Here you have the best CompTIA N10-007 practice exam questions
A UTM is deployed on the external edge of the main corporate office. The office connects to the WAN port of the edge router. The edge router at the main office connects to the remote offices using GRE IPSec tunnels. A network administrator notices that a worm that was not detected by the UTM has spread from the remote sites into the corporate network. The UTM currently has traffic rules applied that should block the port used by the worm. Which of the following steps would MOST likely correct this issue?
To address the issue, moving the UTM onto the LAN side of the network is the most likely step to correct it. In the current setup, the UTM is positioned on the external edge of the network, meaning it is unable to inspect the internal traffic coming from the remote offices through the GRE IPSec tunnels. Since the traffic between the remote sites and the main office is encrypted, the UTM cannot see and block the worm traffic. By moving the UTM to the LAN side, it would be able to inspect all incoming and internal traffic, including traffic from the remote sites after it has been decrypted by the edge router.
A technician has racked a new access switch and has run multimode fiber to a new location. After installing an extended-range 10Gb SFP in the core switch, the technician installed a 10Gb SFP in the access switch and connected the port to the new extension with a fiber jumper. However, the link does not display, and the technician cannot see light emitting from the core switch. Which of the following solutions is MOST likely to resolve the problem?
The technician installed an extended-range 10Gb SFP in the core switch and a 10Gb SFP in the access switch. Extended-range SFPs typically use single-mode fiber, whereas the technician ran multimode fiber. The most likely solution to resolve the issue is to install an optic that matches the fiber type. This means replacing the extended-range single-mode SFP in the core switch with a multimode SFP to match the multimode fiber running to the new location.
A network technician has implemented ACLs to limit access to cloud-based file storage. Which of the following security mechanisms has the technician enforced?
A network technician implementing ACLs to limit access to cloud-based file storage is enforcing Data Loss Prevention (DLP). DLP is a security mechanism used to detect, prevent, and respond to the unauthorized transmission of sensitive information. By setting ACLs, the technician can monitor and control data flows to ensure that only authorized users can access or transfer specific data, thereby preventing data leaks or breaches.
A network technician receives a call from a user in the accounting department stating that Internet connectivity has been lost after receiving a new workstation. No other users in accounting are reporting similar issues. The network technician is able to ping the machine from the accounting department's router, but is not able to ping the machine from the IT network. Which of the following is MOST likely the cause?
The most likely cause of the issue described is an incorrect default gateway. The network technician can ping the machine from the accounting department's router, indicating that the machine is on the correct VLAN and is able to communicate within the local network. However, the inability to ping the machine from the IT network suggests a problem with the machine's ability to communicate outside its local network. An incorrect default gateway would lead to such a situation because the machine would not be able to route traffic to external networks properly. Therefore, ensuring the default gateway is correctly configured is crucial for maintaining network connectivity beyond the local subnet.
A firewall administrator is implementing a rule that directs HTTP traffic to an internal server listening on a non-standard socket. Which of the following types of rules is the administrator implementing?
The administrator is implementing Port Address Translation (PAT), which involves redirecting traffic to specific ports. In this scenario, HTTP traffic, which typically uses port 80, is being directed to an internal server on a non-standard port. PAT allows multiple devices on a local network to be mapped to a single public IP address but with different port numbers, enabling the distinction between multiple services or devices, which fits the described setup of directing traffic to a non-standard port.