CWSP-206 by CWNP Actual Free Exam Q&As

Question 1

Which of the following provides the best protection against a man-in-the-middle attack?

A. Strong encryption B. Fiber-optic cable C. Strong password D. Firewall

Discussion 0

Correct Answer: A Vote an answer

Question 2

Your client has a brand new laptop. He is trying to connect to his home network, which is using an older (802.11b) wireless router. The router is set for encryption but not MAC filtering. What is the most likely problem?

A. His physical address for the laptop is not in the router. B. His laptop has a newer operating system that cannot communicate with the router. C. His laptop is using the WPA encryption protocol. D. The laptop does not have a wireless NIC.

Discussion 0

Correct Answer: C Vote an answer

Question 3

WLAN protocol analyzers can read and record many wireless frame parameters. What parameter is needed to physically locate rogue APs with a protocol analyzer?

A. IP Address B. Signal strength C. BSSID D. SSID E. RSN IE F. Noise floor

Discussion 0

Correct Answer: B Vote an answer

Question 4

Which of the following would be the most help against Denial of Service (DOS) attacks?

A. Honey pot B. Stateful Packet Inspection (SPI) firewall C. Packet filtering firewall D. Network surveys.

Discussion 0

Correct Answer: B Vote an answer

Question 5

Joe's new laptop is experiencing difficulty connecting to ABC Company's 802.11 WLAN using
802.1X/EAP PEAPv0. The company's wireless network administrator assured Joe that his laptop was authorized in the WIPS management console for connectivity to ABC's network before it was given to him. The WIPS termination policy includes alarms for rogue stations, rogue APs, DoS attacks and unauthorized roaming. What is a likely reason that Joe cannot connect to the network?

A. Joe disabled his laptop's integrated 802.11 radio and is using a personal PC card radio with a different chipset, drivers, and client utilities. B. Joe's integrated 802.11 radio is sending multiple Probe Request frames on each channel. C. Joe configured his 802.11 radio card to transmit at 100 mW to increase his SNR. The WIPS is detecting this much output power as a DoS attack. D. An ASLEAP attack has been detected on APs to which Joe's laptop was trying to associate. The WIPS responded by disabling the APs.

Discussion 0

Correct Answer: A Vote an answer

Question 6

Which of the following is a wireless device that is created to allow a cracker to conduct a man-in- the-middle attack?

A. WLAN controller B. Lightweight Access Point C. Protocol analyzer D. Rogue access point

Discussion 0

Correct Answer: D Vote an answer

Question 7

Which of the following are NOT steps in securing your wireless connection? Each correct answer represents a complete solution. Choose two.

A. Strong password policies on workstations. B. Using either WEP or WPA encryption C. Not broadcasting SSID D. Hardening the server OS E. MAC filtering on the router

Discussion 0

Correct Answer: A,D Vote an answer

Question 8

Which of the following does PEAP use to authenticate the user inside an encrypted tunnel? Each correct answer represents a complete solution. Choose two.

A. GTC B. MS-CHAP v2 C. RC4 D. AES

Discussion 0

Correct Answer: A,B Vote an answer

Question 9

Which of the following security methods can be used to detect the DoS attack in order to enhance the security of the network?

A. WLAN controller B. WIPS C. Protocol analyzer D. Spectrum analyzer

Discussion 0

Correct Answer: B Vote an answer

CWNP CWSP Certified Wireless Security Professional - CWSP-206 Exam Practice Test