CySA+ CS0-001 – Q. 105


A company has been a victim of multiple volumetric DoS attacks. Packet analysis of the offending traffic shows the following:

Which of the following mitigation techniques is MOST effective against the above attack?

A. The company should contact the upstream ISP and ask that RFC1918 traffic be dropped.
B. The company should implement a network-based sinkhole to drop all traffic coming from at their gateway router.
C. The company should implement the following ACL at their gateway firewall:DENY IP HOST
D. The company should enable the DoS resource starvation protection feature of the gateway NIPS.