nerdexam
ExamsN10-005Questions#363
CompTIA

N10-005 · Question #363

N10-005 Question #363: Real Exam Question with Answer & Explanation

The correct answer is A: Packet filtering. Packet filtering at the firewall or router can block traffic based on source IP addresses or IP ranges, effectively stopping an ongoing attack from a group of users at the same ISP.

Question

An administrator determines that an attack is taking place on the email server from a group of users on the same ISP. Which of the following is the BEST way to mitigate an attack on the network?

Options

  • APacket filtering
  • BSpam filtering
  • CMAC filtering
  • DCSU

Explanation

Packet filtering at the firewall or router can block traffic based on source IP addresses or IP ranges, effectively stopping an ongoing attack from a group of users at the same ISP.

Common mistakes.

  • B. Spam filtering inspects email message content and headers to block unwanted messages, but it does not block malicious network-level traffic or active attacks at the packet level.
  • C. MAC filtering works only at Layer 2 on the local network segment; MAC addresses are not preserved across routed Internet connections, making it ineffective against remote attackers.
  • D. A CSU (Channel Service Unit) is a hardware device for WAN line conditioning and has no capability to inspect or filter traffic based on attack patterns.

Concept tested. Packet filtering to mitigate IP-based network attacks

Reference. https://learn.microsoft.com/en-us/windows-server/networking/technologies/nps/nps-firewalls-configure

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full N10-005 Practice