Which of the following should the administrator configure to mitigate the attack?

A systems administrator is responding to an outage in a cloud environment that was caused by a network-based flooding attack.

Which of the following should the administrator configure to mitigate the attack?
A . NIPS
B . Network overlay using GENEVE
C . DDoS protection
D . DoH

View Answer

Answer: C

Explanation:

DDoS protection is what the administrator should configure to mitigate a network-based flooding attack that caused an outage in a cloud environment. A network-based flooding attack is a type of attack that sends a large amount of network traffic or requests to a target system or service, such as a server, website, application, etc., with the intention of overwhelming or exhausting its resources or capacity. A network-based flooding attack can cause an outage in a cloud environment by disrupting or degrading the

availability or performance of the target system or service, as well as affecting other systems or services that share the same network or infrastructure. DDoS protection is a tool or service that detects and prevents network-based flooding attacks, also known as Distributed Denial of Service (DDoS) attacks. DDoS protection can mitigate a network-based flooding attack by providing features such as:

✑ Filtering: DDoS protection can filter network traffic or requests based on various criteria, such as source, destination, protocol, content, etc., and block or allow them accordingly.

✑ Diverting: DDoS protection can divert network traffic or requests away from the target system or service to another location or device, such as a scrubbing center, proxy, firewall, etc., where they can be analyzed and processed.

✑ Scaling: DDoS protection can scale network resources or capacity dynamically and automatically to handle the increased demand or load caused by the network-based flooding attack.