N10-009 · Question #236
N10-009 Question #236: Real Exam Question with Answer & Explanation
The correct answer is A: Establish baseline metrics.. To effectively improve network monitoring, the crucial initial step is to establish baseline metrics, which provides a standard against which all future network performance and activity can be compared.
Question
A network administrator needs to improve network monitoring. Which of the following should the administrator do first?
Options
- AEstablish baseline metrics.
- BImplement a SIEM.
- CPerform regular packet captures.
- DConduct availability monitoring.
Explanation
To effectively improve network monitoring, the crucial initial step is to establish baseline metrics, which provides a standard against which all future network performance and activity can be compared.
Common mistakes.
- B. Implementing a SIEM is an advanced monitoring solution but requires baselines to effectively correlate events and detect actual security incidents rather than normal operational fluctuations.
- C. Performing regular packet captures is a diagnostic tool for detailed analysis of specific traffic when issues arise, not a primary first step for overall network monitoring improvement.
- D. Conducting availability monitoring is a specific aspect of monitoring but cannot be effectively interpreted without understanding what constitutes a 'normal' or 'expected' level of availability, which baselines provide.
Concept tested. Network monitoring baselining for performance analysis
Reference. https://docs.microsoft.com/en-us/azure/azure-monitor/best-practices-monitoring
Community Discussion
No community discussion yet for this question.