Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

CertNexus ITS-110 Exam - Topic 3 Question 42 Discussion

Which of the following methods is an IoT portal administrator most likely to use in order to mitigate Distributed Denial of Service (DDoS) attacks?
D) Require Internet Protocol Security (IPSec) for all inbound portal connections
A) Implement Domain Name System Security Extensions (DNSSEC) on all Internet-facing name servers
B) Disable Network Address Translation Traversal (NAT-T) at the border firewall
C) Implement traffic scrubbers on the upstream Internet Service Provider (ISP) connection

CertNexus ITS-110 Exam - Topic 3 Question 42 Discussion

Actual exam question for CertNexus's ITS-110 exam
Question #: 42
Topic #: 3
[All ITS-110 Questions]

Which of the following methods is an IoT portal administrator most likely to use in order to mitigate Distributed Denial of Service (DDoS) attacks?

Show Suggested Answer Hide Answer
Suggested Answer: D

by Sylvia at Sep 14, 2024, 05:45 AM

Limited Time Offer

25%

Off

Get Premium ITS-110 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Tom
6 months ago
I thought IPSec was mainly for security, not DDoS protection.
upvoted 0 times
...
Nidia
7 months ago
Wait, are we sure traffic scrubbers are enough?
upvoted 0 times
...
Kenneth
7 months ago
Disabling NAT-T? That sounds risky, not a good idea.
upvoted 0 times
...
Bobbye
7 months ago
I think A could help too, but not as much as C.
upvoted 0 times
...
Bettye
7 months ago
C is definitely the best choice for DDoS mitigation.
upvoted 0 times
...
Justine
7 months ago
I have a vague recollection that IPSec is more about securing connections rather than preventing DDoS. I’m leaning towards option C.
upvoted 0 times
...
Linsey
8 months ago
I practiced a similar question where implementing traffic scrubbers was highlighted as a key strategy. That might be the right answer here.
upvoted 0 times
...
Coletta
8 months ago
I'm not entirely sure, but I feel like DNSSEC is more about securing DNS rather than directly mitigating DDoS attacks.
upvoted 0 times
...
Solange
8 months ago
I remember studying DDoS mitigation techniques, and I think traffic scrubbers are often mentioned as effective.
upvoted 0 times
...
Sonia
8 months ago
Okay, I've got a strategy for this. DDoS attacks are all about overwhelming the target system with traffic, so the key is to filter and scrub that traffic before it reaches the portal. That's why C is the best answer - the traffic scrubbers at the ISP level can help mitigate the DDoS attack.
upvoted 0 times
...
Toi
8 months ago
Hmm, I'm a little unsure about this one. I know DNSSEC and IPSec are security protocols, but I'm not sure how they relate to mitigating DDoS attacks specifically. I'll have to think this through carefully.
upvoted 0 times
...
Emile
8 months ago
This question seems pretty straightforward. I think the answer is C - implementing traffic scrubbers on the upstream ISP connection.
upvoted 0 times
...
Jaime
8 months ago
I'm pretty confident the answer is C. Disabling NAT-T or requiring IPSec might help with other security concerns, but they don't directly address the DDoS problem. Implementing traffic scrubbers at the ISP is the most effective way to deal with a distributed denial of service attack.
upvoted 0 times
...
Lucina
8 months ago
Okay, I've got a strategy for this. I'll focus on the common security problems like default credentials, privilege escalation, and file system permissions.
upvoted 0 times
...
Owen
1 year ago
Ah, the age-old battle against DDoS attacks. I say we just unplug the whole thing and call it a day. Who needs the internet anyway?
upvoted 0 times
...
Evan
1 year ago
DNSSEC, really? I thought we were trying to stop DDoS, not secure our DNS. Traffic scrubbers all the way, baby!
upvoted 0 times
Carma
12 months ago
C) Implement traffic scrubbers on the upstream Internet Service Provider (ISP) connection
upvoted 0 times
...
Johnson
12 months ago
B) Disable Network Address Translation Traversal (NAT-T) at the border firewall
upvoted 0 times
...
Elise
1 year ago
A) Implement Domain Name System Security Extensions (DNSSEC) on all Internet-facing name servers
upvoted 0 times
...
...
Rickie
1 year ago
Requiring IPSec for all connections? That's overkill and will just frustrate our users. Let's keep it simple with the traffic scrubbers.
upvoted 0 times
Lorean
1 year ago
C) Implement traffic scrubbers on the upstream Internet Service Provider (ISP) connection
upvoted 0 times
...
Brianne
1 year ago
B) Disable Network Address Translation Traversal (NAT-T) at the border firewall
upvoted 0 times
...
Jesusa
1 year ago
A) Implement Domain Name System Security Extensions (DNSSEC) on all Internet-facing name servers
upvoted 0 times
...
...
Galen
1 year ago
I'm not sure about disabling NAT-T at the firewall, that could cause connectivity issues for some users. I'd go with the traffic scrubbers too.
upvoted 0 times
...
Adell
1 year ago
I'm not sure about that. Wouldn't implementing DNSSEC on Internet-facing name servers also help in mitigating DDoS attacks by ensuring the integrity of DNS data?
upvoted 0 times
...
Teddy
1 year ago
I agree with Maurine. Implementing traffic scrubbers can help filter out malicious traffic and protect the portal from DDoS attacks.
upvoted 0 times
...
Maurine
1 year ago
I think the IoT portal administrator would most likely use traffic scrubbers on the upstream ISP connection to mitigate DDoS attacks.
upvoted 0 times
...
Gerry
1 year ago
Option C sounds like the best approach to me. Scrubbing the traffic at the ISP level can effectively mitigate DDoS attacks without causing disruption to the portal.
upvoted 0 times
Heike
1 year ago
I think option C is the best choice for mitigating DDoS attacks on an IoT portal.
upvoted 0 times
...
Tennie
1 year ago
It's important to have measures in place to protect against DDoS attacks, and option C seems like a proactive approach.
upvoted 0 times
...
Heidy
1 year ago
Implementing traffic scrubbers at the ISP level can definitely help prevent disruptions to the portal.
upvoted 0 times
...
Jordan
1 year ago
I agree, option C seems like the most effective way to handle DDoS attacks.
upvoted 0 times
...
...

Save Cancel