In the context of mitigating DDoS, which option would help reduce broadcast-based amplification?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards

From $9.99Unlock all

Enhance your knowledge as a Computer Hacking Forensic Investigator with the CHFI v11 Test. Use flashcards and multiple-choice questions, complete with hints and detailed explanations, to prepare effectively and ace your exam!

Multiple Choice

In the context of mitigating DDoS, which option would help reduce broadcast-based amplification?

Broadcast-based amplification happens when an attacker leverages a network’s broadcast addresses to trigger many devices to respond to the target, overwhelming it with traffic (a pattern seen in smurf-like attacks). The effective defense is to stop routers from forwarding packets to broadcast addresses. By disabling directed (direct) broadcasts, you remove the channel that allows that amplification, so the attack traffic cannot be amplified through broadcast domains.

Enabling direct broadcasts would reopen that amplification path, making the attack possible again. BGP is a routing protocol and does not directly mitigate broadcast-based amplification, so enabling or disabling it won’t address the underlying broadcast misuse.

In the context of mitigating DDoS, which option would help reduce broadcast-based amplification?

Enhance your knowledge as a Computer Hacking Forensic Investigator with the CHFI v11 Test. Use flashcards and multiple-choice questions, complete with hints and detailed explanations, to prepare effectively and ace your exam!

In the context of mitigating DDoS, which option would help reduce broadcast-based amplification?

Get the latest from Examzify