CompTIA CASP+ Practice Test

Which action should the ISP take in response to a detected Fraggle attack?

• A. Increase the bandwidth to counter the attack.
• B. Implement QOS policies for bandwidth allocation.
• C. Block the malicious packets.
• D. Notify law enforcement of the cyber attack.

The correct answer is: Block the malicious packets.

In response to a detected Fraggle attack, the most appropriate action is to block the malicious packets. A Fraggle attack is a type of distributed denial-of-service (DDoS) attack that uses UDP (User Datagram Protocol) packets directed at port 7 (echo) and port 19 (chargen) to overwhelm a target system or network with traffic. By blocking the malicious packets, the Internet Service Provider (ISP) can prevent the attack from reaching its intended target, thereby mitigating the immediate threat and allowing normal operations to resume. Blocking packets associated with the attack helps protect both the target and potentially other users on the network from being affected by the flood of traffic generated by the attackers. This action is essential in maintaining the integrity and availability of internet services. While increasing bandwidth or implementing Quality of Service (QoS) policies could be considered as potential responses to manage traffic load, they do not directly address the malicious nature of the packets involved in a Fraggle attack. These methods do not prevent the attack but rather aim to provide a temporary workaround, which might lead to further issues. Notifying law enforcement can be important in cases of significant cyber attacks, but it typically occurs after immediate protective measures are implemented. Blocking the malicious traffic should be the