CompTIA N10-009 Exam Practice Test Instant Access

Question 1

A systems administrator is configuring a new device to be added to the network. The administrator is planning to perform device hardening prior to connecting the device. Which of the following should the administrator do first?

AUpdate the network ACLs.

BPlace the device in a screened subnet.

CEnable content filtering.

DChange the default admin passwords.

Answer : D

Changing default admin passwords is a fundamental first step in device hardening to prevent unauthorized access.

Question 2

A company is implementing a wireless solution in a high-density environment. Which of the following 802.11 standards is used when a company is concerned about device saturation and converage?

A802.11ac

B802.11ax

C802.11g

D802.11n

Answer : B

802.11ax, also known as Wi-Fi 6, is designed for high-density environments and improves device saturation and coverage compared to previous standards.

802.11ac: While it offers high throughput, it is not optimized for high-density environments as effectively as 802.11ax.

802.11ax (Wi-Fi 6): Introduces features like OFDMA, MU-MIMO, and BSS Coloring, which enhance performance in crowded environments, reduce latency, and increase the number of devices that can be connected simultaneously.

802.11g and 802.11n: Older standards that do not offer the same level of efficiency or support for high device density as 802.11ax.

Network Reference:

CompTIA Network+ N10-007 Official Certification Guide: Covers the 802.11 standards and their capabilities.

Cisco Networking Academy: Provides training on Wi-Fi technologies and best practices for high-density deployments.

Network+ Certification All-in-One Exam Guide: Discusses the various 802.11 standards and their applications in different environments.

Question 3

A client wants to increase overall security after a recent breach. Which of the following would be best to implement? (Select two.)

ALeast privilege network access

BDynamic inventeries

CCentral policy management

DZero-touch provisioning

EConfiguration drift prevention

FSubnet range limits

Answer : A, C

To increase overall security after a recent breach, implementing least privilege network access and central policy management are effective strategies.

Least Privilege Network Access: This principle ensures that users and devices are granted only the access necessary to perform their functions, minimizing the potential for unauthorized access or breaches. By limiting permissions, the risk of an attacker gaining access to critical parts of the network is reduced.

Central Policy Management: Centralized management of security policies allows for consistent and streamlined implementation of security measures across the entire network. This helps in quickly responding to security incidents, ensuring compliance with security protocols, and reducing the chances of misconfigurations.

Network Reference:

CompTIA Network+ N10-007 Official Certification Guide: Discusses network security principles, including least privilege and policy management.

Cisco Networking Academy: Provides training on implementing security policies and access controls.

Network+ Certification All-in-One Exam Guide: Covers strategies for enhancing network security and managing policies effectively.

Question 4

Which of the following network traffic type is sent to all nodes on the network?

AUnicast

BBroadcast

CMulticast

DAnycast

Answer : B

Broadcast traffic is sent to all nodes on the network. In a broadcast, a single packet is transmitted to all devices in the network segment. This is commonly used for tasks like ARP (Address Resolution Protocol) requests.

Broadcast Domain: All devices within the same broadcast domain will receive broadcast traffic.

Network Types: Ethernet networks commonly use broadcast traffic for certain functions, including network discovery and addressing.

IPv4 Broadcast: An IPv4 broadcast address (e.g., 255.255.255.255) ensures the packet is sent to all devices on the network.

Network Reference:

CompTIA Network+ N10-007 Official Certification Guide: Explains network traffic types, including broadcast, unicast, and multicast.

Cisco Networking Academy: Provides training on network communication methods and traffic types.

Network+ Certification All-in-One Exam Guide: Discusses different types of network traffic and their uses in various network scenarios.

Broadcast traffic is essential for network operations that require communication with all nodes, such as ARP requests or DHCP discovery messages.

Question 5

A network administrator is in the process of installing 35 PoE security cameras. After the administrator installed and tested the new cables, the administrator installed the cameras. However, a small number of the cameras do not work. Which of the following is the most reason?

AIncorrect wiring standard

BPower budget exceeded

CSignal attenuation

DWrong voltage

Answer : B

When installing multiple Power over Ethernet (PoE) devices like security cameras, it is crucial to ensure that the total power requirement does not exceed the power budget of the PoE switch. Each PoE switch has a maximum power capacity, and exceeding this capacity can cause some devices to fail to receive power.

PoE Standards: PoE switches conform to standards such as IEEE 802.3af (PoE) and 802.3at (PoE+), each with specific power limits per port and total power capacity.

Power Calculation: Adding up the power requirements of all connected PoE devices can help determine if the total power budget of the switch is exceeded.

Symptoms: When the power budget is exceeded, some devices, typically those farthest from the switch or connected last, may not power up or function correctly.

Network Reference:

CompTIA Network+ N10-007 Official Certification Guide: Covers PoE standards and troubleshooting power issues.

Cisco Networking Academy: Discusses PoE technologies, power budgeting, and managing PoE devices.

Network+ Certification All-in-One Exam Guide: Provides information on PoE setup, including power budget considerations.

Question 6

A network technician needs to install patch cords from the UTP patch panel to the access switch for a newly occupied set of offices. The patch panel is not labeled for easy jack identification. Which of the following tools provides the easiest way to identify the appropriate patch panel port?

AToner

BLaptop

CCable tester

DVisual fault locator

Answer : A

A toner probe, often referred to as a toner and probe kit, is the easiest and most effective tool for identifying individual cables in a bundle, especially in situations where the patch panel is not labeled. The toner sends an audible tone through the cable, and the probe detects the tone at the other end, allowing the technician to quickly identify the correct cable.

Functionality: The toner generates a tone that travels along the cable. When the probe is placed near the correct cable, it detects the tone and emits a sound.

Ease of Use: Toner probes are straightforward to use, even in environments with many cables, making them ideal for identifying cables in unlabeled patch panels.

Efficiency: This method is much faster and more reliable than manual tracing, especially in complex setups.

Network Reference:

CompTIA Network+ N10-007 Official Certification Guide: Details tools used for cable identification and troubleshooting.

Cisco Networking Academy: Provides training on using toner probes and other cable testing tools.

Network+ Certification All-in-One Exam Guide: Explains the use of different tools for network cable identification and management.

Question 7

Which of the following is a cost-effective advantage of a split-tunnel VPN?

AWeb traffic is filtered through a web filter.

BMore bandwidth is required on the company's internet connection.

CMonitoring detects insecure machines on the company's network.

DCloud-based traffic flows outside of the company's network.

Answer : D

A split-tunnel VPN allows some traffic to be routed through the VPN while other traffic goes directly to the internet. This setup offers several advantages, with a primary one being cost-effectiveness due to cloud-based traffic not consuming company bandwidth.

Bandwidth Utilization: Split-tunnel VPNs reduce the amount of traffic passing through the company's network, freeing up bandwidth for other uses.

Performance: By allowing internet-bound traffic to bypass the VPN, it can reduce latency and improve the performance for users accessing cloud services directly.

Cost Savings: Reduced load on the company's VPN infrastructure can lead to lower costs in terms of both hardware and bandwidth.

Network Reference:

CompTIA Network+ N10-007 Official Certification Guide: Covers VPN types, including split-tunnel configurations and their advantages.

Cisco Networking Academy: Discusses VPN technologies and the benefits of split-tunneling.

Network+ Certification All-in-One Exam Guide: Provides detailed information on VPN setups, including the cost-effectiveness of split-tunnel VPNs.

By allowing cloud-based traffic to flow outside the company's network, a split-tunnel VPN optimizes resource usage and enhances the overall network performance without incurring extra costs for bandwidth.

CompTIA N10-009 CompTIA Network+ Certification Exam Practice Test