicate and connect securely as if they were on the same local network.