WGU Network Engineering and Security Foundation Exam Network and Security Foundation Exam Questions

Page: 1 / 14
Total 62 questions
Question 1

A person is troubleshooting a network issue and needs to see a list of all active network connections.

Which Linux command should be used?



Answer : B

The netstat command in Linux displays active network connections, listening ports, and network statistics. It is useful for diagnosing network issues and identifying open connections.

nslookup is for DNS queries.

dig provides DNS information, not network connection status.

ifconfig shows network interface details but does not list active connections.


Question 2

Which layer of the OSI model includes the TCP?



Answer : B

The Transport layer (Layer 4 of the OSI model) includes the Transmission Control Protocol (TCP), which provides reliable, connection-oriented communication. TCP ensures error-checking, sequencing, and retransmission of lost packets.

Application layer deals with end-user protocols like HTTP and FTP.

Session layer manages communication sessions but not transport protocols.

Network layer focuses on IP addressing and routing, not transport mechanisms.


Question 3

A company is developing a data protection methodology in order to improve data protection measures.

What is a strategy that should be used?



Answer : C

Enhancing physical resource security ensures that servers, networking devices, and data storage facilities are protected from unauthorized physical access, theft, or tampering. This includes measures like biometric authentication, surveillance, and restricted access zones.

Using a variable network topology does not directly protect data.

Increasing wireless access point range may improve connectivity but does not enhance security.

WEP is weak and should not be used for data protection.


Question 4

An attacker uses a poisoned domain name on the domain name server to navigate users to the attacker's site.

Which malicious attack strategy is represented in the scenario?



Answer : A

Pharming is an attack that manipulates the Domain Name System (DNS) to redirect users to fraudulent websites without their knowledge. Attackers poison DNS records or compromise routers to reroute traffic to malicious sites designed to steal information.

Brute-force attack involves password guessing, not domain manipulation.

IP address spoofing disguises a device's identity but does not alter DNS records.

Session hijacking takes over active user sessions but does not redirect websites.


Question 5

What is the layer of the OSI model that creates, maintains, and disconnects process communications over the network?



Answer : C

The Session layer (Layer 5 of the OSI model) is responsible for establishing, maintaining, and terminating communication sessions between network applications. It ensures that data exchanges remain synchronized and structured.

Data link layer handles error detection and frame transmission.

Physical layer deals with hardware-level transmission.

Transport layer ensures reliable data delivery but does not manage sessions.


Question 6

A library has a network that allows patrons to use their mobile devices to connect to the internet.

Which type of network is described?



Answer : D

A Wireless Local Area Network (WLAN) enables wireless connectivity within a defined geographic area, such as a library, office, or coffee shop. WLANs use Wi-Fi technology to allow users to access the internet without physical cables.

Storage Area Networks (SANs) are used for data storage and do not provide internet connectivity to users.

Metropolitan Area Networks (MANs) cover larger areas, such as cities, and are not used within a single building.

Personal Area Networks (PANs) connect personal devices like smartphones and laptops over short distances, such as via Bluetooth, but do not support public internet access.


Question 7

An attacker uses malicious software to disable network resources, demanding a ransom to restore access.

Which category describes the purpose of the attack?



Answer : B

This describes a ransomware attack, which falls under denial of availability because it prevents users from accessing their data or systems until a ransom is paid. Attackers use encryption to lock files, disrupting operations.

Data modification refers to unauthorized changes to information.

Data export involves stealing data rather than disabling access.

Launch point describes an attacker's use of a compromised system to attack others.


Page:    1 / 14   
Total 62 questions