In the past, users brought personal laptops to the office to bypass some of the security protocols on their desktops. Due to new security initiatives, management has asked that users not be allowed to attach personal devices to the network. Which of the following should a technician use to BEST meet this goal?

A. Shut down unused ports on switches

B. Upgrade firmware on network devices

C. Allow only secure protocols on the network

D. Disable unnecessary services

A network manager has received reports that some employees have been using the company's WiFi to log onto their social media accounts from their personal devices. The network manager is looking for a solution to prevent this type of activity. The Chief Information Officer (CIO) wants to continue using a pre-shared key and add an additional layer of security to allow only authorized users to authenticate to the WiFi. Which of the following solutions would address this request?
(Choose two.)

A. Port security

B. MAC filtering

C. Geofencing

D. 802.1X

E. Proxy server

F. SSO

Which of the following security mechanisms dynamically assigns a Layer 2 address and restricts traffic only to that Layer 2 address?

A. Sticky MAC

B. 802.1x

C. ACL

D. NAC

Ann, a network technician, has just installed a fiber switch in a datacenter. To run the fiber cabling, Ann plans the cable route over the top of the rack using the cable trays, down to the switch, coiling up any excess cable. As Ann configures the switch, she notices several messages in the logging buffer stating the receive signal of the SFP is too weak. Which of the following is MOST likely the cause of the errors in the logging buffer?

A. Bend radius exceeded

B. Fiber cable mismatch

C. Fiber type mismatch

D. Bad fiber switch

A technician needs to add ten additional Ethernet ports to a small office network. A new basic function switch is added. Hosts connected to the new switch are unable to see any computers on the network other than those connected to the new switch. Which of the following should the technician perform to ensure the hosts on the new switch can communicate with the existing network?

A. Replace the new switch with a hub to ensure Layer 1 connectivity on the new network segment.

B. Move the straight-through Ethernet cable connecting the switches to the first port on both switches.

C. Connect the switches with a cable that has a TIA/EIA 586A wired connector end and a TIA/EIA 586B wired end.

D. Add a second cable connecting the switches for redundancy and disabling STP on both switches.

Which of the following BEST describes the characteristics of a differential backup solution?

A. Backs up files with the creation or modified date as the current date.

B. Backs up all files and sets the archive bit.

C. Backs up files with a date earlier than today’s date with a clear archive bit.

D. Backs up files with the archive bit set but does not clear the bit.

A wireless administrator has configured a secure wireless network that can only be associated to specific domain accounts. This was done to help mitigate any ricks associated with the wireless signal propagating outside of the facility. Which of the following has no administrator implemented?

A. NAC

B. Implicit deny

C. WPA2

D. Geofencing

A wireless access point that was working in a large warehouse last week is now offline. The technician observes there is no power to the device. The technician verifies PoE is working on the switchport, and then confirms the wireless access point is still not powering up. Which of the following is the MOST likely issue?

A. Attenuation

B. Incorrect pin-out

C. Damaged cable

D. Switch misconfiguration

When using a network monitoring system, a network technician notices that a switch returns many object identifiers that do not have descriptions. Which of the following should be imported into the monitoring system to describe these object identifiers?

A. SNMPv3

B. SIEM

C. MIB

D. SYSLOG

A network technician has just configured NAC for connections using Cat 6 cables. However, none of the Windows clients can connect to the network.
Which of the following components should the technician check on the Windows workstations? (Choose two.)

A. Start the Wired AutoConfig service in the Services console

B. Enable IEEE 802.1q Authentication in Network Interface Card Properties

C. Enable IEEE 802.1x Authentication in Network Interface Card Properties

D. Start the Wireless AutoConfig service in the Services console

E. Enable IEEE 802.3 Ethernet IPv6 in Network Interface Card Properties

A technician is trying to identify the cause of an issue several wireless users are experiencing at an office. The office is in a square-shaped building, with four
802.11b WAPs with omnidirectional antennas located in the four corners of the building. Users near the center of the building report sporadic issues connecting to resources. The technician checks the signal strength in the middle of the building and determines it is adequate. Which of the following is causing the reported issue?

A. The antenna types are incorrect, and unidirectional should be used.

B. MAC filtering has not been updated.

C. There is channel overlap of the access points.

D. The power levels are set too low on the WAPs.

A network technician is configuring a wireless network at a branch office. Users at this office work with large files and must be able to access their files on the server quickly. Which of the following 802.11 standards provides the MOST bandwidth?

A. a

B. ac

C. g

D. n

An attacker quickly gains administrative access to a network device. Which of the following MOST likely allowed the attacker to guess the password?

A. Man in the middle

B. A brute-force attack

C. A hash comparison

D. Rainbow tables

A technician is reviewing network device logs in an attempt to trace an attack that occurred on the network. Which of the following protocols would affect whether or not the technician can properly trace the attack through the network using the logs?

A. HTTP

B. SMTP

C. NTP

D. RDP

Which of the following devices would allow a network administrator to block an application at Layer 7 on the network?

A. Firewall

B. NGFW

C. Router

D. Spam filter

Which of the following DNS record types allows IPv6 records to be resolved to DNS names?

A. PTR

B. A

C. AAAA

D. SRV

A corporate manager says wireless phones do not work properly inside the main building. After a troubleshooting process, the network administrator detects that the voice packets are arriving on the wireless phones with different delay times. Which of the following performance issues is the company facing?

A. Jitter

B. Latency

C. Attenuation

D. Frequency mismatch

A network technician needs to dedicate a range of addresses in DHCP for statically assigned servers and network devices. Which of the following should be configured to BEST accomplish this?

A. Static addressing

B. Subnetting

C. Advertisements

D. Exclusions

Which of the following BEST explains the purpose of signature management as a mitigation technique?

A. Hardening devices

B. Segmenting the network

C. Detecting malicious activity

D. Restricting user credentials

A Chief Information Security Officer (CISO) has decided to implement a secure and user-friendly way to connect to the corporate wireless network. Each workstation will be authenticated individually using a unique certificate that will be deployed to the workstation by the organization's certificate authority. Which of the following authentication methods would meet this requirement?

A. PEAP

B. WP2-PSK

C. Captive portal

D. EAP-TLS

A network administrator is responding to a help desk ticket, which states an unknown wireless access point is broadcasting in a specific area. Upon investigation, the administrator finds that a user brought a wireless access point from home and plugged it into the corporate network. This resulted in an attacker using the unsecured wireless LAN to gain access to the network. Which of the following should the network administrator have done to BEST prevent this problem?

A. Changed the default credentials on the network switches

B. Installed a Layer 7 firewall

C. Implemented port security

D. Disabled unnecessary services on the network switches

A network engineer is creating a method for customers to access the company's application in a web browser. Which of the following cloud models should the customers use to access the application?

A. PaaS

B. SaaS

C. MaaS

D. IaaS

A network administrator is configuring a link-state routing protocol for traffic. Which of the following routing protocols should be implemented?

A. RIPv2

B. BGP

C. EIGRP

D. OSPF

After several changes to the network, a technician needs to ensure a client is checking for new hostname and IP pairings. Which of the following commands should the technician use to force new lookups?

A. ipconfig /flushdns

B. ipconfig /release

C. ipconfig /renew

D. ipconfig /all

Due to regulatory requirements, a college bookstore prohibits customers from accessing the wireless network in the building. Which of the following would be the
BEST method to prevent customers from accessing the wireless network while in the bookstore?

A. Use MAC filtering for authorization to the wireless network.

B. Require PEAP for authentication to the wireless network.

C. Implement a Faraday cage within the bookstore premises.

D. Require a pre-shared key for authentication to the wireless network.

Which of the following accurately describes a warm site in datacenter disaster recovery?

A. An online standby datacenter that is fully equipped without company data

B. A backup datacenter location that is ready for equipment to be installed

C. A backup datacenter location that is fully equipped bot not online

D. An online, standby datacenter that is fully equipped with all company data

A network technician has created a network that consists of a router, a firewall, a switch, and several PCs. Which of the following physical network topologies was created?

A. Star

B. Mesh

C. Ring

D. Bus

A network technician discovers there is no connectivity on a T1 line even though the cable connection appears to be in place. The router shows there is no active connection on the port. The issue is occurring between the demarcation point and the router port. The router cable tests fine and is terminated at the demarcation panel. Which of the following tools should be used to fix the issue?

A. Punchdown tool

B. Crimper

C. OTDR

D. Loopback adapter

A network technician receives a report that the company's intranet web server is not responding. The technician verifies successful connectivity to the server via the ping and tracert commands. The technician also verifies the routers and switches are online and operational, and then runs Telnet to port 80 and receives a response. Which of the following troubleshooting steps should the technician perform NEXT?

A. Establish a plan to reset the company router.

B. Escalate the issue to the server administrator.

C. Duplicate the issue and continue testing.

D. Report that an issue was not identified.

Which of the following OSI layers do TCP and UDP operate within?

A. Data link

B. Network

C. Session

D. Transport

E. Presentation

F. Application

A technician is replacing a failed SOHO router for a customer who has an existing switch, cable modem, and static IP address. The user has a web server that faces the Internet so users can visit and leave comments. Which of the following BEST describes the correct configuration for this customer's requirements?

A. The modem is placed in bridge mode, the router is placed behind the modem, and the web server is placed behind the router.

B. The router is placed in bridge mode, the modem is placed behind the router, and the web server is placed behind the modem.

C. The web server is placed in bridge mode, the router is placed behind the web server, and the modem is placed behind the router.

D. The switch is placed in bridge mode, the modem is placed behind the router, and the router is placed behind the modem.

A network administrator has been given a network of 172.16.85.0/21 and wants to know the usable range of IP addresses on that subnet. Which of the following indicates the correct IP address range?

A. 172.16.80.0-172.16.85.254

B. 172.16.80.0-172.16.88.255

C. 172.16.80.1-172.16.87.254

D. 172.16.80.1-172.16.85.255

A network team has reported multiple outages caused by unauthorized access to the IDF. Which of the following would BEST prevent this issue from reoccurring?

A. Video surveillance

B. Badge readers

C. Motion sensors

D. Tamper switches

Multiple users are experiencing slow performance when downloading large files from a specific site. Which of the following should the technician do to check the connection to the external site?

A. Check the latency by running a continuous ping to the site.

B. Perform the ipconfig/flushdns command on the affected users’ PCs.

C. Run a speedtest from a user’s PC to a site on the Internet.

D. Verify if there is MTU mismatch in the path to the site.

A network administrator it concerned about the management traffic between a machine and the corporate router. Which of the following protocols should the administrator use to prevent a security breach?

A. VNC

B. SSH

C. RDP

D. SFTP

A technician is dispatched to replace an access point that has failed. The device is preconfigured with the correct SSID and passphrase. When the user tries to connect to the SSID, the connection fails. Which of the following is the MOST likely cause of the issue?

A. Interference

B. Channel overlap

C. Distance limitations

D. Security type mismatch

Which of the following DNS record types assists with the routing of email?

A. MX

B. PTR

C. SRV

D. AAAA

A network administrator notices that network utilization is extremely high around midnight and wonders if this is normal or if there might be a security issue. Which of the following types of documentation should the administrator consult FIRST?

A. Change management documentation

B. Standard operating procedures

C. Network performance baseline

D. Firewall configuration documentation

A junior network technician is working in the field and needs to connect to the company's remote server, however, doing so will require the junior technician to use the public Internet. Because security is a concern, which of the following is the BEST method to use?

A. Telnet

B. SSH

C. SFTP

D. VNC

A network technician directly connected two laptops together via 802.11 protocol. Under which of the following network topologies are the laptops operating?
(Choose two.)

A. Bus

B. Ad hoc

C. Point-to-point

D. Point-to-multipoint

E. Star

F. Mesh

G. Ring

Which of the following is the correct port number for NTP?

A. 25

B. 69

C. 123

D. 161

Which of the following policies prohibits a network administrator from using spare servers in the datacenter to mine bitcoins?

A. NDA

B. BYOD

C. AUP

D. MOU

An office user cannot access local network drives but has full access to the Internet. A technician troubleshoots the issue and observes the following output of the ipconfig command:
 
Which of the following would MOST likely allow the network drives to be accessed?

A. Update the WLAN adapter driver

B. Disable the WLAN adapter

C. Check the wireless DHCP configuration

D. Disable the LAN adapter

The security department is looking to install a new IP-based camera. Plugging the camera into the available Ethernet jack does not power on the camera. Upon further investigation, the cable tests fine, and it does provide power to a VoIP phone. Which of the following is MOST likely causing the issue?

A. The brown pair UTP has a short.

B. The camera requires 802.3at power.

C. The camera requires Cat 7 cabling.

D. The switchport has PoE disabled.

Which of the following can be used to prevent unauthorized employees from entering restricted areas?

A. Sign-in sheets

B. Video cameras

C. Motion sensors

D. Swipe badges

Which of the following types of attacks is characterized by encrypting data and locking out a user from access to certain data within a workstation?

A. Ransomware

B. Phishing

C. DDoS

D. Social engineering

E. Spoofing

A network administrator wants to ensure all traffic is inspected and abides by the AUP, and that malicious traffic is stopped. Which of the following features should be enabled on a firewall to meet this requirement?

A. Intrusion detection

B. Proxy service

C. Dynamic DNS

D. Content filtering

Users are reporting Internet connectivity issues. The network administrator wants to determine if the issues are internal to the company network or if there is an issue with the ISP. Which of the following tools should be used to BEST determine where the outage is occurring?

A. traceroute

B. ping

C. nslookup

D. netstat

A network administrator is concerned about clients being able to access the local Internet while connected to the corporate VPN. Which of the following should be disabled on the client to prevent this?

A. TLS

B. Remote file access

C. Split tunneling

D. HTTPS

A user has reported an issue with wireless VoIP phones dropping calls during business hours. When working late or in the evenings, the user does not experience call drops. When the network technician investigates the issue, all WAPs have balanced the number of connections evenly and are not dropping off the network.
The network technician connects to the wireless network in the user's office and starts a continuous ping to an external server. The results show a drastic and varied response time for each packet. Which of the following is the MOST likely cause of the dropped calls?

A. No QoS configured on the network

B. Signal-to-noise ratio

C. Interference from the microwave in the breakroom

D. Rogue AP installed in the office