Protocol Analysis

WCNA
Wireshark Certified Network Analyst
QUESTION & ANSWERS

https://www.dumpsgeek.com/WCNA-pdf-dumps.html
QUESTION 1

UDP is a connection oriented protocol

A. True
B. False

Correct Answer: B

QUESTION 2

Where can you find ‘Expert Information’ function in Wireshark ?

A. Analyze
B. Tools
C. Statistics
D. Capture

Correct Answer: A

QUESTION 3

What is a network baseline ?

A. Packet capture during abnormal network conditions

B. Packet capture during normal network conditions
C. Both A & B
D. None of the above

Correct Answer: B

QUESTION 4

Which IP addresses are routed on the internet ?

A. Private IP address
B. Public IP address

https://www.dumpsgeek.com/WCNA-pdf-dumps.html
C. loopback address
D. None of the above

Correct Answer: B

QUESTION 5

Referring to Packet 1513 in below, What should be the size of its layer 3 header ?

A. 32 Bytes
B. 40 Bytes
C. 20 Bytes
D. 64 Bytes

Correct Answer: D

QUESTION 6

GeoIP feature available in Wireshark launches an OpenStreetMap view of the world from the
Endpoints window to plot IP addresses which are captured in the trace file.

A. True
B. False

Correct Answer: A

QUESTION 7

Any display filters created and saved while viewing the trace file shown above will be saved in the
"Default" profile directory.

https://www.dumpsgeek.com/WCNA-pdf-dumps.html
A. True
B. False

Correct Answer: B

QUESTION 8

What is the Protocol Number for UDP in hexadecimal notation ?

A. 0x01
B. 0x11
C. 0x06
D. 0x02

Correct Answer: B

QUESTION 9

How many layers are there in TCP/IP model ?

A. 4
B. 5
C. 7

https://www.dumpsgeek.com/WCNA-pdf-dumps.html
D. 8

Correct Answer: A

QUESTION 10

Ethertype 0x86dd belongs to which type of packets ?

A. IPv6
B. IPv4
C. ARP
D. GRE

Correct Answer: A

QUESTION 11

Which of the following SIP request methods is used to publish an event to the server ?

A. Invite
B. Ack
C. Register
D. None of the above

Correct Answer: D

QUESTION 12

Wireshark can import CSV (comma separated value) format files for further analysis.
A. True
B. False

Correct Answer: A

https://www.dumpsgeek.com/WCNA-pdf-dumps.html
QUESTION 13

Wireshark doesn't support string based filtering.

A. True
B. False

Correct Answer: B

QUESTION 14

What is the purpose of a DNS CNAME?

A. Define an alias name

B. Offers inverse DNS information
C. Generates a common name as a DNS host name
D. Indicates multiple IP addresses are contained in a DNS response

Correct Answer: A

QUESTION 15

What is the role of RTP protocol ?

A. Carries signaling packets
B. Carries user packets
C. Initiates session between two endpoints
D. Controls multimedia communication sessions

Correct Answer: B

QUESTION 16

Where can we do protocol specific settings in Wireshark ?

A. Preferences
B. Configuration Profiles

https://www.dumpsgeek.com/WCNA-pdf-dumps.html
C. Protocol Hierarchy
D. Conversations

Correct Answer: A

QUESTION 17

Which file contains the TCP Expert information ?

A. Services
B. libpcap
C. packet-tcp.c
D. Coloring rules

Correct Answer: C

QUESTION 18

What is the purpose of creating Wireshark profiles?

A. dynamically create a hosts file based on saved trace files
B. create a manageable database of packets for use in third-party programs
C. discover and test WEP/WPA keys and pass phrases for traffic decryption
D. customize wireshark for more efficient analysis in specific environments

Correct Answer: D

QUESTION 19

High number of RSTs or a high number of SYN/ACKs with no related data transfer, this clearly
indicates that TCP scan is in progress.

A. True
B. False

https://www.dumpsgeek.com/WCNA-pdf-dumps.html
Correct Answer: A

https://www.dumpsgeek.com/WCNA-pdf-dumps.html