Text preview & study summary
CompTIA Network+ N10-009 - Domains 3 4 5 Operations Security Troubleshooting
A free sample of 5 questions from this quiz, shown in full with answer choices and explanations. No interactivity — everything is visible on this page for study and review.
Want to test your knowledge? Launch the Interactive Exam Simulator
Question 1
An attacker sends millions of ping requests to a network target from a botnet of compromised hosts, overwhelming the target's bandwidth. What type of attack is this?
Explanation
DDoS (Distributed Denial of Service) attacks use multiple compromised systems (botnet) to flood a target with traffic, exhausting resources (bandwidth, CPU, connections). This differs from DoS (single source) by the distributed, harder-to-block nature of the attack.
Question 2
What is the primary difference between an IDS (Intrusion Detection System) and an IPS (Intrusion Prevention System)?
Explanation
An IDS is deployed out-of-band (using SPAN/tap) and can only detect and alert on threats. An IPS is deployed inline in the traffic path and can detect AND block threats by dropping malicious packets in real-time. IPS adds latency but provides active protection.
Question 3
A network admin runs `show interface GigabitEthernet0/1` on a Cisco router and sees "input errors" and "CRC errors" incrementing. What is the MOST likely physical cause?
Explanation
CRC errors and input errors on an interface indicate physical layer problems — damaged cables, bad connectors, excessive cable length, EMI interference, or bent/pinched fiber. These cause bit errors in frames, detected by CRC checks.
Question 4
A company implements a SIEM (Security Information and Event Management) system. What is the PRIMARY purpose of a SIEM in network operations?
Explanation
A SIEM aggregates logs from firewalls, IDS/IPS, servers, applications, and network devices, then correlates events across sources to identify patterns indicative of security incidents. It provides real-time alerting, dashboards, and forensic capabilities.
Question 5
A company experiences a network outage. Post-incident, they want to identify the root cause and prevent recurrence. Which document is produced?
Explanation
A Root Cause Analysis (RCA) or post-incident report documents: what happened, the timeline, contributing factors, the root cause, and corrective actions to prevent recurrence. This is standard practice in ITIL incident management.
