When applied to a router, which command would help mitigate brute-force password attacks against the router?

login block-for 60 attempts 5 within 60

banner motd $Max failed logins =5$

What feature of SSH makes it more secure than Telnet for a device management connection?

login information and data encryption

random one-time port connection

What is the advantage of using SSH over Telnet?

SSH provides secure communications to access hosts

SSH operates faster than Telner

SSH supports authentication for a connection request

What is the role of an IPS?

detecting and blocking of attacks in real time

connecting global threat information to Cisco network security devices

authenticating and validating traffic

filtering of nefarious websites

What is an accurate description of redundancy?

designing a network to use multiple paths between switches to ensure there is no single point of failure.

configuring a router with a complete MAC address database to ensure that all framed can be forwarded to the correct destination

configuring a switch with proper security to ensure that all traffic forwarded through an interface is filtered

designing a network to use multiple virtual devices to ensure that all traffic uses the best path through the inter-network

What is the purpose of a small company using a protocol analyzer utility to capture network traffic on the network segments where the company is considering a network upgrade?

to document and analyze network traffic requirements on each network segment

to identify the source and destination of local network traffic

to capture the internet connection bandwidth requirement

to establish a baseline for security analysis after the network is upgraded

Refer to the exhibit. An administrator is testing connectivity to a remote device with the IP address 10.1.1.1. What does the output of the command indicate?

a router along the path did not have a route to the destination

Connectivity to the remote device was successful

a ping packet is being blocked by a security device along the path

The connection timed out while waiting for a reply from the remote device.

Which method is used to send a ping message specifying the source address for the ping?

Issue the ping command without specifying a destination IP address.

Issue the ping command from within interface config. mode

Issue the ping command without extended commands

Issue the ping command after shutting down un-needed interfaces

A network engineer is analyzing reports from a recently performed network baseline. Which situation would depict a possible latency issue?

an increase in host-to-host ping response times

a change in bandwidth according to the show interfaces output

a next-hop timeout from a traceroute

a change in the amount of RAM according to the show version output

Which statement is true about Cisco IOS ping indicators?

'U' may indicate that a router along the path did not contain a route to the destination address and that the ping was unsuccessful.

'!' indicated that the ping was unsuccessful and that the device may have issues finding a DNS server.

'.' indicates that the ping was successful but the response time was longer than normal.

A combination of '.' and '!' indicates that a router along the path did not have a route to the destination address and responded with an ICMP unreachable message.

A user reports a lack of network connectivity. The technician takes control of the user machine and attempts to ping other computers on the network and these pings fail. The technician pings the default gateway and that also fails. What can be determined for sure by the results of these tests?

Nothing can be determined for sure at this point.

The TCP/IP protocol is not enabled

The router that is attached to the same network as the workstation is down.

A network technician issues the C:\> tracert -6 www.cisco.com command on a Windows PC. What is the purpose of the -6 command option?

It forces the trace to use IPv6.

It limits the trace to only 6 hops.

It sets a 6 milliseconds timeout for each replay.

It sends 6 probes within each TTL time period.

Why would a network administrator use the tracert utility?

to identify where a packet was lost or delayed on a network

to determine the active TCP connections on a PC

to check information about a DNS name in the DNS server

to display the IP address, default gateway, and DNS server address for a PC

A ping fails when performed from router R1 to directly connected router R2. The network administrator then proceeds to issue the show cdp neighbors command. Why would the network administrator issue this command if the ping failed between the two routers?

The network administrator wants to verify Layer 2 connectivity.

The network administrator suspects a virus because the ping command did not work.

The network administrator wants to verify the IP address configured on router R2.

The network administrator wants to determine if connectivity can be established from a non-directly connected network.

What information about a Cisco router can be verified using the show version command?

the value of the configuration register

the routing protocol version that is enabled

the operational status of serial interfaces

the administrative distance used to reach networks

By following a structured troubleshooting approach, a network administrator identified a network issue after a conversation with the user. What is the next step that the administrator should take?

Establish a theory of probable causes.

Verify full system functionality. Test the theory to determine cause

Test the theory to determine cause

Establish a plan of action to resolve the issue.

An employee complains that a Windows PC cannot connect to the Internet. A network technician issues the ipconfig command on the PC and is shown an IP address of 169.254.10.3. Which two conclusions can be drawn? (Choose two.)

The PC cannot contact a DHCP server.

The PC is configured to obtain an IP address automatically.

The DNS server address is misconfigured.

The default gateway address is not configured.

The enterprise network is misconfigured for dynamic routing.

Refer to the exhibit. Baseline documentation for a small company had ping round trip time statistics of 36/97/132 between hosts H1 and H3. Today the network administrator checked connectivity by pinging between hosts H1 and H3 that resulted in a round trip time of 1458/2390/6066. What does this indicate to the network administrator?

Something is causing a time delay between the networks.

Connectivity between H1 and H3 is fine.

H3 is not connected properly to the network.

Something is causing interference between H1 and R1.

Performance between the networks is within expected parameters

When configuring SSH on a router to implement secure network management, a network engineer has issued the login local and transport input ssh line vty commands. What three additional configuration actions have to be performed to complete the SSH configuration? (Choose three.)

Generate the asymmetric RSA keys.

Configure the correct IP domain name.

Create a valid local username and password database.

Manually enable SSH after the RSA keys are generated.

What is considered the most effective way to mitigate a worm attack?

Download security updates from the operating system vendor and patch all vulnerable systems.

Change system passwords every 30 days.

Ensure that all systems have the most current virus definitions.

Ensure that AAA is configured in the network.

Which statement describes the ping and tracert commands?

Tracert shows each hop, while ping shows a destination reply only.

Tracert uses IP addresses; ping does not.

Both ping and tracert can show results in a graphical display.

Ping shows whether the transmission is successful; tracert does not.

An administrator decides to use “WhatAreyouwaiting4” as the password on a newly installed router. Which statement applies to the password choice?

It is strong because it uses a passphrase.

It is weak because it is often the default password on new devices.

It is weak since it uses easily found personal information.

It is weak since it is a word that is easily found in the dictionary.

An administrator decides to use “pR3s!d7n&0” as the password on a newly installed router. Which statement applies to the password choice?

It is strong because it uses a minimum of 10 numbers, letters and special characters.

It is weak because it is often the default password on new devices.

It is weak since it uses easily found personal information.

It is weak since it is a word that is easily found in the dictionary.

An administrator decides to use “5$7*4#033!” as the password on a newly installed router. Which statement applies to the password choice?

It is strong because it contains 10 numbers and special characters.

It is weak because it is often the default password on new devices.

It is weak since it uses easily found personal information.

It is strong because it uses a minimum of 10 numbers, letters and special characters.

An administrator decides to use “12345678!” as the password on a newly installed router. Which statement applies to the password choice?

It is weak because it uses a series of numbers or letters.

It is strong because it uses a passphrase.

It is weak since it is a word that is easily found in the dictionary.

It is strong because it uses a minimum of 10 numbers, letters and special characters.

An administrator decides to use “admin” as the password on a newly installed router. Which statement applies to the password choice?

It is weak because it is often the default password on new devices.

It is strong because it uses a passphrase.

It is strong because it uses a minimum of 10 numbers, letters and special characters.

It is strong because it contains 10 numbers and special characters.

An administrator decides to use “Feb121978” as the password on a newly installed router. Which statement applies to the password choice?

It is weak because it uses easily found personal information.

It is strong because it uses a passphrase.

It is weak since it is a word that is easily found in the dictionary.

It is strong because it uses a minimum of 10 numbers, letters and special characters.

An administrator decides to use “password” as the password on a newly installed router. Which statement applies to the password choice?

It is weak because it is a commonly used password.

It is weak since it is a word that is easily found in the dictionary.

It is strong because it uses a passphrase.

It is strong because it uses a minimum of 10 numbers, letters and special characters.

An administrator decides to use “RobErT” as the password on a newly installed router. Which statement applies to the password choice?

It is weak since it uses easily found personal information.

It is strong because it uses a passphrase.

It is strong because it uses a minimum of 10 numbers, letters and special characters.

It is strong because it contains 10 numbers and special characters.

CCNA Netacad 16-17 exam prep

Authored by Snoop Teniten

Computers

9th - 12th Grade

Used 9+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

74 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which component is designed to protect against unauthorized communications to and from a computer?

security center

port scanner

antimalware

antivirus

firewall

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which command will block login attempts on RouterA for a period of 30 seconds if there are 2 failed login attempts within 10 seconds?

RouterA(config)# login block-for 10 attempts 2 within 30

RouterA(config)# login block-for 30 attempts 2 within 10

RouterA(config)# login block-for 2 attempts 30 within 10

RouterA(config)# login block-for 30 attempts 10 within 2

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the purpose of the network security accounting function?

to require users to prove who they are

to determine which resources a user can access

to keep track of the actions of a user

to provide challenge and response questions

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What type of attack may involve the use of tools such as nslookup and fping?

access attack

reconnaissance attack

denial of service attack

worm attack

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which example of malicious code would be classified as a Trojan horse?

malware that was written to look like a video game

malware that requires manual user intervention to spread between systems

malware that attaches itself to a legitimate program and spreads to other programs when launched

malware that can automatically spread from one system to another by exploiting a vulnerability in the target

Answer explanation

Explanation: A Trojan horse is malicious code that has been written specifically to look like a legitimate program. This is in contrast to a virus, which simply attaches itself to an actual legitimate program. Viruses require manual intervention from a user to spread from one system to another, while a worm is able to spread automatically between systems by exploiting vulnerabilities on those devices.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the difference between a virus and a worm?

Viruses self-replicate but worms do not

Worms self-replicate but viruses do not

Worms require a host file but viruses do not

Viruses hide in legitimate programs but worms do not

Answer explanation

Explanation: Worms are able to self-replicate and exploit vulnerabilities on computer networks without user participation.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which attack involves a compromise of data that occurs between two end points?

denial-of-service

man-in-the-middle attack

extraction of security parameters

username enumeration

Answer explanation

Explanation: Threat actors frequently attempt to access devices over the internet through communication protocols. Some of the most popular remote exploits are as follows:
Man-In-the-middle attack (MITM) – The threat actor gets between devices in the system and intercepts all of the data being transmitted. This information could simply be collected or modified for a specific purpose and delivered to its original destination.
Eavesdropping attack – When devices are being installed, the threat actor can intercept data such as security keys that are used by constrained devices to establish communications once they are up and running.
SQL injection (SQLi) – Threat actors uses a flaw in the Structured Query Language (SQL) application that allows them to have access to modify the data or gain administrative privileges.
Routing attack – A threat actor could either place a rogue routing device on the network or modify routing packets to manipulate routers to send all packets to the chosen destination of the threat actor. The threat actor could then drop specific packets, known as selective forwarding, or drop all packets, known as a sinkhole attack.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

71 questions

Animation and Game Design Unit 1 M1 Quiz

Quiz

•

12th Grade

79 questions

ESTUDIO ITIL juego 1

Quiz

•

5th - 10th Grade

75 questions

Y11 Architecture & Primary Homework

Quiz

•

12th Grade

69 questions

Kiến thức về mạng máy tính

Quiz

•

12th Grade - University

76 questions

Systemy operacyjne 2

Quiz

•

12th Grade

70 questions

GUI DAN CLI

Quiz

•

KG - University

78 questions

Công nghệ L11 CKII

Quiz

•

11th Grade

73 questions

Soal Latihan Untuk USBN

Quiz

•

9th Grade - University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

29 questions

Alg. 1 Section 5.1 Coordinate Plane

Quiz

•

9th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

11 questions

FOREST Effective communication

Lesson

•

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

Discover more resources for Computers

15 questions

Digital Safety Scenarios

Quiz

•

10th Grade

10 questions

Exploring Cybersecurity Techniques and Threats

Interactive video

•

6th - 10th Grade

CCNA Netacad 16-17 exam prep

Which component is designed to protect against unauthorized communications to and from a computer?

Which command will block login attempts on RouterA for a period of 30 seconds if there are 2 failed login attempts within 10 seconds?

What is the purpose of the network security accounting function?

What type of attack may involve the use of tools such as nslookup and fping?

Which example of malicious code would be classified as a Trojan horse?

What is the difference between a virus and a worm?

Explanation: Worms are able to self-replicate and exploit vulnerabilities on computer networks without user participation.

Which attack involves a compromise of data that occurs between two end points?

Which type of attack involves an adversary attempting to gather information about a network to identify vulnerabilities?

Explanation: Reconnaissance is a type of attack where the intruder is looking for wireless network vulnerabilities.

What is the purpose of the network security authentication function?

Explanation: Authentication, authorization, and accounting are network services collectively known as AAA. Authentication requires users to prove who they are. Authorization determines which resources the user can access. Accounting keeps track of the actions of the user.

Which firewall feature is used to ensure that packets coming into a network are legitimate responses to requests initiated from internal hosts?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers