Practice Free N10-009 Exam Online Questions
Question #151
A network administrator needs to ensure that users accept internet usage rules.
Which of the following will help the administrator accomplish this task?
- A . Captive portal
- B . Acceptable use policy
- C . Network access control
- D . DNS filtering
Correct Answer: A
A
Explanation:
A captive portal is designed to present terms, conditions, or usage rules to users and require them to acknowledge/accept those rules before granting network or internet access. In Network+ (N10-009) security and access control concepts, captive portals are commonly associated with guest wireless or
public access scenarios, where users are redirected to a web page that displays acceptable-use language and requires a click-through acceptance (and sometimes authentication). This provides a technical enforcement point: users must actively accept the rules to proceed, which supports organizational policy compliance and creates a recordable control in many implementations.
An Acceptable Use Policy (AUP) is the document that defines the rules, but by itself it does not technically force a user to acknowledge them at the time of access. NAC controls who/what can connect and can enforce posture and segmentation, but it does not inherently ensure users “accept” usage rules unless paired with a portal workflow. DNS filtering blocks or allows domain access categories (malware, adult content, etc.), which enforces browsing restrictions but does not guarantee user acceptance of rules. Therefore, the best answer to ensure users accept the rules is captive portal.
A
Explanation:
A captive portal is designed to present terms, conditions, or usage rules to users and require them to acknowledge/accept those rules before granting network or internet access. In Network+ (N10-009) security and access control concepts, captive portals are commonly associated with guest wireless or
public access scenarios, where users are redirected to a web page that displays acceptable-use language and requires a click-through acceptance (and sometimes authentication). This provides a technical enforcement point: users must actively accept the rules to proceed, which supports organizational policy compliance and creates a recordable control in many implementations.
An Acceptable Use Policy (AUP) is the document that defines the rules, but by itself it does not technically force a user to acknowledge them at the time of access. NAC controls who/what can connect and can enforce posture and segmentation, but it does not inherently ensure users “accept” usage rules unless paired with a portal workflow. DNS filtering blocks or allows domain access categories (malware, adult content, etc.), which enforces browsing restrictions but does not guarantee user acceptance of rules. Therefore, the best answer to ensure users accept the rules is captive portal.
Question #152
Which of the following most likely determines the size of a rack for installation? (Select two).
- A . KVM size
- B . Switch depth
- C . Hard drive size
- D . Cooling fan speed
- E . Outlet amperage
- F . Server height
Correct Answer: B
B
Explanation:
Understanding Rack Size Determination:
The size of a rack for installation is determined by the dimensions of the equipment to be housed in it, primarily focusing on the depth and height of the devices.
Switch Depth:
Depth of Equipment: The depth of network switches and other rack-mounted devices directly influences the depth of the rack. If the equipment is deeper, a deeper rack is required to accommodate it.
Industry Standards: Most racks come in standard depths, but it is essential to match the depth of the rack to the deepest piece of equipment to ensure proper fit and airflow.
Server Height:
Height of Equipment: The height of servers and other devices is measured in rack units (U), where 1U equals 1.75 inches. The total height of all equipment determines the overall height requirement of the rack.
Rack Units: A rack’s height is typically described in terms of the number of rack units it can accommodate, such as 42U, 48U, etc.
Why Other Options are Less Relevant:
KVM Size: While important for management, KVM (Keyboard, Video, Mouse) switches do not typically determine rack size.
Hard Drive Size: Individual hard drives are installed within servers or storage devices, not directly influencing rack dimensions.
Cooling Fan Speed: Fan speed affects cooling but not the physical size of the rack.
Outlet Amperage: Power requirements do not determine rack dimensions but rather the electrical infrastructure supporting the rack.
Reference: CompTIA Network+ study materials on rack installation and equipment sizing.
B
Explanation:
Understanding Rack Size Determination:
The size of a rack for installation is determined by the dimensions of the equipment to be housed in it, primarily focusing on the depth and height of the devices.
Switch Depth:
Depth of Equipment: The depth of network switches and other rack-mounted devices directly influences the depth of the rack. If the equipment is deeper, a deeper rack is required to accommodate it.
Industry Standards: Most racks come in standard depths, but it is essential to match the depth of the rack to the deepest piece of equipment to ensure proper fit and airflow.
Server Height:
Height of Equipment: The height of servers and other devices is measured in rack units (U), where 1U equals 1.75 inches. The total height of all equipment determines the overall height requirement of the rack.
Rack Units: A rack’s height is typically described in terms of the number of rack units it can accommodate, such as 42U, 48U, etc.
Why Other Options are Less Relevant:
KVM Size: While important for management, KVM (Keyboard, Video, Mouse) switches do not typically determine rack size.
Hard Drive Size: Individual hard drives are installed within servers or storage devices, not directly influencing rack dimensions.
Cooling Fan Speed: Fan speed affects cooling but not the physical size of the rack.
Outlet Amperage: Power requirements do not determine rack dimensions but rather the electrical infrastructure supporting the rack.
Reference: CompTIA Network+ study materials on rack installation and equipment sizing.
Question #153
Which of the following does a router use to determine the preferred route?
- A . Shortest prefix match
- B . Routes learned from EIGRP
- C . Longest prefix match
- D . Routes learned from OSPF
Correct Answer: C
C
Explanation:
Routers determine the best route to a destination using longest prefix match. This means the router chooses the route entry with the most specific matching network prefix for the destination IP address.
For example, if a routing table contains 10.1.0.0/16 and 10.1.2.0/24, a packet destined to 10.1.2.50 matches both entries, but the router prefers /24 because it is more specific (longer mask). Network+ (N10-009) routing fundamentals emphasize that route selection begins with prefix length specificity before considering other factors within the same prefix length (such as administrative distance and metric, depending on the platform).
“Shortest prefix match” is the opposite of correct behavior. “Routes learned from EIGRP” and “routes learned from OSPF” describe sources of routes, not the general selection rule routers use when multiple matching routes exist. Even if routes come from different protocols, the router still applies selection logic; the universal rule for matching destination networks is longest prefix match. Hence, option C is correct.
C
Explanation:
Routers determine the best route to a destination using longest prefix match. This means the router chooses the route entry with the most specific matching network prefix for the destination IP address.
For example, if a routing table contains 10.1.0.0/16 and 10.1.2.0/24, a packet destined to 10.1.2.50 matches both entries, but the router prefers /24 because it is more specific (longer mask). Network+ (N10-009) routing fundamentals emphasize that route selection begins with prefix length specificity before considering other factors within the same prefix length (such as administrative distance and metric, depending on the platform).
“Shortest prefix match” is the opposite of correct behavior. “Routes learned from EIGRP” and “routes learned from OSPF” describe sources of routes, not the general selection rule routers use when multiple matching routes exist. Even if routes come from different protocols, the router still applies selection logic; the universal rule for matching destination networks is longest prefix match. Hence, option C is correct.
Question #154
Users at an organization report that the wireless network is not working in some areas of the building. Users report that other wireless network SSIDs are visible when searching for the network, but the organization’s network is not displayed.
Which of the following is the most likely cause?
- A . Interference or channel overlap
- B . Insufficient wireless coverage
- C . Roaming misconfiguration
- D . Client disassociation issues
Correct Answer: B
B
Explanation:
If the company’s SSID is not visible in some areas while other networks are still visible, the most likely cause is insufficient wireless coverage. The wireless signal does not reach those areas, meaning additional access points or signal boosters may be required.
Breakdown of Options:
B
Explanation:
If the company’s SSID is not visible in some areas while other networks are still visible, the most likely cause is insufficient wireless coverage. The wireless signal does not reach those areas, meaning additional access points or signal boosters may be required.
Breakdown of Options:
Question #155
While troubleshooting a VoIP handset connection, a technician’s laptop is able to successfully connect to network resources using the same port. The technician needs to identify the port on the switch.
Which of the following should the technician use to determine the switch and port?
- A . LLDP
- B . IKE
- C . VLAN
- D . netstat
Correct Answer: A
A
Explanation:
Link Layer Discovery Protocol (LLDP) is a network protocol used for discovering devices and their capabilities on a local area network, primarily at the data link layer (Layer 2). It helps in identifying the connected switch and the specific port to which a device is connected. When troubleshooting a VoIP handset connection, the technician can use LLDP to determine the exact switch and port where the handset is connected. This protocol is widely used in network management to facilitate the discovery of network topology and simplify troubleshooting.
Other options such as IKE (Internet Key Exchange), VLAN (Virtual LAN), and netstat (network statistics) are not suitable for identifying the switch and port information. IKE is used in setting up secure IPsec connections, VLAN is used for segmenting networks, and netstat provides information about active connections and listening ports on a host but not for discovering switch port details.
Reference: CompTIA Network+ Certification Exam Objectives – Network Troubleshooting and Tools section.
A
Explanation:
Link Layer Discovery Protocol (LLDP) is a network protocol used for discovering devices and their capabilities on a local area network, primarily at the data link layer (Layer 2). It helps in identifying the connected switch and the specific port to which a device is connected. When troubleshooting a VoIP handset connection, the technician can use LLDP to determine the exact switch and port where the handset is connected. This protocol is widely used in network management to facilitate the discovery of network topology and simplify troubleshooting.
Other options such as IKE (Internet Key Exchange), VLAN (Virtual LAN), and netstat (network statistics) are not suitable for identifying the switch and port information. IKE is used in setting up secure IPsec connections, VLAN is used for segmenting networks, and netstat provides information about active connections and listening ports on a host but not for discovering switch port details.
Reference: CompTIA Network+ Certification Exam Objectives – Network Troubleshooting and Tools section.
Question #156
Employees report that the network is slow. The network engineer thinks the performance issue is with an upstream router.
Which of the following tools should the engineer use to determine the location of the issue?
- A . nslookup and dig
- B . Nmap and speed tester
- C . tracert and ping
- D . tcpdump and protocol analyzer
Correct Answer: C
C
Explanation:
To determine where slowness is occurring―especially if an upstream router is suspected―the best tools are ping and tracert/traceroute. Network+ (N10-009) troubleshooting objectives emphasize using these to test connectivity, latency, and the path packets take through the network. Ping measures reachability and round-trip time; rising latency or packet loss can indicate congestion or a failing link/device. Tracert identifies each hop along the route and reports per-hop response times, helping pinpoint whether delays begin at a specific hop (for example, the default gateway, the upstream router, or a provider edge). This allows the engineer to localize the problem area and decide whether the issue is internal, at the upstream router, or beyond.
nslookup and dig are DNS tools; they diagnose name resolution, not general network slowness location. Nmap focuses on scanning ports/hosts, and a “speed tester” measures throughput but does not locate the failing hop. tcpdump and protocol analyzer can reveal retransmissions, windowing, or application behavior, but they are not the fastest first-choice tools for locating an upstream routing/performance bottleneck across hops. Hence, tracert and ping are the correct pair.
C
Explanation:
To determine where slowness is occurring―especially if an upstream router is suspected―the best tools are ping and tracert/traceroute. Network+ (N10-009) troubleshooting objectives emphasize using these to test connectivity, latency, and the path packets take through the network. Ping measures reachability and round-trip time; rising latency or packet loss can indicate congestion or a failing link/device. Tracert identifies each hop along the route and reports per-hop response times, helping pinpoint whether delays begin at a specific hop (for example, the default gateway, the upstream router, or a provider edge). This allows the engineer to localize the problem area and decide whether the issue is internal, at the upstream router, or beyond.
nslookup and dig are DNS tools; they diagnose name resolution, not general network slowness location. Nmap focuses on scanning ports/hosts, and a “speed tester” measures throughput but does not locate the failing hop. tcpdump and protocol analyzer can reveal retransmissions, windowing, or application behavior, but they are not the fastest first-choice tools for locating an upstream routing/performance bottleneck across hops. Hence, tracert and ping are the correct pair.
Question #157
A company has been added to an unapproved list because of spam. The network administrator confirmed that a workstation was infected by malware.
Which of the following processes did the administrator use to identify the root cause?
- A . Traffic analysis
- B . Availability monitoring
- C . Baseline metrics
- D . Network discovery
Correct Answer: A
A
Explanation:
Traffic analysis involves monitoring and inspecting network traffic flows to detect unusual patterns, such as a workstation sending large volumes of outbound SMTP (spam). This process enables identification of malware as the root cause.
B. Availability monitoring checks uptime but doesn’t diagnose spam traffic.
C. Baseline metrics show normal usage but don’t pinpoint infected hosts.
D. Network discovery identifies devices, not malicious traffic flows. Reference (CompTIA Network+ N10-009):
Domain: Network Security ― Traffic analysis, malware detection, identifying compromised hosts.
A
Explanation:
Traffic analysis involves monitoring and inspecting network traffic flows to detect unusual patterns, such as a workstation sending large volumes of outbound SMTP (spam). This process enables identification of malware as the root cause.
B. Availability monitoring checks uptime but doesn’t diagnose spam traffic.
C. Baseline metrics show normal usage but don’t pinpoint infected hosts.
D. Network discovery identifies devices, not malicious traffic flows. Reference (CompTIA Network+ N10-009):
Domain: Network Security ― Traffic analysis, malware detection, identifying compromised hosts.
Question #158
A network administrator needs to connect a department to a new network segment. They need to use a DHCP server located on another network.
Which of the following can the administrator use to complete this task?
- A . IP Helper
- B . Reservation
- C . Exclusion
- D . Scope
Correct Answer: A
A
Explanation:
An IP Helper (IP Helper Address) allows DHCP requests to pass through routers and reach a DHCP server on another network.
DHCP broadcasts are not forwarded across routers by default, so an IP Helper Address is needed to relay the request.
This is crucial for large networks where a single DHCP server serves multiple subnets.
Option B (Reservation): Ensures a specific IP address is assigned to a MAC address but does not relay DHCP across networks.
Option C (Exclusion): Prevents specific IP addresses from being assigned, but does not help with DHCP relay.
Option D (Scope): Defines the range of IP addresses available for DHCP clients but does not assist in cross-network communication.
Reference: CompTIA Network+ (N10-009) Official Study Guide C Section: DHCP and IP Addressing
A
Explanation:
An IP Helper (IP Helper Address) allows DHCP requests to pass through routers and reach a DHCP server on another network.
DHCP broadcasts are not forwarded across routers by default, so an IP Helper Address is needed to relay the request.
This is crucial for large networks where a single DHCP server serves multiple subnets.
Option B (Reservation): Ensures a specific IP address is assigned to a MAC address but does not relay DHCP across networks.
Option C (Exclusion): Prevents specific IP addresses from being assigned, but does not help with DHCP relay.
Option D (Scope): Defines the range of IP addresses available for DHCP clients but does not assist in cross-network communication.
Reference: CompTIA Network+ (N10-009) Official Study Guide C Section: DHCP and IP Addressing
Question #159
Which of the following disaster recovery metrics is used to describe the amount of data that is lost since the last backup?
- A . MTTR
- B . RTO
- C . RPO
- D . MTBF
Correct Answer: C
C
Explanation:
Definition of RPO:
Recovery Point Objective (RPO) is a disaster recovery metric that describes the maximum acceptable amount of data loss measured in time. It indicates the point in time to which data must be recovered to resume normal operations after a disaster.
For example, if the RPO is set to 24 hours, then the business could tolerate losing up to 24 hours’ worth of data in the event of a disruption.
Why RPO is Important:
RPO is critical for determining backup frequency and helps businesses decide how often they need to back up their data. A lower RPO means more frequent backups and less potential data loss.
Comparison with Other Metrics:
MTTR (Mean Time to Repair): Refers to the average time required to repair a system or component and return it to normal operation.
RTO (Recovery Time Objective): The maximum acceptable length of time that a computer, system, network, or application can be down after a failure or disaster occurs.
MTBF (Mean Time Between Failures): The predicted elapsed time between inherent failures of a system during operation.
How RPO is Used in Disaster Recovery:
Organizations establish RPOs to ensure that they can recover data within a timeframe that is acceptable to business operations. This involves creating a backup plan that meets the RPO requirements.
Reference: CompTIA Network+ study materials and certification guides.
C
Explanation:
Definition of RPO:
Recovery Point Objective (RPO) is a disaster recovery metric that describes the maximum acceptable amount of data loss measured in time. It indicates the point in time to which data must be recovered to resume normal operations after a disaster.
For example, if the RPO is set to 24 hours, then the business could tolerate losing up to 24 hours’ worth of data in the event of a disruption.
Why RPO is Important:
RPO is critical for determining backup frequency and helps businesses decide how often they need to back up their data. A lower RPO means more frequent backups and less potential data loss.
Comparison with Other Metrics:
MTTR (Mean Time to Repair): Refers to the average time required to repair a system or component and return it to normal operation.
RTO (Recovery Time Objective): The maximum acceptable length of time that a computer, system, network, or application can be down after a failure or disaster occurs.
MTBF (Mean Time Between Failures): The predicted elapsed time between inherent failures of a system during operation.
How RPO is Used in Disaster Recovery:
Organizations establish RPOs to ensure that they can recover data within a timeframe that is acceptable to business operations. This involves creating a backup plan that meets the RPO requirements.
Reference: CompTIA Network+ study materials and certification guides.
Question #160
A network administrator installs a node that requires a media converter to connect Ethernet to fiber but sees no link light on the node.
The administrator notices the following:
Both terminating points are properly seated.
Both the fiber and Ethernet cables have been successfully tested.
The media converter is turned on.
The switchport is configured as half duplex.
Which of the following is the reason the link light is not on?
- A . The TX/RX connection is transposed.
- B . The switchport is misconfigured.
- C . One of the cables has a short.
- D . The switchport interface has errors.
Correct Answer: A
A
Explanation:
The correct answer is A. The TX/RX connection is transposed. In fiber optic networking, communication requires proper alignment of the transmit (TX) and receive (RX) strands between devices. If these are reversed (not crossed correctly), the devices cannot properly send and receive signals, resulting in no link light. This is a common issue when working with fiber connections and media converters.
The scenario confirms that cables are tested and functional, and all devices are powered on, which eliminates physical damage or power issues. Fiber cables can still pass basic continuity tests while being incorrectly connected (TX to TX and RX to RX instead of TX to RX), which prevents link establishment.
Option B is incorrect because duplex mismatch (such as half vs. full duplex) typically causes performance issues like collisions and slow throughput, not a complete loss of link light.
Option C is ruled out because the cables were tested successfully.
Option D refers to errors that occur after a link is established, not a condition preventing link initialization.
According to CompTIA Network+ objectives, proper fiber polarity (TX/RX alignment) is critical for link establishment, making this the most accurate cause.
A
Explanation:
The correct answer is A. The TX/RX connection is transposed. In fiber optic networking, communication requires proper alignment of the transmit (TX) and receive (RX) strands between devices. If these are reversed (not crossed correctly), the devices cannot properly send and receive signals, resulting in no link light. This is a common issue when working with fiber connections and media converters.
The scenario confirms that cables are tested and functional, and all devices are powered on, which eliminates physical damage or power issues. Fiber cables can still pass basic continuity tests while being incorrectly connected (TX to TX and RX to RX instead of TX to RX), which prevents link establishment.
Option B is incorrect because duplex mismatch (such as half vs. full duplex) typically causes performance issues like collisions and slow throughput, not a complete loss of link light.
Option C is ruled out because the cables were tested successfully.
Option D refers to errors that occur after a link is established, not a condition preventing link initialization.
According to CompTIA Network+ objectives, proper fiber polarity (TX/RX alignment) is critical for link establishment, making this the most accurate cause.