CompTIA CompTIA Certifications N10-008 Questions & Answers

• Question 931:

  A network administrator is implementing OSPF on all of a company's network devices. Which of the following will MOST likely replace all the company's hubs?

  A. A Layer 3 switch

  B. A proxy server

  C. A NGFW

  D. A WLAN controller

  Correct Answer: A

  A layer 3 switch is a type of network switch that can perform routing functions in addition to the basic switching functions of a layer 2 switch. OSPF (Open Shortest Path First) is a routing protocol used for distributing routing information within a single autonomous system (AS) and improving the routing efficiency and reliability within a network.

• Question 932:

  A network administrator is designing a new datacenter in a different region that will need to communicate to the old datacenter with a secure connection. Which of the following access methods would provide the BEST security for this new datacenter?

  A. Virtual network computing

  B. Secure So

  C. In-band connection

  D. Site-to-site VPN

  Correct Answer: D

  SSH serves a similar function as a Site-to-site VPN, however SSH only operates at the Application Level. The VPN encrypts and protects all the data.

• Question 933:

  A network administrator discovers that users in an adjacent building are connecting to the company's guest wireless network to download inappropriate material. Which of the following can the administrator do to MOST easily mitigate this issue?

  A. Reduce the wireless power levels

  B. Adjust the wireless channels

  C. Enable wireless client isolation

  D. Enable wireless port security

  Correct Answer: A

  Wireless Client Isolation is a security feature that prevents wireless clients from communicating with one another. This feature is useful for guest and BYOD SSIDs adding a level of security to limit attacks and threats between devices connected to the wireless networks.

  This question I think assumes the guest network is coming from one building and not the other. For this I would Vote A (but it's a crummy question)

• Question 934:

  Which of the following technologies provides a failover mechanism for the default gateway?

  A. FHRP

  B. LACP

  C. OSPF

  D. STP

  Correct Answer: A

• Question 935:

  An attacker is attempting to find the password to a network by inputting common words and phrases in plaintext to the password prompt. Which of the following attack types BEST describes this action?

  A. Pass-the-hash attack

  B. Rainbow table attack

  C. Brute-force attack

  D. Dictionary attack

  Correct Answer: D

  -

  A pass-the-hash attack is a type of attack in which an attacker steals a user's password hash and uses it to gain unauthorised access to systems and resources.

  -

  A rainbow table attack is a type of password cracking method that uses pre-computed hashes to quickly crack encrypted passwords without brute-force guessing.

  -

  A brute-force attack is a method of guessing a password by systematically trying every possible combination of characters until the correct one is found.

  -

  A dictionary attack is a method of guessing a password by systematically trying words found in a dictionary or other word list until the correct password is found.

• Question 936:

  A network engineer is investigating reports of poor network performance. Upon reviewing a device configuration, the engineer finds that duplex settings are mismatched on both ends. Which of the following would be the MOST likely result of this finding?

  A. Increased CRC errors

  B. Increased giants and runts

  C. Increased switching loops

  D. Increased device temperature

  Correct Answer: A

  The different duplex settings on both ends of a connection can cause a mismatch in the flow control (sending data at different speed), leading data collisions. These collisions can result in corrupted data and increase the number of CRC errors.

• Question 937:

  A technician needs to configure a Linux computer for network monitoring. The technician has the following information:

  Linux computer details:

  

  Switch mirror port details:

  

  After connecting the Linux computer to the mirror port on the switch, which of the following commands should the technician run on the Linux computer?

  A. ifconfig ecth0 promisc

  B. ifconfig eth1 up

  C. ifconfig eth0 10.1.2.3

  D. ifconfig eth1 hw ether A1:B2:C3:D4:E5:F6

  Correct Answer: A

  The 'ifconfig eth0 promisc' cmd would enable promiscuous mode on eth0 so the interface can capture and process network traffic coming to it. The switch's mirror port is duplicating traffic on another port on the switch and sending the mirrored traffic through its mirror port which is connected to the linux computer on eth1.

• Question 938:

  The following configuration is applied to a DHCP server connected to a VPN concentrator:

  

  There are 300 non-concurrent sales representatives who log in for one hour a day to upload reports, and 252 of these representatives are able to connect to the VPN without any Issues. The remaining sales representatives cannot connect to the VPN over the course of the day.

  Which of the following can be done to resolve the issue without utilizing additional resources?

  A. Decrease the lease duration

  B. Reboot the DHCP server

  C. Install a new VPN concentrator

  D. Configure a new router

  Correct Answer: A

  Decrease the lease duration - They're exhausting all of the available IP addresses in the DHCP scope for VPN clients. Excluding the network address (10.0.0.0), DHCP server (10.0.0.1) and gateway IP (10.0.0.254), the DHCP scope that the server can give out would range from 10.0.0.2 to 10.0.0.253. This would be 252 usable addresses, which the number of representatives that were able to connect. This isn't enough for all 300 sales representatives, so decreasing the lease duration would make sense here since they only login for an hour a day to upload reports.

• Question 939:

  Which of the following devices would be used to manage a corporate WLAN?

  A. A wireless NAS

  B. A wireless bridge

  C. A wireless router

  D. A wireless controller

  Correct Answer: D

  A Wireless LAN (WLAN) controller is a device used to manage a corporate WLAN. The WLAN controller is responsible for centralizing the management of wireless access points (APs), providing a centralized management interface, and automating common WLAN tasks such as security, quality of service (QoS), and radio frequency (RF) management.

• Question 940:

  Which of the following options represents the participating computers in a network?

  A. Nodes

  B. CPUs

  C. Servers

  D. Clients

  Correct Answer: A

  In a broader sense, "node" is a general term that refers to any device connected to a network. This can include devices that play various roles, such as servers, routers, switches, hubs, and even individual computers or devices like printers. A

  node is essentially any point of connection within a network, whether it's a device responsible for managing traffic (like routers and switches) or devices that consume resources (like computers and smartphones).

  Clients:

  Clients are a specific type of node in a network architecture. They are devices that request and consume services, data, or resources from other devices or servers on the network. Clients are typically end-user devices, such as computers,

  laptops, smartphones, tablets, or any device that accesses and interacts with resources provided by servers or other devices.

  Clients initiate requests to servers for services like web browsing, email, file sharing, and more.

  Reference: https://en.wikipedia.org/wiki/Node_(networking)