Network Monitoring

_______ is a UDP-based application-layer protocol used to monitor and manage network devices like routers, switches, servers, and printers. It includes a managed device, an agent on the device, and a Network Management Station (NMS). The agent listens on UDP port 161, and the NMS receives alerts (traps) on UDP port 162.

SNMP (Simple Network Management Protocol)

IN SNMP the agent listens on _______, and the NMS receives alerts (traps) on _______.

UDP port 161 and UDP port 162.

An SNMP-compliant device includes a virtual database containing information about configuration and state of the device that can be queried by an SNMP management station. This type of data repository is referred to as:

MIB (Management information base)

Which of the existing SNMP versions support(s) encryption?

SNMPv3

An SNMP community string provides the functionality of a(n):

Password

Which SNMP version(s) use(s) community strings for authentication?

SNMPv1 and SNMPv2c

Which SNMP version(s) send(s) authentication data in an unencrypted form?

SNMPv1 and SNMPv2c

Which of the answers listed below refers to a network tool specifically designed to monitor network traffic patterns and usage statistics?

Flow data analyzer

Which of the following answers refer(s) to (a) dedicated software tool(s) designed to monitor and examine the contents of network traffic?

Protocol analyzer and Packet sniffer

_______ refer to the standard performance measurements of a network under normal operating conditions. These metrics serve as a reference point for detecting deviations in network performance.

Baseline metrics

_______ involves setting up automated alerts to notify administrators of a potential issue, such as when a metric exceeds or falls below an established baseline threshold.

Anomaly alerting/notification

Which of the answers listed below refers to a basic tool for collecting and storing log data?

Syslog aggregator

Which of the following answers refers to one of the core functionalities of SIEM (Security Information and Event Management).

Collects, aggregates, and analyzes log data

What is the main function of API (Application Programming Interface) integration in network monitoring?

Automated communication and data exchange

_______ lets an admin monitor network traffic by sending copies of data from one or more switch ports to a designated port with a packet analyzer.

Port mirroring

Which of the tools listed below enables the identification of devices, services, and network topology within a network (network discovery)?

Nmap

Examples of tools used for network traffic flow analysis include:

sFlow, Wireshark, and NetFlow

Which of the following tools is used for evaluating network efficiency and identifying potential bottlenecks (network performance monitoring)?

SNMP (Simple Network Management Protocol)

Which of the tools listed below is used to send echo requests to network devices and services to confirm their availability?

ICMP (Internet Control Message Protocol)