CompTIA Security+

Here you have the best CompTIA SY0-401 practice exam questions

  • You have 1780 total questions across 356 pages (5 per page)
  • These questions were last updated on February 12, 2026
  • This site is not affiliated with or endorsed by CompTIA.
Question 1 of 1780
Sara, the security administrator, must configure the corporate firewall to allow all public IP addresses on the internal interface of the firewall to be translated to one public IP address on the external interface of the same firewall. Which of the following should Sara configure?
Answer

Suggested Answer

The suggested answer is A.

Port Address Translation (PAT) is the correct configuration. PAT, also known as NAT Overload, allows multiple devices on a local network to be mapped to a single public IP address using different port numbers. This technique is used to conserve public IP addresses and is ideal for scenarios where many internal devices need to communicate with external networks using a single public IP address.

Community Votes

No votes yet

Join the discussion to cast yours

Question 2 of 1780
Which of the following devices is MOST likely being used when processing the following?
1 PERMIT IP ANY ANY EQ 80
2 DENY IP ANY ANY
Answer

Suggested Answer

The suggested answer is A.

Community Votes

No votes yet

Join the discussion to cast yours

Question 3 of 1780
The security administrator at ABC company received the following log information from an external party:
10:45:01 EST, SRC 10.4.3.7:3056, DST 8.4.2.1:80, ALERT, Directory traversal
10:45:02 EST, SRC 10.4.3.7:3057, DST 8.4.2.1:80, ALERT, Account brute force
10:45:03 EST, SRC 10.4.3.7:3058, DST 8.4.2.1:80, ALERT, Port scan
The external party is reporting attacks coming from abc-company.com. Which of the following is the reason the ABC companys security administrator is unable to determine the origin of the attack?
Answer

Suggested Answer

The suggested answer is D.

ABC company uses Port Address Translation (PAT), which allows multiple devices on a local network to be mapped to a single public IP address but with a different port number for each session. The log entries show the same IP address but different port numbers, implying PAT is in use. This makes it difficult for the security administrator to determine the exact origin of the attacks within the company's internal network, as the external logs only furnish the translated IP address and ports without revealing the specific internal devices involved.

Community Votes

No votes yet

Join the discussion to cast yours

Question 4 of 1780
Which of the following security devices can be replicated on a Linux based computer using IP tables to inspect and properly handle network based traffic?
Answer

Suggested Answer

The suggested answer is C.

IP tables are a user-space utility tool in Linux that enables system administrators to configure the IP packet filter rules of the Linux kernel firewall. Through IP tables, a Linux-based computer can inspect, filter, and modify network traffic, effectively functioning as a firewall. While sniffers and switches have different roles related to packet monitoring and network segment interconnection respectively, and routers manage traffic between separate networks, the primary purpose of IP tables is aligned with firewall functionality.

Community Votes

No votes yet

Join the discussion to cast yours

Question 5 of 1780
Which of the following firewall types inspects Ethernet traffic at the MOST levels of the OSI model?
Answer

Suggested Answer

The suggested answer is B.

Community Votes

No votes yet

Join the discussion to cast yours

About the CompTIA SY0-401 Certification Exam

About the Exam

The CompTIA SY0-401 (CompTIA Security+) validates your knowledge and skills. Passing demonstrates proficiency and can boost your career prospects in the field.

How to Prepare

Work through all 1780 practice questions across 356 pages. Focus on understanding the reasoning behind each answer rather than memorizing responses to be ready for any variation on the real exam.

Why Practice Exams?

Practice exams help you familiarize yourself with the question format, manage your time, and reduce anxiety on the test day. Our SY0-401 questions are regularly updated to reflect the latest exam objectives.