150 Important Questions for Network Engineers (Basic to Advanced) with

Answers

1. Basics of Networking

1. What is a network?
A network is a collection of interconnected devices that share resources and
communicate with each other.
2. Define IP address.
An IP address is a unique identifier assigned to each device connected to a network for
communication purposes.
3. What is the difference between IPv4 and IPv6?
IPv4 is a 32-bit addressing system with approximately 4.3 billion unique addresses, while
IPv6 is a 128-bit system that supports a vastly larger number of unique addresses.
4. What is a subnet mask?
A subnet mask is used to divide an IP address into network and host portions.
5. What is the function of DNS?
DNS (Domain Name System) translates human-readable domain names (like
[Link]) into IP addresses.
6. Explain the concept of MAC address.
A MAC (Media Access Control) address is a unique identifier assigned to a network
interface card (NIC) for communication within a network segment.
7. What is DHCP, and why is it used?
DHCP (Dynamic Host Configuration Protocol) automatically assigns IP addresses to
devices in a network, simplifying management.
8. Differentiate between hub, switch, and router.
○ Hub: Broadcasts data to all devices in a network.
○ Switch: Directs data only to the intended recipient.
○ Router: Connects different networks and directs data between them.
9. What are the layers of the OSI model?
○ Physical
○ Data Link
○ Network
○ Transport
○ Session
○ Presentation
○ Application
10. Define bandwidth and latency.
○ Bandwidth: The maximum amount of data transmitted per second over a
network.
○ Latency: The delay in transmitting data from source to destination.
11. What is the difference between LAN, WAN, and MAN?
 ○ LAN: Local Area Network for small areas like offices.
○ WAN: Wide Area Network covering large areas.
○ MAN: Metropolitan Area Network spanning a city.
12. Explain the concept of a default gateway.
A default gateway is the device that routes traffic from a local network to other networks
or the internet.
13. What is NAT (Network Address Translation)?
NAT translates private IP addresses into a public IP address for internet access.
14. What is the purpose of ARP (Address Resolution Protocol)?
ARP resolves IP addresses to MAC addresses for communication within a local network.
15. What is a private IP address?
Private IP addresses are used within a network and are not routable on the public
internet.
16. Define network topology and list its types.
Network topology is the arrangement of devices in a network. Types include star, ring,
bus, mesh, and hybrid.
17. What is the purpose of the Transport Layer?
The Transport Layer ensures reliable data transfer between devices, using protocols like
TCP and UDP.
18. Explain encapsulation in networking.
Encapsulation is the process of adding headers and footers to data as it moves through
the layers of the OSI model.
19. What is the difference between unicast, multicast, and broadcast?
○ Unicast: One-to-one communication.
○ Multicast: One-to-many communication.
○ Broadcast: One-to-all communication in a network.
20. What is a port number, and how is it used?
A port number identifies specific processes or services on a device, used in conjunction
with an IP address.

2. Network Protocols

21. What is HTTP?

HTTP (HyperText Transfer Protocol) is used for transferring web pages.
22. Define TCP/IP.
TCP/IP is a suite of communication protocols used to interconnect network devices.
23. What is FTP, and what is it used for?
FTP (File Transfer Protocol) is used for transferring files between a client and a server.
24. What is the difference between TCP and UDP?
○ TCP: Reliable, connection-oriented.
○ UDP: Fast, connectionless.
 25. Explain the function of ICMP.
ICMP (Internet Control Message Protocol) is used for sending error messages and
operational information.
26. What is the purpose of SNMP?
SNMP (Simple Network Management Protocol) is used to monitor and manage network
devices.
27. Define HTTPS and its significance.
HTTPS (HTTP Secure) encrypts data exchanged between a client and server for secure
communication.
28. What is the function of SMTP?
SMTP (Simple Mail Transfer Protocol) is used for sending emails.
29. What is Telnet, and how is it used?
Telnet provides a command-line interface for managing devices remotely.
30. What is SSH, and how is it different from Telnet?
SSH (Secure Shell) is a secure version of Telnet that encrypts data.
31. Define POP3 and IMAP.
○ POP3: Downloads emails to the client.
○ IMAP: Synchronizes emails across multiple devices.
32. What is RTP, and where is it used?
RTP (Real-time Transport Protocol) is used for delivering audio and video over IP
networks.
33. What is a multicast protocol?
A multicast protocol delivers data to multiple recipients interested in receiving it.
34. Explain the purpose of the BGP protocol.
BGP (Border Gateway Protocol) manages routing between autonomous systems on the
internet.
35. What is the function of the OSPF protocol?
OSPF (Open Shortest Path First) finds the best path for data within an autonomous
system.
36. Define DNS query types.
DNS queries include A, AAAA, MX, CNAME, and PTR record lookups.
37. What is a DHCP lease?
A DHCP lease is the amount of time an IP address is assigned to a device.
38. Explain the purpose of TFTP.
TFTP (Trivial File Transfer Protocol) is used for transferring files with minimal overhead.
39. What is MPLS?
MPLS (Multi-Protocol Label Switching) improves routing efficiency in high-performance
networks.
40. What is the difference between static and dynamic routing protocols?
○ Static: Manually configured routes.
○ Dynamic: Automatically learns and updates routes.

3. Routing and Switching

41. What is a router?
A router directs data packets between networks.
42. Explain VLAN.
VLAN (Virtual LAN) segments a physical network into multiple logical networks.
43. What is a managed switch?
A managed switch allows configuration and management of VLANs and traffic
prioritization.
44. Define routing table and its purpose.
A routing table stores paths to different network destinations.
45. What is STP (Spanning Tree Protocol)?
STP prevents loops in Ethernet networks by disabling redundant paths.

3. Network Design and Architecture

46. What is a VLAN, and why is it used?

VLAN (Virtual Local Area Network) segments a physical network into multiple logical
networks for better management and security.
47. What is trunking in networking?
Trunking is a method of carrying multiple VLANs over a single physical link between
switches or routers.
48. What is STP, and why is it necessary?
STP (Spanning Tree Protocol) prevents network loops in a Layer 2 network.
49. What are the different types of network topologies?
○ Star
○ Ring
○ Bus
○ Mesh
○ Hybrid
50. What is the difference between a Layer 2 and a Layer 3 switch?
○ Layer 2 switch: Operates at the data link layer and uses MAC addresses for
communication.
○ Layer 3 switch: Operates at the network layer and can perform routing using IP
addresses.
51. What is HSRP, and where is it used?
HSRP (Hot Standby Router Protocol) is used for high availability by providing
redundancy for IP routers.
52. Explain the concept of network redundancy.
Network redundancy ensures continuous availability by using backup paths and devices
in case of failures.
53. What is EtherChannel?
EtherChannel combines multiple physical links into a single logical link to increase
bandwidth and provide redundancy.
54. What is the role of a firewall in a network?
A firewall protects a network by controlling incoming and outgoing traffic based on
predefined security rules.
55. What is DMZ in networking?
DMZ (Demilitarized Zone) is a subnet that exposes an organization’s external-facing
services to the internet while isolating the internal network.
56. What is a load balancer?
A load balancer distributes network or application traffic across multiple servers for better
performance and reliability.
57. Explain the difference between stateful and stateless firewalls.
○ Stateful firewall: Tracks the state of active connections and makes decisions
based on the connection state.
○ Stateless firewall: Examines each packet independently without context.
58. What is network segmentation?
Network segmentation divides a network into smaller parts to improve performance and
enhance security.
59. What is a VPN, and how does it work?
A VPN (Virtual Private Network) securely connects remote users to a private network
using encryption.
60. What is the difference between site-to-site and remote-access VPNs?
○ Site-to-site VPN: Connects two networks over the internet.
○ Remote-access VPN: Connects individual users to a private network.
61. What is a proxy server?
A proxy server acts as an intermediary between clients and servers, improving security
and performance.
62. What is QoS, and why is it important?
QoS (Quality of Service) prioritizes certain types of network traffic to ensure performance
for critical applications.
63. What is a multicast group?
A multicast group is a set of devices that receive data from a single source in multicast
communication.
64. What is an autonomous system in networking?
An autonomous system is a collection of IP networks under a single administrative
domain.
65. What is the difference between a static IP and a dynamic IP?
○ Static IP: Manually assigned and remains constant.
○ Dynamic IP: Automatically assigned and may change over time.
66. What is a default route?
A default route is a catch-all route used when no specific route matches the destination.
67. What is meant by network latency?
Network latency is the delay in data transfer from source to destination.
68. Explain the term network jitter.
Jitter refers to the variation in packet arrival times, which can affect real-time
communications.
69. What is the purpose of BGP?
BGP (Border Gateway Protocol) manages routing between autonomous systems on the
internet.
70. What is the role of OSPF in networking?
OSPF (Open Shortest Path First) is a link-state routing protocol that finds the best path
within an autonomous system.
71. What is subnetting, and why is it used?
Subnetting divides a large network into smaller networks to improve management and
utilization.
72. What is supernetting?
Supernetting combines multiple smaller networks into a larger network for efficient
routing.
73. What is a broadcast storm?
A broadcast storm occurs when excessive broadcast traffic overwhelms the network,
causing performance degradation.
74. What is the role of an access control list (ACL)?
ACLs filter traffic based on predefined rules to enhance security.
75. What is a routing table?
A routing table stores information about routes to different network destinations.
76. What is a routing protocol?
A routing protocol determines the best path for data to travel between networks.
77. Explain the difference between distance-vector and link-state routing protocols.
○ Distance-vector: Uses distance metrics to find the best path.
○ Link-state: Uses the entire network topology to calculate the best path.
78. What is RIP, and where is it used?
RIP (Routing Information Protocol) is a distance-vector routing protocol used in small
networks.
79. What is the purpose of EIGRP?
EIGRP (Enhanced Interior Gateway Routing Protocol) is a hybrid routing protocol that
combines distance-vector and link-state features.
80. What is VRRP, and how does it work?
VRRP (Virtual Router Redundancy Protocol) provides redundancy for routers by electing
a virtual router as a backup.
81. What is a GRE tunnel?
A GRE (Generic Routing Encapsulation) tunnel encapsulates packets for secure
transmission over an IP network.
82. What is a split horizon in networking?
Split horizon prevents routing loops by prohibiting a router from advertising a route back
onto the interface from which it was learned.
83. What is meant by the term convergence in networking?
Convergence refers to the state when all routers in a network have consistent routing
information.
84. What is a metric in routing?
A metric is a value used by routing protocols to determine the best path.
85. What is link aggregation?
Link aggregation combines multiple network connections to increase bandwidth and
provide redundancy.
 86. What is a frame relay?
Frame relay is a WAN protocol for transmitting data over a shared network.
87. What is MPLS?
MPLS (Multi-Protocol Label Switching) is a technology that improves routing efficiency
using labels.
88. What is NAT?
NAT (Network Address Translation) translates private IP addresses to public IP
addresses for internet access.
89. What is a loopback interface?
A loopback interface is a virtual interface used for testing and management purposes.
90. What is the function of a DHCP relay agent?
A DHCP relay agent forwards DHCP requests and replies between clients and servers in
different subnets.

91. What is load balancing, and why is it used?

Load balancing is the process of distributing network traffic across multiple servers to ensure no
single server becomes overwhelmed. It improves performance, reliability, and availability.

92. What is the difference between stateful and stateless firewalls?

● Stateful Firewall: Tracks the state of active connections and makes decisions based on
the context.
● Stateless Firewall: Filters packets based solely on predefined rules without tracking
connections.

93. What is Quality of Service (QoS)?

QoS refers to mechanisms that ensure specific network performance metrics, such as latency
and bandwidth, are met for critical applications.

94. What is VPN, and how does it work?

VPN (Virtual Private Network) creates a secure and encrypted connection over a less secure
network, such as the internet. It ensures data privacy and security.

95. What is the difference between an IDS and an IPS?

● IDS (Intrusion Detection System): Monitors network traffic for suspicious activities and
generates alerts.
● IPS (Intrusion Prevention System): Monitors traffic and actively blocks threats in real
time.

96. What is VLAN, and why is it used?

VLAN (Virtual Local Area Network) is used to segment a network into different broadcast
domains for better performance and security.

97. What is Spanning Tree Protocol (STP)?

STP prevents loops in a Layer 2 network by creating a loop-free logical topology.

98. What is port mirroring?

Port mirroring duplicates traffic from one port to another for monitoring and troubleshooting
purposes.

99. Explain what MTU is and why it is important.

MTU (Maximum Transmission Unit) is the largest size of a packet that can be sent over a
network. It affects efficiency and performance.

100. What is the difference between symmetric and asymmetric encryption?

● Symmetric Encryption: Uses the same key for encryption and decryption.
● Asymmetric Encryption: Uses a pair of keys (public and private) for encryption and
decryption.

101. What is the function of a proxy server?

A proxy server acts as an intermediary between a client and the internet, providing anonymity,
security, and caching.

102. What is a DMZ in networking?

A DMZ (Demilitarized Zone) is a subnet that provides an additional layer of security by isolating
public-facing services from the internal network.

103. What are the differences between MPLS and traditional IP routing?

MPLS uses labels for faster packet forwarding, whereas traditional IP routing relies on lookups
in routing tables.

104. What is EIGRP, and how does it work?

EIGRP (Enhanced Interior Gateway Routing Protocol) is a dynamic routing protocol that uses
metrics like bandwidth and delay to determine the best path.

105. What is split tunneling in VPNs?

Split tunneling allows users to access the internet directly for non-secure traffic while using a
VPN for secure traffic.
 106. What is a MAC Flooding attack?

A MAC Flooding attack overwhelms a switch's CAM table with fake MAC addresses, forcing it to
behave like a hub.

107. What is the difference between wired and wireless networks?

● Wired Networks: Use cables for communication, providing higher speed and reliability.
● Wireless Networks: Use radio waves, offering flexibility and mobility.

108. What is RADIUS, and where is it used?

RADIUS (Remote Authentication Dial-In User Service) provides centralized authentication,

authorization, and accounting for network access.

109. What is the purpose of the 802.1X protocol?

802.1X is a network access control protocol used for authenticating devices connected to a LAN
or WLAN.

110. What is a broadcast storm, and how can it be prevented?

A broadcast storm occurs when excessive broadcast traffic overwhelms a network. It can be
prevented using VLANs, STP, or limiting broadcasts.

111. What is Wireshark, and how is it used?

Wireshark is a network protocol analyzer used for capturing and analyzing network traffic.

112. What are the different types of NAT?

● Static NAT: Maps one private IP to one public IP.

● Dynamic NAT: Maps a private IP to an available public IP from a pool.
● PAT (Port Address Translation): Maps multiple private IPs to a single public IP using
ports.

113. What is Link Aggregation?

Link Aggregation combines multiple network links to increase bandwidth and provide
redundancy.

114. What is the purpose of a network ACL?

A network ACL (Access Control List) defines rules for allowing or denying traffic based on
criteria like IP address and port.

115. What is the difference between distance vector and link-state routing protocols?
 ● Distance Vector: Shares the entire routing table periodically.
● Link-State: Shares only topology changes and uses algorithms to determine paths.

116. What is DHCP snooping?

DHCP snooping protects against rogue DHCP servers by monitoring and filtering DHCP traffic.

117. What is BGP AS Path?

AS Path is a BGP attribute that lists the sequence of autonomous systems a route has
traversed.

118. What is the difference between horizontal and vertical scaling?

● Horizontal Scaling: Adds more devices or servers to a system.

● Vertical Scaling: Increases the capacity of existing devices.

119. What is a default route?

A default route is a fallback route used when no specific route matches the destination.

120. What is VTP (VLAN Trunking Protocol)?

VTP manages VLAN configurations across multiple switches in a network.

121. What is a site-to-site VPN?

A site-to-site VPN connects entire networks in different locations securely over the internet.

122. What is a wildcard mask?

A wildcard mask specifies which bits of an IP address should be matched or ignored in ACLs.

123. What is the purpose of a GRE tunnel?

GRE (Generic Routing Encapsulation) creates a virtual point-to-point connection between two
devices.

124. What is the difference between Layer 2 and Layer 3 switches?

● Layer 2 Switch: Operates at the Data Link Layer, handling MAC addresses.
● Layer 3 Switch: Operates at the Network Layer, capable of routing based on IP
addresses.

125. What is dual-stack implementation in IPv6?

Dual-stack allows IPv4 and IPv6 to coexist on the same network.

 126. What is the difference between active and passive FTP?

● Active FTP: The server initiates a connection to the client.

● Passive FTP: The client initiates both connections.

127. What is the function of a reverse proxy?

A reverse proxy forwards client requests to servers, providing load balancing, caching, and
security.

128. What is OSPF area?

An OSPF area is a logical grouping of routers that limits routing update propagation and
reduces overhead.

129. What is the purpose of the VRRP protocol?

VRRP (Virtual Router Redundancy Protocol) provides redundancy by assigning a virtual IP to a

group of routers.

130. What is jumbo frame?

A jumbo frame is an Ethernet frame with a payload larger than the standard 1500 bytes, used
for reducing overhead.

131. What is the difference between SAN and NAS?

● SAN (Storage Area Network): High-speed network providing block-level storage.

● NAS (Network Attached Storage): File-level storage accessible over a network.

132. What is the difference between SFTP and SCP?

● SFTP: Secure file transfer over SSH, allowing multiple operations.

● SCP: Simple and faster file transfer over SSH.

133. What is the function of an IP SLA?

IP SLA (Service Level Agreement) monitors and measures network performance metrics like
latency and jitter.

134. What is 802.11ac?

802.11ac is a wireless networking standard offering high-speed Wi-Fi on the 5 GHz band.

135. What is port security?

Port security restricts access to a network by limiting the MAC addresses that can connect to a
switch port.
 136. What is the difference between an access port and a trunk port?

● Access Port: Carries traffic for a single VLAN.

● Trunk Port: Carries traffic for multiple VLANs.

137. What is a sticky MAC address?

A sticky MAC address is dynamically learned and saved to the switch's running configuration for
added security.

138. What is route summarization?

Route summarization combines multiple routes into a single advertisement to reduce routing
table size.

139. What is network convergence?

Network convergence occurs when all routers have consistent routing information after a
topology change.

140. What is EAP?

EAP (Extensible Authentication Protocol) is used for secure authentication in networks like
Wi-Fi.

141. What is TACACS+?

TACACS+ (Terminal Access Controller Access Control System Plus) provides centralized
authentication and authorization for devices.

142. What is an anycast address in IPv6?

An anycast address is assigned to multiple interfaces, and traffic is routed to the nearest one.

143. What is MPLS LDP?

MPLS LDP (Label Distribution Protocol) is used to establish label-switched paths in an MPLS
network.

144. What is HSRP?

HSRP (Hot Standby Router Protocol) provides redundancy by allowing multiple routers to share
a virtual IP.

145. What is a control plane?

The control plane manages network traffic routing and signaling.

 146. What is a data plane?

The data plane forwards user traffic based on control plane instructions.

147. What is the difference between cold and warm standby?

● Cold Standby: Requires manual intervention to switch to backup.

● Warm Standby: Automatically switches with minimal delay.

148. What is network slicing?

Network slicing divides a network into multiple virtual networks tailored to different services.

149. What is an overlay network?

An overlay network is built on top of another network, providing abstraction and additional
functionality.

150. What is a spine-leaf architecture?

Spine-leaf is a two-layer network topology providing high performance and scalability for data
centers.