CompTIA N10-008 Online Practice Questions and Exam Preparation

CompTIA N10-008 Online Questions & Answers

• Question 711:

  Wireless users are reporting intermittent internet connectivity. Connectivity is restored when the users disconnect and reconnect, utilizing the web authentication process each time. The network administrator can see the devices connected to the APs at all times. Which of the following steps will MOST likely determine the cause of the issue?

  A. Verify the session time-out configuration on the captive portal settings
  B. Check for encryption protocol mismatch on the client's wireless settings
  C. Confirm that a valid passphrase is being used during the web authentication
  D. Investigate for a client's disassociation caused by an evil twin AP
  A. Verify the session time-out configuration on the captive portal settings

• Question 712:

  A network administrator is installing a new server in me data center. The administrator is concerned the amount of traffic generated will exceed 1GB. and higher-throughput NiCs are not available for installation. Which of the following is the BEST solution for this issue?

  A. Install an additional NIC and configure LACP.
  B. Remove some of the applications from the server.
  C. Configure the NIC to use fun duplex
  D. Configure port mirroring to send traffic to another server.
  E. Install a SSD to decrease data processing time.
  A. Install an additional NIC and configure LACP.

  ---

  Explanation/Reference:

  Install an additional NIC and configure Link Aggregation Control Protocol (LACP) also known as NIC Teaming. This will allow the administrator to combine the bandwidth of multiple NICs to increase the total throughput and handle the expected traffic. This is the most efficient solution for this issue as it can provide more bandwidth without having to remove any applications from the server or decrease data processing time.

• Question 713:

  Users attending security training at work are advised not to use single words as passwords for corporate applications. Which of the following does this BEST protect against?

  A. An on-path attack
  B. A brute-force attack
  C. A dictionary attack
  D. MAC spoofing
  E. Denial of service
  C. A dictionary attack

  ---

  Explanation/Reference:

  While the answer can be both a brute force attack and a dictionary attack, the best answer for this question is a dictionary attack. A dictionary attack software matches the hash to those produced by ordinary words found in a dictionary.

• Question 714:

  A network administrator is assisting a user who is unable to access network services by using hostname on Host 1. Another user in the same office is able to access the network services with no issue on Host 2. The network administrator runs a command on the affected machine and the working machine and compares the following output:

  

  Which of the follow should the network administrator change to restore connectivity?

  A. Change the default gateway on Host 1 to 192.168.1.1.
  B. Change the IPv4 address on Host 2 to 192.168.0.112.
  C. Reconfigure the subnet masks on both hosts.
  D. Update the DNS server on Host 1 to 192.168.0.53.
  D. Update the DNS server on Host 1 to 192.168.0.53.

• Question 715:

  Which of the following technologies are certificates most commonly associated with?

  A. PKI
  B. VLAN tagging
  C. LDAP
  D. MFA
  A. PKI

  ---

  Explanation/Reference:

  PKI stands for Public Key Infrastructure, which is a system of processes, technologies, and policies that allows you to encrypt and sign data using digital certificates1. Digital certificates are issued by Certificate Authorities (CAs) and authenticate the identity of users, devices, or services that communicate online12. Digital certificates also provide the means to encrypt and decrypt messages between sender and receiver using public and private keys2

• Question 716:

  Users ate moving back into an office that had been vacant for awhile. Ten workstations are hooked up in the office, but one workstation cannot obtain a link with (he switch. A network engineer checks the documentation and cable labeling, and everything is hooked up as expected. The engineer moves the connection lo a different switchport. but a link still cannot be obtained. When the engineer puts a tone generator on (he infrastructure cable, no tone is heard at the far end. Which of the following issues is the engineer MOST likely trying to find?

  A. A bad switchport
  B. A break in the cable
  C. A cable short
  D. Cable interference
  B. A break in the cable

  ---

  Explanation/Reference:

  A break in the cable means that there is no electrical continuity between the two ends of the cable, which prevents the signal from reaching the switch. A tone generator is a device that sends an audible signal through the cable, and if no tone is heard at the far end, it indicates a break in the cable.

• Question 717:

  On a network with redundant switches, a network administrator replaced one of the switches but was unable to get a connection with another switch. Which of the following should the administrator chock after successfully testing the cable that was wired for TIA/EIA-568A on both ends?

  A. If MDIX is enabled on the new switch
  B. If PoE is enabled
  C. If a plenum cable is being used
  D. If STP is disabled on the switches
  A. If MDIX is enabled on the new switch

  ---

  Explanation/Reference:

  Auto-MDIX (or medium dependent interface crossover) is a feature that automatically detects the type of cable connection and configures the interface accordingly (i.e. straight-through or crossover). This ensures that the connection between the two switches is successful. This is referenced in the CompTIA Network+ Study Manual, page 519.

• Question 718:

  A network administrator received reports that a 40Gb connection is saturated. The only server the administrator can use for data collection in that location has a 10GB connection to the network. Which of the following is the best method to use on the server to determine the source of the saturation?

  A. Port mirroring
  B. Log aggregation
  C. Flow data
  D. Packet capture
  C. Flow data

  ---

  Explanation/Reference:

  Flow data, collected through flow monitoring protocols such as NetFlow, sFlow, or IPFIX, provides aggregated information about network traffic, including details on source and destination IP addresses, ports, protocols, and more. This method doesn't capture the actual packet contents but summarizes network traffic flow.

  By leveraging flow data, the network administrator can gather information about the traffic patterns and bandwidth usage across the network. This method is less resource-intensive than performing packet captures and can provide valuable insights into the sources and destinations of the traffic causing the saturation on the 40Gb connection.

• Question 719:

  A network technician was hired to harden the security of a network. The technician is required to enable encryption and create a password for AP security through the web browser. Which of the following would BEST support these requirements?

  A. ESP
  B. WPA2
  C. IPSec
  D. ACL
  B. WPA2

• Question 720:

  In order to prepare for a fire or natural disaster, a Chief Executive Officer would like the network administrator to set up a site with no equipment. Which of the following should the network administrator set up?

  A. A warm site
  B. A cold site
  C. A hot site
  D. A site provided by the ISP
  B. A cold site