Certified Ethical Hacker (CEH v11) — Question 294

An attacker attaches a rogue router in a network. He wants to redirect traffic to a LAN attached to his router as part of a man-in-the-middle attack. What measure on behalf of the legitimate admin can mitigate this attack?

Answer options

• A. Make sure that legitimate network routers are configured to run routing protocols with authentication.
• B. Disable all routing protocols and only use static routes
• C. Only using OSPFv3 will mitigate this risk.
• D. Redirection of the traffic cannot happen unless the admin allows it explicitly.

Correct answer: A

Explanation

The correct answer is A because configuring routing protocols with authentication helps verify the identity of routers and prevents unauthorized access. Option B, while it may limit routing dynamics, does not address the risk posed by rogue routers effectively. Option C is incorrect as OSPFv3 alone does not inherently mitigate the risk of rogue routers. Option D is misleading since an attacker can implement redirection without explicit permission from the admin if the network is vulnerable.