SkillTestPro | CompTIA Network+ Practice Test 10

CompTIA Network+ Practice Test 10

CompTIA Network+

1 / 20

A company wants to mitigate SYN flood attacks. What should they implement?

IP fragmentation

Jumbo frames

Port forwarding

SYN cookies

VLAN hopping

2 / 20

Which DNS record type is used to map an IP address to a hostname for reverse lookups?

A record

PTR record

CNAME record

MX record

TXT record

3 / 20

Which encryption standard is commonly used in WPA3 Wi-Fi security?

WEP

MD5

AES-256

DES

SHA-1

4 / 20

A remote user reports that their VPN connection drops whenever they switch between Wi-Fi and mobile data. What is the most likely reason?

DNS cache corruption

IP address change breaks session persistence

UDP traffic is blocked

NAT overload on the firewall

Routing loop detected

5 / 20

A technician needs to determine if an ISP is performing traffic shaping on a company’s connection. Which test should they perform?

Ping flood attack simulation

MAC address filtering test

Bandwidth and latency tests over time

Internal ARP lookup

Reverse DNS lookup

6 / 20

Which of the following is a benefit of using MPLS in a WAN environment?

Enhances wireless network coverage

Reduces need for physical cabling

Increases internet bandwidth

Improved QoS for prioritizing traffic

Automates VLAN assignments

7 / 20

A company wants to prevent unauthorized devices from connecting to its network. Which security measure should be implemented?

VLAN pruning

NAT filtering

QoS policies

Dynamic DNS

802.1X authentication

8 / 20

Which type of firewall inspects the entire data packet, including the payload, before making filtering decisions?

Next-generation firewall (NGFW)

Stateless firewall

Packet-filtering firewall

Transparent proxy

Layer 2 switch

9 / 20

A company’s wireless network is experiencing severe interference, even after changing channels. What is the best solution?

Decrease the access point’s power level

Switch to 5 GHz Wi-Fi

Increase the beacon interval

Enable SSID cloaking

Reduce the DHCP lease duration

10 / 20

An administrator needs to secure communications between two remote sites over the internet while maintaining authentication and encryption. Which protocol should they use?

GRE

L2TP

IPsec

SNMPv3

MPLS

11 / 20

A cybersecurity analyst detects a rogue DHCP server issuing incorrect IP addresses on a corporate network. What immediate action should be taken?

Change VLAN assignments

Disable MAC address learning

Increase switch port authentication timeout

Enable port mirroring

Enable DHCP snooping on all switches

12 / 20

A technician is troubleshooting an intermittent issue where users lose network access for a few seconds multiple times per hour. Logs show frequent STP topology changes. What is the most likely cause?

Incorrect DNS cache settings

DHCP lease time too short

Network congestion

A faulty switch port causing a loop

High CPU utilization on routers

13 / 20

A new switch is installed in a network but fails to forward traffic between VLANs. The administrator confirms that VLANs are correctly assigned. What additional setting must be configured?

Loopback detection

EtherChannel bundling

Inter-VLAN routing

Spanning Tree priority

Dynamic ARP inspection

14 / 20

A network technician is analyzing NetFlow logs and detects a large volume of UDP traffic on port 53 from multiple internal hosts. What is the most likely cause?

Misconfigured DHCP server

VLAN hopping

Man-in-the-middle attack

DNS tunneling attack

ARP spoofing

15 / 20

A company notices significant delays when accessing cloud-hosted applications. A network engineer suspects high latency between the local office and the cloud provider. Which tool would be most useful in diagnosing the issue?

MTR (My Traceroute)

Netcat

Wireshark

Nslookup

Netstat

16 / 20

Which of the following is a primary advantage of using BGP instead of OSPF for inter-network routing?

Faster convergence in small networks

Scalability and ability to handle multiple ISPs

Lower overhead and minimal resource usage

Better support for IPv6

Simplicity of configuration

17 / 20

A security team detects unauthorized remote login attempts to a Linux server from multiple IP addresses worldwide. Which security measure would be most effective in mitigating this attack?

Fail2Ban implementation

Disabling SSH port forwarding

Configuring QoS policies

Blocking ICMP traffic

Increasing switch port security

18 / 20

An administrator configures a network with a single DHCP server and multiple VLANs. However, clients on different VLANs fail to obtain IP addresses. What additional configuration is required?

Trunking protocol on switches

MAC filtering

Stateful firewall rules

DHCP relay agent

Spanning Tree Protocol

19 / 20

A penetration tester is performing a reconnaissance attack and successfully gathers metadata from intercepted network traffic. Which attack method was likely used?

DNS amplification

Evil twin attack

Packet sniffing

MAC flooding

ARP poisoning

20 / 20

A network administrator is investigating an issue where only some devices in a subnet are failing to reach the internet. The affected devices can communicate with local resources but not external ones. The administrator finds that the devices have valid IP addresses and correct subnet masks. What is the most likely cause?

DNS poisoning

Spanning Tree Protocol (STP) blocking ports

Incorrect VLAN assignment

Broadcast storm

Misconfigured default gateway

Your score is

The average score is 0%