How can a DNS tunneling attack be mitigated?
- by preventing devices from using gratuitous ARP
- by using a filter that inspects DNS traffic
- by securing all domain owner accounts
- by using strong passwords and two-factor authentication
Explanation: To be able to stop DNS tunneling, a filter that inspects DNS traffic must be used. Also, DNS solutions such as Cisco OpenDNS block much of the DNS tunneling traffic by identifying suspicious domains.
Exam with this question: Modules 13 – 17: Threats and Attacks Group Exam