Page 1 of 189
GIAC Continuous Monitoring Latest
Version: 6.0 ACTUAL QUESTIONS WITH
ANSWERS WITH RATIONALES LATEST
2026.
Question 1
Firewalls operate by examining a data packet and performing
a comparison with some predetermined logical rules.
A) True
B) False
Answer: A – True
Rationale: Firewalls function by inspecting data packets and
comparing them against established rule sets. These rules
determine whether packets are allowed to pass through or
,Page 2 of 189
should be dropped based on criteria such as source/destination
IP addresses, ports, and protocol types .
Question 2
A computer that listens to all traffic on the network regardless of
destination IP is said to be in which mode?
A) Server
B) Multihomed
C) Promiscuous
D) Active
Answer: C – Promiscuous
Rationale: Sniffers and network monitoring tools operate by
putting the network interface of the host machine into
promiscuous mode. Normally, hosts only listen for and respond to
packets destined for their IP or hardware address. Promiscuous
,Page 3 of 189
mode allows the interface to capture every frame traversing the
network segment .
Question 3
When a bastion host approach is used, the host contains two
NICs, forcing all traffic to go through the device.
A) True
B) False
Answer: B – False
Rationale: A bastion host is a single, hardened device that acts
as a gateway between internal and external networks. It
typically uses two network interfaces (NICs), but the statement
suggests this configuration forces all traffic through the device,
which is contextually false. The key point is that bastion hosts are
positioned to control traffic flow, but the wording of the
statement may be misleading regarding the "force" aspect .
, Page 4 of 189
Question 4
A _______ is a combination of hardware and software that
filters or prevents specific information from moving between the
outside world and the inside world.
A) router
B) switch
C) firewall
D) proxy
Answer: C – Firewall
Rationale: A firewall is a security device—either hardware,
software, or a combination of both—that monitors and filters
incoming and outgoing network traffic based on an
organization's previously established security policies. Its primary
function is to create a barrier between a trusted internal network
and untrusted external networks .
GIAC Continuous Monitoring Latest
Version: 6.0 ACTUAL QUESTIONS WITH
ANSWERS WITH RATIONALES LATEST
2026.
Question 1
Firewalls operate by examining a data packet and performing
a comparison with some predetermined logical rules.
A) True
B) False
Answer: A – True
Rationale: Firewalls function by inspecting data packets and
comparing them against established rule sets. These rules
determine whether packets are allowed to pass through or
,Page 2 of 189
should be dropped based on criteria such as source/destination
IP addresses, ports, and protocol types .
Question 2
A computer that listens to all traffic on the network regardless of
destination IP is said to be in which mode?
A) Server
B) Multihomed
C) Promiscuous
D) Active
Answer: C – Promiscuous
Rationale: Sniffers and network monitoring tools operate by
putting the network interface of the host machine into
promiscuous mode. Normally, hosts only listen for and respond to
packets destined for their IP or hardware address. Promiscuous
,Page 3 of 189
mode allows the interface to capture every frame traversing the
network segment .
Question 3
When a bastion host approach is used, the host contains two
NICs, forcing all traffic to go through the device.
A) True
B) False
Answer: B – False
Rationale: A bastion host is a single, hardened device that acts
as a gateway between internal and external networks. It
typically uses two network interfaces (NICs), but the statement
suggests this configuration forces all traffic through the device,
which is contextually false. The key point is that bastion hosts are
positioned to control traffic flow, but the wording of the
statement may be misleading regarding the "force" aspect .
, Page 4 of 189
Question 4
A _______ is a combination of hardware and software that
filters or prevents specific information from moving between the
outside world and the inside world.
A) router
B) switch
C) firewall
D) proxy
Answer: C – Firewall
Rationale: A firewall is a security device—either hardware,
software, or a combination of both—that monitors and filters
incoming and outgoing network traffic based on an
organization's previously established security policies. Its primary
function is to create a barrier between a trusted internal network
and untrusted external networks .
