New Year Sale ! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GAQM Exam CPEH-001 Topic 4 Question 103 Discussion

Actual exam question for GAQM's CPEH-001 exam
Question #: 103
Topic #: 4
[All CPEH-001 Questions]

To scan a host downstream from a security gateway, Firewalking:

Show Suggested Answer Hide Answer
Suggested Answer: B

Firewalking uses a traceroute-like IP packet analysis to determine whether or not a particular packet can pass from the attacker's host to a destination host through a packet-filtering device. This technique can be used to map 'open' or 'pass through' ports on a gateway. More over, it can determine whether packets with various control information can pass through a given gateway.


by Rosina at Nov 15, 2024, 10:36 AM

Limited Time Offer

25%

Off

Get Premium CPEH-001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Tamekia
8 days ago
Option A is the way to go, in my opinion. Probing the firewall's response to a blocked UDP packet is a classic technique. Gotta love that packet trickery!
upvoted 0 times
...
Rebecka
9 days ago
Option B all the way! Sending packets with a TTL value set to expire past the gateway is like a ninja move. Sneaky and effective!
upvoted 0 times
...
Hailey
19 days ago
I'm not sure, but I think D) Assesses the security rules that relate to the target system before it sends packets to any hops on the route to the gateway makes sense too.
upvoted 0 times
...
Micah
21 days ago
I disagree, I believe the answer is A) Sends a UDP-based packet that it knows will be blocked by the firewall to determine how specifically the firewall responds to such packets.
upvoted 0 times
...
My
27 days ago
Haha, this question is a real head-scratcher! I'm going to have to go with Option D, though. Assessing the security rules first seems like the safest approach.
upvoted 0 times
...
Vernell
1 months ago
This is a tough one, but I think Option C is the way to go. Sending an ICMP 'administratively prohibited' packet seems like a good way to test the gateway's defenses.
upvoted 0 times
Glory
10 days ago
I'm not sure, but Option D could be important to consider before sending any packets to the gateway.
upvoted 0 times
...
Clarence
17 days ago
I think Option A might also be a valid approach to determine how the firewall responds to certain packets.
upvoted 0 times
...
Jose
20 days ago
I agree, Option C does seem like a good way to test the gateway's defenses.
upvoted 0 times
...
...
Azzie
1 months ago
I'm going with Option A. Sending a UDP packet that the firewall will block is a clever way to probe its response and gather information.
upvoted 0 times
...
Coral
1 months ago
Option B makes the most sense to me. Using the TTL function to send packets past the gateway sounds like a clever way to sneak past the firewall.
upvoted 0 times
Launa
13 days ago
User 3: I agree, it's a clever tactic to scan a host downstream from a security gateway.
upvoted 0 times
...
France
15 days ago
User 2: Yeah, using the TTL function seems like a smart way to bypass the firewall.
upvoted 0 times
...
Brent
28 days ago
User 1: I think option B is the best choice.
upvoted 0 times
...
...
Nancey
1 months ago
I think the answer is B) Uses the TTL function to send packets with a TTL value set to expire one hop past the identified security gateway.
upvoted 0 times
...

Save Cancel