N10-009 Flashcards — Free CompTIA Network+ N10-009 Study Cards

Physical layer

The Physical layer (Layer 1) of the OSI model deals with the physical connection between devices, including cabling, connectors, and signal transmission. Starting here is appropriate when the issue is suspected to be with cabling or physical hardware.

Virtual LAN (VLAN)

VLANs (Virtual LANs) allow a switch to be logically divided into separate broadcast domains. Devices in different VLANs cannot communicate directly without a router, enhancing security and reducing unnecessary broadcast traffic.

GET

The SNMP GET operation is used to retrieve the value of a specific OID from a managed device, such as CPU utilization. It is a request-response operation initiated by the manager.

Teardrop attack

A Teardrop attack manipulates overlapping IP fragments to cause a denial of service. When the target reassembles the fragments, the overlapping data causes a crash or buffer overflow.

Spectrum analyzer

A spectrum analyzer measures radio frequency signals, identifying interference, signal strength, and dead zones in a wireless environment. It is the appropriate tool for analyzing wireless signal issues.

Multimode fiber with 1000BASE-SX transceivers

For distances up to 400 meters, multimode fiber (typically OM3/OM4) with an SFP transceiver such as 1000BASE-SX (850nm wavelength) is cost-effective and supports distances up to 550 meters. Single-mode fiber (1000BASE-LX) can go much longer but is more expensive and unnecessary for this distance.

Assign each department's workstations to a unique VLAN and configure their switch ports as access ports in that VLAN.

VLANs create separate broadcast domains. To isolate traffic, each department's workstations should be placed in a distinct VLAN. Access ports are assigned to a specific VLAN and do not forward traffic from other VLANs. Trunk ports carry multiple VLANs, but the broadcast isolation is achieved by assigning ports to the correct VLAN.

Tunnel mode

In IPsec, tunnel mode encrypts the entire original IP packet (including the original header) and adds a new IP header for transit. This is used for site-to-site VPNs. Transport mode only encrypts the payload, leaving the original IP header intact, which is typically used for end-to-end connections. AH provides authentication only, not encryption. ESP can be used in both modes but with different scope. Therefore, tunnel mode is correct.

Link Aggregation Control Protocol

LACP (IEEE 802.3ad) allows multiple physical Ethernet links to be combined into a single logical link, providing increased throughput and redundancy. STP would block redundant links rather than aggregate them.

DHCP Snooping

DHCP Snooping filters DHCP messages on untrusted ports and prevents rogue DHCP servers from offering IP addresses. Dynamic ARP Inspection and IP Source Guard rely on DHCP Snooping binding table. Port Security limits MAC addresses but does not prevent rogue DHCP servers.

Physical layer

The Physical layer (Layer 1) of the OSI model deals with the physical connection between devices, including cabling, connectors, and signal transmission. Starting here is appropriate when the issue is suspected to be with cabling or physical hardware.

show mac address-table

The 'show mac address-table' command displays the MAC address table, showing which MAC addresses are learned on which ports. 'show running-config' shows configuration, 'show ip interface' shows IP interface status, and 'show vlan' shows VLAN information.

Router

A router or a Layer 3 switch is required to route traffic between VLANs. A switch alone only forwards within the same VLAN. A firewall can also route but is primarily security-focused. The question emphasizes routing between VLANs, which is done by a router (or Layer 3 switch). A bridge operates at Layer 2 and does not route between VLANs.

NetFlow analyzer

NetFlow (or similar flow-based monitoring) collects metadata about network flows, including source/destination IP, ports, and protocol. This allows analysis of traffic patterns and application usage.

NetFlow

NetFlow (or similar flow technologies) exports metadata about traffic flows, allowing analysis of top talkers, applications, and bandwidth usage.

Passive

LACP active mode initiates negotiation by sending LACP packets. The peer must be configured as passive (responds to negotiation) or active (initiates as well) to form the link aggregation. 'on' mode is static and does not use LACP, so it will not form a LAG with an active port. 'auto' is a PAgP mode. LACP modes are active and passive.

D

Formal change management requires that a change request be submitted and approved before any work begins. This ensures that all stakeholders are aware, risks are assessed, and a rollback plan is documented. Checking network diagrams, notifying users, and creating a rollback plan are important subsequent steps that depend on the approved change request.

The router has an ACL blocking inbound OSPF updates

When OSPF neighbors reach FULL state, the link-state database is synchronized. However, if routes from another area are missing, the issue is likely with the propagation of inter-area routes (Type 3 LSAs). An ACL configured to filter OSPF updates can block these LSAs. The router ID is required for OSPF operation but would prevent neighbor formation if missing. Virtual-links are only needed if an area is not directly connected to area 0. A corrupted link-state database is less likely than a simple ACL filter.

Change management request

Change management procedures require that after any change, the change request be updated to reflect the completion, results, and any issues encountered. This maintains an accurate record and supports rollback or audit.

A) Change management request

A change management request documents the proposed change, includes risk assessment and approval steps, and provides a record of implementation. Network diagrams show topology, SLAs define service levels, and baselines show normal performance.

Configuration baseline document

The configuration baseline or asset inventory should be updated to record the new firmware version for tracking and troubleshooting purposes. This helps maintain accurate records.

Verify routing entries on both routers to ensure the remote internal subnets are reachable via the tunnel.

Even if the IPsec tunnel is up and endpoints can ping the tunnel IPs, internal hosts may not be able to communicate if routing is not properly configured. The engineer must ensure that both routers have routes to the remote internal networks, either statically or dynamically, so that packets from internal hosts are sent through the tunnel. Additionally, Network Address Translation (NAT) policies should be checked to ensure they are not translating the internal traffic that should be encrypted.

Duplex mismatch

CRC errors typically indicate physical layer problems, most commonly a duplex mismatch between the switch port and the NIC. When one side is set to full duplex and the other to half duplex, collisions and frame errors occur.