312-38 Dumps Have Been Updated to V14.03 for Your Certified Network Defender (CND) Exam Preparation: Try 312-38 Free Dumps (Part 1, Q1-Q40) First

1. As a network administrator, you have implemented WPA2 encryption in your corporate wireless network. The WPA2's_________integrity check mechanism provides security against a replay attack

2. John has implemented________in the network to restrict the limit of public IP addresses in his organization and to enhance the firewall filtering technique.

3. The company has implemented a backup plan. James is working as a network administrator for the company and is taking full backups of the data every time a backup is initiated. Alex who is a senior security manager talks to him about using a differential backup instead and asks him to implement this once a full backup of the data is completed.

What is/are the reason(s) Alex is suggesting that James use a differential backup?

(Select all that apply)

4. A company has the right to monitor the activities of their employees on different information systems according to the _______policy.

5. If there is a fire incident caused by an electrical appliance short-circuit, which fire suppressant should be used to control it?

6. Which of the following network monitoring techniques requires extra monitoring software or hardware?

7. John has successfully remediated the vulnerability of an internal application that could have caused a threat to the network. He is scanning the application for the existence of a remediated vulnerability, this process is called a________and it has to adhere to the_________

8. The--------------protocol works in the network layer and is responsible for handling the error codes

during the delivery of packets. This protocol is also responsible for providing communication in the TCP/IP stack.

9. Stephanie is currently setting up email security so all company data is secured when passed through email. Stephanie first sets up encryption to make sure that a specific user's email is protected. Next, she needs to ensure that the incoming and the outgoing mail has not been modified or altered using digital signatures.

What is Stephanie working on?

10. Justine has been tasked by her supervisor to ensure that the company's physical security is on the same level as their logical security measures. She installs video cameras at all entrances and exits and installs badge access points for all doors. The last item she wants to install is a method to prevent unauthorized people piggybacking employees.

What should she install to prevent piggybacking?

11. A company wants to implement a data backup method which allows them to encrypt the data ensuring its security as well as access at any time and from any location.

What is the appropriate backup method that should be implemented?

12. Kyle is an IT technician managing 25 workstations and 4 servers. The servers run applications and mostly store confidential data. Kyle must backup the server's data daily to ensure nothing is lost. The power in the company's office is not always reliable, Kyle needs to make sure the servers do not go down or are without power for too long. Kyle decides to purchase an Uninterruptible Power Supply (UPS) that has a pair of inverters and converters to charge the battery and provides power when needed.

What type of UPS has Kyle purchased?

13. Eric is receiving complaints from employees that their systems are very slow and experiencing odd issues including restarting automatically and frequent system hangs. Upon investigating, he is convinced the systems

are infected with a virus that forces systems to shut down automatically after period of time.

What type of security incident are the employees a victim of?

14. John wants to implement a firewall service that works at the session layer of the OSI model. The firewall must also have the ability to hide the private network information.

Which type of firewall service is John thinking of implementing?

15. Chris is a senior network administrator. Chris wants to measure the Key Risk Indicator (KRI) to assess the organization.

Why is Chris calculating the KRI for his organization? It helps Chris to:

16. If a network is at risk from unskilled individuals, what type of threat is this?

17. Sam, a network administrator is using Wireshark to monitor the network traffic of the organization. He wants to detect TCP packets with no flag set to check for a specific attack attempt.

Which filter will he use to view the traffic?

18. Lyle is the IT director for a medium-sized food service supply company in Nebraska. Lyle's company employs over 300 workers, half of which use computers. He recently came back from a security training seminar on logical security. He now wants to ensure his company is as secure as possible. Lyle has many network nodes and workstation nodes across the network. He does not have much time for implementing a network-wide solution. He is primarily concerned about preventing any external attacks on the network by using a solution that can drop packets if they are found to be malicious. Lyle also wants this solution to be easy to implement and be network-wide.

What type of solution would be best for Lyle?

19. Which of the following is a best practice for wireless network security?

20. Jason has set a firewall policy that allows only a specific list of network services and deny everything else. This strategy is known as a____________.

21. What command is used to terminate certain processes in an Ubuntu system?

22. An administrator wants to monitor and inspect large amounts of traffic and detect unauthorized attempts from inside the organization, with the help of an IDS. They are not able to recognize the exact location to deploy the IDS sensor.

Can you help him spot the location where the IDS sensor should be placed?

23. Larry is responsible for the company's network consisting of 300 workstations and 25 servers. After using a hosted email service for a year, the company wants to control the email internally. Larry likes this idea because it will give him more control over the email. Larry wants to purchase a server for email but does not want the server to be on the internal network due to the potential to cause security risks. He decides to place the server outside of the company's internal firewall. There is another firewall connected directly to the Internet that will protect traffic from accessing the email server. The server will be placed between the two firewalls.

What logical area is Larry putting the new email server into?

24. Kyle is an IT consultant working on a contract for a large energy company in Houston. Kyle was hired on to do contract work three weeks ago so the company could prepare for an external IT security audit. With suggestions from upper management, Kyle has installed a network-based IDS system. This system checks for abnormal behavior and patterns found in network traffic that appear to be dissimilar from the traffic normally recorded by the IDS.

What type of detection is this network-based IDS system using?

25. John, the network administrator and he wants to enable the NetFlow feature in Cisco routers to

collect and monitor the IP network traffic passing through the router.

Which command will John use to enable NetFlow on an interface?

26. John is a network administrator and is monitoring his network traffic with the help of Wireshark. He suspects that someone from outside is making a TCP OS fingerprinting attempt on his organization's network.

Which of the following Wireshark filter(s) will he use to locate the TCP OS fingerprinting attempt?

27. Bryson is the IT manager and sole IT employee working for a federal agency in California. The agency was just given a grant and was able to hire on 30 more employees for a new extended project. Because of this, Bryson has hired on two more IT employees to train up and work. Both of his new hires are straight out of college and do not have any practical IT experience. Bryson has spent the last two weeks teaching the new employees the basics of computers, networking, troubleshooting techniques etc. To see how these two new hires are doing, he asks them at what layer of the OSI model do Network Interface Cards (NIC) work on.

What should the new employees answer?

28. The bank where you work has 600 windows computers and 400 Red Hat computers which primarily serve as bank teller consoles. You have created a plan and deployed all the patches to the Windows computers and you are now working on updating the Red Hat computers.

What command should you run on the network to update the Red Hat computers, download the security package, force the package installation, and update all currently installed packages?

29. James was inspecting ARP packets in his organization's network traffic with the help of Wireshark. He is checking the volume of traffic containing ARP requests as well as the source IP address from which they are originating.

Which type of attack is James analyzing?

30. James is working as a Network Administrator in a reputed company situated in California. He is monitoring his network traffic with the help of Wireshark. He wants to check and analyze the traffic against a PING sweep attack.

Which of the following Wireshark filters will he use?

31. What is the name of the authority that verifies the certificate authority in digital certificates?

32. Identify the password cracking attempt involving precomputed hash values stored as plaintext and using these to crack the password.

33. Blake is working on the company's updated disaster and business continuity plan. The last section of the plan covers computer and data incidence response. Blake is outlining the level of severity for each type of incident in the plan.

Unsuccessful scans and probes are at what severity level?

34. Frank installed Wireshark at all ingress points in the network. Looking at the logs he notices an odd packet source. The odd source has an address of 1080:0:FF:0:8:800:200C:4171 and is using port 21.

What does this source address signify?

35. Which phase of vulnerability management deals with the actions taken for correcting the discovered vulnerability?

36. Steven's company has recently grown from 5 employees to over 50. Every workstation has a public IP address and navigated to the Internet with little to no protection. Steven wants to use a firewall. He also wants IP addresses to be private addresses, to prevent public Internet devices direct access to them.

What should Steven implement on the firewall to ensure this happens?

37. The risk assessment team in Southern California has estimated that the probability of an incident that has potential to impact almost 80% of the bank's business is very high.

How should this risk be categorized in the risk matrix?

38. Management asked Adam to implement a system allowing employees to use the same credentials to access multiple applications. Adam should implement the--------------------------authentication technique to satisfy the management request.

39. Will is working as a Network Administrator. Management wants to maintain a backup of all the company data as soon as it starts operations. They decided to use a RAID backup storage technology for their data backup plan. To implement the RAID data backup storage, Will sets up a pair of RAID disks so that all the data written to one disk is copied automatically to the other disk as well. This maintains an additional copy of the data.

Which RAID level is used here?

40. Liza was told by her network administrator that they will be implementing IPsec VPN tunnels to connect the branch locations to the main office.

What layer of the OSI model do IPsec tunnels function on?