The Cybersecurity Trail

A path to cyber mastery

CompTIA Network+ Practice Tests

CompTIA Network+ Practice Test for Subdomain 1.4 #01

ByThe Test Master

Apr 8, 2026 #CompTIA, #Network+, #networking ports

Welcome to today’s CompTIA Network+ practice test!

This practice test uses our new UI!

Today’s practice test is based on Subdomain 1.4 (Explain common networking ports, protocols, services, and traffic types) from the CompTIA Network+ N10-009 objectives.

This beginner-level practice test is inspired by the CompTIA Network+ (N10-009) exam and is designed to help you reinforce key networking concepts on a daily basis.

These questions are not official exam questions, nor are they brain dumps, but they reflect topics and scenarios relevant to the Network+ certification. Use them to test your knowledge, identify areas for improvement, and build daily cybersecurity habits.

Note: CompTIA and Network+ are registered trademarks of CompTIA. This content is not affiliated with or endorsed by CompTIA.

To choose CompTIA Network+ practice tests based on specific domains/subdomains, click that link.

Recommended read: Ultimate CompTIA Network+ Study Guide (2026)

CompTIA Network+ Practice Test for Subdomain 1.4 #01
10 questions • Single best answer
Question 1
A network technician is configuring an ACL on a perimeter firewall for a branch office to allow encrypted remote management sessions to routers and switches in the network closet. The security team has flagged that port 23 is currently open and must be blocked immediately because it transmits credentials in cleartext, and the replacement protocol must provide both strong authentication and encryption over the same TCP port. The technician needs to confirm the correct destination port to permit in the updated firewall rule before pushing the change. Which TCP port number is used by Secure Shell (SSH) for encrypted remote command-line access to network devices?
    Question 2
    A systems administrator at a university is analyzing a packet capture from a file transfer application and observes that the transport layer protocol breaks the data stream into numbered segments, establishes a three-way handshake before data transmission begins, and retransmits any segments that are not acknowledged by the receiver within a defined timeout window. The administrator explains to a student intern that this behavior differs fundamentally from another transport protocol that sends datagrams with no connection establishment and no built-in retransmission. Which transport layer protocol is connection-oriented, ensures reliable delivery through sequencing and acknowledgment, and automatically retransmits lost segments?
      Question 3
      A help desk analyst receives a ticket reporting that workstations on a newly provisioned VLAN are unable to obtain IP addresses automatically, while workstations on all other VLANs are functioning normally. The analyst suspects a missing firewall rule is blocking DHCP traffic between the new VLAN and the centralized DHCP server in the data center. To write the correct ACL entries, the analyst must identify the specific UDP port numbers used by DHCP servers and DHCP clients for request and response traffic. Which statement correctly identifies the UDP ports used by DHCP servers and DHCP clients?
        Question 4
        A network architect at a global content delivery company is designing a DNS-based traffic distribution solution for a public-facing application. The solution must route each user's DNS query to the IP address of the server that is topologically closest to that user, based on routing metrics, without the user knowing which physical server is responding. Unlike sending a stream to a subscribed group of receivers, or broadcasting to all hosts on a segment, this method assigns the same IP address to multiple servers in different geographic regions and lets the routing infrastructure determine which instance responds to each client. Which network traffic delivery method assigns a single IP address to multiple servers across different locations and uses routing to direct each sender to the nearest instance?
          Question 5
          A network administrator at a government agency is deploying a pair of internal DNS resolvers and needs to verify that the correct port is open bidirectionally between the resolvers and the upstream authoritative DNS servers. The administrator also notes that while most standard queries use UDP for speed and low overhead, the same port number is used over TCP for zone transfers and for responses that exceed the maximum UDP payload size. The administrator must confirm the single port number that applies to both UDP and TCP DNS traffic before submitting the firewall change request. Which port number is used by DNS for both standard UDP queries and TCP-based zone transfers?
            Question 6
            A network security engineer at a healthcare organization is configuring an IPSec site-to-site VPN between the main campus and a remote clinic. The compliance team has reviewed the two available IPSec sub-protocols and determined that one option authenticates and verifies the integrity of the IP header and payload but does not encrypt the payload, leaving the data readable to anyone who intercepts it in transit. The compliance officer rejects that option because HIPAA requires confidentiality of protected health information in transit. The engineer must select the IPSec sub-protocol that provides both integrity verification and payload encryption. Which IPSec sub-protocol provides both authentication/integrity checking AND encryption of the IP payload to ensure data confidentiality?
              Question 7
              The NOC team at a telecommunications company uses a centralized network management platform to monitor the health and performance of hundreds of routers, switches, and servers. The platform periodically polls managed devices to collect interface statistics, CPU utilization, and error counters, and managed devices can also send unsolicited alert messages to the management platform when a threshold is exceeded or a fault condition is detected. A junior analyst joining the team is asked to identify the correct port numbers used by this network management protocol so the NOC firewall rules can be verified. Which port numbers are used for polling managed devices and for receiving unsolicited trap notifications in SNMP?
                Question 8
                A support engineer at a financial services firm is configuring a jump server that the IT team will use to access Windows server desktops in the data center without requiring a third-party remote access agent on each target machine. The firm's security policy requires that access be restricted at the network layer so that only the jump server's IP address can reach the target servers on the relevant service port. Before submitting the firewall change request, the engineer must confirm the default TCP port used by the Microsoft-native graphical remote access protocol. Which TCP port is used by default for Remote Desktop Protocol (RDP) connections to Windows systems?
                  Question 9
                  A network administrator at a regional ISP is deploying a centralized log aggregation server that will collect event messages from routers, switches, firewalls, and servers distributed across the organization's infrastructure. Network devices are configured to forward log messages to the server using the standard protocol for transmitting event and audit records from network equipment to a remote collector. The administrator needs to open the correct inbound port on the aggregation server's host-based firewall to allow messages to arrive from all network segments. Which UDP port is used by the Syslog protocol for receiving log and event messages from network devices?
                    Question 10
                    A network architect at a logistics company is designing a live video distribution system to deliver weekly all-hands broadcast streams to over 800 employee workstations simultaneously across multiple office locations. The architect wants to avoid sending individual copies of the video stream to every workstation because the resulting bandwidth consumption on the uplinks would be unsustainable. Instead, the design will use a delivery method in which a single stream is transmitted toward a group address, switches and routers replicate the stream only on segments where receivers have subscribed, and only workstations that have explicitly joined the group will receive the traffic. Which network traffic delivery method sends a single data stream to a group address and delivers it only to hosts that have opted into the corresponding group?
                      Answered: 0/10

                      Related Post

                      CompTIA Network+ Practice Tests

                      CompTIA Network+ Practice Test for Subdomain 1.1 #02

                      CompTIA Network+ Practice Tests

                      CompTIA Network+ Practice Test for Subdomain 5.5 #01

                      CompTIA Network+ Practice Tests

                      CompTIA Network+ Practice Test for Subdomain 5.4 #01

                      Leave a Reply

                      Your email address will not be published. Required fields are marked *

                      You missed

                      EC-Council CEH Practice Tests

                      CEH v13 Domain 2.2 Practice Test 002

                      April 16, 2026 The Test Master
                      EC-Council CEH Practice Tests

                      CEH v13 Domain 2.1 Practice Test 002

                      April 16, 2026 The Test Master
                      EC-Council CEH Practice Tests

                      CEH v13 Domain 1.1 Practice Test 002

                      April 16, 2026 The Test Master
                      EC-Council CEH Practice Tests

                      CEH v13 Domain 9.1 Practice Test 001

                      April 16, 2026 The Test Master