Helping Hand Questions for N10-009

Site-to-Site VPN: A site-to-site VPN is used to securely connect two networks, such as a company's headquarters and a branch location, over the internet. This type of VPN creates a secure tunnel for data transmission, ensuring confidentiality and integrity.

Split-tunnel VPN (A): Allows some traffic to bypass the VPN tunnel, which may not secure all communications.

Clientless VPN (B): Used for individual users to access the network without VPN client software.

Full-tunnel VPN (C): Typically used for individual user traffic rather than connecting two networks.

LDAP over SSL (LDAPS) uses port 636 to provide secure, encrypted authentication for directory services.

Breakdown of Options:

A. SMTP (Simple Mail Transfer Protocol) – Uses port 25, not 636.

B. Syslog – Uses port 514 (UDP), not 636.

C. TFTP (Trivial File Transfer Protocol) – Uses port 69 (UDP), not 636.

D. LDAPS (Lightweight Directory Access Protocol Secure) – ✅ Correct answer. Uses port 636 for secure directory authentication.

The issue is that more students have arrived on campus, meaning the available IP addresses are exhausted. To fix this, the administrator should increase the DHCP scope size to allow more devices to obtain IP addresses.

Breakdown of Options:

A. Enable IP helper – IP helper is used to forward DHCP requests across different subnets. However, the problem here is that the DHCP scope is full, not that requests are not reaching the server.

B. Change the subnet mask – The subnet mask determines the number of available hosts, but changing it without increasing the IP pool does not help.

C. Increase the scope size – Correct answer. Expanding the DHCP scope provides more IP addresses for assignment.

D. Add address exclusions – Exclusions reserve IP addresses, which would further reduce available addresses instead of solving the issue.