Free Preparation Discussions
MENU
CompTIA CNX-001 Exam Questions
- Topic 1: Network Architecture Design: This section of the exam measures the skills of Network Architects and covers the ability to design scalable, secure, and efficient network architectures. It focuses on understanding design principles, selecting appropriate network components, and aligning architecture decisions with organizational needs. Candidates are expected to demonstrate a solid grasp of topology planning, high-availability configurations, and integration of cloud and on-premise systems to ensure reliability and performance.
- Topic 2: Network Security: This section of the exam measures the skills of Security Engineers and covers core practices for protecting network infrastructure. It includes applying firewall rules, implementing access control measures, and designing secure segmentation strategies. The content emphasizes threat mitigation techniques, secure configuration of networking devices, and adherence to compliance frameworks, preparing professionals to safeguard both internal and external network assets effectively.
- Topic 3: Network Operations, Monitoring, and Performance: This section of the exam measures skills of Network Operations Specialists and covers day-to-day operational management of network environments. It involves configuring monitoring tools, analyzing performance data, and responding to alerts. Candidates are evaluated on their ability to maintain network health, optimize throughput, and ensure consistent uptime by applying best practices for proactive performance tuning and operations management.
- Topic 4: Network Troubleshooting: This section of the exam measures the skills of Network Support Engineers and covers diagnosing and resolving connectivity and performance issues across various network layers. It focuses on identifying root causes, using diagnostic tools, and applying systematic troubleshooting methodologies. The goal is to ensure that professionals can minimize downtime, restore service quickly, and prevent recurring problems by maintaining a resilient and stable network environment.
Free CompTIA CNX-001 Exam Actual Questions
Note: Premium Questions for CNX-001 were last updated On May. 19, 2025 (see below)
A company is expanding its network and needs to ensure improved stability and reliability. The proposed solution must fulfill the following requirements:
Detection and prevention of network loops
Automatic configuration of ports
Standard protocol (not proprietary)
Which of the following protocols is the most appropriate?
The Spanning Tree Protocol (IEEE 802.1D) is a non-proprietary standard that automatically detects Layer 2 loops and dynamically places redundant switch ports into a blocking or forwarding state, ensuring loop prevention and automatic port configuration.
SIMULATION
A network administrator needs to resolve connectivity issues in a hybrid cloud setup. Workstations and VMs are not able to access Application A. Workstations are able to access Server B.
INSTRUCTIONS
Click on workstations, VMs, firewalls, and NSGs to troubleshoot and gather information. Type help in the terminal to view a list of available commands.
Select the appropriate device(s) requiring remediation and identify the associated issue(s).
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
Firewalls VPN tunnel down
The IPsec tunnel between on-prem Firewall 1 and cloud Firewall 2 (ipip0/ipip2) is down, so no traffic can traverse to the cloud.
Application NSG Misconfigured rule
There's a ''block'' rule for 10.3.9.0/24 192.2.1.0/24, preventing legitimate on-prem clients from reaching Application A.
A network architect is designing a solution to secure the organization's applications based on the security policy. The requirements are:
Users must authenticate using one set of credentials.
External users must be located in authorized sites.
Session timeouts must be enforced.
Network access requirements should be changed as needed.
Which of the following best meet these requirements? (Choose two.)
Single sign-on: Provides users with one set of credentials for authentication across all applications, simplifying access and reducing password fatigue.
Conditional access policy: Enforces location-based restrictions for external users, configurable session timeouts, and dynamic network access controls that can be updated as requirements evolve.
A network architect is working on a physical network design template for a small education institution's satellite campus that is not yet built. The new campus location will consist of two small buildings with classrooms, one screening room with audiovisual equipment, and 200 seats for students. Which of the following enterprise network designs should the architect suggest?
In a small satellite campus with limited buildings and user density, a collapsed-core (two-tier) design combines the core and distribution layers into a single set of switches. This minimizes hardware, simplifies management, and still provides the necessary segmentation and resiliency for the classrooms, screening room, and student seating areas.
An administrator needs to add a device to the allow list in order to bypass user authentication of an AAA system. The administrator uses MAC filtering and needs to discover the device's MAC address to accomplish this task. The device receives an IP address from DHCP, but the IP address changes daily. Which of the following commands should the administrator run on the device to locate its MAC address?
Running ipconfig /all on the device will display the physical (MAC) address of each network adapter, allowing you to copy the correct MAC for your allow-list entry.
- Select Question Types you want
- Set your Desired Pass Percentage
- Allocate Time (Hours : Minutes)
- Create Multiple Practice tests with Limited Questions
- Customer Support
Ernie
10 days agoJennie
12 days ago