Correct Answer:

Vulnerability scan is correct. Vulnerability scans identify weaknesses.

Incorrect Answer:

Subnet scan is incorrect. Subnet scans identify listening ports and may be performed for reasons other than to identify weaknesses.

Penetration test is incorrect. Penetration testing not only identifies weaknesses but also attempts to actively exploit them.

White-box test is incorrect. White-box testing is performed by the tester’s detailed knowledge of the IT environment’s implementation details.

Correct Answer:

To reduce costs is correct.

Scaling down resizes a virtual machine with less compute power, which reduces energy costs and cloud usage fees.

Incorrect Answers:

To increase performance is incorrect. Performance is not improved by scaling down.

To decrease performance is incorrect. While scaling down does decrease performance and uses less energy, this is normally not the reason it is done.

To enable high availability is incorrect. Scaling down is not related to high availability.

Correct Answer:

Load balancer is correct.

Cloud-based load balancers distribute incoming app requests to multiple back-end servers to improve performance.

Incorrect Answers:

Cloud template is incorrect. Cloud templates are used to provision multiple cloud resources, which could include load balancers.

Failover cluster is incorrect. Failover clusters provide applications with high availability.

Isolated cloud network is incorrect. Isolated cloud networks are useful for sandboxing but not improving application performance.

Correct Answer:

VXLAN is correct.

Virtual extensible LAN (VXLAN) is an overlay protocol that sits on top of OSI layer 2 and layer 3 protocols and allows users to rapidly and easily provision network configurations.

Incorrect Answers:

NAT is incorrect. Network address translation (NAT) allows private devices to access the Internet using a single public IP address.

TCP is incorrect. Transmission Control Protocol (TCP) is a packet transport mechanism.

UDP is incorrect. User Datagram Protocol (UDP) is a packet transport mechanism.

Correct Answer:

Virtual machine extensions is correct.

Virtual machine extensions are small programs that run in cloud virtual machines for enhanced functionality, such as virus scanning or centralized cloud logging.

Incorrect Answers:

Log forwarding is incorrect. Log forwarding is available in Unix, Linux, and Windows environments but is not the best solution for cloud environments.

Firewall is incorrect. Firewalls are security solutions and are not directly related to centralized logging.

IDS is incorrect. Intrusion detection systems (IDSs) are security solutions and are not directly related to centralized logging.

Correct Answer:

Create a cloud deployment template is correct.

Cloud deployment templates contain detailed instructions on the deployment of various cloud services. Deployment of cloud resources, such as with test environments, is simplified and expedited, since configuration details do not need to be specified; the instructions are contained within the template.

Incorrect Answers:

Update the SLA is incorrect. Service level agreements (SLAs) are contractual documents between service providers and consumers that provide details such as expected uptime.

Deploy virtual machine images is incorrect. Virtual machine images are used to deploy only virtual machines; a template can deploy not only virtual machines but additional cloud resources such as databases and load balancers.

Use orchestration is incorrect. Orchestration is a general term that encompasses runbooks, scripts, templates, and so on. Cloud deployment templates are a specific orchestration solution.

Correct Answer:

22 is correct.

Secure Shell (SSH) uses TCP port 22.

Incorrect Answers:

389 is incorrect. Lightweight Directory Access Protocol (LDAP) uses TCP port 389.

3389 is incorrect. The Windows Remote Desktop Protocol (RDP) uses TCP port 3389.

25 is incorrect. Simple Mail Transfer Protocol (SMTP) uses TCP port 25.

Correct Answer:

Baseline is correct.

Baselines indicate normal usage activity. Load testing applies normal usage activity against an application.

Incorrect Answers:

Public key is incorrect. Public keys are related to encryption and digital signatures, not load testing.

Private key is incorrect. Private keys are related to encryption and digital signatures, not load testing.

IP address is incorrect. The IP address is not required; load tests can be applied to a hostname.

Correct Answer:

Storage tiers is correct.

Storage tiers use policies to determine where data that meets specific conditions is stored.

Incorrect Answers:

Increased IOPS is incorrect. Increasing IOPS will increase disk speed, but this does not place only frequently used data on the fastest disks.

RAID 0 is incorrect. Configuring RAID 0 will increase disk speed, but this does not place only frequently used data on the fastest disks.

Scaling is incorrect. Scaling may increase disk or compute speed, but this does not place only frequently used data on the fastest disks.

Correct Answer:

Document the solution is correct. The last step in the CompTIA troubleshooting model is to document the solution.

Incorrect Answers:

Test the theory is incorrect. Testing your theory is step 3 in the CompTIA troubleshooting model and has already been done.

Establish a theory of probable cause is incorrect. Establishing a theory of probable cause is step 2 in the CompTIA troubleshooting model and has already been done.

Identify the problem is incorrect. Identifying the problem is step 1 in the CompTIA troubleshooting model and has already been done.