nerdexam
EC-Council

312-50V13 · Question #613

While working as an intern for a small business, you have been tasked with managing the company's web server. The server is being bombarded with requests, and the company's website is intermittently g

The correct answer is A. Contact your Internet Service Provider (ISP) for assistance. When suspecting a DDoS attack causing a web server to go offline, the first and most effective course of action is to contact the Internet Service Provider (ISP) for assistance.

Submitted by layla.eg· Mar 6, 2026Denial-of-Service

Question

While working as an intern for a small business, you have been tasked with managing the company's web server. The server is being bombarded with requests, and the company's website is intermittently going offline. You suspect that this could be a Distributed Denial of Service (DDoS) attack. As an ethical hacker, which of the following steps would be your first course of action to mitigate the issue?

Options

  • AContact your Internet Service Provider (ISP) for assistance
  • BInstall a newer version of the server software
  • CImplement IP address whitelisting
  • DIncrease the server's bandwidth

How the community answered

(34 responses)
  • A
    76% (26)
  • B
    3% (1)
  • C
    15% (5)
  • D
    6% (2)

Why each option

When suspecting a DDoS attack causing a web server to go offline, the first and most effective course of action is to contact the Internet Service Provider (ISP) for assistance.

AContact your Internet Service Provider (ISP) for assistanceCorrect

ISPs have specialized equipment, infrastructure, and expertise to detect, identify, and mitigate large-scale DDoS attacks at their network edge, often before the traffic reaches the client's infrastructure. They can implement traffic filtering, scrubbing services, or rerouting to absorb and clean malicious traffic more effectively than on-premise solutions for volumetric attacks.

BInstall a newer version of the server software

Installing a newer version of server software is unlikely to mitigate a DDoS attack, which is primarily a network-level or resource exhaustion issue, and could introduce further instability during an active attack.

CImplement IP address whitelisting

Implementing IP address whitelisting is impractical and ineffective for a public-facing website suffering a DDoS attack, as legitimate users would be blocked, and attackers frequently use spoofed or vast numbers of IP addresses.

DIncrease the server's bandwidth

Increasing the server's bandwidth might temporarily delay the impact but will not stop a large-scale DDoS attack, as attackers can typically generate traffic volumes far exceeding typical server capacities.

Concept tested: DDoS mitigation strategy (first response)

Source: https://learn.microsoft.com/en-us/azure/ddos-protection/ddos-protection-overview

Topics

#DDoS attack#mitigation#incident response#ISP assistance

Community Discussion

No community discussion yet for this question.

Full 312-50V13 Practice