A network administrator would like to purchase a device that provides access ports to endpoints and has the ability to route between networks. Which of the following would be BEST for the administrator to purchase?
Correct Answer: A
Question 187
The management team needs to ensure unnecessary modifications to the corporate network are not permitted and version control is maintained. Which of the following documents would BEST support this?
Correct Answer: C
A change management policy is a document that outlines the procedures and guidelines for making changes to a network or system, including how changes are approved, tested, and implemented. By following a change management policy, organizations can ensure that unnecessary modifications to the network are not permitted and version control is maintained. Reference: Network+ N10-008 Objectives: 1.6 Given a scenario, implement network configuration and change management best practices.
Question 188
A small, family-run business uses a single SOHO router to provide Internet and WiFi to its employees At the start of a new week, employees come in and find their usual WiFi network is no longer available, and there is a new wireless network to which they cannot connect. Given that information, which of the following should have been done to avoid this situation'
Correct Answer: D
Explanation The default credentials are the username and password that come with a device or service when it is first installed or configured. They are often easy to guess or find online, which makes them vulnerable to unauthorized access or attacks. The default credentials should be changed to something unique and strong as soon as possible to avoid this situation. If the default credentials were not changed, someone could have accessed the SOHO router and changed the WiFi settings without the employees' knowledge. References: https://www.comptia.org/blog/network-security-basics-6-easy-ways-to-protect-your-network
Question 189
Which of the following is an example of on-demand scalable hardware that is typically housed in the vendor's data center?
Correct Answer: B
* IaaS (Infrastructure as a Service) is a cloud computing model that provides on-demand scalable hardware resources, such as servers, storage, network, and virtualization, that are typically housed in the vendor's data center12. * IaaS allows customers to pay only for the resources they use, and to scale up or down as needed, without having to invest in or maintain their own physical infrastructure12. * IaaS is different from other cloud computing models, such as DaaS (Desktop as a Service), PaaS (Platform as a Service), and SaaS (Software as a Service), which provide different levels of abstraction and functionality12. * DaaS delivers virtual desktops to users over the internet, allowing them to access their applications and data from any device3. * PaaS provides a platform for developing, testing, and deploying applications, without having to manage the underlying infrastructure or software. * SaaS delivers software applications over the internet, without requiring installation or maintenance on the user's device. References: * [CompTIA Network+ N10-008 Certification Study Guide], Chapter 8: Cloud Computing, Section: Cloud Computing Models * [Professor Messer's CompTIA N10-008 Network+ Course Notes], Page 58: Cloud Computing Models * [CompTIA Network+ N10-008 Certification Study Guide], Chapter 8: Cloud Computing, Section: Desktop as a Service (DaaS) * [CompTIA Network+ N10-008 Certification Study Guide], Chapter 8: Cloud Computing, Section: Platform as a Service (PaaS) * [CompTIA Network+ N10-008 Certification Study Guide], Chapter 8: Cloud Computing, Section: Software as a Service (SaaS) * IaaS (Infrastructure as a Service) is a cloud computing model that provides on-demand scalable hardware resources, such as servers, storage, network, and virtualization, that are typically housed in the vendor's data center12. * IaaS allows customers to pay only for the resources they use, and to scale up or down as needed, without having to invest in or maintain their own physical infrastructure12. * IaaS is different from other cloud computing models, such as DaaS (Desktop as a Service), PaaS (Platform as a Service), and SaaS (Software as a Service), which provide different levels of abstraction and functionality12. * DaaS delivers virtual desktops to users over the internet, allowing them to access their applications and data from any device3. * PaaS provides a platform for developing, testing, and deploying applications, without having to manage * the underlying infrastructure or software. * SaaS delivers software applications over the internet, without requiring installation or maintenance on the user's device. References: * [CompTIA Network+ N10-008 Certification Study Guide], Chapter 8: Cloud Computing, Section: Cloud Computing Models * [Professor Messer's CompTIA N10-008 Network+ Course Notes], Page 58: Cloud Computing Models * [CompTIA Network+ N10-008 Certification Study Guide], Chapter 8: Cloud Computing, Section: Desktop as a Service (DaaS) * [CompTIA Network+ N10-008 Certification Study Guide], Chapter 8: Cloud Computing, Section: Platform as a Service (PaaS) * [CompTIA Network+ N10-008 Certification Study Guide], Chapter 8: Cloud Computing, Section: Software as a Service (SaaS)
Question 190
A corporation is looking for a method to secure all traffic between a branch office and its data center in order to provide a zero-touch experience for all staff members who work there. Which of the following would BEST meet this requirement?
Correct Answer: A
Explanation A site-to-site VPN is a method that creates a secure and encrypted connection between two internet gateways, such as routers or firewalls, that belong to different networks1. A site-to-site VPN can secure all traffic between a branch office and its data center by creating a virtual tunnel that protects the data from interception or tampering. A site-to-site VPN can also provide a zero-touch experience for all staff members who work there, as they do not need to install any software or configure any settings on their devices to access the data center resources. They can simply use their local network as if they were physically connected to the data center network. VNC (Virtual Network Computing) is a method that allows remote access and control of a computer's desktop from another device over a network2. VNC can enable staff members to work remotely by accessing their office computers from their home computers or mobile devices. However, VNC does not secure all traffic between a branch office and its data center, as it only works at the application layer and does not encrypt the network layer. VNC also does not provide a zero-touch experience for staff members, as they need to install software and configure settings on both the host and the client devices. Remote desktop gateway is a method that allows remote access and control of a computer's desktop from another device over a network using the Remote Desktop Protocol (RDP). Remote desktop gateway can also enable staff members to work remotely by accessing their office computers from their home computers or mobile devices. However, remote desktop gateway does not secure all traffic between a branch office and its data center, as it only works at the application layer and does not encrypt the network layer. Remote desktop gateway also does not provide a zero-touch experience for staff members, as they need to install software and configure settings on both the host and the client devices. Virtual LANs (VLANs) are methods that create logical subdivisions of a physical network based on criteria such as function, department, or security level. VLANs can improve network performance, security, and management by reducing broadcast domains, isolating traffic, and enforcing policies. However, VLANs do not secure all traffic between a branch office and its data center, as they only work at the data link layer and do not encrypt the network layer. VLANs also do not provide a zero-touch experience for staff members, as they need to configure settings on their network devices to join or leave a VLAN.
