{"id":119921,"date":"2023-09-17T09:40:55","date_gmt":"2023-09-17T09:40:55","guid":{"rendered":"https:\/\/learnexams.com\/blog\/?p=119921"},"modified":"2023-09-17T09:40:59","modified_gmt":"2023-09-17T09:40:59","slug":"wgu-c700-final-examspre-assessment-secure-network-design-examslatest-2023-2024-updates-bundled-together-real-questions-and-verified-answers-a-grade","status":"publish","type":"post","link":"https:\/\/www.learnexams.com\/blog\/2023\/09\/17\/wgu-c700-final-examspre-assessment-secure-network-design-examslatest-2023-2024-updates-bundled-together-real-questions-and-verified-answers-a-grade\/","title":{"rendered":"WGU C700 Final Exams,Pre-Assessment : Secure Network Design Exams(Latest 2023\/ 2024 UPDATES BUNDLED TOGETHER) | Real Questions and Verified Answers | A Grade"},"content":{"rendered":"\n

WGU C700 Pre-Assessment Secure Network
Design Exam (Latest 2023\/ 2024) | Real
Questions and Verified Answers | A Grade
QUESTION
What should a network administrator do to ensure that the server operating system is up to date?
Install patches
Update default settings
Implement physical security
Limit the use of the root account
Answer:
Install patches
QUESTION
Which form of firewall control is implemented at the Layer 3 level of the OSI model?
Next-generation firewall
Circuit-level gateway firewall
Static packet-filtering firewall
Application-level gateway firewall
Answer:
Static packet-filtering firewall
QUESTION
Which Layer 2 control protocol is implemented to resolve internet protocol (IP) addresses into
media access control (MAC) addresses?
Address resolution protocol (ARP)
Hypertext transfer protocol (HTTP)
Internet message access protocol (IMAP)
Simple network management protocol (SNMP)<\/p>\n\n\n\n

Answer:
Address resolution protocol (ARP)
QUESTION
Which Layer 3 firewall can recognize malware applications?
Proxy
Circuit-level
Next-generation
Stateful packet inspection
Answer:
Next-generation
QUESTION
Which access point hardening technology must be used in conjunction with the 802.11i standard
for wireless transmission between the access point and the wireless client host?
Layer 2 switch
Layer 3 switch
Wireless access point
Protected access point
Answer:
Protected access point
QUESTION
Which hardening technique satisfies a policy that requires complete integrity from the download
source for all files downloaded by employees to the organization’s workstations?
Source-based firewall for packet inspection downloads
State-based firewall for packet inspection downloads
Intrusion prevention system (IPS) to quarantine downloaded files until they are approved by an
administrator<\/p>\n\n\n\n

Intrusion detection system (IDS) that requires the message-digest algorithm 5 (MD5) or the
secure hash algorithm (SHA) totals from the source
Answer:
Intrusion detection system (IDS) that requires the message-digest algorithm 5 (MD5) or the
secure hash algorithm (SHA) totals from the source
QUESTION
Which hardening technique satisfies a policy that requires complete confidentiality for data
transmission of customer financial data during a web-based purchase transaction that is sent to a
corporate web server from a customer web browser?
Implementing a Kerberos authentication process that is required for customers prior to sending
data
Implementing secure sockets layer (SSL) on the web server that is required for customers prior
to sending data
Requiring customers to use the secure real-time transport protocol to establish a connection with
the web server prior to sending data
Requiring customers to use the challenge handshake authentication protocol to establish a
connection to the web server prior to sending data
Answer:
Implementing secure sockets layer (SSL) on the web server that is required for customers prior
to sending data
QUESTION
Which hardening technique satisfies a policy that requires complete confidentiality for VoIP
communications?
Pretty good privacy (PGP)
Secure sockets layer (SSL)
MIME object security services (MOSS)
Secure real-time transport protocol (SRTP)
Answer:
Secure real-time transport protocol (SRTP)<\/p>\n\n\n\n

WGU C700 Secure Network Exam Design
(Latest 2023\/ 2024) | Actual Questions and
Verified Answers | A Grade
QUESTION
A device on a network is pinging over 100 endpoints on the infrastructure. The IP and MAC
addresses belong to the network management system. How- ever, the MAC address has been
spoofed. The machine is tracked down, and
it is an unknown rogue device that somehow got past the network admission control (NAC)
device.
Which action should be taken from this point forward?
Answer:
Contain and unplug this device from the network.
QUESTION
A network has been subjected to a series of simple yet aggressive attacks for a number of weeks.
The company’s leadership and security team want to know the type of information the attacker is
searching for, and the ways in which the attacker has been successful.
What are three methods that should be used to research the attacker’s inten- tions and
capabilities?
Choose 3 answers
Answer:
Honeynet
Padded cell
Honeypot
QUESTION
An alarm has been triggered based on the Intrusion Detection System (IDS) thresholds on a
company’s main operational network. An immediate analy- sis of the IDS logs shows an intruder
successfully breached the perimeter network defenses and began data exfiltration. Although the
network security<\/p>\n\n\n\n

administrator managed to lock out the intruder and deny access from the source, the company
must now go into “incident response” mode.
Which three goals should the administrator accomplish as quickly as possi- ble?
Choose 3 answers
Answer:
Minimize operational and network downtime. Restore the environment back to a secured normal
state.
Minimize loss (e.g., financial, reputational, data, intellectual property).
QUESTION
An application server was recently attacked, resulting in compromise of all transactional credit
card information via the website. It was revealed that the attacker was able to compromise a
system administrator’s computer via a spear phishing attack. This gave the attacker the ability to
compromise the application server.
Which network security management practice should be applied to treat these operational
weaknesses?
Answer:
Increase training of information technology staff on the dangers of social engineering.
QUESTION
An attacker compromises an Internet-facing web server. The attacker then uses the compromised
web server to gain unauthorized access to other internal servers.
Which control or design consideration prevents exploitation of the internal network?
Answer:
Demilitarized zone
QUESTION<\/p>\n\n\n\n

Recently, a company experienced several malware infections. Though the virus scanners have
been regularly updated, re-infections happen regularly. An investigation of the infected PCs
shows that several critical OS files have not been updated in more than a year.
Which two strategies should the company deploy in the future to detect and minimize the
possibility of this kind of infection?
Choose 2 answers
Answer:
Vulnerability assessments
Patch management
QUESTION
Company A has established a business partnership with Company B. Company A and Company
B need to securely interconnect their networks, while minimally impacting the end-user
experience.
How should access to these two networks be granted?
Answer:
Site-to-site VPN
QUESTION
A company’s chief information officer (CIO) has tasked the network secu- rity team with a set of
requirements for the next iteration of network security. The CIO wants a solution that will
implement the following items:
Access control<\/p>\n\n\n\n