Which action is recommended as part of DoS attack prevention?

Blocking traffic from unassigned IP address ranges is a critical action recommended for preventing Denial of Service (DoS) attacks. By filtering out unsolicited traffic that originates from IP address ranges not assigned to any legitimate user or organization, organizations can significantly reduce the amount of potentially harmful traffic that reaches their network. This proactive measure helps in mitigating the impact of attacks that often rely on overwhelming network resources with traffic from spoofed or nonsensical IP addresses, which are typically utilized in DoS attacks.

Engaging in this type of filtering ensures that only valid, intended traffic is allowed through the network's perimeter defenses, making it more challenging for attackers to flood the network with excessive data and disrupt services. Therefore, this practice not only protects resources but also enhances the overall security posture of the organization against a variety of attack vectors.