Q1. Which protocol provides clock synchronization across networks?
- A.NTP✓ Correct
- B.SNMP
- C.TFTP
- D.ICMP
Explanation: NTP (Network Time Protocol) synchronizes device clocks. Learn more.
CompTIA Network+ Practice Questions: Network Operations
52 free, exam-style CompTIA Network+ (N10-009) practice questions covering Network Operations. Each question shows the correct answer and a clear explanation. Ready for the real thing? Take the full timed quiz below.
Q2. What is the purpose of an MX record in DNS?
- A.Map domain to IPv4 address
- B.Identify mail servers✓ Correct
- C.Provide alias names
- D.Map domain to IPv6 address
Explanation: MX (Mail Exchange) records specify mail servers for a domain. Learn more.
Q3. Which protocol does VoIP typically use for call signaling?
- A.RTP
- B.SIP✓ Correct
- C.H.323
- D.SRTP
Explanation: SIP (Session Initiation Protocol) is commonly used for VoIP call setup and teardown. Learn more.
Q4. Which cloud service model provides virtualized computing resources?
- A.SaaS
- B.PaaS
- C.IaaS✓ Correct
- D.DaaS
Explanation: IaaS (Infrastructure-as-a-Service) provides virtual machines/storage/networking. Learn more.
Q5. What is the purpose of a demarcation point?
- A.Separate VLANs
- B.Divide network security zones
- C.Mark ISP responsibility boundary✓ Correct
- D.Terminate fiber optic cables
Explanation: Demarc separates ISP's network from customer premises equipment. Learn more.
Q6. Which protocol uses UDP port 161?
- A.SNMP✓ Correct
- B.SMTP
- C.SSH
- D.LDAP
Explanation: SNMP agents listen on UDP 161 for management requests. Learn more.
Q7. Which disaster recovery site has fully redundant systems?
- A.Cold site
- B.Warm site
- C.Hot site
- D.Mirror site✓ Correct
Explanation: Mirror sites maintain real-time synchronization with primary systems. Learn more.
Q8. Which RAID level provides striping with parity?
- A.RAID 0
- B.RAID 1
- C.RAID 5✓ Correct
- D.RAID 10
Explanation: RAID 5 stripes data across disks with distributed parity for redundancy. Learn more.
Q9. Which protocol uses both TCP and UDP ports?
- A.FTP
- B.DNS✓ Correct
- C.SSH
- D.RDP
Explanation: DNS uses UDP port 53 for queries, TCP port 53 for zone transfers. Learn more.
Q10. What is the primary purpose of QoS?
- A.Block malicious traffic
- B.Prioritize critical applications✓ Correct
- C.Encrypt sensitive data
- D.Monitor network usage
Explanation: Quality of Service manages bandwidth allocation for important traffic. Learn more.
Q11. Which protocol uses UDP port 514 for log collection?
- A.SNMP
- B.Syslog✓ Correct
- C.NetFlow
- D.RADIUS
Explanation: Syslog uses UDP 514 for centralized log collection from network devices. Learn more.
Q12. Which DNS record type provides reverse lookups?
- A.A
- B.AAAA
- C.PTR✓ Correct
- D.CNAME
Explanation: PTR records map IP addresses to domain names for reverse DNS. Learn more.
Q13. Which protocol uses TCP port 143?
- A.IMAP✓ Correct
- B.POP3
- C.SMTP
- D.HTTP
Explanation: IMAP (Internet Message Access Protocol) uses TCP port 143 to allow email clients to retrieve messages from a mail server while leaving the messages on the server for remote access from multiple devices. Learn more.
Q14. Which cloud model provides shared hardware resources between organizations?
- A.Public
- B.Private
- C.Hybrid
- D.Community✓ Correct
Explanation: A community cloud is a collaborative environment shared by several organizations with common concerns such as compliance, security, or policy requirements. Learn more.
Q15. What is the purpose of a baseline in network monitoring?
- A.Set security policies
- B.Establish normal performance levels✓ Correct
- C.Configure QoS settings
- D.Define IP addressing schemes
Explanation: A baseline defines expected network behavior, such as typical bandwidth usage or latency. It serves as a comparison point to quickly detect deviations that may indicate performance issues or attacks. Learn more.
Q16. Which protocol uses TCP port 389?
- A.LDAP✓ Correct
- B.HTTPS
- C.SMB
- D.MySQL
Explanation: LDAP (Lightweight Directory Access Protocol) uses TCP port 389 to query and modify directory services such as user or group information on a network. Learn more.
Q17. Which RAID level combines mirroring and striping?
- A.RAID 0
- B.RAID 1
- C.RAID 5
- D.RAID 10✓ Correct
Explanation: RAID 10 (1+0) mirrors data for redundancy and stripes it across multiple disks for performance, offering high fault tolerance and speed. Learn more.
Q18. Which protocol uses port 161/162 for network monitoring?
- A.SNMP✓ Correct
- B.SMTP
- C.SSH
- D.LDAP
Explanation: SNMP (Simple Network Management Protocol) uses port 161 for polling agents and port 162 for receiving trap alerts from devices, enabling centralized network monitoring. Learn more.
Q19. What is the purpose of a CNAME record in DNS?
- A.IPv6 address mapping
- B.Domain alias creation✓ Correct
- C.Mail server identification
- D.Reverse DNS lookup
Explanation: A CNAME (Canonical Name) record allows one domain to alias another, useful for pointing multiple subdomains to a single canonical address. Learn more.
Q20. What is the primary purpose of NETCONF/YANG in networking?
- A.Packet capture
- B.Network automation✓ Correct
- C.Intrusion detection
- D.Bandwidth monitoring
Explanation: NETCONF is a network configuration protocol, and YANG is a data modeling language. Together, they enable standardized, programmatic configuration of network devices. Learn more.
Q21. Which cloud service model provides serverless computing?
- A.IaaS
- B.PaaS
- C.SaaS
- D.FaaS✓ Correct
Explanation: FaaS (Function as a Service) enables developers to deploy individual functions without managing servers. It automatically scales and executes code in response to events. Learn more.
Q22. Which protocol is used for network device backup configuration?
- A.TFTP
- B.SFTP
- C.SCP
- D.All of the above✓ Correct
Explanation: TFTP, SFTP, and SCP are commonly used to back up and restore network device configurations. TFTP is lightweight but insecure; SFTP and SCP are more secure options using SSH. Learn more.
Q23. Which DNS record type provides service discovery in a domain?
- A.SRV✓ Correct
- B.MX
- C.TXT
- D.NS
Explanation: SRV (Service) records are used in DNS to define the location (hostname and port) of servers for specific services, such as SIP, XMPP, or LDAP. Learn more.
Q24. Which network architecture uses intent-based networking?
- A.SDN✓ Correct
- B.MANET
- C.CAN
- D.SAN
Explanation: Software-Defined Networking (SDN) enables intent-based networking by allowing centralized controllers to translate high-level business goals into automated network configurations. Learn more.
Q25. What is the purpose of a RIPE NCC?
- A.Manage IPv4 allocations
- B.Coordinate European IP resources✓ Correct
- C.Certify network professionals
- D.Develop routing protocols
Explanation: RIPE NCC manages IP addresses for Europe, Middle East, and Central Asia. Learn more.
Q26. What is the purpose of LLDP (Link Layer Discovery Protocol)?
- A.VLAN tagging
- B.Neighbor device discovery✓ Correct
- C.QoS prioritization
- D.Port security
Explanation: LLDP advertises device capabilities to directly connected neighbors. Learn more.
Q27. Which protocol is used to automate IP address management in large networks?
- A.DHCP
- B.IPAM✓ Correct
- C.SNMP
- D.LDAP
Explanation: IPAM (IP Address Management) systems automate allocation, tracking, and planning of IP address space, ensuring efficient and error-free addressing in large networks. Learn more.
Q28. What is the purpose of a RIPE Atlas probe in networking?
- A.Measure Internet performance✓ Correct
- B.Detect intrusions
- C.Manage BGP routes
- D.Test fiber latency
Explanation: RIPE Atlas probes are deployed globally to collect data on DNS, latency, and reachability, helping operators understand the health and structure of the Internet. Learn more.
Q29. Which tool is used for network configuration drift detection?
- A.Wireshark
- B.Ansible
- C.Nagios
- D.RANCID✓ Correct
Explanation: RANCID detects and tracks configuration changes. Learn more.
Q30. Which protocol is used to send email?
- A.IMAP
- B.POP3
- C.SMTP✓ Correct
- D.FTP
Explanation: SMTP (Simple Mail Transfer Protocol) is used to send emails. Learn more.
Q31. Which protocol is used for secure file transfer?
- A.FTP
- B.SFTP✓ Correct
- C.HTTP
- D.SMTP
Explanation: SFTP (Secure File Transfer Protocol) runs over SSH and encrypts both authentication and file data. It is widely used to transfer files securely between remote systems, in contrast to FTP, which transmits data in plaintext. Learn more.
Q32. Which type of network documentation would typically show the physical layout of network cables and device locations within a building?
- A.Logical network diagram
- B.Physical network diagram✓ Correct
- C.IP address schema
- D.Change management log
Explanation: A physical network diagram illustrates the actual layout of network components, including cable runs, patch panel locations, server racks, and the physical placement of devices like switches, routers, and workstations. Learn more.
Q33. A company decides to use a cloud-based email service where the provider manages the email application, underlying platform, and all infrastructure. Users access their email via a web browser or mobile app. Which cloud service model does this represent?
- A.IaaS (Infrastructure as a Service)
- B.PaaS (Platform as a Service)
- C.SaaS (Software as a Service)✓ Correct
- D.DaaS (Desktop as a Service)
Explanation: SaaS provides ready-to-use software applications over the internet. The provider handles all aspects of the service, and users typically access it through a client interface. Examples include Gmail or Microsoft 365. Learn more.
Q34. What is the primary role of a Type 2 hypervisor?
- A.It is installed directly on bare-metal hardware.
- B.It runs as an application within a host operating system to create and manage VMs.✓ Correct
- C.It is exclusively used for cloud-based virtualization.
- D.It provides hardware-level security for virtual machines.
Explanation: A Type 2 hypervisor (or hosted hypervisor) runs on top of a conventional operating system. Examples include VMware Workstation, Oracle VirtualBox, and Parallels Desktop. Learn more.
Q35. Which DNS record type is used to map a hostname to an IPv4 address?
- A.AAAA record
- B.MX record
- C.CNAME record
- D.A record✓ Correct
Explanation: An A (Address) record maps a domain name (hostname) to its corresponding IPv4 address. An AAAA record is used for IPv6 addresses. Learn more.
Q36. Which protocol is commonly used by network devices to send asynchronous alert messages (e.g., traps) to a central management station when specific events or errors occur?
- A.NTP
- B.SNMP✓ Correct
- C.DHCP
- D.ARP
Explanation: SNMP (Simple Network Management Protocol) allows network management systems to monitor and manage network devices. SNMP traps are notifications sent from an SNMP agent on a device to an SNMP manager when a significant event occurs. Learn more.
Q37. What type of network documentation provides a high-level, bird's-eye view of the network, showing major network segments, routers, firewalls, and how they interconnect, but typically omits details like specific port numbers or physical cable paths?
- A.Physical network diagram
- B.Rack diagram
- C.Logical network diagram✓ Correct
- D.Wiring schematic
Explanation: A logical network diagram focuses on how the network functions and how data flows, illustrating subnets, IP addressing schemes, routing domains, and the relationships between network devices without necessarily showing their physical location or connections. Learn more.
Q38. What is the primary purpose of a formal change management process in network operations?
- A.To ensure all network devices are purchased from the same vendor for compatibility.
- B.To track daily network performance metrics and bandwidth utilization.
- C.To provide a structured approach for planning, approving, implementing, and reviewing network changes to minimize risk and service disruption.✓ Correct
- D.To automatically update firmware on all network devices as soon as new versions are released.
Explanation: Change management processes are designed to control and coordinate all modifications to an IT environment, including network infrastructure. This structured approach aims to minimize potential negative impacts on services, ensure changes are properly planned, tested, approved, and documented. Learn more.
Q39. What is the primary purpose of utilizing NetFlow, J-Flow, or sFlow in network monitoring and management?
- A.To capture the full payload content of every network packet for deep inspection.
- B.To collect and analyze metadata about network traffic flows, such as source/destination IPs, ports, protocols, and byte counts.✓ Correct
- C.To encrypt all network communications to prevent eavesdropping.
- D.To dynamically assign IP addresses to network devices based on usage patterns.
Explanation: Flow-based monitoring technologies like NetFlow (Cisco), J-Flow (Juniper), and sFlow (industry standard) collect summary information (metadata) about IP traffic flows. This data is used for network traffic analysis, capacity planning, security monitoring (anomaly detection), and accounting/billing, without capturing the full content of each packet. Learn more.
Q40. Which of the following metrics would typically be defined and guaranteed in a Service Level Agreement (SLA) for a business-grade internet service?
- A.The specific brand of modem or router provided by the ISP.
- B.The internal IP addressing scheme used by the customer's network.
- C.Network uptime percentage, maximum latency, and minimum bandwidth.✓ Correct
- D.The physical location of the ISP's nearest central office or data center.
Explanation: An SLA is a contractual agreement that defines the level of service a provider will deliver. For network services, common SLA metrics include guaranteed network availability (uptime), maximum packet loss, maximum latency (delay), minimum bandwidth, and often, mean time to repair (MTTR). Learn more.
Q41. In disaster recovery and business continuity planning, what does RPO (Recovery Point Objective) primarily define?
- A.The maximum tolerable duration for a system or service to be unavailable after a disaster.
- B.The point in time, relative to a disaster, to which data must be recoverable to resume processing (i.e., the maximum acceptable data loss).✓ Correct
- C.The specific physical location designated as the alternate recovery site.
- D.The number of IT personnel required to execute the recovery plan successfully.
Explanation: RPO specifies the maximum amount of data loss an organization can tolerate, measured in time (e.g., 1 hour of data loss). It dictates how frequently data backups or replications must occur to meet this objective. RTO (Recovery Time Objective) defines how quickly service must be restored. Learn more.
Q42. Why is maintaining an accurate and up-to-date asset management inventory crucial for effective network security and operations?
- A.It guarantees that all network devices will receive firmware updates automatically from vendors.
- B.It helps in identifying all authorized and potentially unauthorized devices on the network, ensuring all systems are properly patched, configured securely, and monitored.✓ Correct
- C.It significantly reduces the initial cost of purchasing new network hardware and software licenses.
- D.It is primarily used for financial accounting and depreciation tracking of IT equipment only.
Explanation: Comprehensive asset management involves inventorying all hardware and software assets. For network security, this is vital because you can't secure what you don't know you have. It allows organizations to ensure all devices are patched, hardened, monitored, and helps in identifying unauthorized or rogue devices that could pose a security risk. Learn more.
Q43. Which signaling protocol is widely used in Voice over IP (VoIP) and Unified Communications for establishing, modifying, and terminating real-time multimedia sessions, such as voice and video calls, over IP networks?
- A.RTP (Real-time Transport Protocol)
- B.RTCP (RTP Control Protocol)
- C.SIP (Session Initiation Protocol)✓ Correct
- D.H.323
Explanation: SIP (Session Initiation Protocol) is an application-layer control (signaling) protocol for creating, modifying, and terminating sessions with one or more participants. These sessions include Internet telephone calls, multimedia distribution, and multimedia conferences. RTP is typically used to carry the actual voice/video media streams once the session is established by SIP. Learn more.
Q44. When monitoring network traffic for security analysis or troubleshooting, what is a key advantage of using a dedicated hardware network tap over configuring a SPAN (Switched Port Analyzer) or mirror port on a switch?
- A.Network taps are generally less expensive to implement than configuring a SPAN port on an existing switch.
- B.Network taps provide a truly passive copy of all traffic (including errors) without impacting the performance or stability of the monitored link, whereas SPAN ports can sometimes drop packets under high load.✓ Correct
- C.SPAN ports can forward traffic from multiple VLANs simultaneously, while network taps are limited to a single VLAN.
- D.Network taps can actively block malicious traffic based on signatures, while SPAN ports are purely for monitoring.
Explanation: Dedicated network taps are hardware devices that sit in-line and create an exact copy of all network traffic, including physical layer errors, without introducing any delay or altering the traffic. They are fail-safe, meaning if the tap loses power, traffic still flows on the live link. SPAN/mirror ports on switches replicate traffic to another port, but this process can consume switch CPU resources and may drop packets if the switch is heavily loaded or the destination SPAN port is oversubscribed, potentially leading to incomplete monitoring data. Learn more.
Q45. Which record type would you configure in DNS to allow a server to be located by a service name (e.g., _sip._tcp.example.com)?
- A.CNAME
- B.MX
- C.SRV✓ Correct
- D.TXT
Explanation: SRV (Service) records specify the location (hostname and port) of servers for specific services. They are essential for services like SIP (VoIP) and Active Directory. Learn more.
Q46. Which concept describes the ability to manage network infrastructure through code and software rather than manual hardware configuration?
- A.IaC (Infrastructure as Code)✓ Correct
- B.SaaS
- C.PaaS
- D.Out-of-band management
Explanation: Infrastructure as Code (IaC) is the managing and provisioning of computer data centers through machine-readable definition files, rather than physical hardware configuration or interactive configuration tools. Learn more.
Q47. What type of backup strategy backs up all files that have changed since the last full backup, and does not reset the archive bit?
- A.Full
- B.Incremental
- C.Differential✓ Correct
- D.Snapshot
Explanation: A Differential backup captures all data changed since the last FULL backup. It grows larger over time but is faster to restore than incremental (requires only Full + latest Differential). Learn more.
Q48. Which high-availability concept provides a shared default gateway IP across routers?
- A.First-hop redundancy protocol✓ Correct
- B.DNS recursion
- C.Packet fragmentation
- D.Wireless roaming only
Explanation: Protocols such as HSRP, VRRP, or GLBP provide default gateway redundancy with a virtual IP. Learn more.
Q49. Which log protocol commonly sends event messages to a central server?
- A.Syslog✓ Correct
- B.ICMP echo
- C.ARP
- D.RDP
Explanation: Syslog is widely used to send device and system log messages to a centralized collector. Learn more.
Q50. Which load balancing method sends clients to servers based on a hash of selected request fields?
- A.Hash-based persistence✓ Correct
- B.Round robin only
- C.Static default route
- D.Proxy ARP
Explanation: Hash-based methods consistently map requests to servers using client, URL, or other field values. Learn more.
Q51. Which documentation maps switch ports to wall jacks and patch panel ports?
- A.Port map✓ Correct
- B.Acceptable use policy
- C.Certificate chain
- D.Incident playbook
Explanation: Port maps document physical and logical cabling connections for troubleshooting and changes. Learn more.
Q52. Which protocol is used to synchronize clocks for accurate log correlation?
- A.NTP✓ Correct
- B.FTP
- C.ARP
- D.ICMP only
Explanation: Time synchronization is essential for correlating logs and events across devices. Learn more.