CompTIA Network+ Practice Test for Subdomain 3.4 #01

Question 1

A junior network engineer at a logistics company is deploying DHCP for a new warehouse floor. The floor will support 200 barcode scanners, but the DHCP scope was configured with an address range of 192.168.50.1 through 192.168.50.100. After deployment, approximately half the scanners fail to obtain IP addresses and display 169.254.x.x self-assigned addresses. Which DHCP concept most directly explains this failure?

A. The DHCP lease time is configured too long, causing address table overflow on the server B. The DHCP scope does not contain enough addresses to service all requesting clients C. DHCP exclusions are preventing scanners from being assigned addresses in that range D. The DHCP server is not forwarding discovery packets across the subnet

Question 2

A network technician is configuring a new VLAN for a branch office on a routed network. The centralized DHCP server at headquarters has a valid scope configured for the branch office subnet. When clients on the new VLAN power on, they receive 169.254.x.x addresses instead of IP addresses from the DHCP server. All other VLANs on the same router are functioning normally. Which configuration is most likely missing?

A. A DHCP reservation for each branch client MAC address B. An IP helper address on the router interface facing the new VLAN C. A DHCP exclusion range on the server for the branch subnet D. A secondary IP address on the headquarters DHCP server NIC

Question 3

A help desk analyst receives a ticket reporting that a networked laser printer drops from user print queues after every reboot. Investigation reveals the printer's IP address changes each time it restarts because it obtains an address via DHCP. The printer's firmware does not support static IP configuration through its own management interface. Which DHCP feature should the administrator configure to ensure the printer always receives the same IP address?

A. DHCP exclusion B. DHCP scope extension C. DHCP reservation D. DHCP failover

Question 4

A network administrator at a mid-sized manufacturing company is deploying IPv6 on a new production floor network. The design requires that devices configure their own IPv6 addresses automatically using the network prefix advertised by the default gateway, without relying on a central address management server. Which IPv6 addressing mechanism satisfies this requirement?

A. DHCPv6 stateful addressing B. Stateless address autoconfiguration (SLAAC) C. Link-local addressing D. Anycast addressing

Question 5

A systems administrator at a university is registering a new public-facing web server in the organization's DNS zone. The server is accessible via IPv4 address 198.51.100.25 and IPv6 address 2001:db8:1::25. The administrator needs to create DNS records so the server's hostname resolves correctly for clients using either address family. Which combination of DNS record types should be created?

A. Two A records, one for each address B. An A record for the IPv4 address and an AAAA record for the IPv6 address C. A CNAME record for IPv4 and a PTR record for IPv6 D. An MX record for IPv4 and an AAAA record for IPv6

Question 6

The web team at a retail company wants the hostname 'store.example.com' to resolve to the same web server as 'www.example.com' so that both hostnames reach the same destination. If the server's IP address changes in the future, the team wants to update only a single DNS record to reflect the change for both hostnames. Which DNS record type should be used for 'store.example.com'?

A. An A record pointing directly to the server's IPv4 address B. An AAAA record pointing directly to the server's IPv6 address C. An MX record referencing www.example.com D. A CNAME record pointing to www.example.com

Question 7

A security analyst at a financial services company is concerned that DNS queries sent by workstations are transmitted in plaintext and can be observed by third parties on the network path. The analyst configures the DNS resolver to encrypt client DNS queries using TLS on TCP port 853. Which DNS privacy protocol has the analyst implemented?

A. DNS over HTTPS (DoH) B. Domain Name System Security Extensions (DNSSEC) C. DNS over TLS (DoT) D. Recursive DNS over UDP

Question 8

A network security engineer at a bank discovers that clients querying DNS for the bank's online portal are being redirected to a fraudulent IP address due to a cache poisoning attack on an upstream resolver. The engineer wants to implement a DNS security mechanism that uses cryptographic signatures to allow resolvers to verify that DNS responses are authentic and have not been tampered with. Which technology addresses this threat?

A. DNS over HTTPS (DoH) B. Domain Name System Security Extensions (DNSSEC) C. Split-horizon DNS D. DNS over TLS (DoT)

Question 9

A technician is troubleshooting DNS resolution after clients report that a recently updated hostname still resolves to the old IP address. The technician queries a local recursive resolver and receives a response with a TTL of 245 seconds. When the same hostname is queried directly against the zone's primary DNS server, the TTL is returned as 3600 seconds. How should the local resolver's response be classified, and what does the TTL difference indicate?

A. Authoritative; the local resolver holds the primary zone data for this domain B. Iterative; the local resolver returned a referral rather than a complete answer C. Non-authoritative; the response was served from the resolver's cache and may contain outdated data D. Recursive; the local resolver performed a full DNS lookup and is the authoritative source

Question 10

The network operations team at a data center experiences widespread RADIUS authentication failures and TLS certificate validation errors across multiple servers and network devices. Investigation reveals that several devices have system clocks that have drifted more than 15 minutes from the correct time. Which protocol should be implemented across all network infrastructure to synchronize clocks and resolve these time-dependent failures?

A. Simple Network Management Protocol (SNMP) B. Syslog C. Precision Time Protocol (PTP) D. Network Time Protocol (NTP)

CompTIA Network+ Practice Test for Subdomain 3.4 #01

ByThe Test Master

Related Post

CompTIA Network+ Practice Test for Subdomain 1.1 #02

CompTIA Network+ Practice Test for Subdomain 5.5 #01

CompTIA Network+ Practice Test for Subdomain 5.4 #01

Leave a Reply Cancel reply

You missed

CEH v13 Domain 2.2 Practice Test 002

CEH v13 Domain 2.1 Practice Test 002

CEH v13 Domain 1.1 Practice Test 002

CEH v13 Domain 9.1 Practice Test 001