Skip to content

CompTIA Practice Tests
A+ Practice Tests
Security+ Practice Tests
Network+ Practice Tests

CompTIA Network+ Test 6

Time limit: 0

Quiz Summary

0 of 20 Questions completed

Questions:

Information

You have already completed the quiz before. Hence you can not start it again.

Quiz is loading…

You must sign in or sign up to start the quiz.

You must first complete the following:

Results

Test complete. Results are being recorded.

Results

0 of 20 Questions answered correctly

Your time:

Time has elapsed

You have reached 0 of 0 point(s), (0)

Earned Point(s): 0 of 0, (0)
0 Essay(s) Pending (Possible Point(s): 0)

Categories

Not categorized 0%

Next Test Main Menu

Question 1 of 20

1. Question
A remote office wants to connect with the head office located in another city. The office budget doesn’t allow expensive WAN solutions to be implemented for a VPN connection. Which VPN model can use the public medium (Internet) to connect the remote office to the corporate backbone network without spending a fortune?
- A.Client-to-Site VPN
- B.Site-to-Site VPN
- C.Clientless VPN
- D.Remote Tunnel VPN
Correct

Incorrect
Question 2 of 20

2. Question
Your manager wants to implement a split tunneling VPN to access the company resources on the corporate servers. Which of the following is considered a security issue with split tunneling?
- A.It’s connected to the Internet.
- B.It’s connected to the VPN through the Internet.
- C.It is frustratingly slow.
- D.It requires multiple hops to connect to the corporate servers.
Correct

Incorrect
Question 3 of 20

3. Question
Which type of console access allows an administrator to manage switches and routers by connecting a laptop and running a terminal program to access the device’s interface?
- A.Out-of-band
- B.In-band
- C.Client-to-site
- D.BYOD
Correct

Incorrect
Question 4 of 20

4. Question
Where in the network are jump servers placed to facilitate device management once a management session has been set up and configured?
- A.Secure zone and the firewall
- B.The firewall and the subnet
- C.Secure zone and the screened subnet
- D.Screened subnet and the firewall
Correct

Incorrect
Question 5 of 20

5. Question
Which of the following statements about in-band management and out-of-band management are true? (Choose two.)
- A.Out-of-band management tools do not provide access to the remote system’s BIOS or UEFI firmware.
- B.Out-of-band management tools enable you to reinstall the operating system on a remote computer.
- C.Secure Shell (SSH), Virtual Network Computing (VNC), and application programming interface (API) connections are in-band management tools.
- D.It must have an IP address to perform out-of-band management on a device.
Correct

Incorrect
Question 6 of 20

6. Question
The Identity and Access Management (IAM) framework allows a service provider to define user authentication using a username and password. What other methods are available for user authentication? (Choose two)
- A.Single Sign On
- B.Two-factor authentication
- C.Double Sign On
- D.Certificate key pair
Correct

Incorrect
Question 7 of 20

7. Question
You are configuring a RADIUS client to communicate with the RADIUS server. Which ports should be configured to use authentication and accounting provisions?
- A.UDP port 1812 for authentication and UDP port 1813 for accounting
- B.UDP port 1813 for authentication and UDP port 1812 for accounting
- C.UDP port 2133 for authentication and UDP port 2134 for accounting
- D.UDP port 2181 for authentication and UDP port 3181 for accounting
Correct

Incorrect
Question 8 of 20

8. Question
How can an administrator configure SSO authentication to ensure the service provider can authenticate the claims being passed as originating from the identity provider (Idp)?
- A.Use TACACS+ to identify and authenticate claims
- B.Use SAML protocol to sign and encrypt claims
- C.Use RADIUS protocol to sign and encrypt claims
- D.Use LDAP to sign and encrypt claims
Correct

Incorrect
Question 9 of 20

9. Question
Your company wants strict access permissions for each employee based on their job requirements. Which control method is most suitable for this purpose?
- A.Single sign-on (SSO)
- B.Mandatory access control (MAC)
- C.Confidentiality, integrity, and availability (CIA)
- D.Role-based access control (RBAC)
Correct

Incorrect
Question 10 of 20

10. Question
Which of the following methods is a mitigation technique to slow down a hacker and study the attack vector?
- A.Honeypots
- B.Network attacks
- C.Switch port protection types
- D.Firewall filters
Correct

Incorrect
Question 11 of 20

11. Question
Which part of the CIA triad ensures data accessibility by using redundant systems and components to create highly available information systems?
- A.Confidentiality
- B.Integrity
- C.Availability
- D.Transition
Correct

Incorrect
Question 12 of 20

12. Question
Which of the following is not an appropriate example of the Internet of Things (IoT)? (Choose two.)
- A.A key fob that unlocks doors
- B.A smartphone home automation app
- C.A remotely monitored cardiac pacemaker
- D.A seismic early warning system
- E.Operational technology that controls industrial equipment
Correct

Incorrect
Question 13 of 20

13. Question
A hacker is attacking the central corporate servers of a reputed organization. She sends a request to a third-party server and forges the packet’s source address with the victim’s IP address. When a client accesses the packet, the third party responds with the victim’s IP address. Which type of DoS attack is being carried out in this scenario?
- A.Reflective
- B.Amplified
- C.Distributed Denial Of Service (DDoS)
- D.Permanent Denial Of Service (PDoS)
Correct

Incorrect
Question 14 of 20

14. Question
An attacker is trying to circumvent the vLAN tags during a vLAN hopping attack by placing a fake VLAN tag and the real tag into the packet. What happens when a frame goes through multiple switches during the attack?
- A.The second switch takes off the fake tag
- B.The first switch takes off the real tag
- C.The first switch takes off the fake tag
- D.The first switch takes off the real tag
Correct

Incorrect
Question 15 of 20

15. Question
An employee in your company was terminated from the job two weeks ago. When you arrived at the office on Monday, you found that the data from all the hosts in a web server farm had been deleted. No authorized entries were found in the data center records. However, you suspect that the disgruntled employee might be behind it. Which of the following attacks was performed at the web server farm?
- A.Evil twin
- B.Logic bomb
- C.ARP poisoning
- D.DNS poisoning
Correct

Incorrect
Question 16 of 20

16. Question
Which network functions can be interfered with by a DNS poisoning attack?
- A.IP address resolution
- B.Name resolution
- C.Password protection
- D.Network switching
Correct

Incorrect
Question 17 of 20

17. Question
Some of your organization’s employees are receiving fishy emails. A seemingly genuine email from the project manager asks for the web server’s login details. Others were targeted at administrators and were aimed at learning habits. What kind of attack are the employees experiencing?
- A.Phishing attacks
- B.ePhishing attacks
- C.Spear phishing attacks
- D.On-path attacks
Correct

Incorrect
Question 18 of 20

18. Question
You are responsible for the security of an organization’s server farm. You are considering server hardening procedures to ensure optimum security against major threat actors. Which of the following can be considered viable server-hardening techniques?
- A.Installing additional memory
- B.Disabling unnecessary services
- C.Creating privileged user accounts
- D.Enabling all TCP and UDP ports
Correct

Incorrect
Question 19 of 20

19. Question
Network Access Control (NAC) agents check the reported health and integrity of the client before allowing it on the network. Which other parameters are checked by the NAC agents? (Choose two.)
- A.Current patch level
- B.Mac address filtering
- C.Port security
- D.Antivirus signature date
- E.Open and closed ports
Correct

Incorrect
Question 20 of 20

20. Question
Which of the following is why a low-bit modulus key pair expires sooner than a high-bit key pair?
- A.It depends on the status of a key pair
- B.The modulus expiry dates are set in the Secure Shell
- C.The expiry time on the key pairs is related to the modulus length
- D.The expiry time on the key pairs is related to protocols
Correct

Incorrect

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20

Current
Correct
Incorrect

About Us
Contact Us
Privacy Policy

CompTIA® is a registered trademark of the Computing Technology Industry Association, Inc. This website is not endorsed, affiliated, or approved by CompTIA Inc.

Quiz Summary

Information

Results

Results

Categories

1. Question

2. Question

Your manager wants to implement a split tunneling VPN to access the company resources on the corporate servers. Which of the following is considered a security issue with split tunneling?

3. Question

Which type of console access allows an administrator to manage switches and routers by connecting a laptop and running a terminal program to access the device’s interface?

4. Question

Where in the network are jump servers placed to facilitate device management once a management session has been set up and configured?

5. Question

Which of the following statements about in-band management and out-of-band management are true? (Choose two.)

6. Question

The Identity and Access Management (IAM) framework allows a service provider to define user authentication using a username and password. What other methods are available for user authentication? (Choose two)

7. Question

You are configuring a RADIUS client to communicate with the RADIUS server. Which ports should be configured to use authentication and accounting provisions?

8. Question

How can an administrator configure SSO authentication to ensure the service provider can authenticate the claims being passed as originating from the identity provider (Idp)?

9. Question

Your company wants strict access permissions for each employee based on their job requirements. Which control method is most suitable for this purpose?

10. Question

Which of the following methods is a mitigation technique to slow down a hacker and study the attack vector?

11. Question

Which part of the CIA triad ensures data accessibility by using redundant systems and components to create highly available information systems?

12. Question

Which of the following is not an appropriate example of the Internet of Things (IoT)? (Choose two.)

13. Question

14. Question

An attacker is trying to circumvent the vLAN tags during a vLAN hopping attack by placing a fake VLAN tag and the real tag into the packet. What happens when a frame goes through multiple switches during the attack?

15. Question

16. Question

Which network functions can be interfered with by a DNS poisoning attack?

17. Question

Some of your organization’s employees are receiving fishy emails. A seemingly genuine email from the project manager asks for the web server’s login details. Others were targeted at administrators and were aimed at learning habits. What kind of attack are the employees experiencing?

18. Question

You are responsible for the security of an organization’s server farm. You are considering server hardening procedures to ensure optimum security against major threat actors. Which of the following can be considered viable server-hardening techniques?

19. Question

Network Access Control (NAC) agents check the reported health and integrity of the client before allowing it on the network. Which other parameters are checked by the NAC agents? (Choose two.)

20. Question

Which of the following is why a low-bit modulus key pair expires sooner than a high-bit key pair?