Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Cisco Exam 200-201 Topic 7 Question 79 Discussion

Actual exam question for Cisco's 200-201 exam
Question #: 79
Topic #: 7
[All 200-201 Questions]

A network engineer noticed in the NetFlow report that internal hosts are sending many DNS requests to external DNS servers A SOC analyst checked the endpoints and discovered that they are infected and became part of the botnet Endpoints are sending multiple DNS requests but with spoofed IP addresses of valid external sources What kind of attack are infected endpoints involved in1?

Show Suggested Answer Hide Answer
Suggested Answer: D

by Trinidad at Jan 26, 2024, 01:26 AM

Limited Time Offer

25%

Off

Get Premium 200-201 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Lea
22 days ago
Ooh, this one's got me stumped. I'm torn between C and D. Anyone want to help a buddy out?
upvoted 0 times
...
Valda
23 days ago
Hmm, I was leaning towards DNS flooding, but the spoofed IPs make me second-guess that. DNS amplification seems like the best answer here.
upvoted 0 times
...
Kathryn
24 days ago
Hey buddy, no cheating allowed! Although, I'm feeling generous... I'd say go with D. DNS amplification. The spoofed IPs are the key giveaway.
upvoted 0 times
...
Rashida
25 days ago
Haha, nice try, Candidate 4. But Candidate 2's got the right idea. D is definitely the way to go on this one.
upvoted 0 times
Glory
9 days ago
Candidate 1
upvoted 0 times
...
Thomasena
10 days ago
Candidate 2
upvoted 0 times
...
...

Save Cancel