Exam N10-008 All QuestionsBrowse all questions from this exam
Go to Exam
Question 43

SIMULATION -

You are tasked with verifying the following requirements are met in order to ensure network security.

Requirements:

✑ Datacenter

- Ensure network is subnetted to allow all devices to communicate properly while minimizing address space usage

- Provide a dedicated server to resolve IP addresses and hostnames correctly and handle port 53 traffic

✑ Building A

- Ensure network is subnetted to allow all devices to communicate properly while minimizing address space usage

- Provide devices to support 5 additional different office users

- Add an additional mobile user

- Replace the Telnet server with a more secure solution

✑ Screened subnet

- Ensure network is subnetted to allow all devices to communicate properly while minimizing address space usage

- Provide a server to handle external 80/443 traffic

- Provide a server to handle port 20/21 traffic

INSTRUCTIONS -

Drag and drop objects onto the appropriate locations. Objects can be used multiple times and not all placeholders need to be filled.

Available objects are located in both the Servers and Devices tabs of the Drag & Drop menu.

If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

    Correct Answer:

    To ensure network security while meeting the provided requirements, the network setup should be designed as follows: Datacenter: - Use the subnet 192.168.11.0/28 to minimize address space usage. - Include a DNS server to handle IP address resolution and port 53 traffic. Building A: - Use the subnet 10.72.63.0/28 to minimize address space usage. - Provide support for 5 workstations for the additional office users and a laptop for the mobile user. - Replace the Telnet server with an SSH server for a more secure solution. Screened Subnet: - Use the subnet 206.208.134.0/28 to minimize address space usage. - Include a Web server to handle external traffic on ports 80/443. - Include an FTP server to handle external traffic on ports 20/21. This setup ensures all devices can communicate properly while minimizing address space usage and meeting the security requirements.

Discussion
BenBen1234

To simplify this. This will able be /28 Screen Subnet: Web Server FTP Server 206.208.134.0/28 Data Center: DNS Server 192.168.11.0/28 Building A SSH 5 Workstations 1 Laptop (Connected to WAP) Hopefully this helps someone memorize it.

BenBen1234

Building a 10.72.63.0/28

22269_1116

Thank you

[Removed]

This is correct. Good job!

user82

The screened subnet has three boxes. Is it Web server and 2 FTP servers?

GustL1983

"not all placeholders need to be filled" just one Web and one FTP server, i think.

Babatundeio

Today, 12th Feb 2024. This SIM came out in my exam as well as the SIM in number 6. and most of the objectives from this dump came out too. Thank you Exam Topics. You are the best!

tempovpn

It was on my exam today. 100% same, and the BenBen1234's answer above is legit.

Ragingrnova

This is in use as of Oct 2023

f534052

Was on my exam today

agfencer

got this on my exam

bigbank

I took my exam on April 25, 2024 and this question came out. I passed with a 729, thank u exam topic

7181a4f

Just saw this on my test two weeks ago.

72abe44

Screen Subnet: Web Server FTP Server Email Server

ScubaLemur

why use 192 for the data center? 10 for building a? and why 206 for subnet? just curious why these numbers I know why the /28 just trying to understand the material better

M3taCort3x

If you look closely at the diagram, they give you the IP addresses of each switch in each of the networks, this is how you know which Network addresses to use.

comeragh

Sorry for Screened Subnet I would select only FTP Server (port 20/21) and Web Server (port 80/443). I had added Mail Server as additional placeholder (not adding this as although a mail server is often located in a screened subnet there is no port reference here to mail server).

Chichi2211

This question was on my exam: June 19th 2024 BenBen1234 is correct and the DMZ can have mail server but the question does not require it.

Skimbeeble

As someone who second guesses the heck out of myself and will go back/spend alot of time on this question. just go with your gut on the most obvious choices (ip matching etc) and advance, finished the exam with about 3 minutes remaining solely due to this question... therefore, do not take my advice and listen to the people her v^v^

Mehsotopes

/28 would allow us a maximum of 14 address spaces which meets the minimal address space need & still meeting the 9, or 10 IP address requirement for building A & ensuring we can fit all three subnets. Screened Subnet Port 443 & 80 = Web Server Data Center Port 53 = DNS Port 20 & 21 = FTP Server Building A Mobile User = Laptop

Mehsotopes

Screened Subnet Port 443 & 80 = Web Server Data Center Port 53 = DNS Port 20 & 21 Building A Mobile User = Laptop /28 would allow us a maximum of 14 address spaces which meets the minimal address space need & still meeting the 9, or 10 IP address requirement for building A & ensuring we can fit all three subnets.

comeragh

Screened Subnet (I would also use Mail Server as the 3rd placeholder) ---------------- 206.208.134.0/28 Web Server FTP Server Mail Server Data Centre (port 53 = DNS) ------------ 192.168.11.0/28 DNS Server Building A ----------- 10.72.63.0/28 SSH Server 5 x Workstation

Bret79

Hi guys shouldn’t the CIDR notation be /27 as the question says to incorporate 30 devices so a /27 would be 32 max subnets and 30 max addresses ?