CompTIA CompTIA Certifications N10-009 Questions & Answers

• Question 111:

  A company is hosting a secure that requires all connections to the server to be encrypted. A junior administrator needs to harded the web server. The following ports on the web server. The following ports on the web server are open:

  

  Which of the following ports should be disabled?

  A. 22

  B. 80

  C. 443

  D. 587

  Correct Answer: B

  For a web server that requires all connections to be encrypted, port 80 (HTTP) should be disabled. Port 80 is used for unencrypted web traffic, whereas port 443 is used for HTTPS, which provides encrypted communication. Port 80 (HTTP):

  This port is used for unsecured web traffic. Disabling this port ensures that all web traffic must use HTTPS, which encrypts the data in transit. Port 443 (HTTPS): This port is used for secure web traffic via SSL/TLS encryption. Keeping this

  port open ensures that secure connections can be made to the web server.

  Other Ports:

  Network References:

  CompTIA Network+ N10-007 Official Certification Guide: Discusses the roles and security implications of various ports and protocols. Cisco Networking Academy: Provides training on secure web server configuration and port management.

  Network+ Certification All-in-One uide: Covers port security and best practices for securing web servers.

• Question 112:

  Which of the following steps in the troubleshooting methodology would be next after putting preventive measures in place?

  A. Implement the solution.

  B. Verify system functionality.

  C. Establish a plan of action.

  D. Test the theory to determine cause.

  Correct Answer: B

  After implementing a solution and putting preventive measures in place, the next step is to verify that the system is functioning correctly. This ensures that the issue has been fully resolved.

• Question 113:

  A critical infrastructure switch is identified as end-of-support. Which of the following is the best next step to ensure security?

  A. Apply the latest patches and bug fixes.

  B. Decommission and replace the switch.

  C. Ensure the current firmware has no issues.

  D. Isolate the switch from the network.

  Correct Answer: B

  Understanding End-of-Support:

  uk.co.certification.simulator.questionpool.PList@7662a7f2 Risks of Keeping an End-of-Support Device:

  Best Next Step - Replacement:

  Comparison with Other Options:

  References:

  CompTIA Network+ study materials on network maintenance and security best practices.

• Question 114:

  A company is implementing a wireless solution in a high-density environment.

  Which of the following 802.11 standards is used when a company is concerned about device saturation and converage?

  A. 802.11ac

  B. 802.11ax

  C. 802.11g

  D. 802.11n

  Correct Answer: B

  802.11ax, also known as Wi-Fi 6, is designed for high-density environments and improves device saturation and coverage compared to previous standards. 802.11ac: While it offers high throughput, it is not optimized for high-density

  environments as effectively as 802.11ax.

  802.11ax (Wi-Fi 6): Introduces features like OFDMA, MU-MIMO, and BSS Coloring, which enhance performance in crowded environments, reduce latency, and increase the number of devices that can be connected simultaneously. 802.11g

  and 802.11n: Older standards that do not offer the same level of efficiency or support for high device density as 802.11ax.

  Network References:

  CompTIA Network+ N10-007 Official Certification Guide: Covers the 802.11 standards and their capabilities.

  Cisco Networking Academy: Provides training on Wi-Fi technologies and best practices for high-density deployments.

  Network+ Certification All-in-One uide: Discusses the various 802.11 standards and their applications in different environments.

• Question 115:

  Which of the following is the most closely associated with segmenting compute resources within a single cloud account?

  A. Network security group

  B. laaS

  C. VPC

  D. Hybrid cloud

  Correct Answer: C

  Reference: CompTIA Network+ Certification Exam Objectives - Cloud Models section.

• Question 116:

  Which of the following does a full-tunnel VPN provide?

  A. Lower bandwidth requirements

  B. The ability to reset local computer passwords

  C. Corporate Inspection of all networktraffic

  D. Access to blocked sites

  Correct Answer: C

  A full-tunnel VPN routes all of a user's network traffic through the corporate network. This means that the organization can inspect all network traffic for security and compliance purposes, as all data is tunneled through the VPN, allowing for comprehensive monitoring and inspection.References: CompTIA Network+ study materials.

• Question 117:

  Which of the following steps of the troubleshooting methodology should a technician take to confirm a theory?

  A. Duplicate the problem.

  B. Identify the symptoms.

  C. Gather information.

  D. Determine any changes.

  Correct Answer: A

  Troubleshooting Methodology:

  uk.co.certification.simulator.questionpool.PList@652973b4 Confirming a Theory:

  Comparison with Other Steps:

  Implementation:

  References:

  CompTIA Network+ study materials on troubleshooting methodologies and best practices.

• Question 118:

  A network administrator is deploying a new switch and wants to make sure that the default priority value was set for a spanning tree.

  Which of the following values would the network administrator expect to see?

  A. 4096

  B. 8192

  C. 32768

  D. 36684

  Correct Answer: C

  Understanding Spanning Tree Protocol (STP):

  uk.co.certification.simulator.questionpool.PList@b9d5871 Default Priority Value:

  Configuration and Verification:

  Comparison with Other Values:

  References:

  CompTIA Network+ study materials on Spanning Tree Protocol and network configuration.

• Question 119:

  An IT manager needs to connect ten sites in a mesh network. Each needs to be secured with reduced provisioning time.

  Which of the following technologies will best meet this requirement?

  A. SD-WAN

  B. VXLAN

  C. VPN

  D. NFV

  Correct Answer: A

  Definition of SD-WAN:

  uk.co.certification.simulator.questionpool.PList@16376696 Benefits of SD-WAN:

  Comparison with Other Technologies:

  Implementation:

  References:

  CompTIA Network+ course materials and networking solution guides.

• Question 120:

  A network administrator is connecting two Layer 2 switches in a network. These switches must transfer data in multiple networks.

  Which of the following would fulfill this requirement?

  A. Jumbo frames

  B. 802.1Q tagging

  C. Native VLAN

  D. Link aggregation

  Correct Answer: B

  802.1Q tagging, also known as VLAN tagging, is used to identify VLANs on a trunk link between switches. This allows the switches to transfer data for multiple VLANs (or networks) over a single physical connection. This method ensures that

  traffic from different VLANs is properly separated and managed across the network.References:

  CompTIA Network+ study materials.