CompTIA N10-008 Online Practice Questions and Exam Preparation

CompTIA N10-008 Online Questions & Answers

• Question 811:

  A customer connects a firewall to an ISP router that translates traffic destined for the internet. The customer can connect to the internet but not to the remote site. Which of the following will verify the status of NAT?

  A. tcpdump
  B. nmap
  C. ipconfig
  D. tracert
  A. tcpdump

  ---

  Explanation/Reference:

  tcpdump is a command-line tool that can capture and analyze network traffic on a given interface. tcpdump can verify the status of NAT by showing the source and destination IP addresses of the packets before and after they pass through the ISP router that translates traffic destined for the internet. tcpdump can also show the NAT protocol and port numbers used by the router. nmap, ipconfig, and tracert are not suitable tools for verifying the status of NAT, as they do not show the IP address translation process.

• Question 812:

  A network administrator is configuring DCHP and wants to explicitly set an IP address based on a MAC address. Which of the following should the administrator use?

  A. Dynamic assignment
  B. Static IP on the server
  C. IP helper
  D. Exclusion range
  E. Reservation
  E. Reservation

  ---

  Explanation/Reference:

  in DHCP reservation the DHCP server is configured to reserve a specific IP address for a particular device based on its MAC address. statically assigning it would just be hand jamming not based on MAC address

• Question 813:

  A company is utilizing multifactor authentication for data center access. Which of the following is the MOST effective security mechanism against physical intrusions due to stolen credentials?

  A. Biometrics security hardware
  B. Access card readers
  C. Access control vestibule
  D. Motion detection cameras
  A. Biometrics security hardware

  ---

  Explanation/Reference:

  Biometrics security hardware is the most effective security mechanism against physical intrusions due to stolen credentials as biometric authentication uses unique biological characteristics like fingerprints, iris patterns, or facial recognition to confirm a person's identity, making it difficult for an unauthorized user to gain access even if they have stolen credentials. Access card readers and access control vestibules provide an additional layer of security, but they can be compromised by stolen access credentials. Motion detection cameras can help detect physical intrusions, but they do not provide any authentication mechanism.

• Question 814:

  Switch 3 was recently added lo an existing stack to extend connectivity to various parts of the network. After the update, new employees were not able to print to the main networked copiers from then workstations. Following are the port configurations for the switch stack in question:

  

  Which of the following should be configured to resolve the issue? (Select TWO).

  A. Enable the printer ports on Switch 3.
  B. Reconfigure the duplex settings on the printer ports on Switch 3.
  C. Reconfigure the VLAN on an printer ports to VLAN 20.
  D. Enable all ports that are shut down on me stack.
  E. Reconfigure me VLAN on the printer ports on Switch 3.
  F. Enable wireless APs on Switch 3.
  A. Enable the printer ports on Switch 3.
  E. Reconfigure me VLAN on the printer ports on Switch 3.

• Question 815:

  Which of the following authentication methods requires a user to enter a password and scan a fingerprint?

  A. Single sign-on
  B. Kerberos
  C. Multifactor
  D. Network access control
  C. Multifactor

  ---

  Explanation/Reference:

  Multifactor authentication is a method of verifying a user's identity by requiring more than one factor, such as something the user knows, something the user has, or something the user is. A password is something the user knows, and a fingerprint is something the user is. Therefore, a user who needs to enter a password and scan a fingerprint is using multifactor authentication.

• Question 816:

  Which of the following compromises internet-connected devices and makes them vulnerable to becoming part of a botnet? (Select TWO)

  A. Deauthentication attack
  B. Malware infection
  C. IP spoofing
  D. Firmware corruption
  E. Use of default credentials
  F. Dictionary attack
  B. Malware infection
  E. Use of default credentials

  ---

  Explanation/Reference:

  an attacker must install malware that opens a backdoor remote connection by using the default credentials.

• Question 817:

  A technician is investigating a SAN switch that has a high number of CRC errors. Which of the following is the MOST likely cause of the errors?

  A. Break in the fiber
  B. Bad switch port
  C. Mismatched duplex
  D. Memory errors
  A. Break in the fiber

  ---

  Explanation/Reference:

  CRC errors and/or late collisions can be caused by a duplex mismatch. When one site of a link is configured on full-duplex and the other on half-duplex you will see the CRC errors at the interface which is configured on full-duplex. This problem occurs also when one site of a link is configured on auto-duplex and the other fixed (full-duplex).

• Question 818:

  A company wants to set up a backup data center that can become active during a disaster. The site needs to contain network equipment and connectivity. Which of the following strategies should the company employ?

  A. Active-active
  B. Warm
  C. Cold
  D. Cloud
  B. Warm

  ---

  Explanation/Reference:

  A warm backup site is a type of backup data center that is partially configured and ready to be brought online in the event of a disaster. It contains network equipment and connectivity, but it may not have all the necessary systems fully configured or running. This allows the company to bring the site online more quickly in the event of a disaster, compared to a cold site, which would need to be fully configured and equipped before it could be used.

  An active-active data center is a type of data center where both primary and secondary sites are actively running and serving traffic. This type of configuration is typically used for high availability and load balancing, rather than for disaster recovery.

• Question 819:

  A network technician built a wireless network in a ten-story office building but has found it does not perform well. The technician performed the following steps during the installation:

  Researched and decided that 802.11ac would be the best technology Ensured the switch supports PoE+ Purchased an AP for each floor and spare APs in case of failure Put each AP into non-overlapping channels

  Which of the following is the MOST likely reason users are experiencing poor performance?

  A. 802.11ac is not the proper wireless technology for a multistory building.
  B. A comprehensive site survey of each floor was not conducted.
  C. Users were not consulted to find out what type of wireless cards they had.
  D. APs in non-overlapping channels are not able to provide proper redundancy.
  B. A comprehensive site survey of each floor was not conducted.

• Question 820:

  A network administrator is reviewing north-south traffic to determine whether a security threat exists. Which of the following explains the type of traffic the administrator is reviewing?

  A. Data flowing between application servers
  B. Data flowing between the perimeter network and application servers
  C. Data flowing in and out of the data center
  D. Data flowing between local on-site support and backup servers
  C. Data flowing in and out of the data center