ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam ANS-C00 All Questions

View all questions & answers for the ANS-C00 exam
Go to Exam

Exam ANS-C00 topic 1 question 160 discussion

Exam question from Amazon's ANS-C00
Question #: 160
Topic #: 1
[All ANS-C00 Questions]

You are under a DDoS attack and you have added a deny all TCP rule to your NACL, but traffic is still coming. What did you do wrong?

  • A. You configured the rule number to be too low.
  • B. A NACL can't protect against a DDoS.
  • C. The DDoS isn't a TCP attack.
  • D. You need to add a deny rule outbound also since NACLs are stateful.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
The DDoS isn't a TCP attack (this time.) A DDoS can use several different protocols. NACLs are stateless. The lower the rule number, the higher the priority.
by eeghai7thioyaiR4 at March 16, 2021, 12:28 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
khchan123
3 years, 3 months ago
C The DDoS could be IP-spoofing or UDP flooding, so TCP rule is useless.
upvoted 2 times
...
zenfox
3 years, 7 months ago
C. Basically you block TCP DDOS (like SYN Flood) but didn't block UDP (Like saturate the Internet pipe with ICMP/chat or VoIP ports)
upvoted 2 times
...
ChauPhan
3 years, 8 months ago
DDos can be UDP or TCP attack, so need to set rules for both.
upvoted 4 times
...
eeghai7thioyaiR4
3 years, 8 months ago
C The DDoS is probably UDP-based, so the rule is useless
upvoted 3 times
sapien45
3 years, 2 months ago
DDoS are frenquently UDP-based
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel