A security analyst detects unauthorized network prefixes being propagated through an edge router, causing traffic to be misrouted. Which measure best stops the unwanted route advertisements?
Shorten the route expiration interval
Enable port-based authentication on the router
Discontinue dynamic path selection and switch to static paths
Filtering routes with prefix lists blocks unauthorized subnets. This directly addresses malicious or incorrect route information. Enabling 802.1X only guards against unauthorized devices attaching to a port. Adjusting route timers does not prevent inaccurate announcements from spreading. Using static routes may reduce exposure but does not scale for dynamic networks and leaves misconfigurations unaddressed.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a prefix list in networking?
Open an interactive chat with Bash
How does enabling 802.1X differ from using prefix lists?
Open an interactive chat with Bash
Why are static routes not ideal for preventing route advertisement issues?