CompTIA Network+ Practice Test for Subdomain 1.2 #01

Welcome to today’s CompTIA Network+ practice test!

This practice test uses our new UI!

Today’s practice test is based on Subdomain 1.2 (Compare and contrast networking appliances, applications, and functions.) from the CompTIA Network+ N10-009 objectives.

This beginner-level practice test is inspired by the CompTIA Network+ (N10-009) exam and is designed to help you reinforce key networking concepts on a daily basis.

These questions are not official exam questions, nor are they brain dumps, but they reflect topics and scenarios relevant to the Network+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

Note: CompTIA and Network+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To choose CompTIA Network+ practice tests based on specific domains/subdomains, click that link.

CompTIA Network+ Practice Test for Subdomain 1.2 #01

10 questions • Single best answer

Question 1

A technician supporting network infrastructure at a regional school district is designing a new building addition and must connect three separate IP subnets — one for administrative offices, one for classrooms, and one for a guest Wi-Fi network. Each subnet uses a different network address space, and traffic between them must be forwarded based on logical IP addressing. The technician needs to select the appropriate networking appliance that will move packets between these different network segments. Which networking appliance is specifically designed to forward traffic between separate IP networks by making routing decisions based on logical (IP) addresses?

A. Layer 2 switch B. Wireless access point C. Router D. Layer 2 bridge

Question 2

A help desk analyst receives an escalated ticket from a branch office manager reporting that employees cannot reach an external SaaS application hosted on the internet, but all internal file servers remain fully accessible. The network administrator confirms that the default gateway and all internet-facing routes are intact. Further investigation reveals that a rule change was recently applied to a network appliance that inspects and controls traffic entering and leaving the organization based on predefined security policies. Which networking appliance is responsible for inspecting and filtering network traffic based on security rules to control what is permitted to enter or exit a network?

A. Load balancer B. Proxy server C. Network-attached storage (NAS) D. Firewall

Question 3

A security engineer at an e-commerce company is reviewing the organization's threat detection capabilities after an internal audit identified gaps. The current architecture includes a device sitting passively off a switch SPAN port that analyzes a copy of network traffic and generates alerts when it detects suspicious patterns — but it takes no automated action to stop the traffic. The security team is now evaluating a solution placed inline with the network traffic path that can automatically drop or block malicious packets as they flow through the network in real time. What is the key functional difference between an intrusion detection system (IDS) and an intrusion prevention system (IPS)?

A. An IDS is always hardware-based, while an IPS is always software-based and deployed on a general-purpose server B. An IDS passively monitors and generates alerts without blocking traffic, while an IPS is deployed inline and can actively block malicious traffic C. An IDS only monitors encrypted traffic, while an IPS can monitor both encrypted and unencrypted traffic D. An IDS protects outbound traffic only, while an IPS only inspects inbound traffic from the internet

Question 4

The operations team at a large online retail company is experiencing degraded website performance during peak sales events, with users reporting long page load times and intermittent connection timeouts. The web architecture uses three identically configured application servers behind a central network appliance that is supposed to distribute incoming HTTPS requests evenly across all available servers. A network engineer is asked to review the configuration of the appliance responsible for this traffic distribution and determine whether it is functioning correctly. Which network appliance is specifically designed to distribute incoming client requests across multiple servers to improve availability and prevent any single server from being overwhelmed?

A. Firewall B. Load balancer C. Proxy server D. Wireless controller

Question 5

A network administrator at a county government office is tasked with implementing a solution that will intercept all outbound web browsing traffic from internal workstations, cache frequently requested web content locally to reduce bandwidth consumption on the internet link, and log all user browsing activity for compliance purposes. The administrator also wants the solution to block employee access to known malicious websites and prohibited social media platforms during business hours. Which network appliance is most appropriate for this use case?

A. VPN concentrator B. Proxy server C. Load balancer D. Content delivery network (CDN)

Question 6

A storage administrator at a media production company is evaluating two storage architectures for a new video editing workflow. The first option presents block-level storage volumes to servers over a dedicated high-speed Fibre Channel fabric, making the storage appear as a locally attached disk to each server. The second option provides shared, file-level storage over the existing TCP/IP LAN and allows multiple editing workstations to simultaneously access shared project folders using SMB and NFS. The administrator must correctly identify which technology corresponds to which description. Which statement best describes a Network-Attached Storage (NAS) device?

A. A block-level storage system connected to servers via a dedicated Fibre Channel fabric that presents storage as a locally attached disk B. A storage array that presents logical unit numbers (LUNs) to host servers over iSCSI for direct block-level access C. A dedicated storage appliance that provides shared file-level access to multiple clients over an IP network using protocols such as SMB or NFS D. A locally installed RAID array connected directly inside a server chassis with no network connectivity

Question 7

A web developer at a global news organization is investigating complaints from international readers who report that the website loads significantly slower when accessed from Europe and Asia compared to users in North America, where the organization's origin web servers are hosted. The organization's CTO recommends deploying a solution that caches static content — such as images, JavaScript files, and video clips — on geographically distributed servers located physically closer to end users worldwide, reducing the round-trip distance data must travel. Which solution is specifically designed to improve content delivery performance for geographically dispersed users in this way?

A. Storage area network (SAN) B. Virtual private network (VPN) C. Content delivery network (CDN) D. Load balancer

Question 8

A remote sales employee working from home needs secure access to the organization's internal CRM system, file shares, and intranet pages — all hosted on the private corporate network and not exposed to the public internet. The IT department configures a solution that creates an encrypted logical tunnel over the public internet between the employee's laptop and a corporate gateway device, allowing the remote user's traffic to be forwarded into the private network as though the user were physically present at the office. Which network function or appliance is being described in this scenario?

A. Content delivery network (CDN) B. Virtual private network (VPN) C. Quality of service (QoS) D. Load balancer

Question 9

A network administrator at a call center is receiving complaints from VoIP phone users about poor call quality — including choppy audio, excessive delay, and dropped calls — during peak business hours when the network link is heavily utilized by other applications such as large file backups and video streaming. After analyzing traffic, the administrator determines that all traffic types are being treated with equal forwarding priority, and bandwidth-intensive bulk transfers are consuming the resources that time-sensitive voice packets urgently need. Which network function should the administrator implement to address this issue by ensuring VoIP packets receive preferential treatment over lower-priority traffic?

A. Network-attached storage (NAS) B. Intrusion detection system (IDS) C. Quality of service (QoS) D. Content delivery network (CDN)

Question 10

A network engineer at an internet service provider is reviewing packet captures and notices that certain packets are being silently discarded after traversing a specific number of routing hops, causing traceroute outputs to show 'Request timed out' messages beyond a certain point in the path. The engineer explains to a junior associate that this behavior is by design — a specific field in the IP packet header is decremented by one at each router the packet passes through, and when it reaches zero, the router discards the packet and sends an ICMP 'Time Exceeded' message back to the source. What is the name of this IP header field, and what is its primary purpose?

A. Maximum Transmission Unit (MTU) — it limits the physical size of each IP packet to prevent fragmentation errors at intermediate hops B. Type of Service (ToS) — it specifies the maximum number of bytes allowed in the IP payload before the packet is discarded by a router C. Quality of Service (QoS) — it marks packets with a priority value that determines the maximum number of routers they may pass through D. Time to Live (TTL) — it limits the number of hops a packet can traverse to prevent packets from circulating indefinitely in the event of a routing loop

CompTIA Network+ Practice Test for Subdomain 1.2 #01

ByThe Test Master

Related Post

CompTIA Network+ Practice Test for Subdomain 1.1 #02

CompTIA Network+ Practice Test for Subdomain 5.5 #01

CompTIA Network+ Practice Test for Subdomain 5.4 #01

Leave a Reply Cancel reply

You missed

CEH v13 Domain 2.2 Practice Test 002

CEH v13 Domain 2.1 Practice Test 002

CEH v13 Domain 1.1 Practice Test 002

CEH v13 Domain 9.1 Practice Test 001