New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC GCIH Exam - Topic 6 Question 44 Discussion

Actual exam question for GIAC's GCIH exam
Question #: 44
Topic #: 6
[All GCIH Questions]

Firewalking is a technique that can be used to gather information about a remote network protected by a firewall. This technique can be used effectively to perform information gathering attacks. In this technique, an attacker sends a crafted packet with a TTL value that is set to expire one hop past the firewall. Which of the following are pre-requisites for an attacker to conduct firewalking?

Each correct answer represents a complete solution. Choose all that apply.

Show Suggested Answer Hide Answer
Suggested Answer: A, B, D

by Juan at Jul 10, 2025, 11:33 AM

Limited Time Offer

25%

Off

Get Premium GCIH Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Melvin
2 months ago
I thought firewalking was just a myth, but this makes sense.
upvoted 0 times
...
Yen
2 months ago
Wait, do you really need a backdoor for firewalking? Sounds off.
upvoted 0 times
...
Ammie
3 months ago
Agree, knowing the last gateway IP is crucial too!
upvoted 0 times
...
Vashti
3 months ago
ICMP packets must be allowed, that's a must-have!
upvoted 0 times
...
Shawnda
3 months ago
You definitely need the IP of a host behind the firewall.
upvoted 0 times
...
Kaycee
3 months ago
I don't think having a backdoor is necessary for firewalking, but I could be wrong. It seems more about the network's configuration.
upvoted 0 times
...
Rene
4 months ago
The question about the last known gateway sounds familiar; I feel like we practiced something similar in class.
upvoted 0 times
...
Lorean
4 months ago
I think ICMP packets need to be allowed for firewalking to work, but I can't recall if that's a definite prerequisite.
upvoted 0 times
...
Lavonna
4 months ago
I remember that knowing the IP address of a host behind the firewall is crucial for firewalking, but I'm not sure if it's the only requirement.
upvoted 0 times
...
Nidia
4 months ago
This seems pretty straightforward. The key prerequisites are knowing the IP of the last gateway before the firewall, and having ICMP packets allowed out of the network. The other options about a host IP and a backdoor don't seem relevant to the core firewalking technique.
upvoted 0 times
...
Brent
4 months ago
Okay, I think I see the strategy here. The attacker needs to know the IP of the last gateway before the firewall so they can set the TTL to expire just past that point. That way, they can get info about the firewall and network without needing to know anything about the hosts behind it. The ICMP packets are just a bonus if the network allows them.
upvoted 0 times
...
Nickolas
5 months ago
Hmm, I'm a bit confused on this one. Do we really need to know the IP of a host behind the firewall? I thought the whole point was to gather info without that knowledge. And what about the ICMP packets - is that a requirement or just a helpful condition?
upvoted 0 times
...
Malcom
5 months ago
I think I've got this one. The key is knowing the IP address of a host behind the firewall and the IP address of the last gateway before the firewall. That way, you can craft a packet with the right TTL to expire just past the firewall and gather info.
upvoted 0 times
...
Bernardine
6 months ago
You're right, knowing the IP address of the last known gateway is also a pre-requisite for firewalking.
upvoted 0 times
...
Georgene
7 months ago
But what about the last known gateway before the firewall? Isn't that important too?
upvoted 0 times
...
Maia
7 months ago
Yes, that's correct. Knowing the IP address is crucial for firewalking.
upvoted 0 times
...
Bernardine
7 months ago
I think the attacker needs to know the IP address of a host behind the firewall.
upvoted 0 times
...
Ashton
7 months ago
Haha, a backdoor? What is this, a spy movie? I doubt that's a prerequisite for firewalking. Maybe the attacker could try knocking on the firewall's door instead.
upvoted 0 times
...
Teddy
7 months ago
B is also important, right? If ICMP packets are blocked, the attacker won't be able to get the TTL information they need.
upvoted 0 times
Lonna
6 months ago
That's right. If ICMP packets are blocked, the attacker won't be able to gather the necessary TTL information.
upvoted 0 times
...
Clarence
7 months ago
Yes, you are correct. B is an important prerequisite for an attacker to conduct firewalking.
upvoted 0 times
...
...
Aron
8 months ago
Hmm, I think the correct answers are A and D. Knowing the IP address of the host and the last gateway is crucial for this technique to work.
upvoted 0 times
Malika
7 months ago
Having a backdoor installed on the network is not necessary for an attacker to conduct firewalking.
upvoted 0 times
...
Bernardo
7 months ago
ICMP packets leaving the network being allowed is not a prerequisite for firewalking.
upvoted 0 times
...
Xuan
7 months ago
Yes, you are correct. Knowing the IP address of the host and the last gateway is essential for firewalking.
upvoted 0 times
...
...

Save Cancel