Which effect of using ingress filtering to prevent spoofed addresses on a network design is true?
Answer(s): B
Ingress filtering is a security measure that can be used to prevent spoofed addresses on a network design. Spoofed addresses are IP addresses that are not actually assigned to a device on the network. Attackers can use spoofed addresses to launch DDoS attacks, which are attacks that flood a network with traffic. Ingress filtering can help to prevent these attacks by filtering out packets that have spoofed source addresses.The other options are not as accurate. RFC 1918 IP addresses are private IP addresses that are not routable on the public internet. These addresses are not typically used in DDoS attacks, so filtering them out would not have a significant impact on the effectiveness of DDoS attacks. DSCP remarking is a technique that can be used to change the DSCP (Differentiated Services Code Point) value of a packet. DSCP is a field in the IP header that is used to classify traffic. Scavenger is a type of DSCP value that is used to mark traffic that is not important. Classifying bogon traffic and remarking it with DSCP bulk would not have a significant impact on the effectiveness of DDoS attacks.
Which two technologies enable multilayer segmentation? (Choose two.)
Answer(s): A,B
FWs for sure and data plane markings such as SGT tags (Trustsec) are used for segmentation
IPFIX data collection via standalone IPFIX probes is an alternative to flow collection from routers and switches. Which use case is suitable for using IPFIX probes?
Answer(s): A
IPFIX probes are devices that can be used to collect IPFIX data from routers and switches. This data can then be used for a variety of purposes, including security, observation of critical links, capacity planning, and performance monitoring.However, IPFIX probes are particularly well-suited for security use cases. This is because they can be used to collect data from a wide range of devices, including devices that do not support NetFlow. This data can then be used to identify and investigate security incidents.The other options are also suitable for using IPFIX probes, but they are not as well-suited as security use cases. For example, observation of critical links can be used to identify and troubleshoot performance issues on critical links. Capacity planning can be used to forecast future network traffic and to plan for capacity upgrades. Performance monitoring can be used to identify and troubleshoot performance issues on the network.
DRAG DROP (Drag and Drop is not supported)Drag and drop the design use cases from the left onto the correct uRPF techniques used to prevent spoofing attacks. Not all options are used.
Post your Comments and Discuss Cisco® 400-007 exam with other Community members:
RLCCIRCUIT Commented on January 31, 2025 I passed the exam with 848 on 12th July. This dump covers most of the questions, I only met 4 new ones. Thanks very much. I will get other exam dumps here. UNITED STATES
Mohammed Commented on November 28, 2024 Its mention 330 question but the pdf has only 280 questions please update Anonymous
Our website is free, but we have to fight against bots and content theft. We're sorry for the inconvenience caused by these security measures. You can access the rest of the 400-007 content, but please register or login to continue.