How can a DNS tunneling attack be mitigated?
- by using a filter that inspects DNS traffic
- by securing all domain owner accounts
- by using strong passwords and two-factor authentication
- by preventing devices from using gratuitous ARP
| Answers Explanation & Hints:
To be able to stop DNS tunneling, a filter that inspects DNS traffic must be used. Also, DNS solutions such as Cisco OpenDNS block much of the DNS tunneling traffic by identifying suspicious domains. |