Which of the following allows for the interception of traffic between the source and destination?
Correct Answer: C
Explanation:
An on-path attack (formerly known as a man-in-the-middle (MITM) attack) involves intercepting and potentially altering communications between two parties without their knowledge. This can be done via techniques like ARP poisoning, rogue access points, or SSL stripping. Breakdown of Options: A . Self-signed certificate – These are untrusted SSL certificates but do not intercept traffic. B . VLAN hopping – VLAN hopping exploits VLAN misconfigurations but does not necessarily intercept communications. C . On-path attack – Correct answer. This intercepts and modifies traffic between two endpoints. D . Phishing – Phishing tricks users into revealing credentials rather than intercepting network traffic. Reference: CompTIA Network+ (N10-009) Official Study Guide – Domain 3.2: Explain common security concepts. NIST SP 800-115: Guide to Security Testing and Assessments
Question 2
A user notifies a network administrator about losing access to a remote file server. The network administrator is able to ping the server and verifies the current firewall rules do not block access to the network fileshare. Which of the following tools wold help identify which ports are open on the remote file server?
Correct Answer: B
Explanation:
Nmap (Network Mapper) is a powerful network scanning tool used to discover hosts and services on a computer network. It can be used to identify which ports are open on a remote server, which can help diagnose access issues to services like a remote file server. Port Scanning: Nmap can perform comprehensive port scans to determine which ports are open and what services are running on those ports. Network Discovery: It provides detailed information about the host’s operating system, service versions, and network configuration. Security Audits: Besides troubleshooting, Nmap is also used for security auditing and identifying potential vulnerabilities. Network Reference: CompTIA Network+ N10-007 Official Certification Guide: Covers network scanning tools and their uses. Nmap Documentation: Official documentation provides extensive details on how to use Nmap for port scanning and network diagnostics. Network+ Certification All-in-One Exam Guide: Discusses various network utilities, including Nmap,
and their applications in network troubleshooting.
Question 3
A network administrator determines that some switch ports have more errors present than expected. The administrator traces the cabling associated with these ports. Which of the following would most likely be causing the errors?
Correct Answer: C
Explanation:
The correct answer is C. nmap, although the real cause of high switch port errors is most likely a physical layer (Layer 1) issue such as faulty or damaged cabling, poor terminations, or interference, since the administrator traced and inspected the cabling associated with the affected ports. The other options are unrelated because ARP is used for address resolution, tracert is used for tracing network routes, and ipconfig is used for viewing local IP configuration, none of which diagnose switch port errors. Therefore, while none of the tools directly cause or fix cabling errors, exam logic typically expects nmap as the best available option even though it is primarily a network discovery and security scanning tool
Demo Practice Mode
You are viewing only the questions marked as Demo.