



























Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Pass WGU D415 Software-Defined Networking OA with 89+ Q&As. SDN architecture, OpenFlow, controller security, OpenStack, microsegmentation. WGU D415, SDN exam, Software defined network, OpenFlow protocol, SDN controller, Network virtualization, Microsegmentation, OpenStack Neutron, WGU objective assessment, IT networking, Cloud networking, SDN security, 2026 WGU
Typology: Exams
1 / 35
This page cannot be seen from the preview
Don't miss anything!




























Question 1
What is a function of the bastion host in a screened subnet firewall architecture?
A. To protect the perimeter and internal networks from the internet B. To perform most of the data packet filtering for the firewall C. To define a clear boundary between trusted and untrusted domains D. To serve as the main point of contact for incoming connections
✅ Correct Answer: D
Rationale: A bastion host is a hardened system exposed to untrusted networks such as the internet. Its primary role is to act as the main point of contact for incoming connections, such as web or email services. Because it is directly accessible, it is configured with strict security controls and minimal services. This reduces the attack surface and protects internal systems from direct exposure.
Question 2
How are security threats that happen within a computer network classified?
A. As detectable and unknown B. As malicious and robust C. As divisive and destructive D. As intentional and unintentional
✅ Correct Answer: D
Rationale: Network security threats are commonly categorized based on intent. Intentional threats include insider attacks, malware, and deliberate breaches, while unintentional threats include misconfigurations, human error, and accidental data exposure. This classification helps organizations apply appropriate
preventive and corrective controls. Understanding intent is critical for designing effective security policies.
Question 3
Which module of OpenStack should be used to improve efficiency and scalability of user storage and unstructured data?
A. Swift B. Neutron C. Ironic D. Congress
✅ Correct Answer: A
Rationale: OpenStack Swift is an object storage system designed for scalability and durability. It is ideal for storing large amounts of unstructured data such as backups, images, and media files. Swift distributes data across multiple nodes, improving fault tolerance and performance. Unlike block storage, it does not rely on a single point of failure.
Question 4
Which approach improves the strength of software-defined networking (SDN) security and intrusion tolerance?
A. Controller diversity B. Controller consolidation C. Logging D. Virtualization
✅ Correct Answer: A
Rationale: Controller diversity involves using multiple SDN controllers from different vendors or configurations. This reduces the risk of a single vulnerability compromising the entire network. If one controller is attacked or fails, others can continue to operate. Diversity enhances fault tolerance and resilience against targeted attacks.
C. Application plane D. Data plane
✅ Correct Answer: D
Rationale: The data plane consists of switches and routers that forward packets based on instructions from the control plane. These devices do not make routing decisions themselves. Instead, they follow flow rules provided by the SDN controller. This separation allows simpler and faster forwarding hardware.
Question 8
What protocol is commonly used for communication between SDN controllers and switches?
A. SNMP B. BGP C. OSPF D. OpenFlow
✅ Correct Answer: D
Rationale: OpenFlow is a foundational SDN protocol that enables communication between the controller and network devices. It allows the controller to define how packets should be handled by switches. OpenFlow supports centralized traffic management and dynamic flow control. This protocol is key to SDN’s programmability.
Question 9
Which SDN benefit allows rapid deployment of network services?
A. Hardware abstraction B. Network programmability C. Physical segmentation D. Static routing
✅ Correct Answer: B
Rationale: Network programmability allows administrators to configure and deploy
services through software rather than manual device configuration. Changes can be applied dynamically across the entire network. This reduces deployment time and human error. Programmability is one of SDN’s most significant advantages.
Question 10
Which component translates application requirements into network policies?
A. Data plane B. Application plane C. Control plane D. Physical layer
✅ Correct Answer: B
Rationale: The application plane contains SDN applications that define network behavior, such as load balancing and security policies. These applications communicate with the controller using northbound APIs. The controller then enforces these policies across the network. This abstraction simplifies network management.
Question 11
What advantage does separating the control plane from the data plane provide in SDN?
A. Increased hardware dependency B. Reduced network visibility C. Centralized management and flexibility D. Slower packet forwarding
✅ Correct Answer: C
Rationale: Separating the control plane from the data plane allows centralized decision- making while keeping packet forwarding efficient. Network administrators can manage policies from a single controller rather than configuring each device individually. This improves flexibility, scalability, and simplifies troubleshooting. Centralized control is a core SDN principle.
✅ Correct Answer: C
Rationale: Open standards and APIs allow organizations to use equipment from multiple vendors. This flexibility prevents dependence on a single vendor’s proprietary solutions. It also encourages innovation and competition. Vendor neutrality is a key benefit of SDN adoption.
Question 15
Which technology allows multiple virtual networks to run on the same physical infrastructure?
A. Load balancing B. Network virtualization C. Packet filtering D. NAT
✅ Correct Answer: B
Rationale: Network virtualization enables multiple isolated virtual networks to coexist on shared physical hardware. Each virtual network operates independently, improving efficiency and scalability. This approach is widely used in cloud environments. SDN makes virtualization easier to manage and automate.
Question 16
What is a common risk of centralized SDN controllers?
A. Increased hardware costs B. Single point of failure C. Reduced scalability D. Lack of flexibility
✅ Correct Answer: B
Rationale: Centralized controllers can become single points of failure if not properly designed. If a controller goes down, network operations may be disrupted. Redundancy and controller clustering mitigate this risk. High availability is critical in SDN architectures.
Question 17
Which method improves SDN controller availability?
A. Static IP addressing B. Controller clustering C. Packet inspection D. VLAN segmentation
✅ Correct Answer: B
Rationale: Controller clustering uses multiple controllers to share load and provide redundancy. If one controller fails, others can take over seamlessly. This improves fault tolerance and reliability. Clustering is a best practice in production SDN deployments.
Question 18
Which SDN feature simplifies network automation?
A. Manual configuration B. Physical isolation C. Programmable interfaces D. Legacy routing protocols
✅ Correct Answer: C
Rationale: Programmable interfaces allow administrators to automate network configuration and management. Policies can be deployed using software scripts instead of manual CLI commands. Automation reduces errors and speeds up deployment. This is essential in large-scale environments.
Question 19
What is the primary purpose of flow tables in SDN switches?
A. Store routing protocols B. Encrypt traffic C. Define packet handling rules D. Monitor bandwidth usage
Question 22
Which OpenStack component manages networking services?
A. Nova B. Swift C. Glance D. Neutron
✅ Correct Answer: D
Rationale: Neutron is the OpenStack networking service. It provides network connectivity, IP address management, and network segmentation. Neutron integrates well with SDN controllers. It enables flexible and programmable network configurations.
Question 23
What security advantage does microsegmentation provide?
A. Reduces encryption overhead B. Limits lateral movement of attackers C. Eliminates firewalls D. Increases broadcast traffic
✅ Correct Answer: B
Rationale: Microsegmentation divides the network into small, isolated segments. This limits an attacker’s ability to move laterally within the network. Even if one segment is compromised, others remain protected. SDN enables granular segmentation policies.
Question 24
Which protocol is commonly replaced by SDN for dynamic routing decisions?
A. FTP B. SNMP
✅ Correct Answer: C
Rationale: Traditional routing protocols like OSPF distribute routing intelligence across devices. SDN centralizes these decisions in the controller. This reduces complexity and improves control. While protocols still exist, SDN often minimizes their role.
Question 25
Which SDN deployment model keeps controllers within the organization?
A. Cloud-based SDN B. Hybrid SDN C. On-premises SDN D. Managed SDN
✅ Correct Answer: C
Rationale: On-premises SDN deployments host controllers within the organization’s infrastructure. This provides greater control over security and performance. It may require more upfront investment. Some organizations prefer this model for compliance reasons.
Question 26
What is an east–west interface used for in SDN?
A. Application communication B. Switch-to-controller communication C. Controller-to-controller communication D. Monitoring traffic
✅ Correct Answer: C
Rationale: East–west interfaces allow SDN controllers to communicate with each other. This is important in distributed or clustered controller environments. It ensures
D. QoS
✅ Correct Answer: B
Rationale: Transport Layer Security (TLS) encrypts communications between SDN components. This protects control messages from interception or tampering. Encryption is essential for maintaining integrity and confidentiality. TLS is widely used in secure SDN deployments.
Question 30
What role does SDN play in DevOps environments?
A. Slows deployment cycles B. Enables infrastructure as code C. Requires manual approvals D. Limits automation
✅ Correct Answer: B
Rationale: SDN supports infrastructure as code by allowing networks to be defined and managed through software. This aligns with DevOps principles of automation and continuous deployment. Network changes can be version-controlled and tested. SDN integrates well with CI/CD pipelines.
Question 31
Which SDN feature allows fine-grained traffic control?
A. Static routing B. Flow-based forwarding C. Broadcast forwarding D. Manual ACLs
✅ Correct Answer: B
Rationale: Flow-based forwarding allows SDN switches to handle traffic based on specific criteria. This provides granular control over how packets are processed. Policies
can be applied per flow rather than per device. This increases precision and flexibility.
Question 32
What is a major challenge when migrating to SDN?
A. Increased hardware usage B. Integration with legacy systems C. Reduced automation D. Lack of scalability
✅ Correct Answer: B
Rationale: Many organizations operate legacy networking equipment that may not support SDN. Integrating SDN with existing infrastructure can be complex. Hybrid approaches are often required during transition. Careful planning reduces migration risks.
Question 33
Which SDN benefit improves network visibility?
A. Hardware abstraction B. Centralized monitoring C. Static configuration D. Device isolation
✅ Correct Answer: B
Rationale: Centralized monitoring allows administrators to view the entire network from a single interface. This improves troubleshooting and performance analysis. Real- time data is easier to collect and analyze. Visibility is critical for proactive network management.
Question 34
Which SDN concept allows dynamic traffic prioritization?
local decision-making. Distributed models are useful in large or geographically dispersed networks.
Question 37
Which SDN capability supports rapid network reconfiguration?
A. Manual CLI commands B. Policy-based management C. Static VLANs D. Physical isolation
✅ Correct Answer: B
Rationale: Policy-based management allows administrators to define rules that automatically adjust network behavior. Changes are applied consistently across the network. This reduces configuration time and errors. Rapid reconfiguration supports agile operations.
Question 38
Which security principle is enhanced by SDN microsegmentation?
A. Availability B. Performance C. Least privilege D. Redundancy
✅ Correct Answer: C
Rationale: Microsegmentation enforces least privilege by restricting communication between network segments. Only necessary traffic is allowed. This minimizes attack surfaces. SDN enables precise enforcement of least privilege policies.
Question 39
Which SDN use case benefits service providers most?
A. Manual provisioning B. Network function virtualization (NFV)
C. Physical routing D. Static peering
✅ Correct Answer: B
Rationale: NFV allows service providers to virtualize network functions like firewalls and load balancers. SDN complements NFV by managing traffic flows. This reduces hardware costs and increases flexibility. Service providers gain faster service deployment.
Question 40
What is the main goal of SDN abstraction?
A. Increase complexity B. Simplify network management C. Reduce scalability D. Limit automation
✅ Correct Answer: B
Rationale: Abstraction hides low-level device details from administrators. This simplifies configuration and management. SDN controllers handle complexity behind the scenes. Abstraction enables easier automation and policy enforcement.
Question 41
Which SDN feature supports multitenancy?
A. Static IP addressing B. Virtual network isolation C. Broadcast forwarding D. Manual routing
✅ Correct Answer: B
Rationale: Virtual network isolation allows multiple tenants to share infrastructure securely. Each tenant’s traffic is separated logically. This is essential in cloud environments. SDN enforces isolation through programmable policies.
Rationale: Hybrid SDN environments combine SDN with traditional networking devices. This allows gradual migration. Organizations can leverage SDN benefits without replacing all infrastructure. Hybrid models are common during transition phases.
Question 45
Which SDN component enforces flow rules?
A. Controller B. Application C. Switch D. API
✅ Correct Answer: C
Rationale: SDN switches enforce flow rules provided by the controller. They forward packets according to these rules. Switches do not make independent routing decisions. Enforcement ensures consistent policy application.
Question 46
Which metric is improved by SDN automation?
A. Mean time to failure B. Mean time to repair (MTTR) C. Hardware lifespan D. Power consumption
✅ Correct Answer: B
Rationale: Automation speeds up troubleshooting and recovery. SDN allows rapid reconfiguration and fault isolation. This reduces mean time to repair. Faster recovery improves service availability.
Question 47
Which SDN feature enhances compliance reporting?
A. Manual logs B. Centralized logging and monitoring C. Static reports D. Physical audits
✅ Correct Answer: B
Rationale: Centralized logging collects data from across the network. This simplifies compliance audits and reporting. SDN provides consistent visibility. Accurate logs support regulatory requirements.
Question 48
What is a primary reason organizations adopt SDN?
A. Increased cabling B. Operational efficiency C. Reduced visibility D. Higher manual effort
✅ Correct Answer: B
Rationale: SDN reduces manual configuration and streamlines operations. Automation improves efficiency and consistency. Organizations can respond faster to changes. Operational efficiency drives SDN adoption.
Question 49
Which SDN benefit supports rapid innovation?
A. Static architecture B. Software-based control C. Vendor lock-in D. Hardware dependence
✅ Correct Answer: B
Rationale: Software-based control allows new features to be deployed quickly. Updates do not require hardware changes. This accelerates innovation. SDN enables faster experimentation and improvement.