MN504 Networked Application Management and BN208 Networked

Applications
Updates for Lab 3:
Where the lab refers to the package Ethereal, use Wireshark (Ethereal is the
old name for Wireshark).
Open Lab 3 Wireshark TCP large file.pdf and follow the instructions to
complete the lab.
The trace files mentioned in Lab 3 can be downloaded from
http://gaia.cs.umass.edu/ethereal-labs/ethereal-traces.zip. These are
required to answer some of the questions.
Answer following questions using Lab 3 Wireshark TCP large file.pdf
and submit on Moodle:
Question 1-6
Questions 8-12
None: TO make HTTP Continuation visible in info, change the
wireshark settings as below:

Select any TCP packet. In the Packet Details pane, right-click on the "Transmission
Control Protocol" summary line, select "Protocol Preferences" and uncheck "Allow
subdissector to reassemble TCP streams."

You can do the same thing by going to Edit > Preferences > Protocols > TCP.

RTT is the Round Trip Time, a measure of the delay between two hosts. It is
the total time taken for a single packet to leave one machine, reach the other,
and return. You can estimate it by measuring the time from segment
transmission until ACK receipt. A better estimate can be made by averaging
and weighting the values.
Lab 3 also refers to a textbook and might require formulas below:
EstimatedRTT = 0.875 * EstimatedRTT(previous segmentss
EstimatedRTT) + 0.125 * SampleRTT(RTT of current segment)
TCP connection is computed = total data / whole transmission time
You may practice some Advanced Topics for Wireshark (and answer
question13 -15):

Following TCP Streams

Time-Sequence-Graph(Stevens)

For further reading/information you might also use links below:

http://www.tech-pro.net/intro_tcp.html
http://www.ssfnet.org/Exchange/tcp/tcpTutorialNotes.html