ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 350-201 All Questions

View all questions & answers for the 350-201 exam
Go to Exam

Exam 350-201 topic 1 question 34 discussion

Actual exam question from Cisco's 350-201
Question #: 34
Topic #: 1
[All 350-201 Questions]


Refer to the exhibit. An engineer must tune the Cisco IOS device to mitigate an attack that is broadcasting a large number of ICMP packets. The attack is sending the victim's spoofed source IP to a network using an IP broadcast address that causes devices in the network to respond back to the source IP address. Which action does the engineer recommend?

  • A. Use command ip verify reverse-path interface
  • B. Use global configuration command service tcp-keepalives-out
  • C. Use subinterface command no ip directed-broadcast
  • D. Use logging trap 6
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
Reference:
https://www.ccexpert.us/pix-firewall/ip-verify-reversepath-command.html
by rhaphaexzzux at Oct. 13, 2021, 8:02 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
archbbo
4 weeks, 1 day ago
None of these questions are on the new exam, i missed it by 4 questions.
upvoted 1 times
...
27ea763
3 months, 1 week ago
Selected Answer: C
It's C. Just search Smurf Attack and how to solve it
upvoted 2 times
...
56c0dbe
6 months, 1 week ago
Selected Answer: C
related
upvoted 2 times
...
ak_technonet
1 year, 11 months ago
This smurf attack can prevent by issue the command on router interface: no ip directed-broadcast https://www.ciscopress.com/articles/article.asp?p=345618
upvoted 1 times
...
DrVoIP
2 years, 2 months ago
C. Use subinterface command no ip directed-broadcast. The attack is causing devices in the network to respond back to the source IP address, which is a result of the attacker sending packets with a spoofed source IP and using an IP broadcast address. This attack can be mitigated by disabling directed broadcast on the router, which is done by using the "no ip directed-broadcast" command on the subinterface. This will prevent the router from forwarding broadcast packets to other networks, and will prevent devices in the network from responding back to the source IP address. The other options listed are not relevant to mitigating the specific attack described in the scenario: - ChatGPT
upvoted 1 times
...
Medjai89
2 years, 4 months ago
Answer C: https://www.vskills.in/certification/tutorial/router-attacks/
upvoted 2 times
...
TOLU1985
2 years, 7 months ago
Selected Answer: A
most related.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago