An administrator received a FortiAnalyzer alert that a 1 ТВ disk filled up in a day. Upon investigation, they found thousands of unusual DNS log requests, such as JHCMQK.website.com, with no answers. They later discovered that DNS exfiltration was occurring through both UDP and TLS. How can the administrator prevent this data theft technique? (Choose one answer)

A. Create an inline-CASB to protect against DNS exfiltration.
B. Configure a File Filter profile to prevent DNS exfiltration.
C. Enable DNS Filter to protect against DNS exfiltration.
D. Use an IPS profile and DNS exfiltration-related signatures.

Correct Answer: D

Brave-Dump Clients Votes

D 100%

Comments

Brave-Dumps Admin 2025-04-27 23:33:35

Selected Answers: D

D is correct
EFW 7.4 study guide page 183 confirms that,

"FortiGate includes a signature named DNSExfiltrator.Data.Exfiltration that you can use to detect and prevent
DNS exfiltration."