Practice Free N10-009 Exam Online Questions
Which of the following would allow a network administrator to analyze attacks coming from the internet without affecting latency?
- A . IPS
- B . IDS
- C . Load balancer
- D . Firewall
B
Explanation:
An Intrusion Detection System (IDS) monitors and analyzes traffic to detect suspicious activity but does not sit in the traffic path, meaning it doesn’t affect latency. In contrast, an IPS is in-line and can introduce delay.
From Andrew Ramdayal’s guide:
“IDS monitors and alerts on malicious activity but does not block traffic, making it suitable for environments where low latency is critical.”
Which of the following cable types allows the use of QSFP ports without requiring transceivers?
- A . Multimode
- B . Twinaxial
- C . RG11
- D . Category 6
B
Explanation:
Twinaxial (Direct Attach Copper / DAC) cables can plug directly into QSFP ports without needing separate optical transceivers. They are cost-effective for short-distance, high-speed connections (commonly in data centers).
Which of the following attacks can cause users who are attempting to access a company website to be directed to an entirely different website?
- A . DNS poisoning
- B . Denial-of-service
- C . Social engineering
- D . ARP spoofing
A
Explanation:
Network segmentation involves dividing a network into smaller segments or subnets. This is particularly important when integrating OT (Operational Technology) devices to ensure that these devices are isolated from other parts of the network. Segmentation helps protect the OT devices from potential threats and minimizes the impact of any security incidents. It also helps manage traffic and improves overall network performance.
Reference: CompTIA Network+ study materials.
An organization is struggling to get effective coverage using the wireless network. The organization wants to implement a solution that will allow for continuous connectivity anywhere in the facility.
Which of the following should the network administrator suggest to ensure the best coverage?
- A . Implementing additional ad hoc access points
- B . Providing more Ethernet drops for user connections
- C . Deploying a mesh network in the building
- D . nl Changing the current frequency of the WI-FI
An organization is struggling to get effective coverage using the wireless network. The organization wants to implement a solution that will allow for continuous connectivity anywhere in the facility.
Which of the following should the network administrator suggest to ensure the best coverage?
- A . Implementing additional ad hoc access points
- B . Providing more Ethernet drops for user connections
- C . Deploying a mesh network in the building
- D . nl Changing the current frequency of the WI-FI
Which of the following actions should be taken as part of the first step of the troubleshooting methodology?
- A . Conduct tests to verify ideas
- B . Handle multiple problems individually
- C . Create a theory about the possible root cause
- D . Use a top-down approach
Which of the following troubleshooting steps provides a change advisory board with the information needed to make a decision?
- A . Identify the problem
- B . Develop a theory of probable cause
- C . Test the theory to determine cause
- D . Establish a plan of action
D
When dealing with troubleshooting and change management, the plan of action outlines the steps, risks, and mitigation strategies. A change advisory board (CAB) uses this documented plan to decide whether to approve the change.
A network technician sets up a computer on the accounting department floor for a user from the marketing department. The user reports that they cannot access the marketing department’s shared drives but can access the internet.
Which of the following is the most likely cause of this issue?
- A . Mismatched switchport duplex
- B . Misconfigured gateway settings
- C . Incorrect VLAN assignment
- D . SVI is assigned to the wrong IP address
C
Explanation:
The user’s inability to access the marketing department’s shared drives, despite having internet access, suggests a network segmentation issue. The most likely cause is an incorrect VLAN assignment. The computer is physically located on the accounting department floor, and the switchport is likely configured for the accounting VLAN, not the marketing VLAN. VLANs segment network traffic, and if the computer is in the wrong VLAN, it cannot communicate with the marketing department’s resources.
Why not Mismatched switchport duplex? Duplex mismatches cause performance issues (e.g., packet loss) but not specific access denials to shared drives.
Why not Misconfigured gateway settings? Incorrect gateway settings would prevent internet access, which the user has.
Why not SVI is assigned to the wrong IP address? A Switch Virtual Interface (SVI) with an incorrect IP address affects inter-VLAN routing, but this would likely impact multiple users, not just one.
Reference: CompTIA Network+ N10-009 Objective 2.2: Explain the purpose of network segmentation and VLAN configuration. The CompTIA Network+ Study Guide (e.g., Chapter 6: Switching) explains that VLANs isolate traffic, and incorrect VLAN assignments prevent access to resources on other VLANs.
A network administrator is unable to ping a remote server from a newly connected workstation that
has been added to the network. Ping to 127.0.0.1 on the workstation is failing.
Which of the following should the administrator perform to diagnose the problem?
- A . Verify the NIC interface status.
- B . Verify the network is not congested.
- C . Verify the router is not dropping packets.
- D . Verify that DNS is resolving correctly.
A
Explanation:
The failure of a ping to 127.0.0.1 (the loopback address) indicates a problem with the workstation’s TCP/IP stack or network interface card (NIC). Since 127.0.0.1 is a local address, the issue is not related to the network, router, or DNS. The first step in diagnosing this issue is to verify the NIC interface status to ensure the network adapter is functioning and properly configured.
Why not Verify the network is not congested? Network congestion affects external connectivity, not the loopback address.
Why not Verify the router is not dropping packets? Router issues are irrelevant since the loopback ping fails locally.
Why not Verify that DNS is resolving correctly? DNS resolution is not involved in pinging 127.0.0.1, which uses a direct IP address.
Reference: CompTIA Network+ N10-009 Objective 5.2: Explain the troubleshooting methodology. The CompTIA Network+ Study Guide (e.g., Chapter 13: Network Troubleshooting) emphasizes that a failed loopback ping indicates a local TCP/IP stack or NIC issue, and checking the NIC status is the first diagnostic step.
Which of the following kinds of targeted attacks uses multiple computers or bots to request the same resource repeatedly?
- A . On-path
- B . DDoS
- C . ARP spoofing
- D . MAC flooding
B
Explanation:
A Distributed Denial of Service (DDoS) attack leverages multiple computers or bots (botnet) to flood a target system with requests, overwhelming its resources and making it unavailable to legitimate users. This is a common tactic used by attackers to disrupt services.
The document explains:
“A DDoS (Distributed Denial of Service) attack involves multiple computers (often called bots) simultaneously sending requests to a single resource, overwhelming the system and causing a denial of service to legitimate users.”