ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 200-201 All Questions

View all questions & answers for the 200-201 exam
Go to Exam

Exam 200-201 topic 1 question 387 discussion

Actual exam question from Cisco's 200-201
Question #: 387
Topic #: 1
[All 200-201 Questions]

An analyst performs traffic analysis to detect data exfiltration and identifies a high frequency of DNS requests in a small period of time. Which technology makes this behavior feasible?

  • A. access control list
  • B. NAT
  • C. encryption
  • D. tunneling
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by KevinCondor at March 23, 2024, 4:45 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
KevinCondor
7 months, 2 weeks ago
Selected Answer: D
In the context of detecting data exfiltration, tunnels can be used to encapsulate and hide network traffic within another protocol, such as DNS. This allows attackers to transfer data out of a network without being easily detected, as DNS traffic is common and often not closely inspected for performance reasons. The high number of DNS requests in a short period of time could be indicative of an attempt at covert data exfiltration using DNS tunnels, where data is hidden within DNS traffic to avoid detection.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago