Wireshark Lab: Iniciando

1. Liste os diferentes protocolos que aparecem na coluna Protocol na janela de

listagem de pacotes após o passo 7;

Resp.: ARP,DHCP, DNS, HTTP e HTTP/XML, ICMP, ICMPv6, IGMPv2, LLMNR,

MDNS,NBNS, SSDP, SSL, SSLv2, STUN, TCP, TLSv1, TLSv1.2, TLSv1.3 e UDP.

2. Quanto tempo passou de quando a mensagem HTTP GET foi enviada até que
a resposta OK foi recebida? (por default, o valor da coluna Time na janela de
listagem de pacotes é a quantidade de tempo, em segundos, desde que a
captura iniciou). Para exibir o campo Time no formato hora do dia, selecione o
menu View, depois Time Display Format, então selecione Time of day.

Resp.: 16:49:25,601030

3. Qual é o endereço IP do site www.aw.com? Qual é o endereço IP da interface

de rede do seu computador?

Resp.:

IP do site www.aw.com: 13.69.68.16

IP do meu computador: 192.198.0.159

4. Imprima as mensagens HTTP GET e a resposta a ela (HTTP/1.1 200 OK).

Para fazer isso, selecione Print no menu File, e depois “Selected Packet Only”
e “Print as Displayed”. Ok (ou Imprimir) para confirmar.

Resp.:

No. Time Source Destination

Protocol Length Info

241 17:44:38,848176 192.168.0.159 13.69.68.16

HTTP 502 GET /kurose_br HTTP/1.1

Frame 241: 502 bytes on wire (4016 bits), 502 bytes captured (4016
bits) on interface \Device\NPF_{81229EF9-F47F-4DFF-ABF9-60FA4067B915},
id 0

Interface id: 0 (\Device\NPF_{81229EF9-F47F-4DFF-ABF9-

60FA4067B915})

Interface name: \Device\NPF_{81229EF9-F47F-4DFF-ABF9-

60FA4067B915}

Interface description: Wi-Fi

Encapsulation type: Ethernet (1)

 Arrival Time: Mar 21, 2020 17:44:38.848176000 Hora oficial do
Brasil

[Time shift for this packet: 0.000000000 seconds]

Epoch Time: 1584823478.848176000 seconds

[Time delta from previous captured frame: 0.000823000 seconds]

[Time delta from previous displayed frame: 0.000000000 seconds]

[Time since reference or first frame: 15.273729000 seconds]

Frame Number: 241

Frame Length: 502 bytes (4016 bits)

Capture Length: 502 bytes (4016 bits)

[Frame is marked: False]

[Frame is ignored: False]

[Protocols in frame: eth:ethertype:ip:tcp:http]

[Coloring Rule Name: HTTP]

[Coloring Rule String: http || tcp.port == 80 || http2]

Ethernet II, Src: HonHaiPr_d4:a4:63 (f4:b7:e2:d4:a4:63), Dst: Tp-

LinkT_2d:dd:ca (98:da:c4:2d:dd:ca)

Destination: Tp-LinkT_2d:dd:ca (98:da:c4:2d:dd:ca)

Address: Tp-LinkT_2d:dd:ca (98:da:c4:2d:dd:ca)

.... ..0. .... .... .... .... = LG bit: Globally unique

address (factory default)

.... ...0 .... .... .... .... = IG bit: Individual address

(unicast)

Source: HonHaiPr_d4:a4:63 (f4:b7:e2:d4:a4:63)

Address: HonHaiPr_d4:a4:63 (f4:b7:e2:d4:a4:63)

.... ..0. .... .... .... .... = LG bit: Globally unique

address (factory default)

.... ...0 .... .... .... .... = IG bit: Individual address

(unicast)

Type: IPv4 (0x0800)

Internet Protocol Version 4, Src: 192.168.0.159, Dst: 13.69.68.16

0100 .... = Version: 4

.... 0101 = Header Length: 20 bytes (5)

 Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)

0000 00.. = Differentiated Services Codepoint: Default (0)

.... ..00 = Explicit Congestion Notification: Not ECN-Capable

Transport (0)

Total Length: 488

Identification: 0xbd65 (48485)

Flags: 0x4000, Don't fragment

0... .... .... .... = Reserved bit: Not set

.1.. .... .... .... = Don't fragment: Set

..0. .... .... .... = More fragments: Not set

Fragment offset: 0

Time to live: 128

Protocol: TCP (6)

Header checksum: 0x290e [validation disabled]

[Header checksum status: Unverified]

Source: 192.168.0.159

Destination: 13.69.68.16

Transmission Control Protocol, Src Port: 53841, Dst Port: 80, Seq: 1,
Ack: 1, Len: 448

Source Port: 53841

Destination Port: 80

[Stream index: 4]

[TCP Segment Len: 448]

Sequence number: 1 (relative sequence number)

Sequence number (raw): 611159203

[Next sequence number: 449 (relative sequence number)]

Acknowledgment number: 1 (relative ack number)

Acknowledgment number (raw): 1076756723

0101 .... = Header Length: 20 bytes (5)

Flags: 0x018 (PSH, ACK)

000. .... .... = Reserved: Not set

 ...0 .... .... = Nonce: Not set

.... 0... .... = Congestion Window Reduced (CWR): Not set

.... .0.. .... = ECN-Echo: Not set

.... ..0. .... = Urgent: Not set

.... ...1 .... = Acknowledgment: Set

.... .... 1... = Push: Set

.... .... .0.. = Reset: Not set

.... .... ..0. = Syn: Not set

.... .... ...0 = Fin: Not set

[TCP Flags: ·······AP···]

Window size value: 512

[Calculated window size: 131072]

[Window size scaling factor: 256]

Checksum: 0x62ed [unverified]

[Checksum Status: Unverified]

Urgent pointer: 0

[SEQ/ACK analysis]

[iRTT: 0.243596000 seconds]

[Bytes in flight: 448]

[Bytes sent since last PSH flag: 448]

[Timestamps]

[Time since first frame in this TCP stream: 0.244419000

seconds]

[Time since previous frame in this TCP stream: 0.000823000

seconds]

TCP payload (448 bytes)

Hypertext Transfer Protocol

GET /kurose_br HTTP/1.1\r\n

[Expert Info (Chat/Sequence): GET /kurose_br HTTP/1.1\r\n]

[GET /kurose_br HTTP/1.1\r\n]

[Severity level: Chat]

 [Group: Sequence]

Request Method: GET

Request URI: /kurose_br

Request Version: HTTP/1.1

Host: www.aw.com\r\n

Connection: keep-alive\r\n

Upgrade-Insecure-Requests: 1\r\n

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)

AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149
Safari/537.36\r\n

Accept:
text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image
/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9\r\n

Accept-Encoding: gzip, deflate\r\n

Accept-Language: pt-BR,pt;q=0.9,en-US;q=0.8,en;q=0.7\r\n

\r\n

[Full request URI: http://www.aw.com/kurose_br]

[HTTP request 1/1]

[Response in frame: 242]

No. Time Source Destination

Protocol Length Info

242 17:44:39,093638 13.69.68.16 192.168.0.159

HTTP 252 HTTP/1.1 301 Moved Permanently

Frame 242: 252 bytes on wire (2016 bits), 252 bytes captured (2016
bits) on interface \Device\NPF_{81229EF9-F47F-4DFF-ABF9-60FA4067B915},
id 0

Interface id: 0 (\Device\NPF_{81229EF9-F47F-4DFF-ABF9-

60FA4067B915})

Interface name: \Device\NPF_{81229EF9-F47F-4DFF-ABF9-

60FA4067B915}

Interface description: Wi-Fi

Encapsulation type: Ethernet (1)

 Arrival Time: Mar 21, 2020 17:44:39.093638000 Hora oficial do
Brasil

[Time shift for this packet: 0.000000000 seconds]

Epoch Time: 1584823479.093638000 seconds

[Time delta from previous captured frame: 0.245462000 seconds]

[Time delta from previous displayed frame: 0.245462000 seconds]

[Time since reference or first frame: 15.519191000 seconds]

Frame Number: 242

Frame Length: 252 bytes (2016 bits)

Capture Length: 252 bytes (2016 bits)

[Frame is marked: False]

[Frame is ignored: False]

[Protocols in frame: eth:ethertype:ip:tcp:http]

[Coloring Rule Name: HTTP]

[Coloring Rule String: http || tcp.port == 80 || http2]

Ethernet II, Src: Tp-LinkT_2d:dd:ca (98:da:c4:2d:dd:ca), Dst:

HonHaiPr_d4:a4:63 (f4:b7:e2:d4:a4:63)

Destination: HonHaiPr_d4:a4:63 (f4:b7:e2:d4:a4:63)

Address: HonHaiPr_d4:a4:63 (f4:b7:e2:d4:a4:63)

.... ..0. .... .... .... .... = LG bit: Globally unique

address (factory default)

.... ...0 .... .... .... .... = IG bit: Individual address

(unicast)

Source: Tp-LinkT_2d:dd:ca (98:da:c4:2d:dd:ca)

Address: Tp-LinkT_2d:dd:ca (98:da:c4:2d:dd:ca)

.... ..0. .... .... .... .... = LG bit: Globally unique

address (factory default)

.... ...0 .... .... .... .... = IG bit: Individual address

(unicast)

Type: IPv4 (0x0800)

Internet Protocol Version 4, Src: 13.69.68.16, Dst: 192.168.0.159

0100 .... = Version: 4

.... 0101 = Header Length: 20 bytes (5)

 Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)

0000 00.. = Differentiated Services Codepoint: Default (0)

.... ..00 = Explicit Congestion Notification: Not ECN-Capable

Transport (0)

Total Length: 238

Identification: 0x1cba (7354)

Flags: 0x4000, Don't fragment

0... .... .... .... = Reserved bit: Not set

.1.. .... .... .... = Don't fragment: Set

..0. .... .... .... = More fragments: Not set

Fragment offset: 0

Time to live: 105

Protocol: TCP (6)

Header checksum: 0xe1b3 [validation disabled]

[Header checksum status: Unverified]

Source: 13.69.68.16

Destination: 192.168.0.159

Transmission Control Protocol, Src Port: 80, Dst Port: 53841, Seq: 1,
Ack: 449, Len: 198

Source Port: 80

Destination Port: 53841

[Stream index: 4]

[TCP Segment Len: 198]

Sequence number: 1 (relative sequence number)

Sequence number (raw): 1076756723

[Next sequence number: 199 (relative sequence number)]

Acknowledgment number: 449 (relative ack number)

Acknowledgment number (raw): 611159651

0101 .... = Header Length: 20 bytes (5)

Flags: 0x018 (PSH, ACK)

000. .... .... = Reserved: Not set

 ...0 .... .... = Nonce: Not set

.... 0... .... = Congestion Window Reduced (CWR): Not set

.... .0.. .... = ECN-Echo: Not set

.... ..0. .... = Urgent: Not set

.... ...1 .... = Acknowledgment: Set

.... .... 1... = Push: Set

.... .... .0.. = Reset: Not set

.... .... ..0. = Syn: Not set

.... .... ...0 = Fin: Not set

[TCP Flags: ·······AP···]

Window size value: 1025

[Calculated window size: 262400]

[Window size scaling factor: 256]

Checksum: 0x4236 [unverified]

[Checksum Status: Unverified]

Urgent pointer: 0

[SEQ/ACK analysis]

[This is an ACK to the segment in frame: 241]

[The RTT to ACK the segment was: 0.245462000 seconds]

[iRTT: 0.243596000 seconds]

[Bytes in flight: 198]

[Bytes sent since last PSH flag: 198]

[Timestamps]

[Time since first frame in this TCP stream: 0.489881000

seconds]

[Time since previous frame in this TCP stream: 0.245462000

seconds]

TCP payload (198 bytes)

Hypertext Transfer Protocol

HTTP/1.1 301 Moved Permanently\r\n

[Expert Info (Chat/Sequence): HTTP/1.1 301 Moved

Permanently\r\n]
 [HTTP/1.1 301 Moved Permanently\r\n]

[Severity level: Chat]

[Group: Sequence]

Response Version: HTTP/1.1

Status Code: 301

[Status Code Description: Moved Permanently]

Response Phrase: Moved Permanently

Content-Type: text/html; charset=UTF-8\r\n

Location: https://www.aw.com/kurose_br\r\n

Server: Microsoft-IIS/10.0\r\n

Date: Sat, 21 Mar 2020 20:44:39 GMT\r\n

Content-Length: 0\r\n

[Content length: 0]

\r\n

[HTTP response 1/1]

[Time since request: 0.245462000 seconds]

[Request in frame: 241]

[Request URI: http://www.aw.com/kurose_br]

Wireshark Lab: HTTP

A Interação Básica GET/Resposta do HTTP

Mensagens HTTP GET e de resposta

No. Time Source Destination

Protocol Length Info

52 17:38:22,346966 192.168.0.159 128.119.245.12 HTTP

538 GET /ethereal-labs/HTTP-ethereal-file1.html HTTP/1.1

Frame 52: 538 bytes on wire (4304 bits), 538 bytes captured (4304 bits) on
interface \Device\NPF_{81229EF9-F47F-4DFF-ABF9-60FA4067B915}, id 0

Interface id: 0 (\Device\NPF_{81229EF9-F47F-4DFF-ABF9-60FA4067B915})

Interface name: \Device\NPF_{81229EF9-F47F-4DFF-ABF9-60FA4067B915}

Interface description: Wi-Fi

Encapsulation type: Ethernet (1)

Arrival Time: Mar 21, 2020 17:38:22.346966000 Hora oficial do Brasil

[Time shift for this packet: 0.000000000 seconds]

Epoch Time: 1584823102.346966000 seconds

[Time delta from previous captured frame: 0.000651000 seconds]

[Time delta from previous displayed frame: 0.000000000 seconds]

[Time since reference or first frame: 3.340947000 seconds]

Frame Number: 52

Frame Length: 538 bytes (4304 bits)

Capture Length: 538 bytes (4304 bits)

[Frame is marked: False]

[Frame is ignored: False]

[Protocols in frame: eth:ethertype:ip:tcp:http]

[Coloring Rule Name: HTTP]

[Coloring Rule String: http || tcp.port == 80 || http2]

Ethernet II, Src: HonHaiPr_d4:a4:63 (f4:b7:e2:d4:a4:63), Dst: Tp-

LinkT_2d:dd:ca (98:da:c4:2d:dd:ca)

Destination: Tp-LinkT_2d:dd:ca (98:da:c4:2d:dd:ca)

Address: Tp-LinkT_2d:dd:ca (98:da:c4:2d:dd:ca)

 .... ..0. .... .... .... .... = LG bit: Globally unique address
(factory default)

.... ...0 .... .... .... .... = IG bit: Individual address (unicast)

Source: HonHaiPr_d4:a4:63 (f4:b7:e2:d4:a4:63)

Address: HonHaiPr_d4:a4:63 (f4:b7:e2:d4:a4:63)

.... ..0. .... .... .... .... = LG bit: Globally unique address
(factory default)

.... ...0 .... .... .... .... = IG bit: Individual address (unicast)

Type: IPv4 (0x0800)

Internet Protocol Version 4, Src: 192.168.0.159, Dst: 128.119.245.12

0100 .... = Version: 4

.... 0101 = Header Length: 20 bytes (5)

Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)

0000 00.. = Differentiated Services Codepoint: Default (0)

.... ..00 = Explicit Congestion Notification: Not ECN-Capable

Transport (0)

Total Length: 524

Identification: 0x5909 (22793)

Flags: 0x4000, Don't fragment

0... .... .... .... = Reserved bit: Not set

.1.. .... .... .... = Don't fragment: Set

..0. .... .... .... = More fragments: Not set

Fragment offset: 0

Time to live: 128

Protocol: TCP (6)

Header checksum: 0x6917 [validation disabled]

[Header checksum status: Unverified]

Source: 192.168.0.159

Destination: 128.119.245.12

Transmission Control Protocol, Src Port: 53834, Dst Port: 80, Seq: 1, Ack: 1,
Len: 484

Source Port: 53834

Destination Port: 80

[Stream index: 2]
[TCP Segment Len: 484]

Sequence number: 1 (relative sequence number)

Sequence number (raw): 1205497283

[Next sequence number: 485 (relative sequence number)]

Acknowledgment number: 1 (relative ack number)

Acknowledgment number (raw): 72999909

0101 .... = Header Length: 20 bytes (5)

Flags: 0x018 (PSH, ACK)

000. .... .... = Reserved: Not set

...0 .... .... = Nonce: Not set

.... 0... .... = Congestion Window Reduced (CWR): Not set

.... .0.. .... = ECN-Echo: Not set

.... ..0. .... = Urgent: Not set

.... ...1 .... = Acknowledgment: Set

.... .... 1... = Push: Set

.... .... .0.. = Reset: Not set

.... .... ..0. = Syn: Not set

.... .... ...0 = Fin: Not set

[TCP Flags: ·······AP···]

Window size value: 512

[Calculated window size: 131072]

[Window size scaling factor: 256]

Checksum: 0xd413 [unverified]

[Checksum Status: Unverified]

Urgent pointer: 0

[SEQ/ACK analysis]

[iRTT: 0.162684000 seconds]

[Bytes in flight: 484]

[Bytes sent since last PSH flag: 484]

[Timestamps]

[Time since first frame in this TCP stream: 0.163335000 seconds]

[Time since previous frame in this TCP stream: 0.000651000 seconds]

 TCP payload (484 bytes)

Hypertext Transfer Protocol

GET /ethereal-labs/HTTP-ethereal-file1.html HTTP/1.1\r\n

[Expert Info (Chat/Sequence): GET /ethereal-labs/HTTP-ethereal-

file1.html HTTP/1.1\r\n]

[GET /ethereal-labs/HTTP-ethereal-file1.html HTTP/1.1\r\n]

[Severity level: Chat]

[Group: Sequence]

Request Method: GET

Request URI: /ethereal-labs/HTTP-ethereal-file1.html

Request Version: HTTP/1.1

Host: gaia.cs.umass.edu\r\n

Connection: keep-alive\r\n

Upgrade-Insecure-Requests: 1\r\n

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36

(KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36\r\n

Accept:
text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*
/*;q=0.8,application/signed-exchange;v=b3;q=0.9\r\n

Accept-Encoding: gzip, deflate\r\n

Accept-Language: pt-BR,pt;q=0.9,en-US;q=0.8,en;q=0.7\r\n

\r\n

[Full request URI: http://gaia.cs.umass.edu/ethereal-labs/HTTP-ethereal-

file1.html]

[HTTP request 1/1]

[Response in frame: 54]

No. Time Source Destination

Protocol Length Info

54 17:38:22,508826 128.119.245.12 192.168.0.159 HTTP

538 HTTP/1.1 200 OK (text/html)

Frame 54: 538 bytes on wire (4304 bits), 538 bytes captured (4304 bits) on
interface \Device\NPF_{81229EF9-F47F-4DFF-ABF9-60FA4067B915}, id 0

Interface id: 0 (\Device\NPF_{81229EF9-F47F-4DFF-ABF9-60FA4067B915})

Interface name: \Device\NPF_{81229EF9-F47F-4DFF-ABF9-60FA4067B915}

 Interface description: Wi-Fi

Encapsulation type: Ethernet (1)

Arrival Time: Mar 21, 2020 17:38:22.508826000 Hora oficial do Brasil

[Time shift for this packet: 0.000000000 seconds]

Epoch Time: 1584823102.508826000 seconds

[Time delta from previous captured frame: 0.000597000 seconds]

[Time delta from previous displayed frame: 0.161860000 seconds]

[Time since reference or first frame: 3.502807000 seconds]

Frame Number: 54

Frame Length: 538 bytes (4304 bits)

Capture Length: 538 bytes (4304 bits)

[Frame is marked: False]

[Frame is ignored: False]

[Protocols in frame: eth:ethertype:ip:tcp:http:data-text-lines]

[Coloring Rule Name: HTTP]

[Coloring Rule String: http || tcp.port == 80 || http2]

Ethernet II, Src: Tp-LinkT_2d:dd:ca (98:da:c4:2d:dd:ca), Dst:

HonHaiPr_d4:a4:63 (f4:b7:e2:d4:a4:63)

Destination: HonHaiPr_d4:a4:63 (f4:b7:e2:d4:a4:63)

Address: HonHaiPr_d4:a4:63 (f4:b7:e2:d4:a4:63)

.... ..0. .... .... .... .... = LG bit: Globally unique address
(factory default)

.... ...0 .... .... .... .... = IG bit: Individual address (unicast)

Source: Tp-LinkT_2d:dd:ca (98:da:c4:2d:dd:ca)

Address: Tp-LinkT_2d:dd:ca (98:da:c4:2d:dd:ca)

.... ..0. .... .... .... .... = LG bit: Globally unique address
(factory default)

.... ...0 .... .... .... .... = IG bit: Individual address (unicast)

Type: IPv4 (0x0800)

Internet Protocol Version 4, Src: 128.119.245.12, Dst: 192.168.0.159

0100 .... = Version: 4

.... 0101 = Header Length: 20 bytes (5)

Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)

0000 00.. = Differentiated Services Codepoint: Default (0)

 .... ..00 = Explicit Congestion Notification: Not ECN-Capable
Transport (0)

Total Length: 524

Identification: 0x69cb (27083)

Flags: 0x4000, Don't fragment

0... .... .... .... = Reserved bit: Not set

.1.. .... .... .... = Don't fragment: Set

..0. .... .... .... = More fragments: Not set

Fragment offset: 0

Time to live: 42

Protocol: TCP (6)

Header checksum: 0xae55 [validation disabled]

[Header checksum status: Unverified]

Source: 128.119.245.12

Destination: 192.168.0.159

Transmission Control Protocol, Src Port: 80, Dst Port: 53834, Seq: 1, Ack:
485, Len: 484

Source Port: 80

Destination Port: 53834

[Stream index: 2]

[TCP Segment Len: 484]

Sequence number: 1 (relative sequence number)

Sequence number (raw): 72999909

[Next sequence number: 485 (relative sequence number)]

Acknowledgment number: 485 (relative ack number)

Acknowledgment number (raw): 1205497767

0101 .... = Header Length: 20 bytes (5)

Flags: 0x018 (PSH, ACK)

000. .... .... = Reserved: Not set

...0 .... .... = Nonce: Not set

.... 0... .... = Congestion Window Reduced (CWR): Not set

.... .0.. .... = ECN-Echo: Not set

.... ..0. .... = Urgent: Not set

 .... ...1 .... = Acknowledgment: Set

.... .... 1... = Push: Set

.... .... .0.. = Reset: Not set

.... .... ..0. = Syn: Not set

.... .... ...0 = Fin: Not set

[TCP Flags: ·······AP···]

Window size value: 237

[Calculated window size: 30336]

[Window size scaling factor: 128]

Checksum: 0x2703 [unverified]

[Checksum Status: Unverified]

Urgent pointer: 0

[SEQ/ACK analysis]

[iRTT: 0.162684000 seconds]

[Bytes in flight: 484]

[Bytes sent since last PSH flag: 484]

[Timestamps]

[Time since first frame in this TCP stream: 0.325195000 seconds]

[Time since previous frame in this TCP stream: 0.000597000 seconds]

TCP payload (484 bytes)

Hypertext Transfer Protocol

HTTP/1.1 200 OK\r\n

[Expert Info (Chat/Sequence): HTTP/1.1 200 OK\r\n]

[HTTP/1.1 200 OK\r\n]

[Severity level: Chat]

[Group: Sequence]

Response Version: HTTP/1.1

Status Code: 200

[Status Code Description: OK]

Response Phrase: OK

Date: Sat, 21 Mar 2020 20:38:23 GMT\r\n

Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16

mod_perl/2.0.11 Perl/v5.16.3\r\n
 Last-Modified: Sat, 21 Mar 2020 05:59:02 GMT\r\n

ETag: "7e-5a157194ae3ff"\r\n

Accept-Ranges: bytes\r\n

Content-Length: 126\r\n

[Content length: 126]

Keep-Alive: timeout=5, max=100\r\n

Connection: Keep-Alive\r\n

Content-Type: text/html; charset=UTF-8\r\n

\r\n

[HTTP response 1/1]

[Time since request: 0.161860000 seconds]

[Request in frame: 52]

[Request URI: http://gaia.cs.umass.edu/ethereal-labs/HTTP-ethereal-

file1.html]

File Data: 126 bytes

Line-based text data: text/html (4 lines)

<html>\n

Congratulations. You've downloaded the file \n

http://gaia.cs.umass.edu/ethereal-labs/HTTP-ethereal-file1.html!\n

</html>\n

1. O seu navegador executa HTTP 1.0 ou 1.1? Qual a versão de HTTP do

servidor?

Resp.: Tanto o navegador quanto o servidor executam HTTP/1.1.

2. Quais linguagens (se alguma) o seu navegador indica que pode aceitar ao
servidor?

Resp.: pt-BR\r\n

3. Qual o endereço IP do seu computador? E do servidor gaia.cs.umass.edu?

Resp.:

IP do site gaia.cs.umass.edu: 128.119.245.12

IP do meu computador: 192.198.0.159

4. Qual o código de status retornado do servidor para o seu navegador?

Resp.: 200 OK
 5. Quando o arquivo em HTML que você baixou foi modificado no servidor pela
última vez?

Resp.: Sat, 21 Mar 2020 05:59:02 GMT\r\n

6. Quantos bytes de conteúdo são retornados ao seu navegador?

Resp.:

Content-Length: 126\r\n

7. Inspecionando os dados na janela de conteúdo do pacote,você vê algum

cabeçalho dentro dos dados que não são exibidos na janela de listagem de
pacotes? Caso a resposta seja afirmativa, indique um.

Resp.: Não. Os dados indicam ser exatamente iguais aos dados mostrados
na janela de listagem de pacotes.

A Interação HTTP GET Condicional/Resposta

8. Inspecione o conteúdo da primeira mensagem HTTP GET do seu navegador

para o servidor. Você vê uma linha “IF-MODIFIED-SINCE”?

Resp.: Não.

9. Inspecione o conteúdo da resposta do servidor. O servidor retornou

explicitamente o conteúdo do arquivo? Como você pode dizer isso?

Resp.: Sim.

“\n

<html>\n

\n

Congratulations again! Now you've downloaded the file lab2-

2.html. <br>\n

This file's last modification date will not change. <p>\n

Thus if you download this multiple times on your browser, a

complete copy <br>\n

will only be sent once by the server due to the inclusion of the
IN-MODIFIED-SINCE<br>\n

field in your browser's HTTP GET request to the server.\n

\n

</html>\n”.

10. Agora inspecione o conteúdo da segunda mensagem HTTP GET do seu

navegador para o servidor. Você uma linha “IF-MODIFIED-SINCE”? Caso a
 resposta seja afirmativa, qual informação segue o cabeçalho “IF-MODIFIED-
SINCE”?

Resp.:

If-Modified-Since: Sat, 21 Mar 2020 05:59:02 GMT\r\n

11. Qual é o código de status e a frase retornada do servidor na resposta à

segunda mensagem HTTP GET? O servidor retornou explicitamente o
conteúdo do arquivo? Explique.

Resp.: O código de status não foi modificado. O arquivo não foi

modificado. Então, o texto do arquivo não é retornado na mensagem
HTTP.

Baixando Documentos Longos

12. Quantas mensagens HTTP GET foram enviadas pelo seu navegador?

Resp.: 1.

13. Quantos segmentos TCP foram necessários para carregar a resposta?

Resp.: 4.

14. Qual é o código de status e a frase associada com a resposta à mensagem

HTTP GET?

Resp.: HTTP/1.1 200 OK.

15. Há alguma linha de status HTTP nos dados transmitidos associados com um
“Continuation” TCP?

Resp.: Não.

Documentos HTML com Objetos Incluídos

16. Quantas mensagens HTTP GET foram enviadas pelo seu navegador? Para
quais endereços na Internet estas mensagens foram enviadas?

Resp.: Três. Duas para 128.119.245.12 e uma para 159.182.31.51.

17. Você consegue dizer se o seu navegador baixou as duas imagens em

sequência, ou se foram baixadas dos dois locais distintos em paralelo?
Explique.

Resp.: Baseado no tempo, aparentemente as imagens foram baixadas em

sequência. Pois, a porta “Src” é incrementada toda vez, começando de
54078, 54079 e 54080, o que indica que as imagens foram recebidas de
maneira sequencial em diferentes conexões TCP.
Autenticação HTTP

18. Qual é a resposta do servidor (código de status e frase) para a primeira

mensagem HTTP GET do seu navegador?

Resp.: HTTP/1.1 401 Unauthorized

19. Quando o seu navegador envia a mensagem HTTP GET pela segunda vez,
qual o novo campo que está incluído na mensagem?

Resp.:

Authorization: Basic ZXRoLXN0dWRlbnRzOm5ldHdvcms=\r\n

Credentials: eth-students:network