Knowledge Tests

What is assessed?

The following subjects will be assessed:

• Networking Fundamentals: Covers foundational concepts in networking, including network models, protocols, addressing, and basic network components.
• Network Implementations: Focuses on the practical implementation of networks, including configuring routers, switches, and wireless networks, as well as understanding network infrastructure components.
• Network Security: Explores network security principles, techniques, and best practices, including authentication, encryption, firewalls, intrusion detection/prevention, and securing network devices.
• Network Troubleshooting: Involves diagnosing and resolving network problems, including issues related to connectivity, performance, hardware, and software configurations.

Exam Format and Delivery

This is a multiple-choice-question examination (MCQ) of 100 questions. You take the exam in your browser using MCSI's Online Learning Platform. To pass, you must obtain a 80 percent pass rate.

Designed for beginners

This exam is suitable for individuals with a bachelor's degree in information security or self-taught individuals who have acquired relevant knowledge and skills in cybersecurity.

The benefits of MCQ exams

It's been scientifically proven that taking an MCQ test improves the retention of the information being tested. Furthermore, taking a test has been shown to improve the retention of non-tested information if it is related to the tested material in a specific way.

All of our students are encouraged to take our Knowledge Tests to reinforce existing cybersecurity knowledge or learn knowledge that will help them advance in their jobs.

Certificate of Completion

If you pass this exam, you will earn a Certificate of Completion. This certificate can be added to your LinkedIn page as well as your resume.

Unlimited Attempts

Don't be concerned about failure. The main goal is to study and then concentrate on practical skills. These are the most crucial ones. As a result, using our Knowledge Tests, you can retake the exam as many times as necessary till you pass. The questions are designed to be challenging, and passing them is a rewarding experience. We also hope that allowing you to fail without repercussions will motivate you to try harder and not look for methods to cheat.

No exam renewal

This is not a phoney certification. We're not attempting to persuade you to renew it every few years, pay for an ongoing subscription, or purchase other products in order to maintain your CPEs. Study and pass your exam. Your certificate is good for the rest of your life. Then, we recommend that you concentrate on more advanced, practical certificates. In this field, practical skills are the most vital.

MCSI is a well-known and respected name in the field of cyber security education and training. Obtaining your MCSI certification will demonstrate your understanding of cyber security principles, technologies, and procedures, which will assist you in defending companies and individuals against threats.

• Demonstrate Your Knowledge of Networking Fundamentals

  Networking fundamentals encompass foundational concepts and technologies critical for communication and data exchange in IT systems, serving as the backbone for modern interconnected infrastructure. Understanding these principles is crucial for designing, implementing, and maintaining reliable and secure networks to support various applications and services.

  OSI Model (Open Systems Interconnection Model)

  The OSI model is a conceptual framework used to understand and standardize the functions of a networking system. It consists of seven layers: Physical, Data Link, Network, Transport, Session, Presentation, and Application.

  Data Encapsulation and Decapsulation

  Data encapsulation involves adding header information to data as it moves down the OSI layers, while decapsulation removes these headers as data moves up the layers.

  Maximum Transmission Unit (MTU)

  MTU is the largest size of a data packet that can be transmitted over a network link without fragmentation.

  Mesh Network Topology

  Mesh topology is characterized by every node being connected to every other node, providing redundant paths for data transmission and high resilience.

  Peer-to-Peer (P2P) Network

  A P2P network allows devices to communicate directly with each other without the need for a centralized server.

  Client-Server Network

  In a client-server network, client devices request services or resources from centralized servers.

  Network Address Translation (NAT)

  NAT is a technique used to modify IP address information in packet headers while they are in transit across a routing device.

  Port Address Translation (PAT)

  PAT is a type of NAT that maps multiple private IP addresses to a single public IP address using different port numbers.

  IP Class Types (IPv4)

  IPv4 addresses are classified into five classes: A, B, C, D, and E, based on their leading bits and address ranges.

  Classless Inter-Domain Routing (CIDR)

  CIDR is a method for allocating IP addresses and IP routing, enabling more efficient use of IP address space and simpler route announcements.

  Session Initiation Protocol (SIP)

  SIP typically uses port 5060 for establishing, modifying, and terminating multimedia sessions such as voice and video calls over IP networks.

  Transmission Control Protocol (TCP)

  TCP is a connection-oriented protocol responsible for establishing reliable and error-checked data transmission between applications on hosts in a network.

  User Datagram Protocol (UDP)

  UDP is a connectionless protocol that provides low-latency, best-effort delivery of data without error checking or retransmission.

  Internet Control Message Protocol (ICMP)

  ICMP is a network protocol used to send error messages and operational information about IP networks, often used for diagnostic and troubleshooting purposes.

  Start of Authority (SOA) DNS Record

  The SOA record specifies the authoritative DNS server for a domain and contains important information about the zone, such as the primary name server, contact email address, and zone refresh interval.

  Root DNS Server

  A root DNS server is a name server that stores the complete database of domain names and their associated IP addresses for the root zone of the Domain Name System (DNS).

  Infrastructure as a Service (IaaS)

  IaaS is a cloud computing model that provides virtualized computing resources over the internet, including virtual machines, storage, and networking infrastructure.

• Demonstrate Your Network Implementation Knowledge

  Network implementations encompass the deployment and utilization of various networking devices and protocols to establish and maintain communication networks effectively. These implementations are essential for connecting devices, optimizing data transmission, and ensuring reliable network performance across organizations and industries.

  Repeater

  A repeater is a network device that receives and regenerates incoming signals to extend the reach of a network segment.

  Bridge

  A bridge connects two or more network segments and forwards traffic selectively based on MAC addresses to enhance network performance.

  Intrusion Prevention System (IPS) / Intrusion Detection System (IDS) Device

  An IPS/IDS device monitors network traffic for suspicious activities, detecting and preventing potential security threats or breaches.

  Routing Internet Protocol (RIP)

  RIP is a distance-vector routing protocol used to exchange routing information between routers within an autonomous system.

  Open Shortest Path First (OSPF)

  OSPF is a link-state routing protocol that calculates the shortest path to destinations based on network topology and assigns costs to network links.

  Traffic Shaping

  Traffic shaping manages network traffic by prioritizing certain types of data, optimizing bandwidth usage, and ensuring quality of service (QoS).

  Quality of Service (QoS)

  QoS is a set of techniques to manage and prioritize network traffic based on specific criteria such as bandwidth, latency, and packet loss.

  Jumbo Frames

  Jumbo frames are Ethernet frames with larger payload sizes than standard frames, improving network efficiency by reducing overhead and processing time.

  Auto-Medium-Dependent Interface Crossover (MDI-X)

  MDI-X allows devices to automatically detect and configure the appropriate wiring for Ethernet connections, eliminating the need for crossover cables.

  Power over Ethernet (PoE) / Power over Ethernet Plus (PoE+)

  PoE/PoE+ delivers electrical power over Ethernet cables to power network devices such as IP cameras, wireless access points, and VoIP phones.

  Port Mirroring

  Port mirroring copies and sends network traffic from one port to another for monitoring, analysis, or troubleshooting purposes.

  Code-Division Multiple Access (CDMA)

  CDMA is a wireless communication technology that allows multiple users to access the same radio channel by assigning unique codes to each user.

  WiFi Protected Access (WPA)

  WPA is a security protocol used to secure wireless networks by encrypting data transmissions and authenticating devices.

  VPN Headend

  A VPN headend is the gateway or endpoint where VPN connections are terminated and encrypted data is decrypted.

• Demonstrate Your Network Security Knowledge

  Network security involves implementing measures to protect data and network resources from unauthorized access, attacks, and disruptions. Understanding these concepts is crucial for safeguarding information assets and ensuring secure communication across networks.

  CIA (Confidentiality, Integrity, Availability)

  The CIA triad represents three key principles of information security: confidentiality (ensuring data is accessible only to authorized individuals), integrity (maintaining data accuracy and consistency), and availability (ensuring data is accessible and usable by authorized users).

  Defense in Depth

  Defense in Depth is a security strategy that employs multiple layers of security controls to protect network resources. It involves implementing a combination of preventive, detective, and corrective security measures to mitigate risks.

  Security Information and Event Management (SIEM)

  SIEM is a software solution that collects, analyzes, and correlates security event data from various sources within an organization's IT infrastructure. It provides real-time monitoring and incident response capabilities to identify and mitigate security threats.

  Honeypot

  A honeypot is a security mechanism designed to lure attackers by mimicking vulnerable systems or services. It helps organizations gather information about potential threats and attackers' techniques.

  Perimeter Network

  A perimeter network (also known as DMZ or demilitarized zone) is a subnetwork that sits between an organization's internal network and external network (e.g., the internet). It hosts services accessible to external users while providing an additional layer of security.

  Denial-of-Service (DoS)

  A denial-of-service (DoS) attack is an attempt to disrupt the availability of a network or system by overwhelming it with excessive traffic, causing legitimate users to be unable to access the service.

  Rogue Access Point (AP)

  A rogue access point is an unauthorized wireless access point connected to an organization's network without proper authorization. It can pose security risks by providing unauthorized access to network resources.

  MAC Spoofing

  MAC spoofing is a technique used to impersonate another device's MAC address to bypass security measures that filter based on MAC addresses. It can be used to gain unauthorized access to a network.

  Role-Based Access

  Role-based access control (RBAC) is a security model that restricts system access based on the roles of individual users within an organization. It ensures that users have appropriate permissions based on their roles and responsibilities.

  Site-to-Site VPN

  A site-to-site VPN connects two or more networks securely over the internet or another public network. It allows organizations to extend their private network across multiple locations while encrypting data transmitted between sites.

  Virtual Network Computing (VNC)

  Virtual Network Computing (VNC) is a graphical desktop-sharing system that allows remote control of another computer over a network. It facilitates remote administration and troubleshooting of systems.

  MAC Filtering

  MAC filtering is a security measure that allows or denies network access based on the MAC addresses of devices. It can be used to restrict access to authorized devices only.

  Separation of Duties

  Separation of duties is a security principle that divides responsibilities among multiple individuals to prevent a single person from having complete control over critical tasks. It helps reduce the risk of fraud or errors.

• Demonstrate Your Network Troubleshooting Knowledge

  Network troubleshooting involves identifying, diagnosing, and resolving issues that affect network performance and connectivity. Network Troubleshooting is essential for maintaining operational networks and ensuring optimal performance.

  Light-emitting Diode (LED) Status Indicators

  LED status indicators provide visual feedback about the operational state of network devices or components. They can indicate power status, connectivity, or specific operational modes of devices.

  Attenuation

  Attenuation refers to the reduction in signal strength as it travels through a medium (e.g., cables or fiber optics), leading to degraded network performance or connectivity issues.

  Interference

  Interference occurs when external factors disrupt or degrade the quality of signals, affecting network performance. Common sources of interference include electromagnetic radiation or other wireless signals.

  Wireshark

  Wireshark is a network protocol analyzer used to capture and analyze network traffic in real-time. It helps troubleshoot network issues by inspecting packet data, identifying errors, and diagnosing performance problems.

  Ping Command

  The ping command sends ICMP Echo Request messages to a target device or host to test connectivity and measure round-trip time. It helps diagnose network connectivity issues and assess network latency.

  Traceroute/Tracert Command

  The traceroute (or tracert) command traces the route that packets take to reach a destination host. It helps identify network hops and diagnose routing issues or delays along the path.

  NMAP

  NMAP is a network scanning tool used to discover hosts and services on a network. It can be used for troubleshooting by identifying open ports, mapping network topology, and detecting potential vulnerabilities.

The images below illustrate examples of questions that could appear in the exam. Please note that none of the finest questions will be released. These samples should, however, give you an indication of what to expect.

Choose the publically routable IPv4 address from the following options

In network security, what is a "captive portal"?

Which layer of the OSI model ensures data integrity through mechanisms like flow control and error recovery?