CV0-003Free trialFree trial

By comptia
Aug, 2025

Verified

25Q per page

Question 1

A company has decided to scale its e-commerce application from its corporate datacenter to a commercial cloud provider to meet an anticipated increase in demand during an upcoming holiday.
The majority of the application load takes place on the application server under normal conditions. For this reason, the company decides to deploy additional application servers into a commercial cloud provider using the on-premises orchestration engine that installs and configures common software and network configurations.
The remote computing environment is connected to the on-premises datacenter via a site-to-site IPSec tunnel. The external DNS provider has been configured to use weighted round-robin routing to load balance connections from the Internet.
During testing, the company discovers that only 20% of connections completed successfully.

Instructions -
Review the network architecture and supporting documents and fulfill these requirements:
Part 1:
✑ Analyze the configuration of the following components: DNS, Firewall 1, Firewall 2, Router 1, Router 2, VPN and Orchestrator Server.
✑ Identify the problematic device(s).
Part 2:
✑ Identify the correct options to provide adequate configuration for hybrid cloud architecture.
If any time you would like to bring back the initial state of the simulation, please click the Reset All button.

Part 1 -

Image 1 Image 2 Image 3 Image 4 Image 5 Image 6 Image 7 Image 8

Part 2 -
Only select a maximum of TWO options from the multiple choice question. (Choose two.)

  • A: Update the PSK (Pre-shared key) in Router 2.
  • B: Update the A record on the DNS from 2.2.2.2 to 1.1.1.1.
  • C: Promote deny All to allow All in Firewall 1 and Firewall 2.
  • D: Change the Address Space on Router 2.
  • E: Change internal IP Address of Router 1.
  • F: Reverse the Weight property in the two CNAME records on the DNS.
  • G: Add the Application Server at on-premises to the Load Balancer.

Question 2

A cloud administrator is reviewing the authentication and authorization mechanism implemented within the cloud environment. Upon review, the administrator discovers the sales group is part of the finance group, and the sales team members can access the financial application. Single sign-on is also implemented, which makes access much easier. Which of the following access control rules should be changed?

  • A: Discretionary-based
  • B: Attribute-based
  • C: Mandatory-based
  • D: Role-based

Question 3

A systems administrator notices that a piece of networking equipment is about to reach its end of support. Which of the following actions should the administrator recommend?

  • A: Update the firmware.
  • B: Migrate the equipment to the cloud.
  • C: Update the OS.
  • D: Replace the equipment.

Question 4

An organization will be deploying a web application in a public cloud with two web servers, two database servers, and a load balancer that is accessible over a single public IP. Taking into account the gateway for this subnet and the potential to add two more web servers, which of the following will meet the minimum IP requirement?

  • A: 192.168.1.0/26
  • B: 192.168.1.0/27
  • C: 192.168.1.0/28
  • D: 192.168.1.0/29

Question 5

All of a company's servers are currently hosted in one cloud MSP. The company created a new cloud environment with a different MSP. A cloud engineer is now tasked with preparing for server migrations and establishing connectivity between clouds. Which of the following should the engineer perform FIRST?

  • A: Peer all the networks from each cloud environment.
  • B: Migrate the servers.
  • C: Create a VPN tunnel.
  • D: Configure network access control lists.

Question 6

A web server has been deployed in a public IaaS provider and has been assigned the public IP address of 72.135.10.100. Users are now reporting that when they browse to the website, they receive a message indicating the service is unavailable. The cloud administrator logs into the server, runs a netstat command, and notices the following relevant output:

Image 1

Which of the following actions should the cloud administrator take to resolve the issue?

  • A: Assign a new IP address of 192.168.100.10 to the web server.
  • B: Modify the firewall on 72.135.10.100 to allow only UDP.
  • C: Configure the WAF to filter requests from 17.3.130.3.
  • D: Update the gateway on the web server to use 72.135.10.1.

Question 7

A cloud administrator has been using a custom VM deployment script. After three months of use, the script no longer joins the LDAP domain. The cloud administrator verifies the account has the correct permissions. Which of the following is the MOST likely cause of the failure?

  • A: Incorrect encryption ciphers
  • B: Broken trust relationship
  • C: Invalid certificates
  • D: Expired password

Question 8

A cloud administrator is managing an organization's infrastructure in a public cloud. All servers are currently located in a single virtual network with a single firewall that all traffic must pass through. Per security requirements, production, QA, and development servers should not be able to communicate directly with each other.
Which of the following should an administrator perform to comply with the security requirement?
A.
✑ Create separate virtual networks for production, QA, and development servers.
✑ Move the servers to the appropriate virtual network.
✑ Apply a network security group to each virtual network that denies all traffic except for the firewall.
B.
✑ Create separate network security groups for production, QA, and development servers.
✑ Apply the network security groups on the appropriate production, QA, and development servers.
✑ Peer the networks together.
C.
✑ Create separate virtual networks for production, QA, and development servers.
✑ Move the servers to the appropriate virtual network.
✑ Peer the networks together.
D.
✑ Create separate network security groups for production, QA, and development servers.
✑ Peer the networks together.
✑ Create static routes for each network to the firewall.

Question 9

A cloud administrator is upgrading a cloud environment and needs to update the automation script to use a new feature from the cloud provider. After executing the script, the deployment fails. Which of the following is the MOST likely cause?

  • A: API incompatibility
  • B: Location changes
  • C: Account permissions
  • D: Network failure

Question 10

A systems administrator has been asked to restore a VM from backup without changing the current VM's operating state. Which of the following restoration methods would BEST fit this scenario?

  • A: Alternate location
  • B: Rolling
  • C: Storage live migration
  • D: In-place

Question 11

Due to a policy change, a few of a customer's application VMs have been migrated to synchronously replicated storage. The customer now reports that performance is lower. The systems administrator checks the resource usage and discovers CPU utilization is at 60% and available memory is at 30%. Which of the following is the MOST likely cause?

  • A: There is not enough vCPU assigned.
  • B: The application is not compatible with the new settings.
  • C: The new configuration is adding latency.
  • D: The memory of the VM is underallocated.

Question 12

A systems administrator wants to ensure two VMs remain together on the same host. Which of the following must be set up to enable this functionality?

  • A: Affinity
  • B: Zones
  • C: Regions
  • D: A cluster

Question 13

A company developed a product using a cloud provider's PaaS platform and many of the platform-based components within the application environment. Which of the following would the company MOST likely be concerned about when utilizing a multicloud strategy or migrating to another cloud provider?

  • A: Licensing
  • B: Authentication providers
  • C: Service-level agreement
  • D: Vendor lock-in

Question 14

An organization is implementing a new requirement to facilitate users with faster downloads of corporate application content. At the same time, the organization is also expanding cloud regions. Which of the following would be suitable to optimize the network for this requirement?

  • A: Implement CDN for overall cloud application.
  • B: Implement auto-scaling of the compute resources.
  • C: Implement SR-IOV on the server instances.
  • D: Implement an application container solution.

Question 15

After a few new web servers were deployed, the storage team began receiving incidents in their queue about the web servers. The storage administrator wants to verify the incident tickets that should have gone to the web server team. Which of the following is the MOST likely cause of the issue?

  • A: Incorrect assignment group in service management
  • B: Incorrect IP address configuration
  • C: Incorrect syslog configuration on the web servers
  • D: Incorrect SNMP settings

Question 16

A systems administrator is deploying a solution that includes multiple network I/O-intensive VMs. The solution design requires that vNICs of the VMs provide low- latency, near-native performance of a physical NIC and data protection between the VMs. Which of the following would BEST satisfy these requirements?

  • A: SR-IOV
  • B: GENEVE
  • C: SDN
  • D: VLAN

Question 17

A global web-hosting company is concerned about the availability of its platform during an upcoming event. Web traffic is forecasted to increase substantially during the next week. The site contains mainly static content. Which of the following solutions will assist with the increased workload?

  • A: DoH
  • B: WAF
  • C: IPS
  • D: CDN

Question 18

A company wants to implement business continuity, and the cloud solution architect needs to design the correct solution. Which of the following will provide the data to measure business continuity? (Choose two.)

  • A: A service-level agreement
  • B: Automation scripts
  • C: Playbooks
  • D: A network diagram
  • E: A backup and restore
  • F: A recovery time objective

Question 19

A systems administrator is about to deploy a new VM to a cloud environment. Which of the following will the administrator MOST likely use to select an address for the VM?

  • A: CDN
  • B: DNS
  • C: NTP
  • D: IPAM

Question 20

Which of the following is relevant to capacity planning in a SaaS environment?

  • A: Licensing
  • B: A hypervisor
  • C: Clustering
  • D: Scalability

Question 21

An organization is hosting a DNS domain with private and public IP ranges. Which of the following should be implemented to achieve ease of management?

  • A: Network peering
  • B: A CDN solution
  • C: A SDN solution
  • D: An IPAM solution

Question 22

A systems administrator is performing upgrades to all the hypervisors in the environment. Which of the following components of the hypervisors should be upgraded? (Choose two.)

  • A: The fabric interconnects
  • B: The virtual appliances
  • C: The firmware
  • D: The virtual machines
  • E: The baselines
  • F: The operating system

Question 23

A SAN that holds VM files is running out of storage space. Which of the following will BEST increase the amount of effective storage on the SAN?

  • A: Enable encryption.
  • B: Increase IOPS.
  • C: Convert the SAN from RAID 50 to RAID 60.
  • D: Configure deduplication.

Question 24

A systems administrator is trying to establish an RDP session from a desktop to a server in the cloud. However, the connection appears to be refused even through the VM is responding to ICMP echo requests. Which of the following should the administrator check FIRST?

  • A: The firewall
  • B: The subnet
  • C: The gateway
  • D: The services

Question 25

Which of the following actions should a systems administrator perform during the containment phase of a security incident in the cloud?

  • A: Deploy a new instance using a known-good base image.
  • B: Configure a firewall rule to block the traffic on the affected instance.
  • C: Perform a forensic analysis of the affected instance.
  • D: Conduct a tabletop exercise involving developers and systems administrators.
Page 1 of 15 • Questions 1-25 of 375
12345

Free preview mode

Enjoy the free questions and consider upgrading to gain full access!