Network Operations

Question 1

In terms of CPU usage, what devices are primarily referred to?

Answer 1

Routers and firewalls

CPU usage in these devices increases as traffic increases.

Question 2

What strategies can be used to manage traffic volume in a network?

Answer 2

• Use VLANs
• Implement different subnet configurations
• Add more devices (e.g., routers)

Managing traffic effectively can reduce latency and errors.

Question 3

What is the MDF in networking?

Answer 3

Main Distribution Frame

It is the central point where cables enter the building.

Question 4

What does an IDF refer to?

Answer 4

Intermediate Distribution Frame

It distributes cables throughout the building to workstations.

Question 5

What are some common factors affecting network performance?

Answer 5

• CPU usage
• DNS issues
• High bandwidth
• Malfunctioning devices
• Cabling and connectivity

These factors can complicate the identification of network problems.

Question 6

What is a common cause of cabling and connectivity issues?

Answer 6

Defective cables

Cables can break or become disconnected due to physical damage.

Question 7

What is the role of the Domain Name System (DNS)?

Answer 7

DNS serves as the internet’s phonebook, translating human-readable domain names, such as www.example.com—into machine-readable IP addresses, like 192.0.2.1

DNS issues can lead to loss of connectivity to the Internet and local systems | This translation is essential because while users can easily remember domain names, computers require numerical IP addresses to locate and access websites, services, and devices

Question 8

What is a Forward zone type in relation to DNS?

Answer 8

Forward zone type translates domain names into IP addresses

Primarily uses A (Address) records for IPv4 and AAAA for IPv6 | When a user types a website name into a browser, the DNS server checks the forward zone to find the matching IP address

Question 9

What is a Reverse zone type in relation to DNS?

Answer 9

Reverse zone type translates IP addresses back into domain names.

Uses PTR (Pointer) records |Common in network diagnostics, logging, and security auditing to identify which host is associated with a given IP

Question 10

True or false: It is advisable to have only one DNS server for redundancy.

Answer 10

FALSE

Always have at least two DNS servers to ensure backup connectivity.

Question 11

What is Domain Name Security Extensions (DNSSEC)?

Answer 11

DNSSEC a suite of security protocols that adds cryptographic authentication to DNS, ensuring that the responses to DNS queries are authentic and haven’t been tampered with.

Question 12

What is DNS over HTTPS (DoH)?

Answer 12

DoH a security protocol that encrypts DNS queries using HTTPS, protecting users from eavesdropping, spoofing, and manipulation of DNS data

Question 13

What is DNS over TLS (DoT)?

Answer 13

DoT a security protocol that encrypts DNS queries using TLS, protecting them from interception, manipulation, and surveillance

Question 14

What are some network metrics that can indicate problems?

Answer 14

• Jitter
• Latency
• Packet loss
• Throughput
• Packet duplication or reordering

Monitoring these metrics helps in diagnosing network issues.

Question 15

What does latency refer to in a network context?

Answer 15

The delay or time it takes for a data packet to travel from its source to its destination, often measured in milliseconds.

High latency can be related to increased traffic volume; also referred to as slow traffic

Question 16

What is the Simple Network Management Protocol (SNMP) used for?

Answer 16

• Identifying devices
• Obtaining device status
• Monitoring performance
• Tracking network configuration changes

SNMP simplifies network management tasks.

Question 17

What are the roles of Managers and Agents in SNMP?

Answer 17

• Managers: Collect and process information
• Agents: Gather information from devices and report to managers

This client-server model is fundamental to SNMP’s operation.

Question 18

What significant security improvements were made in SNMP version 3?

Answer 18

Improvements in v3 include:

• encrypted transmission
• granular authentication requirements

These enhancements help protect against unauthorized access.

Question 19

What is a Management Information Base (MIB) in SNMP?

Answer 19

MIB a hierarchical collection of manageable device definitions that identifies device property information.

Each device maintains its own MIB to describe its characteristics

Question 20

What is the purpose of network logging features?

Answer 20

• To record activities
• To identify who performed tasks
• Track when events occurred

Log files provide critical information for network management.

Question 21

True or false: Log files proactively inform you about network events.

Answer 21

FALSE

You must manually examine log files to ascertain information.

Question 22

What is a potential drawback of enabling logging on devices?

Answer 22

Enabling logging requires additional processing and storage

When logging is configured, high severity levels such as level 7 (Debug), which generates a large volume of detailed messages can result in device and network instability | The decision to enable logging should be based on security needs.

Question 23

What is the purpose of logging in network operations?

Answer 23

Logging maintains a comprehensive record of all activities, events, errors, and system statuses occurring within the network infrastructure

Logging helps make better decisions for implementing preventative measures | Logging doesn’t inform in real-time, it reports on events that have already occurred

Question 24

True or false: Logging can proactively prevent events from happening.

Answer 24

FALSE

Logging only informs about past events and does not prevent occurrences.

Question 25

What does **Audit Logging** typically include?

Answer 25

* Resource access * Breaches of policies * Configuration changes * Implementation of policies ## Footnote It ensures accountability for actions taken by users and administrators.

Question 26

What is the **Syslog Protocol** used for?

Answer 26

To collect logging information from various types of devices ## Footnote Syslog defines categories of events to help prioritize logging.

Question 27

What is the significance of **Link Status** in network interfaces?

Answer 27

Indicates whether the network connection is active ## Footnote A link light typically shows the status of the connection.

Question 28

What is the purpose of monitoring **Protocol Statistics**?

Answer 28

To understand data flow across an interface ## Footnote It helps establish a baseline for normal activity.

Question 29

What is the **Frame Check Sequence Error** (FCS)?

Answer 29

**FCS** indicates that a data frame has been **corrupted during transmission**, as detected by a mismatch in its error-checking code. ## Footnote The receiver uses a cyclical redundancy checking (CRC) algorithm to verify the integrity of the frame.

Question 30

What does a **Giant** packet refer to in networking?

Answer 30

**Giant** a packet that is **too large**, exceeding 1518 bytes ## Footnote Giants may indicate hardware or driver problems or direction mismatch.

Question 31

What are **Runts** in networking?

Answer 31

**Runts** are packets that are **too small**, specifically under 64 bytes ## Footnote Runts can result from hardware issues or too many collisions on the network.

Question 32

What are **Encapsulation Errors** indicative of?

Answer 32

An incorrect encapsulation method assigned to an adapter ## Footnote Encapsulation wraps one type of packet into another for transmission over a network.

Question 33

True or false: A robust management platform is required to monitor network devices effectively.

Answer 33

FALSE ## Footnote Devices can still be accessed directly to view logs and activity details.

Question 34

What is the **System Development Life Cycle (SDLC)**?

Answer 34

A **phased approach** to system implementation from inception to retirement ## Footnote It guides organizations through various stages of system development.

Question 35

List the **nine steps** typically involved in the SDLC.

Answer 35

* Analysis * Planning * Design * Development * Testing * Deployment * Maintenance * Evaluation * Disposal ## Footnote These steps help structure the development process.

Question 36

What are the key steps involved in managing a **software upgrade**?

Answer 36

* Train users * Obtain licenses * Test new application * Deploy new application * Verify successful installation * Determine devices for uninstallation ## Footnote Managing software upgrades involves multiple administrative tasks.

Question 37

What is a **Non-disclosure Agreement (NDA)**?

Answer 37

A legally binding document to protect confidential information ## Footnote It outlines parties involved and the duration of confidentiality.

Question 38

What is a **Service Level Agreement (SLA)**?

Answer 38

**SLA** a **commitment** by the service provider detailing the services offered and expected levels of customer support service ## Footnote Important for clients to understand what to expect from providers.

Question 39

What does a **Service Level Agreement (SLA)** outline?

Answer 39

* Pricing * Level of service * Scope of service * Responsibilities of each party * Metrics for service measurement ## Footnote It may include penalties for not meeting service levels.

Question 40

What are the two types of **downtime** defined in an SLA?

Answer 40

* **Planned** Downtime * **Unplanned** Downtime ## Footnote Each type has different implications for service availability.

Question 41

What is a **Memorandum of Understanding (MOU)**?

Answer 41

A formal agreement between entities to establish a partnership ## Footnote It is often not legally binding.

Question 42

What is the purpose of a **Password Policy**?

Answer 42

To enforce standards for creating strong passwords ## Footnote Strong passwords help prevent unauthorized access to network resources.

Question 43

What does an **Acceptable Use Policy** define?

Answer 43

Expected behavior for employees regarding Internet use and access to resources ## Footnote It outlines acceptable and unacceptable behaviors.

Question 44

What is the purpose of an **Onboarding Policy**?

Answer 44

To define processes for new employees and familiarize them with the organization ## Footnote It aims to engage new hires and reduce turnover.

Question 45

What is an **Offboarding Policy**?

Answer 45

A checklist for tasks when an employee leaves the organization ## Footnote It ensures all necessary actions are completed to remove the employee's access.

Question 46

What is a **Data Loss Prevention (DLP)** policy?

Answer 46

Requirements to keep valuable data **within** the organization ## Footnote It prevents unauthorized disclosure of sensitive information.

Question 47

What does a **Business Impact Analysis (BIA)** identify?

Answer 47

Crucial components of a business and the impact of their failure ## Footnote The greater the impact, the more resources should be directed to mitigate risks.

Question 48

What does an **IT Security Policy** cover?

Answer 48

Rules and procedures for anyone accessing the IT infrastructure ## Footnote It applies to all users, including contractors and guests.

Question 49

What does a **remote access policy** define?

Answer 49

Acceptable means for establishing and using remote connections to access corporate resources ## Footnote It may include approved applications, user restrictions, time limitations, and location-based access.

Question 50

True or false: A **remote access policy** can restrict access based on location.

Answer 50

TRUE ## Footnote For example, access might only be allowed from branch offices with known IP addresses.

Question 51

What is **Security Information & Event Management** (SIEM)?

Answer 51

**SIEM** a cybersecurity solution that **collects, analyzes**, and **correlates** security data from *various sources across an organization’s IT infrastructure in real time* to detect threats and support incident response

Question 52

What is a key factor in maintaining services in a data center?

Answer 52

A key factor is ensuring high levels of **uptime** through the implementation of **redundant systems**, such as backup power supplies, cooling systems, and network connections, which allow **operations to continue** during failures

Question 53

What does an **HVAC system** do in a data center?

Answer 53

Manages heat and maintains acceptable levels of temperature and humidity ## Footnote Critical for preventing overheating and ensuring optimal equipment function.

Question 54

What environmental factor can lead to **condensation buildup** in a data center?

Answer 54

Excessive humidity ## Footnote Can cause short circuits or corrosion in equipment.

Question 55

What should be considered for fire prevention in a data center?

Answer 55

Fire detection and suppression systems ## Footnote HVAC systems must not feed oxygen to a fire during an incident.

Question 56

What is the importance of establishing **Network Performance Baselines**?

Answer 56

To determine normal operating conditions and identify anomalies ## Footnote Baselines help in troubleshooting and managing network changes.

Question 57

What should be included when creating a **baseline report**?

Answer 57

Network activity at various times of day ## Footnote This helps to identify situations that stray from the norm.

Question 58

What is **NetFlow**?

Answer 58

**NetFlow** a network protocol developed by **Cisco** for gathering information about network traffic and monitoring traffic flows ## Footnote It is valuable for troubleshooting and establishing a baseline of normal activity.

Question 59

What are the **features** of NetFlow?

Answer 59

* Flow-based visualizations * User profiling for unusual activity * Planning and growing the network * High-level and detailed monitoring ## Footnote These features help network administrators and security personnel actively monitor network services.

Question 60

What are the two types of **Flow Expiration** in NetFlow?

Answer 60

* Inactive timeout * Active timeout ## Footnote These types determine when flow data is exported for analysis.

Question 61

What does **Inactive timeout** refer to in NetFlow?

Answer 61

The connection has gone quiet with no packets exchanged ## Footnote Typically configured to around 15 seconds before data is exported.

Question 62

What does **Active timeout** mean in NetFlow?

Answer 62

NetFlow intervenes if a connection is ongoing for too long ## Footnote Recommended value is around one minute to prevent data from escaping detection.

Question 63

What is a **flow record** in NetFlow?

Answer 63

The output produced by NetFlow for analysis ## Footnote Important for exporting data to external sources for further analysis.

Question 64

What is the purpose of **Templates** in NetFlow?

Answer 64

Purpose is to provide future support for new or developing protocols ## Footnote The templates help implement new features without recompiling.

Question 65

What does **Network Uptime** refer to?

Answer 65

The amount of time the network is functioning normally ## Footnote Expressed as a ratio of uptime to downtime.

Question 66

What does **99.999% uptime** translate to in terms of downtime?

Answer 66

Just over five minutes per year ## Footnote This is an ambitious goal for many providers.

Question 67

What is **Planned Downtime**?

Answer 67

Anticipated and usually scheduled downtime ## Footnote Allows providers to give advanced warning to clients.

Question 68

What is **Unplanned Downtime**?

Answer 68

Unexpected downtime due to failures or issues ## Footnote Requires reactive measures to address the situation.

Question 69

What are some causes of **Unplanned Downtime**?

Answer 69

Causes of unplanned downtime: * Human error * Natural disasters * Hardware failures * Misconfigurations * Server vulnerabilities ## Footnote These factors necessitate redundancy and fault tolerance.

Question 70

What is the purpose of **Organizational Planning and Procedures**?

Answer 70

Purpose is to effectively manage change and minimize unexpected downtime ## Footnote Changes require management processes to ensure smooth transitions.

Question 71

Define the difference between an **upgrade** and an **update**.

Answer 71

* **Update**: Minor fixes or patches * **Upgrade**: Fully decommissioning an old version and deploying a new one ## Footnote Upgrades involve more extensive changes than updates.

Question 72

Why is **documentation** important in Change Management?

Answer 72

It helps everyone be aware of the process and prepares them for changes ## Footnote Clear documentation can prevent confusion during transitions.

Question 73

What should documentation include regarding changes?

Answer 73

* Who is implementing changes * When changes are happening * Why changes are being made ## Footnote Justification helps reduce resistance from users.

Question 74

What is an **Incident Response Plan**?

Answer 74

A structured approach that organizations use to detect, respond to, and recover from cybersecurity incidents such as data breaches, malware infections, or unauthorized access ## Footnote It helps manage problems that arise during changes.

Question 75

What is the difference between **Disaster Recovery** and **Business Continuity**?

Answer 75

* **D**isaster **R**ecovery: Resuming operations ***after*** an event * **B**usiness **C**ontinuity: Maintaining services ***during*** an event ## Footnote Both concepts aim to manage risks but focus on different aspects.

Question 76

What are key components of a **Disaster Recovery and Business Continuity Plan**?

Answer 76

* Regular testing * Employee training * Crisis communication * Stakeholder involvement ## Footnote These components ensure preparedness for incidents.

Question 77

What are the different **types of network documentation?**

Answer 77

* Site surveys * Wiring diagrams * Baseline configurations * Logical network diagrams * Physical network diagrams * Audit and assessment reports ## Footnote These documents help maintain an organized and secure networking environment.

Question 78

What does a **Physical Network Diagram** map out?

Answer 78

Location and structure of wired and wireless networks, including devices and physical security ## Footnote It includes routers, switches, security cameras, and door-locking mechanisms.

Question 79

What is the purpose of a **Logical Network Design**?

Answer 79

To plan and outline the high-level structure and **configuration of a network**, specifying elements such as network topology, protocols, addressing schemes ## Footnote It may include configurations like multiple VLANs within a single physical network.

Question 80

What is a **Wiring Diagram** used for?

Answer 80

Indicates how devices are wired together and which connectors are used ## Footnote It can refer to both internal wiring of a single device and complex systems involving multiple components.

Question 81

What is a **Baseline** configuration in network operations?

Answer 81

A ***benchmark*** that defines the **normal performance** and behavior of a network under typical operating conditions ## Footnote It is useful for troubleshooting and planning changes.

Question 82

What is the purpose of a **Site Survey Report**?

Answer 82

To visualize coverage and data rates for a wireless network ## Footnote It helps identify weak spots and is conducted with tools like spectrum analyzers.

Question 83

What is an **Authoritative DNS zone** type?

Answer 83

**Authoritative DNS zone** a DNS zone hosted on a server that holds the **original, writable copy** of DNS records. ## Footnote This server is the source of truth for the domain

Question 84

What is a **Non-authoritative DNS zone** type?

Answer 84

**Non-authoritative DNS zone** a DNS server that *does not own* the original zone file but can respond to queries using **cached data** or by forwarding requests. ## Footnote Acts as a middleman—useful for performance but not for record management.

Question 85

What are **primary** and **secondary** DNS zone types?

Answer 85

**Primary** DNS zone: the *authoritative, writable copy* of a DNS zone; hosted on a DNS server that can modify zone data **Secondary** DNS zone: a *read-only copy* of the primary zone; hosted on a different DNS server that pulls updates from the primary

Question 86

What is **Recursive** DNS?

Answer 86

**Recursive DNS** performs full lookups on behalf of clients. Recursive DNS server receives a query from a client and takes full responsibility for resolving it ## Footnote It’s a behavior, not a zone file like forward or reverse zones