CompTIA Cloud+ (CV0-003) — Question 140

A systems administrator is responding to an outage in a cloud environment that was caused by a network-based flooding attack. Which of the following should the administrator configure to mitigate the attack?

Answer options

• A. NIPS
• B. Network overlay using GENEVE
• C. DDoS protection
• D. DoH

Correct answer: C

Explanation

The correct answer is C, as DDoS protection is specifically designed to counteract distributed denial-of-service attacks, including network flooding. Options A (NIPS) focuses on intrusion prevention at the network level, which may not be effective against a flooding attack. Option B (Network overlay using GENEVE) does not directly address DDoS mitigation, and option D (DoH) relates to DNS privacy and security rather than flood attack prevention.