ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-003 All Questions

View all questions & answers for the CAS-003 exam
Go to Exam

Exam CAS-003 topic 1 question 409 discussion

Actual exam question from CompTIA's CAS-003
Question #: 409
Topic #: 1
[All CAS-003 Questions]

A security administrator receives reports that several workstations are unable to access resources within one network segment. A packet capture shows the segment is flooded with ICMPv6 traffic from the source fe80::21ae:4571:42ab:1fdd and for the destination ff02::1. Which of the following should the security administrator integrate into the network to help prevent this from occurring?

  • A. Raise the dead peer detection interval to prevent the additional network chatter
  • B. Deploy honeypots on the network segment to identify the sending machine
  • C. Ensure routers will use route advertisement guards
  • D. Deploy ARP spoofing prevention on routers and switches
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by D1960 at May 5, 2021, 10:57 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
EdmundA
1 year, 7 months ago
Selected Answer: D
I believe the answer is D.
upvoted 1 times
...
vorozco
3 years, 4 months ago
I don't think the answer is A, had just never heard of Dead Peer Detection. "Dead Peer Detection (DPD) is a method of detecting a dead Internet Key Exchange (IKE) peer. The method uses IPsec traffic patterns to minimize the number of messages required to confirm the availability of a peer. DPD is used to reclaim the lost resources in case a peer is found dead and it is also used to perform IKE peer failover."
upvoted 1 times
...
vorozco
3 years, 4 months ago
Selected Answer: C
https://www.juniper.net/documentation/us/en/software/junos/security-services/topics/concept/port-security-ra-guard.html
upvoted 1 times
...
quagga
3 years, 7 months ago
https://blogs.infoblox.com/ipv6-coe/why-you-must-use-icmpv6-router-advertisements-ras/
upvoted 1 times
...
ckr8
3 years, 9 months ago
its C. Ensure routers will use route advertisement guards
upvoted 1 times
...
SoniSoni
3 years, 11 months ago
its definitely route ad guards! i agree with D1960
upvoted 2 times
...
D1960
4 years, 1 month ago
Maybe: C. Ensure routers will use route advertisement guards ? "RA guard works by validating RA messages on the basis of whether they meet certain criteria, configured on the switch using policies. RA guard inspects RA messages and compares the information contained in the message attributes to the configured policy. Depending on the policy, RA guard either drops or forwards the RA messages that match the conditions" https://www.juniper.net/documentation/us/en/software/junos/security-services/topics/concept/port-security-ra-guard.html
upvoted 3 times
...
D1960
4 years, 2 months ago
How do we know the IP address was spoofed?
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel