CISSP Practice question #132

Smurf attacks happen on which OSI layer?
A: 1
B: 2
C: 3
D: 4

CBK 4: Communication and Network Security
Source: practice tests


C: The Smurf attack is a distributed denial-of-service attack in which large numbers of Internet Control Message Protocol (ICMP) packets with the intended victim’s spoofed source IP are broadcast to a computer network using an IP broadcast address. ICMP is a layer 3 protocol.

show less

IT security trainer.
Sharing my knowledge, to help you reach your IT certification goals.
CISSP, C|EH, PMP, CCNP, CompTIA Security+, SCP, CCNA-Security, CCNA, et. Al.

You may also like


  1. SSCP Study GUide: Pg 32 Smurf: Uses a combination of IP spoofing and ICMP to saturate a target network with traffic, thereby launching
    a denial of service attack. It consists of three elements — the source site, the bounce site, and the target site. The
    attacker (the source site) sends a spoofed PING packet to the broadcast address of a large network (the bounce
    site). This modified packet contains the address of the target site. This causes the bounce site to broadcast the
    misinformation to all of the devices on its local network. All of these devices now respond with a reply to the
    target system, which is then saturated with those replies.

Leave a Reply