Online 312-38 Practice TestMore EC-Council Products >

Free EC-Council 312-38 Exam Dumps Questions

EC-Council 312-38: EC-Council Network Security Administrator (ENSA)

- Get instant access to 312-38 practice exam questions

- Get ready to pass the EC-Council Network Security Administrator (ENSA) exam right now using our EC-Council 312-38 exam package, which includes EC-Council 312-38 practice test plus an EC-Council 312-38 Exam Simulator.

- The best online 312-38 exam study material and preparation tool is here.

4.5

(4485 ratings)

Question 1

Rick has implemented several firewalls and IDS systems across his enterprise network. What should he do to effectively correlate all incidents that pass through these security controls?

A. Use firewalls in Network Address Transition (NAT) mode

B. Implement IPsec

C. Implement Simple Network Management Protocol (SNMP)

D. Use Network Time Protocol (NTP)

Correct Answer:D

Question 2

Which of the following network monitoring techniques requires extra monitoring software or hardware?

A. Non-router based

B. Switch based

C. Hub based

D. Router based

Correct Answer:A

Question 3

John is a network administrator and is monitoring his network traffic with the help of Wireshark. He suspects that someone from outside is making a TCP OS fingerprinting attempt on his organization's network. Which of the following Wireshark filter(s) will he use to locate the TCP OS fingerprinting attempt?

A. Tcp.flags==0x2b

B. Tcp.flags=0x00

C. Tcp.options.mss_val<1460>Tcp.options.wscale_val==20

Correct Answer:ABC

Question 4

A newly joined network administrator wants to assess the organization against possible risk. He notices the organization doesn't have a _______ identified which helps measure how risky an activity is.

A. Risk Severity

B. Risk Matrix

C. Key Risk Indicator

D. Risk levels

Correct Answer:C

Question 5

Lyle is the IT director for a medium-sized food service supply company in Nebraska. Lyle's company employs over 300 workers, half of which use computers. He recently came back from a security training seminar on logical security. He now wants to ensure his company is as secure as possible. Lyle has many network nodes and workstation nodes across the network. He does not have much time for implementing a network-wide solution. He is primarily concerned about preventing any external attacks on the network by using a solution that can drop packets if they are found to be malicious. Lyle also wants this solution to be easy to implement and be network-wide. What type of solution would be best for Lyle?

A. A NEPT implementation would be the best choice.

B. To better serve the security needs of his company, Lyle should use a HIDS system.

C. Lyle would be best suited if he chose a NIPS implementation

D. He should choose a HIPS solution, as this is best suited to his needs.

Correct Answer:C

Question 6

Frank is a network technician working for a medium-sized law firm in Memphis. Frank and two other IT employees take care of all the technical needs for the firm. The firm's partners have asked that a secure wireless network be implemented in the office so employees can move about freely without being tied to a network cable. While Frank and his colleagues are familiar with wired Ethernet technologies, 802.3, they are not familiar with how to setup wireless in a business environment. What IEEE standard should Frank and the other IT employees follow to become familiar with wireless?