Practice Free N10-009 Exam Online Questions
Question #71
A company upgrades its wireless infrastructure with a 1Gbps backbone, new APs, and new tablets for all employees. However, the IT department notes that speeds are not improved from the previous tablets.
Given the following network information, which of the following is the most likely cause of the performance issues?
- A . AP 4 has no devices connected.
- B . Too many devices are causing congestion.
- C . APs do not have the correct VLAN assignment.
- D . Switch bandwidth is creating a bottleneck.
Correct Answer: D
D
Explanation:
The most likely answer is
D. Switch bandwidth is creating a bottleneck. Even though the company upgraded the wireless environment with newer access points and new tablets, wireless performance still depends on the capacity of the wired network that the APs connect back to. If multiple APs are sending traffic through a shared switch uplink or limited switch bandwidth, that wired segment can become the choke point, preventing users from seeing the benefit of the newer wireless equipment.
This kind of issue shows up often when organizations focus on upgrading the wireless edge but do not account for the aggregate traffic load feeding into the switching infrastructure. Faster wireless standards can increase the amount of traffic that reaches the switch, but if the switching path cannot handle that volume efficiently, end-user throughput will still feel unchanged.
The other options are less convincing. One AP having no connected devices does not explain why speeds on active clients are not improved. VLAN assignment problems would more likely cause access or segmentation issues rather than a general performance ceiling. Device congestion can hurt performance, but the information given points more strongly to the wired backhaul as the limiting factor.
In this scenario, the wireless upgrade is being held back by the switching side of the network, making switch bandwidth bottleneck the best answer.
D
Explanation:
The most likely answer is
D. Switch bandwidth is creating a bottleneck. Even though the company upgraded the wireless environment with newer access points and new tablets, wireless performance still depends on the capacity of the wired network that the APs connect back to. If multiple APs are sending traffic through a shared switch uplink or limited switch bandwidth, that wired segment can become the choke point, preventing users from seeing the benefit of the newer wireless equipment.
This kind of issue shows up often when organizations focus on upgrading the wireless edge but do not account for the aggregate traffic load feeding into the switching infrastructure. Faster wireless standards can increase the amount of traffic that reaches the switch, but if the switching path cannot handle that volume efficiently, end-user throughput will still feel unchanged.
The other options are less convincing. One AP having no connected devices does not explain why speeds on active clients are not improved. VLAN assignment problems would more likely cause access or segmentation issues rather than a general performance ceiling. Device congestion can hurt performance, but the information given points more strongly to the wired backhaul as the limiting factor.
In this scenario, the wireless upgrade is being held back by the switching side of the network, making switch bandwidth bottleneck the best answer.
Question #72
Which of the following physical installation factors is the most important when a network switch is installed in a sealed enclosure?
- A . Fire suppression
- B . Power budget
- C . Temperature
- D . Humidity
Correct Answer: C
C
Explanation:
Switches in sealed enclosures are at risk of overheating because airflow is restricted. The temperature factor is critical since heat buildup can damage components, shorten device lifespan, and cause outages. Proper cooling or ventilation must be ensured.
C
Explanation:
Switches in sealed enclosures are at risk of overheating because airflow is restricted. The temperature factor is critical since heat buildup can damage components, shorten device lifespan, and cause outages. Proper cooling or ventilation must be ensured.
Question #72
Which of the following physical installation factors is the most important when a network switch is installed in a sealed enclosure?
- A . Fire suppression
- B . Power budget
- C . Temperature
- D . Humidity
Correct Answer: C
C
Explanation:
Switches in sealed enclosures are at risk of overheating because airflow is restricted. The temperature factor is critical since heat buildup can damage components, shorten device lifespan, and cause outages. Proper cooling or ventilation must be ensured.
C
Explanation:
Switches in sealed enclosures are at risk of overheating because airflow is restricted. The temperature factor is critical since heat buildup can damage components, shorten device lifespan, and cause outages. Proper cooling or ventilation must be ensured.
Question #74
A new backup system takes too long to copy files to the new SAN each night. A network administrator makes a simple change to the network and the devices to decrease backup times.
Which of the following does the network administrator change?
- A . QoS
- B . SDN
- C . MTU
- D . VXLAN
- E . TTL
Correct Answer: C
C
Explanation:
Increasing the MTU (Maximum Transmission Unit) size allows larger frames to be transmitted, reducing overhead and improving throughput ― especially for large file transfers like backups.
C
Explanation:
Increasing the MTU (Maximum Transmission Unit) size allows larger frames to be transmitted, reducing overhead and improving throughput ― especially for large file transfers like backups.
Question #75
Which of the following is created to illustrate the effectiveness of wireless networking coverage in a building?
- A . Logical diagram
- B . Layer 3 network diagram
- C . Service-level agreement
- D . Heat map
Correct Answer: D
D
Explanation:
Definition of Heat Maps:
A heat map is a graphical representation of data where individual values are represented by colors. In the context of wireless networking, a heat map shows the wireless signal strength in different areas of a building.
Purpose of a Heat Map:
Heat maps are used to illustrate the effectiveness of wireless networking coverage, identify dead zones, and optimize the placement of access points (APs) to ensure adequate coverage and performance.
Comparison with Other Options:
Logical Diagram: Represents the logical connections and relationships within the network.
Layer 3 Network Diagram: Focuses on the routing and IP addressing within the network.
Service-Level Agreement (SLA): A contract that specifies the expected service levels between a service provider and a customer.
Creation and Use:
Heat maps are created using specialized software or tools that measure wireless signal strength throughout the building. The data collected is then used to generate a visual map, guiding network administrators in optimizing wireless coverage.
Reference: CompTIA Network+ certification materials and wireless network planning guides.
D
Explanation:
Definition of Heat Maps:
A heat map is a graphical representation of data where individual values are represented by colors. In the context of wireless networking, a heat map shows the wireless signal strength in different areas of a building.
Purpose of a Heat Map:
Heat maps are used to illustrate the effectiveness of wireless networking coverage, identify dead zones, and optimize the placement of access points (APs) to ensure adequate coverage and performance.
Comparison with Other Options:
Logical Diagram: Represents the logical connections and relationships within the network.
Layer 3 Network Diagram: Focuses on the routing and IP addressing within the network.
Service-Level Agreement (SLA): A contract that specifies the expected service levels between a service provider and a customer.
Creation and Use:
Heat maps are created using specialized software or tools that measure wireless signal strength throughout the building. The data collected is then used to generate a visual map, guiding network administrators in optimizing wireless coverage.
Reference: CompTIA Network+ certification materials and wireless network planning guides.
Question #76
A network administrator needs to assign IP addresses to a newly installed network. They choose 192.168.1.0/24 as their network address and need to create three subnets with 30 hosts on each subnet.
Which of the following is a valid subnet mask that will meet the requirements?
- A . 255.255.255.128
- B . 255.255.255.192
- C . 255.255.255.224
- D . 255.255.255.240
Correct Answer: C
C
Explanation:
Understanding the Requirements
Network Address: 192.168.1.0/24
The /24 notation means a subnet mask of 255.255.255.0, providing 256 total addresses (192.168.1.0C192.168.1.255).
Usable hosts: 256 C 2 (network and broadcast) = 254.
Goal: Create 3 subnets, each with 30 hosts.
Each subnet needs enough addresses to accommodate 30 hosts, plus 2 reserved addresses (network and broadcast) per subnet.
Total addresses per subnet = 30 (hosts) + 2 (network/broadcast) = 32 addresses.
Subnetting Basics (Networking Fundamentals)
Subnet Mask: Determines how many bits are borrowed from the host portion to create subnets.
Original Mask: /24 (255.255.255.0) = 24 network bits, 8 host bits.
Formulae:
Number of subnets = 2^(number of borrowed bits).
Number of addresses per subnet = 2^(remaining host bits).
Usable hosts per subnet = 2^(remaining host bits) C 2.
We need:
At least 3 subnets.
At least 32 addresses per subnet (to fit 30 hosts + 2 reserved).
Step-by-Step Analysis
Determine Addresses Needed per Subnet:
32 addresses is a power of 2 (2^5 = 32).
This means each subnet requires 5 host bits (since 2^5 = 32 total addresses, and 32 C 2 = 30 usable hosts).
Calculate Remaining Bits:
Original network has 8 host bits (/24).
If 5 bits are left for hosts, we borrow: 8 C 5 = 3 bits for subnetting.
New Subnet Mask:
Original mask: /24 (24 network bits).
Borrow 3 bits: 24 + 3 = /27.
/27 = 255.255.255.224 (binary: 11111111.11111111.11111111.11100000).
Verify Requirements:
Number of Subnets: 2^3 = 8 subnets (meets the requirement of at least 3).
Addresses per Subnet: 2^5 = 32 addresses.
Usable Hosts per Subnet: 32 C 2 = 30 hosts (exactly meets the requirement).
Subnet Breakdown:
Increment: 256 C 224 = 32 (each subnet increments by 32 in the fourth octet).
Subnets:
C
Explanation:
Understanding the Requirements
Network Address: 192.168.1.0/24
The /24 notation means a subnet mask of 255.255.255.0, providing 256 total addresses (192.168.1.0C192.168.1.255).
Usable hosts: 256 C 2 (network and broadcast) = 254.
Goal: Create 3 subnets, each with 30 hosts.
Each subnet needs enough addresses to accommodate 30 hosts, plus 2 reserved addresses (network and broadcast) per subnet.
Total addresses per subnet = 30 (hosts) + 2 (network/broadcast) = 32 addresses.
Subnetting Basics (Networking Fundamentals)
Subnet Mask: Determines how many bits are borrowed from the host portion to create subnets.
Original Mask: /24 (255.255.255.0) = 24 network bits, 8 host bits.
Formulae:
Number of subnets = 2^(number of borrowed bits).
Number of addresses per subnet = 2^(remaining host bits).
Usable hosts per subnet = 2^(remaining host bits) C 2.
We need:
At least 3 subnets.
At least 32 addresses per subnet (to fit 30 hosts + 2 reserved).
Step-by-Step Analysis
Determine Addresses Needed per Subnet:
32 addresses is a power of 2 (2^5 = 32).
This means each subnet requires 5 host bits (since 2^5 = 32 total addresses, and 32 C 2 = 30 usable hosts).
Calculate Remaining Bits:
Original network has 8 host bits (/24).
If 5 bits are left for hosts, we borrow: 8 C 5 = 3 bits for subnetting.
New Subnet Mask:
Original mask: /24 (24 network bits).
Borrow 3 bits: 24 + 3 = /27.
/27 = 255.255.255.224 (binary: 11111111.11111111.11111111.11100000).
Verify Requirements:
Number of Subnets: 2^3 = 8 subnets (meets the requirement of at least 3).
Addresses per Subnet: 2^5 = 32 addresses.
Usable Hosts per Subnet: 32 C 2 = 30 hosts (exactly meets the requirement).
Subnet Breakdown:
Increment: 256 C 224 = 32 (each subnet increments by 32 in the fourth octet).
Subnets:
Question #77
A network engineer wants to implement an 802.1X architecture in which BYOD devices must access a trusted wireless network securely.
Which of the following should the engineer implement?
- A . ACL
- B . MAC filtering
- C . Port security
- D . NAC
Correct Answer: D
D
Explanation:
For a secure 802.1X design that includes BYOD access to a trusted wireless network, the engineer should implement NAC (Network Access Control). In the Network+ (N10-009) objectives, 802.1X provides authentication (commonly via EAP to a RADIUS server), but NAC expands this by enforcing policy-based access decisions―such as device posture checks, user/device identity validation, and dynamic assignment to the appropriate VLAN/role. With BYOD, the organization often needs to confirm whether devices meet requirements (OS version, encryption, security software) and then grant the correct level of access (full, limited, or quarantine/remediation). NAC is the architecture that ties these controls together in a scalable way for wireless networks.
An ACL can restrict traffic after a device connects, but it doesn’t perform authentication/posture assessment. MAC filtering is weak because MAC addresses can be spoofed and it does not provide strong identity assurance. Port security is mainly a wired switch control (limiting MAC addresses per port) and is not the right control set for secure BYOD wireless access. NAC best matches the requirement of secure, policy-driven 802.1X BYOD access.
D
Explanation:
For a secure 802.1X design that includes BYOD access to a trusted wireless network, the engineer should implement NAC (Network Access Control). In the Network+ (N10-009) objectives, 802.1X provides authentication (commonly via EAP to a RADIUS server), but NAC expands this by enforcing policy-based access decisions―such as device posture checks, user/device identity validation, and dynamic assignment to the appropriate VLAN/role. With BYOD, the organization often needs to confirm whether devices meet requirements (OS version, encryption, security software) and then grant the correct level of access (full, limited, or quarantine/remediation). NAC is the architecture that ties these controls together in a scalable way for wireless networks.
An ACL can restrict traffic after a device connects, but it doesn’t perform authentication/posture assessment. MAC filtering is weak because MAC addresses can be spoofed and it does not provide strong identity assurance. Port security is mainly a wired switch control (limiting MAC addresses per port) and is not the right control set for secure BYOD wireless access. NAC best matches the requirement of secure, policy-driven 802.1X BYOD access.
Question #78
A critical infrastructure switch is identified as end-of-support.
Which of the following is the best next step to ensure security?
- A . Apply the latest patches and bug fixes.
- B . Decommission and replace the switch.
- C . Ensure the current firmware has no issues.
- D . Isolate the switch from the network.
Correct Answer: B
B
Explanation:
Understanding End-of-Support:
End-of-Support Status: When a vendor declares a device as end-of-support, it means the device will
no longer receive updates, patches, or technical support. This poses a security risk as new vulnerabilities will not be addressed.
Risks of Keeping an End-of-Support Device:
Security Vulnerabilities: Without updates, the switch becomes susceptible to new security threats.
Compliance Issues: Many regulatory frameworks require that critical infrastructure be maintained with supported and secure hardware.
Best Next Step – Replacement:
Decommission and Replace: The most secure approach is to replace the end-of-support switch with a new, supported model. This ensures the infrastructure remains secure and compliant with current standards.
Planning and Execution: Plan for the replacement by evaluating the network’s needs, selecting a suitable replacement switch, and scheduling downtime for the hardware swap.
Comparison with Other Options:
Apply the Latest Patches: While helpful, this does not address future vulnerabilities since no further patches will be provided.
Ensure the Current Firmware Has No Issues: This is only a temporary measure and does not mitigate future risks.
Isolate the Switch from the Network: Isolating the switch may disrupt network operations and is not
a viable long-term solution.
Reference: CompTIA Network+ study materials on network maintenance and security best practices.
B
Explanation:
Understanding End-of-Support:
End-of-Support Status: When a vendor declares a device as end-of-support, it means the device will
no longer receive updates, patches, or technical support. This poses a security risk as new vulnerabilities will not be addressed.
Risks of Keeping an End-of-Support Device:
Security Vulnerabilities: Without updates, the switch becomes susceptible to new security threats.
Compliance Issues: Many regulatory frameworks require that critical infrastructure be maintained with supported and secure hardware.
Best Next Step – Replacement:
Decommission and Replace: The most secure approach is to replace the end-of-support switch with a new, supported model. This ensures the infrastructure remains secure and compliant with current standards.
Planning and Execution: Plan for the replacement by evaluating the network’s needs, selecting a suitable replacement switch, and scheduling downtime for the hardware swap.
Comparison with Other Options:
Apply the Latest Patches: While helpful, this does not address future vulnerabilities since no further patches will be provided.
Ensure the Current Firmware Has No Issues: This is only a temporary measure and does not mitigate future risks.
Isolate the Switch from the Network: Isolating the switch may disrupt network operations and is not
a viable long-term solution.
Reference: CompTIA Network+ study materials on network maintenance and security best practices.
Question #79
Which of the following should a network administrator configure when adding OT devices to an organization’s architecture?
- A . Honeynet
- B . Data-at-rest encryption
- C . Time-based authentication
- D . Network segmentation
Correct Answer: D
D
Explanation:
Network segmentation involves dividing a network into smaller segments or subnets. This is particularly important when integrating OT (Operational Technology) devices to ensure that these devices are isolated from other parts of the network. Segmentation helps protect the OT devices
from potential threats and minimizes the impact of any security incidents. It also helps manage traffic and improves overall network performance.
Reference: CompTIA Network+ study materials.
D
Explanation:
Network segmentation involves dividing a network into smaller segments or subnets. This is particularly important when integrating OT (Operational Technology) devices to ensure that these devices are isolated from other parts of the network. Segmentation helps protect the OT devices
from potential threats and minimizes the impact of any security incidents. It also helps manage traffic and improves overall network performance.
Reference: CompTIA Network+ study materials.
Question #80
Which of the following technologies is most appropriate for a business that requires high-speed access to frequently used web content, such as images and videos?
- A . CDN
- B . SAN
- C . Firewall
- D . Switch
Correct Answer: A
A
Explanation:
The correct solution is a Content Delivery Network (CDN). A CDN caches web content (like images, videos, scripts) on distributed servers close to end users. This reduces latency, improves load times, and decreases the load on origin servers. For a business requiring high-speed access to media-rich content, a CDN is the most effective option.
B. SAN (Storage Area Network) is used for storage in a data center, not for distributing web content.
C. Firewall secures traffic but doesn’t accelerate content delivery.
D. Switches forward packets within a LAN, not globally distribute content.
By leveraging CDNs, businesses can handle large traffic volumes efficiently while improving user experience.
Reference (CompTIA Network+ N10-009):
Domain: Network Infrastructure ― CDNs, caching, performance optimization.
A
Explanation:
The correct solution is a Content Delivery Network (CDN). A CDN caches web content (like images, videos, scripts) on distributed servers close to end users. This reduces latency, improves load times, and decreases the load on origin servers. For a business requiring high-speed access to media-rich content, a CDN is the most effective option.
B. SAN (Storage Area Network) is used for storage in a data center, not for distributing web content.
C. Firewall secures traffic but doesn’t accelerate content delivery.
D. Switches forward packets within a LAN, not globally distribute content.
By leveraging CDNs, businesses can handle large traffic volumes efficiently while improving user experience.
Reference (CompTIA Network+ N10-009):
Domain: Network Infrastructure ― CDNs, caching, performance optimization.