Network Operations for CompTIA Network+

This page covers the Network Operations domain of the CompTIA Network+ certification. Master Cybersecurity offers 107 practice questions in this domain, drawn from the same content we use across our timed exam simulations. Below are five sample questions with full answer explanations.

Sample Practice Questions

  1. Question 1

    SIMULATION - A network technician was recently onboarded to a company. A manager has tasked the technician with documenting the network and has provided the technician with partial information from previous documentation. INSTRUCTIONS - Click on each switch to perform a network discovery by entering commands into the terminal. Type help to view a list of available commands. Fill in the missing information using the drop-down menus provided. If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

    1. Question 2

      Which of the following should be used to obtain remote access to a network appliance that has failed to start up properly?
      1. A. Crash cart
      2. B. Jump box
      3. C. Secure Shell
      4. D. Out-of-band management
      Explanation

      The correct answer is: D. Out-of-band management.

      Out-of-band (OOB) management uses a dedicated, separate path to reach a device's management plane - typically a console server, an out-of-band cellular modem, or a separate management network - so an administrator can connect even when the device's primary interfaces are unresponsive, which is exactly what is needed when an appliance has failed to start up properly. A crash cart (A) is a physical workstation rolled to the device for direct console access; it is a physical-presence solution, not the remote-access answer the question requires. A jump box (B) is a hardened intermediary used to reach systems on isolated networks, but it depends on the target's primary network being functional and reachable. Secure Shell (C) requires the device to have completed boot and brought up its network interfaces, which by definition has not happened in this scenario. OOB management is the only listed option that works when the device has not started normally.

    2. Question 3

      Which of the following is created to illustrate the effectiveness of wireless networking coverage in a building?
      1. A. Logical diagram
      2. B. Layer 3 network diagram
      3. C. Service-level agreement
      4. D. Heat map
      Explanation

      The correct answer is: D. Heat map.

      A heat map is the visual artifact created from a wireless site survey that overlays signal strength, signal-to-noise ratio, or coverage onto a floor plan, using color gradients to show which areas of the building have strong coverage and which have dead zones - exactly the question the document is meant to answer. A logical diagram (A) shows IP addressing, VLANs, and routing relationships and contains no RF coverage information. A Layer 3 network diagram (B) is similar - it depicts routing topology rather than wireless coverage. A service-level agreement (C) is a contractual document setting service expectations between a provider and a consumer and is unrelated to wireless coverage visualization. The heat map is the output specifically built to illustrate wireless coverage effectiveness.

    3. Question 4

      A network security administrator needs to monitor the contents of data sent between a secure network and the rest of the company. Which of the following monitoring methods will accomplish this task?
      1. A. Port mirroring
      2. B. Flow data
      3. C. Syslog entries
      4. D. SNMP traps
      Explanation

      The correct answer is: A. Port mirroring.

      Port mirroring (also known as a SPAN port) configures the switch to copy every frame transiting a designated source port - or a specific VLAN - to a destination port where a monitoring or DLP appliance can inspect the actual contents of the data crossing the boundary, which is what monitoring contents requires. Flow data (B) such as NetFlow or IPFIX provides summarized records of who talked to whom and how much, but does not reveal the contents of the payload. Syslog entries (C) are log lines emitted by devices and applications - useful for events but not for inspecting actual data passing between segments. SNMP traps (D) are unsolicited notifications about device state changes (link up/down, threshold exceeded) and contain no traffic content. Port mirroring is the only option that delivers the full data contents needed for inspection.

    4. Question 5

      A company wants to implement a disaster recovery site for non-critical applications, which can tolerate a short period of downtime. Which of the following types of sites should the company implement to achieve this goal?
      1. A. Hot
      2. B. Cold
      3. C. Warm
      4. D. Passive
      Explanation

      The correct answer is: C. Warm.

      A warm site is a partially equipped recovery facility - it has the basic infrastructure, networking, and some preinstalled hardware in place but is not running production data and applications continuously, so it can be brought online within hours to a few days. That fits non-critical applications that can tolerate a short downtime. A hot site (A) is fully provisioned and running with current data, ready almost instantly - more than is needed for non-critical workloads and significantly more expensive. A cold site (B) provides space and basic utilities only, requiring days to weeks of work to bring services up - too long for a short-downtime requirement. A passive site (D) is not a standard CompTIA recovery-site category and is therefore not the right answer term. The warm site balances cost with the modest recovery-time tolerance described.

    Other CompTIA Network+ domains

    Practice all 107 Network Operations questions · Browse CompTIA Network+