Tên:Trương Anh Bảo

MSSV:1811550

Wireshark Lab 3a
1. Select one UDP packet from your trace. From this packet, determine how many fields there are
in the UDP header. (You shouldn’t look in the textbook! Answer these questions directly from
what you observe in the packet trace.) Name these fields.

Answer: The header only contains 4 fields: the source port, destination port, length, and
checksum.

2. By consulting the displayed information in Wireshark’s packet content field for this packet,
determine the length (in bytes) of each of the UDP header fields.

Answer: Each of the UDP header fields is 2 bytes long.

3. The value in the Length field is the length of what? (You can consult the text for this answer).
Verify your claim with your captured UDP packet.

Answer: The value in the length field is the sum of the 8 header bytes, plus the encapsulated
data bytes.

4. What is the maximum number of bytes that can be included in a UDP payload? (Hint: the answer
to this question can be determined by your answer to 2. above).
 Answer: The maximum number of bytes that can be in the payload is 2^16- the bytes already
being used by the header field (8). Therefore the maximum payload is 65535-8= 65527 bytes.

5. What is the largest possible source port number? (Hint: see the hint in 4.)

Answer: The largest possible source port number is 2^16 or 65535.

6. What is the protocol number for UDP? Give your answer in both hexadecimal and decimal
notation. To answer this question, you’ll need to look into the Protocol field of the IP datagram
containing this UDP segment (see Figure 4.13 in the text, and the discussion of IP header fields).

Answer: The protocol number for UDP is 17 in decimal notation which in hexadecimal notation
is 0x11.

7. Examine a pair of UDP packets in which your host sends the first UDP packet and the second
UDP packet is a reply to this first UDP packet. (Hint: for a second packet to be sent in response
to a first packet, the sender of the first packet should be the destination of the second packet).
Describe the relationship between the port numbers in the two packets.

Answer: UDP Sent by my host:

UDP Reply to Host:

The relationship between port numbers is that the source port on the send message is the
destination port of the receive message. The destination port for the send message is also the
source port for the receive message.