- (Topic 3)
After installing a new wireless access point, an engineer tests the device and sees that it is not performing at the rated speeds. Which of the following should the engineer do to troubleshoot the issue? (Select two).
Correct Answer:
AB
One possible cause of poor wireless performance is a bottleneck in the network, which means that other devices or applications are consuming too much bandwidth or resources and limiting the speed of the wireless access point. To troubleshoot this issue, the engineer should ensure that there is no congestion or interference from other devices on the network, such as wired clients, servers, routers, switches, or other wireless access points. The engineer can use tools such as network analyzers, bandwidth monitors, or ping tests to check the network traffic and latency12.
Another possible cause of poor wireless performance is outdated firmware on the device, which may contain bugs or vulnerabilities that affect the functionality or security of the wireless access point. To troubleshoot this issue, the engineer should install the latest firmware for the device from the manufacturer’s website or support portal. The engineer should follow the instructions carefully and backup the configuration before updating the firmware. The engineer can also check the release notes or changelog of the firmware to see if there are any improvements or fixes related to the wireless performance3 .
The other options are not relevant to troubleshooting poor wireless performance. Creating a new VLAN for the access point may help with network segmentation or security, but it will not improve the speed of the wireless connection. Making sure the SSID is not longer than 16 characters may help with compatibility or readability, but it will not affect the wireless performance. Configuring the AP in autonomous mode may give more control or flexibility to the engineer, but it will not enhance the wireless speed. Installing a wireless LAN controller may help with managing multiple access points or deploying advanced features, but it will not increase the wireless performance.
- (Topic 3)
An attacker sends more connection requests than a server can handle, causing the server to crash- Which of the following types of attacks is this an example of?
Correct Answer:
B
A denial-of-service (DoS) attack is an example of an attack where an attacker sends more connection requests than a server can handle, causing the server to crash. A DoS attack is a type of cyberattack that aims to disrupt the normal functioning of a network service or resource by overwhelming it with excessive or malformed traffic. A DoS attack can prevent legitimate users from accessing the service or resource, resulting in degraded performance, unavailability, or data loss. A DoS attack can target various network layers, protocols, or components, such as servers, routers, firewalls, or applications. References: [CompTIA Network+ Certification Exam Objectives], What Is a Denial-of-Service (DoS) Attack? | Cisco
- (Topic 3)
A network administrator is planning to implement device monitoring to enhance network visibility. The security team requires that the solution provides authentication and encryption.
Which of the following meets these requirements?
Correct Answer:
D
SNMPv3 is a protocol that allows network administrators to monitor and manage network devices such as routers, switches, servers, printers, and more. SNMPv3 provides authentication and encryption features that ensure the security and integrity of the data exchanged between the management station and the network devices. SNMPv3 uses a user-based security model (USM) that supports three levels of security: noAuthNoPriv, authNoPriv, and authPriv. The noAuthNoPriv level provides no authentication or encryption, the authNoPriv level provides authentication but no encryption, and the authPriv level provides both authentication and encryption12.
References
✑ SNMP is one of the common network monitoring protocols covered in Objective 3.1 of the CompTIA Network+ N10-008 certification exam3.
✑ SNMPv3 provides authentication and encryption features for network monitoring12.
✑ SNMPv3 uses a user-based security model with three levels of security12.
1: SNMP - N10-008 CompTIA Network+ : 3.1 - Professor Messer IT Certification Training Courses 2: CompTIA Network+ N10-008 Cert Guide, Chapter 13, page 413 3: CompTIA Network+ Certification Exam Objectives, page 7
- (Topic 3)
Which of the following demarcation connections would be MOST appropriate to use with a cable modem being installed in a SOHO situation?
Correct Answer:
A
RG6 is a type of coaxial cable that is commonly used for cable TV and internet services. A cable modem is a device that modulates and demodulates signals over a coaxial cable network to provide broadband internet access. A SOHO situation refers to a small office/home office environment that typically has a single cable modem connected to a single coaxial cable outlet. Therefore, RG6 is the most appropriate demarcation connection for a cable modem in a SOHO situation. References: [CompTIA Network+ Certification Exam Objectives], What Is RG6 Cable? | Techwalla
- (Topic 1)
A network technician is manually configuring the network settings for a new device and is told the network block is 192.168.0.0/20. Which of the following subnets should the technician use?
Correct Answer:
C
A subnet mask is a binary number that indicates which bits of an IP address belong to the network portion and which bits belong to the host portion. A slash notation (/n) indicates how many bits are used for the network portion. A /20 notation means that 20 bits are used for the network portion and 12 bits are used for the host portion. To convert /20 to a dotted decimal notation, we need to write 20 ones followed by 12 zeros in binary and then divide them into four octets separated by dots. This gives us 11111111.11111111.11110000.00000000 or 255.255.240.0 in decimal. References:
https://partners.comptia.org/docs/default-source/resources/comptia-network-n10-008-exam-objectives-(2-0), https://www.techopedia.com/definition/950/subnet-mask
