Question 1

When using Spanning Tree Protocol, which port on non-root bridges can forward traffic toward the root bridge?

Accepted Answer

A)  Only one root port, which is the bridge's port that is closest to the root bridge, can forward. 
B)  Only one root port, which is the bridge's port that is furthest from the root bridge, can forward. 
C)  All ports can forward frames to the root bridge, provided they are not in a down state. 
D)  All ports will forward frames to the root bridge, unless a BPDU is received back on that same port. 
A)  Only one root port, which is the bridge's port that is closest to the root bridge, can forward. 
B)  Only one root port, which is the bridge's port that is furthest from the root bridge, can forward. 
C)  All ports can forward frames to the root bridge, provided they are not in a down state. 
D)  All ports will forward frames to the root bridge, unless a BPDU is received back on that same port.

Question 2

Enforcing a virtual security perimeter using a client's geographic location is known by what term?

Accepted Answer

A)  geohashing 
B)  geofencing 
C)  geolocating 
D)  geolocking 
A)  geohashing 
B)  geofencing 
C)  geolocating 
D)  geolocking

Question 3

What is the purpose of Unified Threat Management (UTM)?

Accepted Answer

Unified Threat Management is a security

Question 4

User access to network resources falls into one of these two categories: 1) the privilege or right to execute, install, and uninstall software, and 2) permission to read, modify, create, or delete data files and folders.

Accepted Answer

A) True 
 B)False

Question 5

The PEAP standard creates an encrypted TLS tunnel between the supplicant and the server before proceeding with the usual EAP process.

Accepted Answer

A) True 
 B)False

Question 6

Which protocol designed to replace STP operates at Layer 3 of the OSI model?

Accepted Answer

A)  Rapid Spanning Tree Protocol (RSTP) 
B)  Transparent Interconnection of Lots of Links (TRILL) 
C)  Shortest Path Bridging (SP
B)  
D)  Multiple Spanning Tree Protocol (MSTP) 
A)  Rapid Spanning Tree Protocol (RSTP) 
B)  Transparent Interconnection of Lots of Links (TRILL) 
C)  Shortest Path Bridging (SP
B)  
D)  Multiple Spanning Tree Protocol (MSTP)

Question 7

The storm-control command is a type of flood guard that is available on most major network switch vendor platforms.

Accepted Answer

A) True 
 B)False

Question 8

How does the Remote Authentication Dial-In User Service (RADIUS) function?

Accepted Answer

RADIUS is an open-source standard develo

Question 9

The Spanning Tree Protocol operates at the Network layer of the OSI model.

Accepted Answer

A) True 
 B)False

Question 10

Which encryption standard was originally utilized with WPA's TKIP?

Accepted Answer

A)  Advanced Encryption Standard (AES) 
B)  Rivest Cipher 4 (RC4) 
C)  Blowfish 
D)  Data Encryption Standard (DES) 
A)  Advanced Encryption Standard (AES) 
B)  Rivest Cipher 4 (RC4) 
C)  Blowfish 
D)  Data Encryption Standard (DES)

Question 11

How does a reverse proxy differ from a normal proxy?

Accepted Answer

Whereas proxy servers access resources o

Question 12

What kind of firewall can block designated types of traffic based on application data contained within packets?

Accepted Answer

A)  stateful firewall 
B)  stateless firewall 
C)  content-filtering firewall 
D)  packet-filtering firewall 
A)  stateful firewall 
B)  stateless firewall 
C)  content-filtering firewall 
D)  packet-filtering firewall

Question 13

What statement regarding role-based access control is accurate?

Accepted Answer

A)  RBAC allows a network administrator to base privileges and permissions around a detailed description of a user's roles or jobs. 
B)  RBAC allows users to decide for themselves who has access to that user's resources. 
C)  RBAC organizes resources into hierarchical classifications, such as "confidential" or "top secret". 
D)  RBAC is the most restrictive method of access control. 
A)  RBAC allows a network administrator to base privileges and permissions around a detailed description of a user's roles or jobs. 
B)  RBAC allows users to decide for themselves who has access to that user's resources. 
C)  RBAC organizes resources into hierarchical classifications, such as "confidential" or "top secret". 
D)  RBAC is the most restrictive method of access control.

Question 14

What is a SIEM (Security Information and Event Management) system utilized for?

Accepted Answer

A)  It is an advanced intrusion protection system with a GUI-frontend. 
B)  It is a system used to evaluate data from security devices and generate alerts. 
C)  It is an intellectual property protection software that prevents data links, and generates alerts. 
D)  It is a system that monitors security device hardware availability. 
A)  It is an advanced intrusion protection system with a GUI-frontend. 
B)  It is a system used to evaluate data from security devices and generate alerts. 
C)  It is an intellectual property protection software that prevents data links, and generates alerts. 
D)  It is a system that monitors security device hardware availability.

Question 15

The supplicant is an EAP entity responsible for requesting authentication, such as a smartphone or laptop.

Accepted Answer

A) True 
 B)False

Question 16

When using Spanning Tree Protocol, what is the first step in selecting paths through a network?

Accepted Answer

A)  STP must first select the root bridge, or master bridge. 
B)  STP examines the possible paths between all other bridges. 
C)  STP disables links that are not part of a shortest path. 
D)  STP begins to block BPDUs on non-designated ports. 
A)  STP must first select the root bridge, or master bridge. 
B)  STP examines the possible paths between all other bridges. 
C)  STP disables links that are not part of a shortest path. 
D)  STP begins to block BPDUs on non-designated ports.

Question 17

What descendant of the Spanning Tree Protocol is defined by the IEEE 802.1W standard, and can detect as well as correct for link failures in milliseconds?

Accepted Answer

A)  Transparent Interconnection of Lots of Links (TRILL) 
B)  Shortest Path Bridging (SP
B)  
C)  Rapid Spanning Tree Protocol (RSTP) 
D)  Multiple Spanning Tree Protocol (MSTP) 
A)  Transparent Interconnection of Lots of Links (TRILL) 
B)  Shortest Path Bridging (SP
B)  
C)  Rapid Spanning Tree Protocol (RSTP) 
D)  Multiple Spanning Tree Protocol (MSTP)

Question 18

Which adaptation of EAP utilizes EAP

Accepted Answer

A)  EAP-TLS 
B)  Protected EAP (PEAP) 
C)  EAP-FAST 
D)  LEAP 
A)  EAP-TLS 
B)  Protected EAP (PEAP) 
C)  EAP-FAST 
D)  LEAP

Question 19

What is NOT a variable that an network access control list can filter traffic with?

Accepted Answer

A)  The Network layer protocol used for the packet. 
B)  The Transport layer protocol used for the packet. 
C)  The source or destination TCP/UDP port number in the packet. 
D)  The operating system used by the source or destination device. 
A)  The Network layer protocol used for the packet. 
B)  The Transport layer protocol used for the packet. 
C)  The source or destination TCP/UDP port number in the packet. 
D)  The operating system used by the source or destination device.

Question 20

What aspect of AAA is responsible for determining what a user can and cannot do with network resources?

Accepted Answer

A)  authentication 
B)  authorization 
C)  accounting 
D)  accessibility 
A)  authentication 
B)  authorization 
C)  accounting 
D)  accessibility

When using Spanning Tree Protocol, which port on non-root bridges can forward traffic toward the root bridge?

Enforcing a virtual security perimeter using a client's geographic location is known by what term?

What is the purpose of Unified Threat Management (UTM)?

User access to network resources falls into one of these two categories: 1) the privilege or right to execute, install, and uninstall software, and 2) permission to read, modify, create, or delete data files and folders.

The PEAP standard creates an encrypted TLS tunnel between the supplicant and the server before proceeding with the usual EAP process.

Which protocol designed to replace STP operates at Layer 3 of the OSI model?

The storm-control command is a type of flood guard that is available on most major network switch vendor platforms.

How does the Remote Authentication Dial-In User Service (RADIUS) function?

The Spanning Tree Protocol operates at the Network layer of the OSI model.

Which encryption standard was originally utilized with WPA's TKIP?

How does a reverse proxy differ from a normal proxy?

What kind of firewall can block designated types of traffic based on application data contained within packets?

What statement regarding role-based access control is accurate?

What is a SIEM (Security Information and Event Management) system utilized for?

The supplicant is an EAP entity responsible for requesting authentication, such as a smartphone or laptop.

When using Spanning Tree Protocol, what is the first step in selecting paths through a network?

What descendant of the Spanning Tree Protocol is defined by the IEEE 802.1W standard, and can detect as well as correct for link failures in milliseconds?

Which adaptation of EAP utilizes EAP

What is NOT a variable that an network access control list can filter traffic with?

What aspect of AAA is responsible for determining what a user can and cannot do with network resources?

Introduction to Networking

Network Infrastructure and Documentation

Addressing on Networks

Network Protocols and Routing

Network Cabling

Wireless Networking

Virtualization and Cloud Computing

Subnets and VLANs

Network Risk Management

Network Performance and Recovery

Wide Area Networks

Filters

Exam 10: Security in Network Design

When using Spanning Tree Protocol, which port on non-root bridges can forward traffic toward the root bridge?

Enforcing a virtual security perimeter using a client's geographic location is known by what term?

What is the purpose of Unified Threat Management (UTM)?

User access to network resources falls into one of these two categories: 1) the privilege or right to execute, install, and uninstall software, and 2) permission to read, modify, create, or delete data files and folders.

The PEAP standard creates an encrypted TLS tunnel between the supplicant and the server before proceeding with the usual EAP process.

Which protocol designed to replace STP operates at Layer 3 of the OSI model?

The storm-control command is a type of flood guard that is available on most major network switch vendor platforms.

How does the Remote Authentication Dial-In User Service (RADIUS) function?

The Spanning Tree Protocol operates at the Network layer of the OSI model.

Which encryption standard was originally utilized with WPA's TKIP?

How does a reverse proxy differ from a normal proxy?

What kind of firewall can block designated types of traffic based on application data contained within packets?

What statement regarding role-based access control is accurate?

What is a SIEM (Security Information and Event Management) system utilized for?

The supplicant is an EAP entity responsible for requesting authentication, such as a smartphone or laptop.

When using Spanning Tree Protocol, what is the first step in selecting paths through a network?

What descendant of the Spanning Tree Protocol is defined by the IEEE 802.1W standard, and can detect as well as correct for link failures in milliseconds?

Which adaptation of EAP utilizes EAP

What is NOT a variable that an network access control list can filter traffic with?

What aspect of AAA is responsible for determining what a user can and cannot do with network resources?

Introduction to Networking

Network Infrastructure and Documentation

Addressing on Networks

Network Protocols and Routing

Network Cabling

Wireless Networking

Virtualization and Cloud Computing

Subnets and VLANs

Network Risk Management

Network Performance and Recovery

Wide Area Networks

Filters