312-38 Dumps (V13.02) Are the Latest Study Materials to Help You Prepare for the Certified Network Defender (CND) Exam – Come to Check 312-38 Free Dumps (Part 1, Q1-Q40)

1. Management decides to implement a risk management system to reduce and maintain the organization's risk at an acceptable level.

Which of the following is the correct order in the risk management phase?

2. John has implemented________in the network to restrict the limit of public IP addresses in his organization and to enhance the firewall filtering technique.

3. What command is used to terminate certain processes in an Ubuntu system?

4. Consider a scenario consisting of a tree network. The root Node N is connected to two man nodes N1 and N2. N1 is connected to N11 and N12. N2 is connected to N21 and N22.

What will happen if any one of the main nodes fail?

5. Stephanie is currently setting up email security so all company data is secured when passed through email. Stephanie first sets up encryption to make sure that a specific user's email is protected. Next, she needs to ensure that the incoming and the outgoing mail has not been modified or altered using digital signatures.

What is Stephanie working on?

6. An enterprise recently moved to a new office and the new neighborhood is a little risky. The CEO wants to monitor the physical perimeter and the entrance doors 24 hours.

What is the best option to do this job?

7. Eric is receiving complaints from employees that their systems are very slow and experiencing odd issues including restarting automatically and frequent system hangs. Upon investigating, he is convinced the systems

are infected with a virus that forces systems to shut down automatically after period of time.

What type of security incident are the employees a victim of?

8. -----------is a group of broadband wireless communications standards for Metropolitan Area Networks (MANs)

9. The network admin decides to assign a class B IP address to a host in the network.

Identify which of the following addresses fall within a class B IP address range.

10. Rick has implemented several firewalls and IDS systems across his enterprise network.

What should he do to effectively correlate all incidents that pass through these security controls?

11. Management asked their network administrator to suggest an appropriate backup medium for their backup plan that best suits their organization's need.

Which of the following factors will the administrator consider when

deciding on the appropriate backup medium?

12. Which of the following network monitoring techniques requires extra monitoring software or hardware?

13. Steven's company has recently grown from 5 employees to over 50. Every workstation has a public IP address and navigated to the Internet with little to no protection. Steven wants to use a firewall. He also wants IP addresses to be private addresses, to prevent public Internet devices direct access to them.

What should Steven implement on the firewall to ensure this happens?

14. What is the name of the authority that verifies the certificate authority in digital certificates?

15. Will is working as a Network Administrator. Management wants to maintain a backup of all the company data as soon as it starts operations. They decided to use a RAID backup storage technology for their data backup plan. To implement the RAID data backup storage, Will sets up a pair of RAID disks so that all the data written to one disk is copied automatically to the other disk as well. This maintains an additional copy of the data.

Which RAID level is used here?

16. You are monitoring your network traffic with the Wireshark utility and noticed that your network is experiencing a large amount of traffic from a certain region. You suspect a DoS incident on the network.

What will be your

first reaction as a first responder?

17. If a network is at risk from unskilled individuals, what type of threat is this?

18. According to the company's security policy, all access to any network resources must use Windows Active Directory Authentication. A Linux server was recently installed to run virtual servers and it is not using Windows Authentication.

What needs to happen to force this server to use Windows Authentication?

19. Kelly is taking backups of the organization's data. Currently, he is taking backups of only those files which are created or modified after the last

backup.

What type of backup is Kelly using?

20. John is a network administrator and is monitoring his network traffic with the help of Wireshark. He suspects that someone from outside is making a TCP OS fingerprinting attempt on his organization's network.

Which of the following Wireshark filter(s) will he use to locate the TCP OS fingerprinting attempt?

21. A company has the right to monitor the activities of their employees on different information systems according to the _______policy.

22. Liza was told by her network administrator that they will be implementing IPsec VPN tunnels to connect the branch locations to the main office.

What layer of the OSI model do IPsec tunnels function on?

23. Malone is finishing up his incident handling plan for IT before giving it to his boss for review. He is outlining the incident response methodology and the steps that are involved.

What is the last step he should list?

24. Which VPN QoS model guarantees the traffic from one customer edge (CE) to another?

25. James was inspecting ARP packets in his organization's network traffic with the help of Wireshark. He is checking the volume of traffic containing ARP requests as well as the source IP address from which they are originating.

Which type of attack is James analyzing?

26. Alex is administrating the firewall in the organization's network.

What command will he use to check the ports applications open?

27. The risk assessment team in Southern California has estimated that the probability of an incident that has potential to impact almost 80% of the bank's business is very high.

How should this risk be categorized in the risk matrix?

28. Identify the minimum number of drives required to setup RAID level 5.

29. Timothy works as a network administrator in a multinational organization. He decides to implement a dedicated network for sharing storage resources. He uses a_______as it seperates the storage units from the servers and the user network.

30. A local bank wants to protect their card holder data. The bank should comply with the________standard to ensure the security of card holder data.

31. Sam wants to implement a network-based IDS in the network. Sam finds out the one IDS solution which works is based on patterns matching.

Which type of network-based IDS is Sam implementing?

32. John wants to implement a firewall service that works at the session layer of the OSI model. The firewall must also have the ability to hide the private network information.

Which type of firewall service is John thinking of implementing?

33. You are an IT security consultant working on a contract for a large manufacturing company to audit their entire network. After performing all the tests and building your report, you present a number of recommendations to the company and what they should implement to become more secure. One recommendation is to install a network-based device that notifies IT employees whenever malicious or questionable traffic is found. From your talks with the company, you know that they do not want a device that actually drops traffic completely, they only want notification.

What type of device are you suggesting?

34. Management wants to calculate the risk factor for their organization. Kevin, a network administrator in the organization knows how to calculate the risk factor. Certain parameters are required before calculating risk factor.

What are they? (Select all that apply) Risk factor =.............X...............X...........

35. Lyle is the IT director for a medium-sized food service supply company in Nebraska. Lyle's company employs over 300 workers, half of which use computers. He recently came back from a security training seminar on logical security. He now wants to ensure his company is as secure as possible. Lyle has many network nodes and workstation nodes across the network. He does not have much time for implementing a network-wide solution. He is primarily concerned about preventing any external attacks on the network by using a solution that can drop packets if they are found to be malicious. Lyle also wants this solution to be easy to implement and be network-wide.

What type of solution would be best for Lyle?

36. Sam, a network administrator is using Wireshark to monitor the network traffic of the organization. He wants to detect TCP packets with no flag set to check for a specific attack attempt.

Which filter will he use to view the traffic?

37. Frank installed Wireshark at all ingress points in the network. Looking at the logs he notices an odd packet source. The odd source has an address of 1080:0:FF:0:8:800:200C:4171 and is using port 21.

What does this source address signify?

38. The IR team and the network administrator have successfully handled a malware incident on the network. The team is now preparing countermeasure guideline to avoid a future occurrence of the malware incident.

Which of the following countermeasure(s) should be added to deal with future malware incidents? (Select all that apply)

39. Assume that you are a network administrator and the company has asked you to draft an Acceptable Use Policy (AUP) for employees.

Under which category of an information security policy does AUP fall into?

40. The bank where you work has 600 windows computers and 400 Red Hat computers which primarily serve as bank teller consoles. You have created a plan and deployed all the patches to the Windows computers and you are now working on updating the Red Hat computers.

What command should you run on the network to update the Red Hat computers, download the security package, force the package installation, and update all currently installed packages?