John is using Firewalk to test the security of his Cisco PIX firewall. He is also utilizing a sniffer located on a subnet that resides deep inside his network. After analyzing the sniffer log files, he does not see any of the traffic produced by Firewalk. Why is that?
A.
Firewalk cannot pass through Cisco firewalls
B.
Firewalk sets all packets with a TTL of zero
C.
Firewalk cannot be detected by network sniffers
D.
Firewalk sets all packets with a TTL of one
i have a problem with this answer also. When you do firealwking its not mean you setting all ttl to 1 it could be set a different value other than 0. Now, sniffers cant really detect firewalking, so it should be the correct answer
Firewalk sends out packets with a TTL one greater than the targeted gateway. If the target is one hop count away, firewalk’s packet would have a TTL of 2. Though D is technically wrong, it’s the closest to the right answer.
Correct answer is