1. Which two statements about a service set identifier (SSID) are true? (Choose two.)
responsible for determining the signal strength
used to encrypt data sent across the wireless network
all wireless devices on the same WLAN must have the same SSID
consists of a 32-character string and is not case sensitive
tells a wireless device to which WLAN it belongs
2. Which type of network attack involves the disabling or corruption of networks, systems, or services?
access attacks
denial of service attacks
reconnaissance attacks
malicious code attacks
3. Which command will backup the configuration that is stored in NVRAM to a TFTP server?
copy tftp running-config
copy startup-config tftp
copy running-config tftp
copy tftp startup-config
4. Open the PT Activity.
How long will a user be blocked if the user exceeds the maximum allowed number of unsuccessful login attempts?
3 minutes
1 minute
4 minutes
2 minutes
5. Fill in the blank. Do not use abbreviations.
The ” show version ” command that is issued on a router is used to verify the value of the software configuration register.
6. What is a security feature of using NAT on a network?
denies all packets that originate from private IP addresses
allows internal IP addresses to be concealed from external users
denies all internal hosts from communicating outside their own network
allows external IP addresses to be concealed from internal users
7. A network administrator has determined that various computers on the network are infected with a worm. Which sequence of steps should be followed to mitigate the worm attack?
containment, quarantine, treatment, and inoculation
treatment, quarantine, inoculation, and containment
inoculation, containment, quarantine, and treatment
containment, inoculation, quarantine, and treatment
8. Which WLAN security protocol generates a new dynamic key each time a client establishes a connection with the AP?
PSK
WPA
EAP
WEP
9. Refer to the exhibit. Baseline documentation for a small company had ping round trip time statistics of 36/97/132 between hosts H1 and H3. Today the network administrator checked connectivity by pinging between hosts H1 and H3 that resulted in a round trip time of 1458/2390/6066. What does this indicate to the network administrator?
Something is causing interference between H1 and R1.
H3 is not connected properly to the network.
Performance between the networks is within expected parameters.
Connectivity between H1 and H3 is fine.
Something is causing a time delay between the networks.
10. When should an administrator establish a network baseline?
when the traffic is at peak in the network
when there is a sudden drop in traffic
at the lowest point of traffic in the network
at regular intervals over a period of time
11. A ping fails when performed from router R1 to directly connected router R2. The network administrator then proceeds to issue the show cdp neighbors command. Why would the network administrator issue this command if the ping failed between the two routers?
The network administrator wants to verify the IP address configured on router R2.
The network administrator suspects a virus because the ping command did not work.
The network administrator wants to determine if connectivity can be established from a non-directly connected network.
The network administrator wants to verify Layer 2 connectivity.
12. Which statement is true about CDP on a Cisco device?
To disable CDP globally, the no cdp enable command in interface configuration mode must be used.
The show cdp neighbor detail command will reveal the IP address of a neighbor only if there is Layer 3 connectivity.
CDP can be disabled globally or on a specific interface.
Because it runs at the data link layer, the CDP protocol can only be implemented in switches.
13. What is the purpose of issuing the commands cd nvram: then dir at the privilege exec mode of a router?
to list the content of the NVRAM
to clear the content of the NVRAM
to copy the directories from the NVRAM
to direct all new files to the NVRAM
14. A network administrator checks the security log and notices there was unauthorized access to an internal file server over the weekend. Upon further investigation of the file system log, the administrator notices several important documents were copied to a host located outside of the company. What kind of threat is represented in this scenario?
identify theft
data loss
information theft
disruption of service
15. If a configuration file is saved to a USB flash drive attached to a router, what must be done by the network administrator before the file can be used on the router?
Edit the configuration file with a text editor.
Use the dir command from the router to remove the windows automatic alphabetization of the files on the flash drive.
Convert the file system from FAT32 to FAT16.
Change the permission on the file from ro to rw.
16. Which network design consideration would be more important to a large corporation than to a small business?
Internet router
redundancy
firewall
low port density switch
17. Which protocol supports rapid delivery of streaming media?
TCP
RTP
SNMP
PoE
18. Refer to the exhibit. An administrator is trying to troubleshoot connectivity between PC1 and PC2 and uses the tracert command from PC1 to do it. Based on the displayed output, where should the administrator begin troubleshooting?
SW2
R1
R2
PC2
SW1
19. Which two statements characterize wireless network security? (Choose two.)
Wireless networks offer the same security features as wired networks.
An attacker needs physical access to at least one network device to launch an attack
Using the default IP address on an access point makes hacking easier.
Some RF channels provide automatic encryption of wireless data.
With SSID broadcast disabled, an attacker must know the SSID to connect.
20. Which two actions can be taken to prevent a successful attack on an email server account? (Choose two.)
Never send the password through the network in a clear text.
Never use passwords that need the Shift key.
Never allow physical access to the server console.
Limit the number of unsuccessful attempts to log in to the server.
Only permit authorized access to the server room.
21. How should traffic flow be captured in order to best understand traffic patterns in a network?
when it is from a subset of users
during low utilization times
when it is on the main network segment only
during peak utilization times
22. What do WLANs that conform to IEEE 802.11 standards allow wireless user to do?
use wireless mice and keyboards
create a one-to-many local network using infrared technology
use cell phones to access remote services over very large areas
connect wireless hosts to hosts or services on a wired Ethernet network
23. Fill in the blank.
” VoIP ” defines the protocols and technologies that implement the transmission of voice data over an IP network.
24. Fill in the blank. Do not use abbreviations.
The show ” file systems ” command provides information about the amount of available and free flash memory and its permissions for reading or writing data.
responsible for determining the signal strength
used to encrypt data sent across the wireless network
all wireless devices on the same WLAN must have the same SSID
consists of a 32-character string and is not case sensitive
tells a wireless device to which WLAN it belongs
2. Which type of network attack involves the disabling or corruption of networks, systems, or services?
access attacks
denial of service attacks
reconnaissance attacks
malicious code attacks
3. Which command will backup the configuration that is stored in NVRAM to a TFTP server?
copy tftp running-config
copy startup-config tftp
copy running-config tftp
copy tftp startup-config
4. Open the PT Activity.
How long will a user be blocked if the user exceeds the maximum allowed number of unsuccessful login attempts?
3 minutes
1 minute
4 minutes
2 minutes
5. Fill in the blank. Do not use abbreviations.
The ” show version ” command that is issued on a router is used to verify the value of the software configuration register.
6. What is a security feature of using NAT on a network?
denies all packets that originate from private IP addresses
allows internal IP addresses to be concealed from external users
denies all internal hosts from communicating outside their own network
allows external IP addresses to be concealed from internal users
7. A network administrator has determined that various computers on the network are infected with a worm. Which sequence of steps should be followed to mitigate the worm attack?
containment, quarantine, treatment, and inoculation
treatment, quarantine, inoculation, and containment
inoculation, containment, quarantine, and treatment
containment, inoculation, quarantine, and treatment
8. Which WLAN security protocol generates a new dynamic key each time a client establishes a connection with the AP?
PSK
WPA
EAP
WEP
9. Refer to the exhibit. Baseline documentation for a small company had ping round trip time statistics of 36/97/132 between hosts H1 and H3. Today the network administrator checked connectivity by pinging between hosts H1 and H3 that resulted in a round trip time of 1458/2390/6066. What does this indicate to the network administrator?
Something is causing interference between H1 and R1.
H3 is not connected properly to the network.
Performance between the networks is within expected parameters.
Connectivity between H1 and H3 is fine.
Something is causing a time delay between the networks.
10. When should an administrator establish a network baseline?
when the traffic is at peak in the network
when there is a sudden drop in traffic
at the lowest point of traffic in the network
at regular intervals over a period of time
11. A ping fails when performed from router R1 to directly connected router R2. The network administrator then proceeds to issue the show cdp neighbors command. Why would the network administrator issue this command if the ping failed between the two routers?
The network administrator wants to verify the IP address configured on router R2.
The network administrator suspects a virus because the ping command did not work.
The network administrator wants to determine if connectivity can be established from a non-directly connected network.
The network administrator wants to verify Layer 2 connectivity.
12. Which statement is true about CDP on a Cisco device?
To disable CDP globally, the no cdp enable command in interface configuration mode must be used.
The show cdp neighbor detail command will reveal the IP address of a neighbor only if there is Layer 3 connectivity.
CDP can be disabled globally or on a specific interface.
Because it runs at the data link layer, the CDP protocol can only be implemented in switches.
13. What is the purpose of issuing the commands cd nvram: then dir at the privilege exec mode of a router?
to list the content of the NVRAM
to clear the content of the NVRAM
to copy the directories from the NVRAM
to direct all new files to the NVRAM
14. A network administrator checks the security log and notices there was unauthorized access to an internal file server over the weekend. Upon further investigation of the file system log, the administrator notices several important documents were copied to a host located outside of the company. What kind of threat is represented in this scenario?
identify theft
data loss
information theft
disruption of service
15. If a configuration file is saved to a USB flash drive attached to a router, what must be done by the network administrator before the file can be used on the router?
Edit the configuration file with a text editor.
Use the dir command from the router to remove the windows automatic alphabetization of the files on the flash drive.
Convert the file system from FAT32 to FAT16.
Change the permission on the file from ro to rw.
16. Which network design consideration would be more important to a large corporation than to a small business?
Internet router
redundancy
firewall
low port density switch
17. Which protocol supports rapid delivery of streaming media?
TCP
RTP
SNMP
PoE
18. Refer to the exhibit. An administrator is trying to troubleshoot connectivity between PC1 and PC2 and uses the tracert command from PC1 to do it. Based on the displayed output, where should the administrator begin troubleshooting?
SW2
R1
R2
PC2
SW1
19. Which two statements characterize wireless network security? (Choose two.)
Wireless networks offer the same security features as wired networks.
An attacker needs physical access to at least one network device to launch an attack
Using the default IP address on an access point makes hacking easier.
Some RF channels provide automatic encryption of wireless data.
With SSID broadcast disabled, an attacker must know the SSID to connect.
20. Which two actions can be taken to prevent a successful attack on an email server account? (Choose two.)
Never send the password through the network in a clear text.
Never use passwords that need the Shift key.
Never allow physical access to the server console.
Limit the number of unsuccessful attempts to log in to the server.
Only permit authorized access to the server room.
21. How should traffic flow be captured in order to best understand traffic patterns in a network?
when it is from a subset of users
during low utilization times
when it is on the main network segment only
during peak utilization times
22. What do WLANs that conform to IEEE 802.11 standards allow wireless user to do?
use wireless mice and keyboards
create a one-to-many local network using infrared technology
use cell phones to access remote services over very large areas
connect wireless hosts to hosts or services on a wired Ethernet network
23. Fill in the blank.
” VoIP ” defines the protocols and technologies that implement the transmission of voice data over an IP network.
24. Fill in the blank. Do not use abbreviations.
The show ” file systems ” command provides information about the amount of available and free flash memory and its permissions for reading or writing data.
ConversionConversion EmoticonEmoticon