Wednesday, May 29, 2013

Security+ Forensic Performance Based Question

Security+ Forensic Performance Based Question

If you’re planning to take the Security+ exam you can expect to see some performance based questions and you might even see a Security+ forensic performance based question. Performance based questions expect you to perform some action rather than simply answer a multiple choice question.

While the performance based questions are new, the actual Security+ objectives haven't changed since the SY0-301 objectives were first released. Some of the objectives use active words such as "Implement," "Execute," and "Analyze," and CompTIA is using performance based questions to test candidates for many of these objectives.

One of the objectives that can easily be used in a Security+ forensic performance based question is this: 2.3 Execute appropriate incident response procedures
  • Basic forensic procedures
    • Order of volatility

Sample Security+ Forensic Performance Based Question

As an example, you might see a question such as this: Q. Organize the following list in the correct order based on each item's volatility. List the items from most volatile to least volatile.

Security+ Forensic Performance Based Question Order of Volatility

Do you know the correct order? The answer and explanation is included later in this blog.
Pass the Security+ exam the first time you take it: CompTIA Security+: Get Certified Get Ahead: SY0-301 Study Guide

Order of Volatility

Order of volatility refers to the order in which you should collect evidence. “Volatile” doesn’t mean it’s explosive, but rather that it is not permanent. In general, you should collect evidence starting with the most volatile and moving to the least volatile.

Many forensic tools include the ability to capture volatile data. Once it’s captured, experts can analyze it and gain insight into what the computer and user were doing. You might not be the forensic expert capturing and analyzing the data, but you certainly don't want to be the technician that destroyed it. With this in mind, you should know the order of volatility of data and what you can do to protect evidence.

A processor can only work on data in random access memory (RAM), so all the data in RAM indicates what the system was doing. This includes data a user has been working on, system processes, network processes, application remnants, and much more. All of this can be valuable evidence in an investigation, but the evidence is lost when the computer is turned off. Because of this, it is important to realize you shouldn't power a computer down if it’s suspected to be involved in a security incident.

Data worked on by the central processing unit (CPU) is held in the CPU cache. A system has less cache than regular RAM so data in cache is more likely to be overwritten sooner than data in regular RAM. In other words, the CPU cache is more volatile than regular RAM and should be collected first if possible.

In contrast, data on hard disk drives (HDDs) remains on the HDD even after powering a system down. This includes any files and even low-level data such as the master boot record on a disk.

While a computer is running, it maintains a paging file (also called a swap file) as an extension of memory. The paging file is stored on the HDD so it is less volatile than RAM. However, the paging file is rebuilt after rebooting a computer so it is more volatile than regular files stored on a HDD.

Any data stored on a remote system is less volatile than data stored directly on a computer. As an example, many servers send log files to remote systems for centralized collection. Even if the original computer is completely destroyed, these log files are still available.

Last, data stored on archive media such as backup tapes of optical media is the least volatile. This data is offline and much less likely to be destroyed or corrupted than any online data.

The order of volatility from most volatile to least volatile is:
  1. Data in RAM, including CPU cache and recently used data and applications
  2. Data in RAM, including system and network processes
  3. Swap files (also known as paging files) stored on local disk drives
  4. Data stored on local disk drives
  5. Logs stored on remote systems
  6. Archive media
Realistic practice test questions for the Security+ exam. Available through LearnZapp on your mobile phone

Answer Security+ Forensic Performance Based Question

Q. Organize the following list in the correct order based on each item's volatility. List the items from most volatile to least volatile.
Security+ Forensic Performance Based Question Order of Volatility

You would need to use the testing interface to organize the items in the correct order. For example, you might need to drag and drop them so that they are in the correct order. The correct order is:

Security+ Forensic Performance Based Question Order of Volatility
Explanation
  1. Cache - Cache memory is more temporary than regular RAM. This includes central processor (CPU) cache or any other type of cache used in the system. It typically includes recently used data and information used by applications. It is more volatile than regular RAM because a system has significantly less cache memory than regular RAM so it will likely be overwritten quicker than regular RAM.
  2. RAM - RAM is slightly less volatile than cache memory. It can include information used by the system and network processes. It will be lost if the system is powered down (as will the cache memory).
  3. Paging file - This is also known as the swap file. It is an extension of RAM but it is stored on the hard drive. The paging file is rebuilt each time the system is rebooted so it is more volatile than regular data stored on a hard drive.
  4. HDD - Data stored on a hard disk drive (HDD) is semi-permanent. It remains on the hard drive even after the system is powered down and rebooted.
  5. Logs stored on remote systems - Any data stored on a remote system is less volatile than data stored on the target system. For this reason, many servers send log data to a remote system for centralized collection. Even if the server is completely destroyed, the centralized logs still have key data.
  6. Archive media - This includes any types of backups or copies of data captured for either recovery or archive purposes. They are generally offline and less likely to be destroyed or corrupted. For example, backup tapes and DVDs can be used as archive media.

Performance Based Question Blogs

Other Security+ Resources

Security+ Forensic Performance Based Question Summary

You can expect to see some performance based questions on the Security+ exam and you might even see a Security+ forensic performance based question related to order of volatility. While these are different froma typical multiple choice question, you can still answer them correctly as long as you know the content. The information from this blog was derived from the CompTIA Security+: Get Certified Get Ahead: SY0-301 Study Guide.

Monday, May 13, 2013

Network+ Tools


Network+ Tools

If you're preparing for the Network+ exam, you can expect to see some questions related to Network+ tools.  This includes:
  • Command line tools such as ipconfig/ifconfig, ping, tracert/traceroute, nslookup, dig, arp, netstat, route, and nbtstat.
  • Hardware tools such as cable testers, cable certifiers, crimpers, butt sets, toner probes, punch down tools, loop back plugs, TDRs, OTDRs, mulimeters, and environmental monitors.
  • Common cable problems and information on how to troubleshoot them using many of these tools.
A new Get Certified Get Ahead Kindle Short is now available. The CompTIA Network+: Tools (A Get Certified Get Ahead Kindle Short) covers all of these tools and will help you master the following Network+ objectives:
  • 3.6 Given a scenario, troubleshoot common physical connectivity problems.
  • 4.2 Given a scenario, use appropriate hardware tools to troubleshoot connectivity issues.
  • 4.3 Given a scenario, use appropriate software tools to troubleshoot connectivity issues.

Network+ Tools Practice Test Questions

Test your readiness with 60 realistic practice test questions in this Kindle short. Each question includes in-depth explanations so that you’ll know why the correct answer is correct and why the incorrect answers are incorrect. Here are two sample practice test questions from this Network+ tools Kindle Short.
1. You are troubleshooting connectivity issues with a Unix server and want to determine if it has valid IP address. What command would you use?
A. Ipconfig
B. Ifconfig
C. Ping
D. Arp
Answer at end of blog
2. Of the following choices, what is the BEST tool to verify a POTS line has a valid tone at the IDF?
A. Butt set
B. Toner probe
C. Punch down tool
D. Cable certifier
Answer at end of blog

Network+ Tools Chapter

This Kindle Short will be part of the full CompTIA Network+ Get Certified Get Ahead Study Guide written in the same style as the top selling CompTIA Security+: Get Certified Get Ahead Study Guide. It includes the following sections:
  • Introduction. Full description of the Network+ exam letting you know what you can expect when you take it. The introduction includes a section on the question types you can expect including information on the performance based questions.
  • Assessment questions. An 18-question assessment exam with realistic practice test questions to help you assess your understanding of key topics. All questions have in-depth explanations and this Kindle Short covers the content in more depth.
  • Full chapter: “Using Tools and Troubleshooting Networks.” A full chapter covering command line tools, hardware tools, software tools, and how to identify and troubleshoot common cable problems. The chapter includes "Remember This" text boxes throughout to help you focus on what you need to know for the exam.
  • Exam review. Review key testable information with this concise review section.
  • End of chapter practice test questions. 25 realistic practice test questions at the end of the chapter. Use these questions to test your understanding of the objectives covered in this eBook. The explanations help you master the content so that you can answer questions on the live exam no matter how CompTIA words them.
  • Practice questions. 17 more realistic practice test questions in an end of book practice exam. As with all other questions in this Kindle Short, these questions include in-depth explanations.
  • Acronym list. An acronym list covering all of the acronyms in this eBook plus many more needed for the Network+ exam.
All this for only $2.99. If you have a Kindle and Amazon Prime, you can get it for free from the Kindle Owner's Lending Library. If you don't have Amazon Prime, you can sign up for their 30-day free trial here.
If you don't have a Kindle, you can download free reading apps for just about any device from here.

More Kindle Shorts

You can use this Kindle Short along with other Kindle Shorts in the Get Certified Get Ahead Kindle Short series to focus your preparation for the Network+ exam.
Over 275 realistic practice test questions available in the
CompTIA Network+ N10-005: Practice Test Questions (Get Certified Get Ahead)Kindle book.
Only $9.99.
Free Kindle apps available for any platform.

Can You Identify These Tools?

You should be able to match pictures with tool names on the Network+ exam. The pictures in the following table are from this Kindle Short. Can you name them?
1)Network+ Tools Toner Probe2)Network+ Tools Cable Certifier
 3)Network+ Tools Butt Set4)Network+ Tools Crimper
Here's a hint. The objectives expects you to know about the following hardware tools:  cable tester, cable certifier, crimper, butt set, toner probe, loop back plug, TDR, OTDR, multimeter, or environmental monitor?
Join the conversation and get more free practice test questions on The Get Certified Get Ahead Facebook Page

Network+ Tools Practice Test Question Answers

1. You are troubleshooting connectivity issues with a Unix server and want to determine if it has valid IP address. What command would you use?
A. Ipconfig
B. Ifconfig
C. Ping
D. Arp
B is correct. You would use the ifconfig command on Unix/Linux-based systems to view TCP/IP configuration information. You would use ipconfig on Windows systems to provide similar information. Ping checks connectivity between systems. Arp shows media access control (MAC) addresses that the system has mapped to IP addresses.
Realistic practice test questions for the Network+ N10-005 exam Available through LearnZapp on your mobile phone
2. Of the following choices, what is the BEST tool to verify a POTS line has a valid tone at the IDF?
A. Butt set
B. Toner probe
C. Punch down tool
D. Cable certifier
A is correct. You would use a butt set to troubleshoot phone issues including issues related to a plain old telephone service (POTS) line terminated at an intermediate distribution frame (IDF). A valid tone on a phone line is a dial tone. You can use a toner probe to help you locate a cable terminated at an IDF but it is not the best choice to verify a POTS line has a valid dial tone. Punch down tools secure cables to a frame. Cable certifiers verify the integrity and operation of a cable.

More Network+ Resources

If you're studying for the Network+ exam and want to pass the first time you take it, check out these resources:

Summary

If you're preparing for the Network+ exam, you should know the Network+ tools. This includes both software-based command line tools, and hardware-based tools. The CompTIA Network+: Tools (A Get Certified Get Ahead Kindle Short) covers all of these tools and will help you master these Network+ tools objectives so that you can pass the Network+ exam the first time you take it.

Thursday, May 9, 2013

Network+ WAP Performance Based Questions

Network+ WAP Performance Based Questions

If you’re planning on taking the Network+ exam you can expect to see some Network+ WAP performance based questions. These questions expect you to know how to configure a wireless access point (WAP). Even if you've done it once or twice, it might not be fresh in your mind so it's good to review the topics. 

Networks commonly use wireless access points (WAPs) and configuring security with them is an important skill to have. CompTIA stresses this on both the Network+ and Security+ exams. You should be able to configure basics such as:
  • Change the SSID
  • Enable/disable SSID broadcast
  • Enable MAC address filtering
  • Configure security such as WPA and WPA2
  • Configure WPA/WPA2 Enterprise
Ideally, you should get your hands on a WAP or a wireless router used in many homes and small offices home offices (SOHOs). They are easily accessible and aren't expensive. The experience configuring it is valuable for on the job and the exam.

The following sections show how to configure a Cisco M20 wireless router. All devices aren't exactly the same, but you'll find similar settings if you click around.
Pass the Network+ exam the first time you take it: CompTIA Network+ N10-005 Practice Test Questions (Get Certified Get Ahead)

Accessing the Administration Page

Wireless access points have web pages you can use to configure settings. You can access the administration pages by entering the IP address of the access point into the web browser. The IP address of most access points is either 192.168.1.1 or 192.168.0.1.

After entering the IP address, you're prompted to enter the name and password for the administrator account. These also have defaults such as "admin" for the administrator account and "admin" for the password but it is highly recommended to change the defaults.

Network+ WAP Performance Based Questions - Change the SSID

The service set identifier (SSID) is the name of the network.  It is a case sensitive string of up 32 characters. Devices come with a default SSID and it's recommended to change the SSID from the default as a best practice.

The following figure shows the basic setting for SSID. On this WAP, you have to select the Wireless main menu and the Basic Wireless Settings submenu.  You then enter the desired network name for in the Network Name (SSID) text box. In the figure, I used the SSID of MyHomeWAP but any name with 32 characters can be used.
  Configure SSID for Network+ WAP Performance Based Questions

Network+ WAP Performance Based Questions - Enable/Disable SSID Broadcast

You can hide a wireless network from casual users by disabling SSID broadcast and a performance based question might require you to select one of these settings. The following figure shows how this is done on a sample access point.
  Disable SSID for Network+ WAP Performance Based Questions 
 It's important to realize that even if you disable SSID broadcast, attackers can still discover the SSID with a wireless sniffer. In other words, disabling SSID broadcast doesn't provide any real security. You can read more about in the  Disable SSID Broadcast or Not? blog.

Enable MAC Address Filtering

Another configuration you might need to implement for Security+ WAP performance based questions is media access control (MAC) address filtering. The MAC address is assigned to the network interface card (NIC) when it is manufactured and you can use it to identify specific devices. When used within a MAC address filter, you can restrict access to the wireless network to specific devices based on their MAC address.

As an example, the following figure shows a MAC address filter configured on a wireless access point.  You can see that it is enabled and configured to "Permit PCs listed below to access the wireless network." The wireless client list includes five MAC addresses. Devices with these MAC addresses will be allowed access to the network, but other devices will be blocked.

MAC Filter for Security+ WAP Performance Based Questions

This setting isn't restricted to only PCs. Any wireless device has a MAC address including tablet devices and smartphones.

You can also configure a MAC address filter to block specific devices. For example, if your neighbor is using your access point to access the Internet, you can block his system using his MAC address. You would select the first setting "Prevent PCs listed below from accessing the wireless network" and enter the MAC address of his system.

Network+ WAP Performance Based Questions -

Configure Security Such as WPA and WPA2

You also need to know how to configure basic security setting such as Wi-Fi Protected Access (WPA) or Wi-Fi Protected Access version 2 (WPA2). You can typically select the appropriate setting from a drop down box and then enter the appropriate passphrase. The settings entered on the access point must be used on all devices that connect to the access point.

The following figure shows these settings.

  WPA 2 for Network+ WAP Performance Based Questions

Configure WPA/WPA2 Enterprise

Both WPA and WPA2 operate in either Personal or Enterprise modes. Most home and small business networks use Personal mode using a passphrase or password.

Larger enterprises add additional security to WAPs with WPA Enterprise or WPA2 Enterprise.  Enterprise mode provides additional security by adding an authentication server and requiring each user to authenticate through this server. Authentication requires all users to prove their identities and a common way authentication is accomplished is with a username and password. A user claims an identity with a username and proves the identity with a password.

Enterprise mode requires an 802.1x server typically configured as a Remote Authentication Dial-In User Service (RADIUS) server, which is configured separately from the access point. The RADIUS server has access to the user’s authentication credentials and can verify when a user has entered authentication information correctly.

The following figure shows the configuration for an access point using WPA2 Enterprise. After selecting WPA2 Enterprise from the drop down box, the  selections change. You then need to enter the IP address of the RADIUS server and the shared secret configured on the RADIUS server. The default port for RADIUS is 1812 and you only need to change this if the RADIUS server is using a non-default port.

RADIUS for Network+ WAP Performance Based Questions

Other Network+ Resources

Kindle Shorts

I'm writing chapters on the Network+ exam and publishing them as Kindle Shorts. So far, I have published two:

Practice Test Questions for your Mobile Device

Instead of the Kindle book, you can purchase these questions for your mobile device. I've partnered with Learnzapp and they have published several apps for a variety of different platforms.

Network+ WAP Performance Based Questions Summary

You can expect to see some Network+ WAP performance based questions on the Network+ exam. These questions expect you to know how to configure a wireless access point (WAP) including the SSID, MAC address filtering, and security settings such as WPA2 Personal or WPA2 Enterprise.

Wednesday, May 8, 2013

Network+ Practice Test Questions Book Update

Network+ Practice Test Questions Book Update

I just updated the Network+ Practice Test Questions book (CompTIA Network+ N10-005 Practice Test Questions (Get Certified Get Ahead)).

Some of the changes are minor text issues to correct typos. However, a much bigger change is the addition of a section on performance based questions. It provides a list of the different types of performance based questions you might see along with some examples.

I also modified the labels of the different sections for each chapter, hopefully to make them clearer.
  • Quiz mode section. It shows a practice test question on one screen so that you can focus on only the question without seeing the answer. When you decide what you think is the correct answer, go to the next Kindle screen to see if you’re correct. 
  • Flash cards section.  One Kindle screen shows a flash card type question and the next Kindle screen shows the answer. If the flash card question or answer includes an acronym, it is spelled out on the answer screen.
  • Practice test mode section. This section repeats the questions in the Quiz Mode section but it doesn’t have the correct answers and explanations readily available. This allows you to go through all of the questions in the section without seeing the answers as you go through them. Use this section to test your readiness. Ideally, you should be able to look at the answers and know why the correct answer is correct, and why the incorrect answers are incorrect. Don’t worry if you’re not sure though. The next section repeats the question with the full answer and explanation.
  • Review mode section. This section repeats the questions from the practice test mode section but also includes the answers on the same screen.
Each chapter includes all four sections and you can use one of the sections to study from, or all of them.

Pass the Network+ exam the first time you take it
 

Performance Based Question Links

This page includes links to multiple Network+ blogs I've written. It also includes a section titled Network+ Performance Based Questions with these links:

Kindle Shorts

I'm also writing chapters on the Network+ exam and publishing them as Kindle Shorts. So far, I have published two:

Practice Test Questions for your Mobile Device

Instead of the Kindle book, you can purchase these questions for your mobile device. I've partnered with Learnzapp and they have published several apps for a variety of different platforms.

  You Can Pass Network+ - Get Certified Get Ahead

Monday, May 6, 2013

Performance Based Question Winner

Performance Based Question Winner

Congratulations to Alan Brown, the Performance Based Question winner on the Get Certified Get Ahead Facebook page. He correctly identified the link page to the blog on Security+ performance based questions

I was originally going to give away a copy of the new A+ Rapid Review book but Alan recently completed his Security+ exam. I gave him some options and he chose the SSCP Systems Security Certified Practitioner All-in-One Exam Guide instead. My wife got the book into the mail today.

Performance Based Questions

CompTIA only recently starting adding these to the Security+ exam and I'm occasionally hearing from people that are surprised by the performance based questions. I have done a few things to try to raise the awareness of these including:
This contest on the Get Certified Get Ahead Facebook page was another attempt to raise the awareness of these questions.

Ideally, I could update the CompTIA Security+: Get Certified Get Ahead: SY0-301 Study Guide with information on these but with the new SY0-401 Security+ exam on the horizon it just isn't feasible to update it. Thankfully, the study guide covers all of the content that are testable by these types of questions. It just doesn't talk about anything other than multiple choice questions.

If you know someone that will be taking the Security+exam, make sure that they are a performance based question winner too.  Tell them about the blogs that cover them so that they won't be surprised.

Saturday, May 4, 2013

Security+ Practice Test Question


Security+ Practice Test Question

Here's a Security+ Practice Test Question I posted this week on my Get Certified Get Ahead Facebook page.

Q. What is the difference between a worm and a virus?
A. A worm is self-replicating but a virus isn’t self-replicating.
B. A virus is self-replicating but a worm isn’t self-replicating.
C. A virus runs in response to an event such as a date, but a worm runs on its own schedule.
D. A worm runs in response to an event such as a date, but a virus runs on its own schedule.

Do you know the answer? More, do you know why the correct answer is correct and why the incorrect answers are incorrect?

Free Security+ practice test questions like this are posted on the Get Certified Get Ahead Facebook page on Thursdays. Each week, you'll see a new Security+ practice test question along with the answer to the previous week's Security+ practice test question.

A+ practice test questions are posted on Tuesdays.

Network+ practice test questions are posted on Wednesdays.

Security+ Practice Test Question - You Can Pass - Get Certified Get Ahead

Are You Ready for the Security+ Exam?

People commonly use practice test questions when preparing for any certification, and as a final step to ensure they are ready. Practice test questions are great to help you take your understanding to a deeper level and to test your ability to pass the exam the first time you take it.

Be careful though. Some people try to memorize questions and answers but this isn't helpful. CompTIA can slightly modify the answer making the original answer incorrect. If you've only memorized the question and answer you won't be able to answer the modified question correctly.

Ideally, you should be able look at any practice test question and know definitively why the correct answers are correct and why the incorrect answers are incorrect.  This way, you can answer the live questions correctly no matter how CompTIA words them.

Security+ Practice Test Question Resources

If you're pursuing the Security+ certification, check out these additional resources:

Security+ Practice Test Question Summary

Check out the Get Certified Get Ahead Facebook page for free practice test questions on A+, Network+, and Security+ exams. Each week you'll see a new practice test question. You'll also see the question from the previous week repeated with the answer and an explanation.

Apps for your mobile devices by LearnZapp Security+ Practice Test Questions for your mobile phone - LearnZapp

Friday, May 3, 2013

Network+ OSI Topics

Network+ OSI Topics

If you're preparing for the Network+ exam, you can expect to see some questions related to Network+ OSI topics.  The Open Systems Interconnection (OSI) reference model includes seven layers and you're expected to have some basic knowledge about these layers including the specific layers where different devices and protocols operate. The CompTIA Network+ OSI Topics (A Kindle Short) (only $2.99) covers the OSI model in depth, but this blog summarizes the important topics.

The OSI model is fully documented in ISO/IEC 7498 and can be quite complex. However, you don't need to maser the OSI model completely when studying the Network+ OSI topics. As an example, here are two practice test questions:

 Which layer of the OSI model is responsible for transmitting individual bits?
 A. 1
 B. 3
 C. 4
 D. 7

Which layer of the OSI model transmits data as frames?
A. Data Link
B. Physical
C. Network
D. Transport
Over 275 realistic practice test questions available in the CompTIA Network+ N10-005: Practice Test Questions (Get Certified Get Ahead) Kindle book.Only $9.99. Free Kindle apps available for any platform.

Know the Layers

At the most basic layer, you need to know the layers including their names and numbers. The following figure shows them along with two common mnemonics used to memorize them.
Network+ OSI Layers
After memorizing the mnemonic, you also need to remember which layer is layer 1, and which layer is layer 7. This memory technique may help you remember that the Application layer is layer 7. You may have heard about a “layer 8 error” which is a cryptic way of saying the error is a user error. What does a user interact with? Applications. A user on the mythical layer 8 interacts with applications, which are on layer 7.

I don’t mean to belittle users or user errors – I’m a user and I make my fair share of errors. However, this memory trick has helped me and many other people remember that the Application layer is layer 7. Combined with one of the mnemonics, you can then list all of the layers. The following sections introduce each of these layers.

Know the Hardware

In addition to knowing the layers, you also need to know what devices operate on different layers. The following figure shows some of the common hardware devices you should know about.

Network  OSI hardware

Know the Protocols

You should also be aware of different protocols specified within the Network+ objectives and which layer they operate on. The following table identifies common protocols used on different layers that you should know:

 Network+ OSI Protocols
Join the conversation and get more free practice test questions on The Get Certified Get Ahead Facebook Page

Know the Data Names

Data is referred to with different names on different layers within the OSI model as follows:
  • Layer 1 Physical Bits (or a bit stream)
  • Layer 2 Data Link Frames
  • Layer 3 Network Packets
  • Layer 4 Transport Segments
  • Layer 5 Session protocol data unit (PDU)
  • Layer 6 Presentation PDU
  • Layer 7 Application PDU

 A Simple Exercise to Remember the OSI Model

When I teach Network+ classes, we often repeat the following exercise regularly. Students start with a blank sheet of paper and then simply write down the mnemonic that they remember (such as Please Do Not Throw Sausage Pizza Away or All People Seem To Need Data Processing) with each word on a separate line. Next, they write down the layer numbers and the layer names.

When doing this, I encourage them to include everything they can remember without looking. Afterwards, I ask them to check their work and fill in everything that they missed or they couldn’t remember. From a learning perspective, there’s a lot to be said for combining multiple senses and this forces them to engage different parts of their brain to remember and then write.

During a weeklong class, we do this once or twice a day and during a college class we do it for almost every class meeting. However, I have the students progressively add more and more information such as the data name at different layers, then the devices, and the protocols. By the end of the class, they have written this table out several times and when they take the live exam, OSI questions are a breeze.

 You can do the same exercise. Periodically write down everything you can remember from memory and then double check your work with the following two tables. Don’t worry if you don’t memorize them all at first, but make sure you still fill in the blanks. The more you do it, the more you’ll remember.
  Network+ OSI Devices   Network+ OSI Protocols

Match the OSI and TCP/IP Model Layers

Last, you need to know the names of the TCP/IP model layers and how they match to the OSI model. The following table shows how they match up.You can do the same exercise starting with a blank sheet of paper and listing the layers of the OSI and TCP/IP models.
  OSI dnd TCP/IP Models

Practice Test Question Answers

Which layer of the OSI model is responsible for transmitting individual bits?
A. 1
B. 3
C. 4
D. 7

A is correct. Bits are transmitted on layer 1 (the Physical layer) of the Open Systems Interconnection (OSI) model. Bits are not transmitted on layer 3 (the Network layer), layer 4 (the Transport layer), or layer 7 (the Application layer).
Realistic practice test questions for the Network+ N10-005 exam Available through LearnZapp on your mobile phone
Which layer of the OSI model transmits data as frames?
A. Transport
B. Physical
C. Network
D. Data Link

D is correct. The Data Link layer (layer 2) of the Open Systems Interconnection (OSI) model transmits data as frames. The Transport layer (layer 4) transmits data segments. The Physical layer (layer 1) transmits data as bits. The Network layer (layer 3) transmits data as packets.

More Network+ Resources

If you're studying for the Network+ exam and want to pass the first time you take it, check out these resources:

Summary

If you're preparing for the Network+ exam, you should know the Network+ OSI layers including their names, numbers, and the specific layers where different devices and protocols operate. You'll also need to know how the TCP/IP models map to the OSI layers.

A+ Rapid Review

A+ Rapid Review Released

If you're preparing for the A+ exam, you might like to know that the new A+ Rapid Review book has been released.  This book is a a perfect supplement to one of the larger A+ books such as the CompTIA A+ Training Kit (Exam 220-801 and Exam 220-802).

At only 410 pages, the A+ Rapid Review book is much smaller than the 1024 pages of the A+ Training Kit and it doesn't go into as much depth in the A+ topics. However, the A+ Rapid Review book is invaluable in helping you understand what you know and what you don't know prior to walking into the testing center.

You Can Pass A+ - Get Certified Get Ahead
The A+ Rapid Review book covers all of the objectives for the A+ exam and reinforces the key concepts. It includes nine chapters matched to the nine domains in the 220-801 and 220-802 exams.

Exam 220-801

  • Chapter 1 PC Hardware
  • Chapter 2 Networking
  • Chapter 3 Laptops
  • Chapter 4 Printers
  • Chapter 5 Operational Procedures

Exam 220-802

  • Chapter 6 Operating Systems
  • Chapter 7 Security
  • Chapter 8 Mobile Devices
  • Chapter 9 Troubleshooting
As an example of what you'll see in the A+ Rapid Review book, here's an excerpt from Chapter 8 Mobile devices.

Chapter 8 Mobile devices

The Mobile Devices domain covers approximately 9 percent of the A+ 220-802 exam. It includes various mobile devices that are commonly used today, such as smartphones and tablets. As a PC technician, you need to be aware of the different types of operating systems used by these devices, how they can connect to a wireless network and the Internet, methods used to secure them, and how they can be synchronized. You also need to be aware of the hardware differences between tablets and laptops, such as what can be serviced or upgraded on each.

This chapter covers the following objectives:
  • Objective 3.1: Explain the basic features of mobile operating systems
  • Objective 3.2: Establish basic network connectivity and configure email
  •  Objective 3.3: Compare and contrast methods for securing mobile devices
  • Objective 3.4: Compare and contrast hardware differences in regards to tablets and laptops
  • Objective 3.5: Execute and configure mobile device synchronization

Objective 3.1: Explain the basic features of mobile operating systems

The CompTIA exam focuses on the Android and iOS operating systems used on many mobile devices. You need to know which operating system is used on which devices, and where users can purchase apps for these devices. This objective specifically mentions the accelerometer and gyroscope used in many devices and how they are used by different apps. Touch devices can sometimes require screen calibration, and you should understand what this is and when it is needed. Last, you need to know what is meant by terms global positioning system (GPS) and geotracking, and how they can be used with location services.

Exam need to know...

  • Android vs. iOS For example: Which operating system is open source? Where can apps be purchased for devices using the iOS operating system?
  • Screen orientation and calibration For example: What determines whether a tablet is moving and how quick it is moving? What hardware is required to maintain screen orientation?
  • GPS and geotracking For example: What is geotracking? What is a benefit of location services?

Android vs. iOS

Mobile devices created and sold by Apple use the iOS operating system. Many other mobile devices use the Android operating system, which is closely associated with Google.

NOTE While the Windows 8 phone and Windows 8 tablets are in use, they aren’t currently included in the objectives for the CompTIA exams.

True or false? The Android operating system is an open source operating system.

Answer: True. The Android operating system is a Linux-based operating system, which is open source. 

Many different hardware companies use the Android operating system on devices they create and sell. They don’t have to pay Google or anyone else to use the operating system. In contrast, only Apple makes hardware devices using the iOS operating system. No other company is authorized to use it on non-Apple devices. The difference between open source and closed source software is defined as follows:
  • Open source software is freely available to anyone. Developers can modify and redistribute the code without paying anyone else for the license to use it.
  • Closed source software (also called vendor-specific software) is proprietary to a company and not available without a license to use it.
EXAM TIP Ensure that you know the difference between open source and closed source software. Android is open source software, and iOS is closed source or vendor-specific software.

True or false? You can purchase iOS-based applications only from Apple’s App Store.

Answer: True. Apple tightly controls all software used on Apple devices, and this software can be purchased only from Apple’s App Store.

A benefit of the App Store is that the applications are free from viruses. Apple screens all applications before making them available for purchase. If a virus is discovered, it can be immediately removed from the store. Additionally, if a developer does upload a virus, Apple knows the developer’s identity and can take immediate action against the developer.

Android-based apps are available through Google Play (previously called Android Marketplace), and Google controls the apps available here. However, there are additional locations where users can purchase Android apps. For example, Amazon includes a section where you can buy Android-based apps.

EXAM TIP Apps for Apple devices are purchased only through the Apple App store. Users can access the App store directly from any Apple device. Apps for Android-based systems are available through Google Play primarily, but they can also be purchased through other sources.

MORE INFO You can visit the Google Play site here: https://play.google.com/store. Microsoft also has a store where apps can be purchased for mobile devices, which you can view here: http://www.windowsstore.com/.

Screen orientation and calibration

Mobile devices such as tablets and smartphones can automatically sense their orientation. They can modify the display for the user, such as change from portrait mode to landscape mode based on how the user is holding the display.

True or false? Tablets use an accelerometer and a gyroscope to determine the position of the device. 

Answer: True. Many devices have a single chip with an accelerometer and a gyroscope used to determine the position of the device.

The accelerometer/gyroscope chip sends an output to the operating system and applications. If the feature is enabled in the operating system and supported by the app, the display is automatically adjusted when the user changes the orientation of the device. For example, a user can be reading an eBook in an app using portrait mode, with the device held so that the height is greater than the width. If the user repositions the device so that the width is greater than the height, the device automatically switches to landscape mode. 

Optionally, you can disable the feature so that the display remains constant no matter how the device is held. For example, you can enable Rotation Lock on an iPad to lock the display.

True or false? An accelerometer can measure how fast a tablet is moving in a given direction.

Answer: True. The accelerometer measures velocity or speed of the tablet in a given direction. This is often used with games on tablet devices.

EXAM TIP Accelerometers and gyroscopes are embedded into mobile devices to determine the device’s position. The gyroscope detects how the user is holding the device so that the screen orientation can automatically be adjusted to portrait or landscape mode. The accelerometer detects when the device is moved and how fast it is moving, a feature that is used in some games and apps.

True or false? If the device cannot determine its position, you can sometimes recalibrate it by moving the entire device in a figure 8 pattern.

Answer: True. In some cases, the device can no longer determine its position. You can hold the device with both hands in front of you and move it in a figure 8 pattern to recalibrate it.

EXAM TIP Not all mobile devices include a gyroscope. If you find that a device is not automatically switching between landscape and portrait mode, it could be because the device doesn’t have a gyroscope or because the feature is disabled.

Can you answer these questions?

You can find the answers to these questions at the end of this chapter.

1. Is the Android operating system closed source or open source?
2. Where are apps for devices running iOS purchased?
3.What is the purpose of the gyroscope and accelerometer in a mobile device?
Realistic practice test questions for the Network+ exam. Available through LearnZapp on your mobile phone

Answers

This section contains the answers to the “Can you answer these questions?” sections in this chapter. 

Objective 3.1: Explain the basic features of mobile operating systems

1. The Android operating system is an open source operating system based on the Linux operating system.
2. iOS is the Apple operating system, and apps can be purchased at Apple’s App store.
3. The gyroscope determines the screen orientation and can be used to modify the display when the user changes the orientation of the device. The accelerometer determines how fast a device is moving.

Summary

If you want a quick review of the concepts you'll be tested on in the A+ exams, check out the A+ Rapid Review book. It provides you with a quick, concise review of the objectives and reminds of the testable concepts.