How are IP spoofing attacks mitigated in the SAFE SMR midsize network design corporate Internet module?
A.
Filtering at the ISP, edge router, and corporate firewall.
B.
IDS as the host and network levels.
C.
E-mail content filtering, HIDS, and host-based virus scanning.
D.
OS and ISD detection.
E.
CAR at the ISP edge and TCP setup controls at the firewall.
F.
RFC 2827 and 1918 filtering at ESP edge and midsize network edge router.
Explanation:
At the egress of the ISP router, RFC 1918 and RFC 2827 filtering is configured to mitigate against source-address spoofing of local networks and private address ranges.
Reference: Cisco Courseware pages 6-8, 6-9