Bill is an IT security consultant who has been hired on by an ISP that has recently been plagued by numerous DoS attacks. The ISP did not have the internalresources to prevent future attacks, so they hired Bill for his expertise. Bill looks through the company’s firewall logs and can see from the patterns that the attackers were using reflected DoS attacks. What measures can Bill take to help prevent future reflective DoS attacks against the ISP’s network? (Select 2)
A.
Bill should have the ISP block port 179 on their firewall to stop these DoS attacks.
B.
He should have them configure their network equipment to recognize SYN source IP addresses that never complete their connections
C.
Bill needs to tell the ISP to block all UDP traffic coming in on port 1001 to prevent future reflective DoS attacks against their network.
D.
Bills should configure the ISP’s firewall so that it blocks FIN packets that are sent to the broadcast address of the company’s internal IP range.
Why should port 179 be blocked?
Yes why should port 179 be Blocked?
“179 Border Gateway Protocol (BGP)”
Seems like information is missing if this question is inferring that a BGP reflection attack is taking place.
I choose AB