N10-008 Free Practice Test

- (Topic 3)
Which of the following describes the BEST device to configure as a DHCP relay?

1. A. Bridge
2. B. Router
3. C. Layer 2 switch
4. D. Hub

Correct Answer: B
Normally, routers do not forward broadcast traffic. This means that each broadcast domain must be served by its own DHCP server. On a large network with multiple subnets, this would mean provisioning and configuring many DHCP servers. To avoid this scenario, a DHCP relay agent can be configured to provide forwarding of DHCP traffic between subnets. Routers that can provide this type of forwarding are described as RFC 1542 compliant. The DHCP relay intercepts broadcast DHCP frames, applies a unicast address for the appropriate DHCP server, and forwards them over the interface for the subnet containing the server. The DHCP server can identify the original IP subnet from the packet and offer a lease from the appropriate scope. The DHCP relay also performs the reverse process of directing responses from the server to the appropriate client subnet.

- (Topic 1)
A website administrator is concerned the company’s static website could be defaced by hacktivists or used as a pivot point to attack internal systems. Which of the following should a network security administrator recommend to assist with detecting these activities?

1. A. Implement file integrity monitoring.
2. B. Change the default credentials.
3. C. Use SSL encryption.
4. D. Update the web-server software.

Correct Answer: A
Implementing file integrity monitoring (FIM) would assist with detecting activities such as website defacement or internal system attacks. FIM is a process that monitors and alerts on changes to files or directories that are critical for security or functionality. FIM can help detect unauthorized modifications, malware infections, data breaches, or configuration errors. FIM can also help with compliance and auditing requirements. References: https://www.tripwire.com/state-of-security/security-data-protection/cyber-security/what-is-file-integrity-monitoring/

- (Topic 3)
An administrator is setting up a multicast server on a network, but the firewall seems to be dropping the traffic. After logging in to the device, me administrator sees me following entries:

Which of the following firewall rules is MOST likely causing the issue?

1. A. Rule 1
2. B. Rule 2
3. C. Rule 3
4. D. Rule 4

Correct Answer: A

- (Topic 3)
A network resource was accessed by an outsider as a result of a successful phishing
campaign. Which of the following strategies should be employed to mitigate the effects of phishing?

1. A. Multifactor authentication
2. B. Single sign-on
3. C. RADIUS
4. D. VPN

Correct Answer: A
Multifactor authentication is a security measure that requires users to provide multiple pieces of evidence before they can access a network resource. This could include requiring users to enter a username, password, and a code sent to the user's mobile phone before they are allowed access. This ensures that the user is who they say they are, reducing the risk of malicious actors gaining access to network resources as a result of a successful phishing campaign.

- (Topic 3)
A corporate client is experiencing global system outages. The IT team has identified multiple potential underlying causes throughout the enterprise Each team member has been assigned an area to trouble shoot. Which of the following approaches is being used?

1. A. Divide-and-conquer
2. B. Top-to-bottom
3. C. Bottom-to-top
4. D. Determine if anything changed

Correct Answer: A