CCNA2 Chapter 8 v1

5
http://testccna-4u.blogspot.com  http://allsoft247.blogspot.com All software you need and all answer test CCNA v4 with 100% 1. Which AAA service reduces IT operating costs by providing detailed reporting and monitoring of network user behavior, and also by keeping a record of every access connection and device configuration change across the network? authentication accreditation accounting authorization 2. Which three items are normally included when a log message is generated by a syslog client and forwarded to a syslog server? (Choose three.) date and time of message  ID of sending device  length of message message ID checksum field community ID 3. What is the advantage of using WPA to secure a wireless network? It uses a 128-bit pre-shared hexadecimal key to prevent unauthorized wireless access. It uses an advanced encryption key that is never transmitted between host and access point.  It is supported on older wireless hardware, thus providing maximum compatibility with enterprise equipment. It requires the MAC address of a network device that is requesting wireless access to be on a list of approved MAC addresses. 4. A company wants to configure a firewall to monitor all channels of communication and allow only traffic that is part of a known connection. Which firewall configuration should be deployed? packet filtering proxy stateful packet inspection  stateless packet inspection 5. A server log includes this entry: User student accessed host server ABC using Telnet yesterday for 10 minutes. What type of log entry is this? authentication

Transcript of CCNA2 Chapter 8 v1

8/14/2019 CCNA2 Chapter 8 v1

http://slidepdf.com/reader/full/ccna2-chapter-8-v1 1/5

http://testccna-4u.blogspot.com http://allsoft247.blogspot.com All software you need and all answer test CCNA v4 with 100%

1. Which AAA service reduces IT operating costs by providing detailed reporting andmonitoring of network user behavior, and also by keeping a record of every accessconnection and device configuration change across the network?

authenticationaccreditationaccounting authorization

2. Which three items are normally included when a log message is generated by a syslogclient and forwarded to a syslog server? (Choose three.)

date and time of message ID of sending device length of messagemessage ID checksum fieldcommunity ID

3. What is the advantage of using WPA to secure a wireless network?

It uses a 128-bit pre-shared hexadecimal key to prevent unauthorized wireless access.It uses an advanced encryption key that is never transmitted between host and accesspoint. It is supported on older wireless hardware, thus providing maximum compatibility withenterprise equipment.It requires the MAC address of a network device that is requesting wireless access to beon a list of approved MAC addresses.

4. A company wants to configure a firewall to monitor all channels of communicationand allow only traffic that is part of a known connection. Which firewall configurationshould be deployed?

packet filteringproxystateful packet inspection stateless packet inspection

5. A server log includes this entry: User student accessed host server ABC using Telnetyesterday for 10 minutes. What type of log entry is this?

authentication

8/14/2019 CCNA2 Chapter 8 v1

http://slidepdf.com/reader/full/ccna2-chapter-8-v1 2/5

http://testccna-4u.blogspot.com http://allsoft247.blogspot.com All software you need and all answer test CCNA v4 with 100%

authorizationaccounting accessing

6. What two measures help to verify that server backups have been reliably completed?(Choose two.)

reviewing backup logs performing trial backups performing full backups onlyreplacing tape backup with hard disk-based backupusing an autoloader when backups require more than one tape

7. Which means of communication does an SNMP network agent use to provide anetwork management station with important but unsolicited information?

querybroadcastICMP pingtrap poll

8. Which three protocols are used for in-band management? (Choose three.)

FTPHTTP SNMP Telnet TFTPDHCP

9. A hacker has gained access to sensitive network files. In analyzing the attack, it isfound that the hacker gained access over a wireless segment of the network. It is furtherdiscovered that the only security measure in place on the wireless network is MACAddress Filtering. How is it likely that the hacker gained access to the network?

The hacker used a software tool to crack the shared hexadecimal wireless key.The hacker obtained the MAC address of a permitted host, and cloned it on his wirelesslaptop NIC. The attacker mounted a denial of service attack to overwhelm the firewall beforepenetrating the wireless LAN.The hacker gained wireless access to the MAC address database and added his own MAC

8/14/2019 CCNA2 Chapter 8 v1

http://slidepdf.com/reader/full/ccna2-chapter-8-v1 3/5

http://testccna-4u.blogspot.com http://allsoft247.blogspot.com All software you need and all answer test CCNA v4 with 100%

address to the list of permitted addresses.

10. A network administrator is assigning network permissions to new groups of users and

employing the principle of least privilege. Which two actions should the administratortake? (Choose two.)

Provide users with only the access to resources required to do their jobs. Provide the minimum level of permissions required for users to do their jobs. Remove all permissions from the users and grant permissions as they are requested.Allow users to decide how much permission they need to accomplish their job tasks.Provide full access to the users and gradually remove privileges over time.

11. Which three protocols describe methods that can be used to secure user data fortransmission across the internet? (Choose three.)

SMTPIPSEC SSL HTTPS FTPTFTP

12. Which benefit does SSH offer over Telnet when remotely managing a router?

encryption TCP usageauthorizationconnection using six VTY lines

13. Which of the following does SNMP use to hold information collected about thenetwork?

network management stationnetwork management databasemanagement information base database information agent

14. What are two potential problems with using tape media to back up server data?(Choose two.)

Tape is not a cost-effective means of backing up data.

8/14/2019 CCNA2 Chapter 8 v1

http://slidepdf.com/reader/full/ccna2-chapter-8-v1 4/5

http://testccna-4u.blogspot.com http://allsoft247.blogspot.com All software you need and all answer test CCNA v4 with 100%

Data tapes are difficult to store offsite.Data tapes are prone to failure and must be replaced often. Tape drives require regular cleaning to maintain reliability. Backup logs are not available with tape backup solutions.

15. What is the term for the public network between the boundary router and the firewall?

"clean" LANintranetDMZ extranet

16. Which two characteristics of network traffic are being monitored if a network technician configures the company firewall to operate as a packet filter? (Choose two.)

applicationsphysical addressespacket sizeports protocols

17. When is the use of out-of-band network management necessary?

when a server needs to be monitored across the network when the management interface of a device is not reachable across the network when enhanced monitoring features are required to gain an overall view of the entirenetwork when it is desirable to use the information that is provided by SNMP

18. What network layer security protocol can secure any application layer protocol usedfor communication?

HTTPSIMAPFTPSIPSEC TLS

19. Before a technician upgrades a server, it is necessary to back up all data. Which typeof backup is necessary to ensure that all data is backed up?

8/14/2019 CCNA2 Chapter 8 v1

http://slidepdf.com/reader/full/ccna2-chapter-8-v1 5/5

http://testccna-4u.blogspot.com http://allsoft247.blogspot.com All software you need and all answer test CCNA v4 with 100%

dailydifferentialfull incremental

partial

20. What AAA component assigns varying levels of rights to users of network resources?

auditingaccountingauthorization access controlauthenticationacknowledgement