What does RFC 2827 filtering prevent in the SAFE SMR midsize network design campus module?
A.
Port redirection attacks.
B.
Port mapping through the firewall.
C.
Source-address spoofing.
D.
Packet sniffers.
Explanation:
RFC 2827 filtering at the ingress router should also be implemented to mitigate the chance of an attacker from outside the network spoofing the addresses of the management hosts.
Reference: SAFE: Extending the Security Blueprint to Small, Midsize, and Remote-User Networks Page 71