Scribd
Upload
17 views7 pages

Lab3a Wireshark

Uploaded by

dokhang2489
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
17 views7 pages

Lab3a Wireshark

Uploaded by

dokhang2489
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 7

The Basic HTTP GET/response interaction

Figure 1: HTTP GET message to gaia.cs.umass.edu

Figure 2: Response message from gaia.cs.umass.edu


1. Is your browser running HTTP version 1.0 or 1.1? What version of HTTP is the server
running?
Browser version: 1.1
GET /wireshark-labs/HTTP-wireshark-file1.html HTTP/1.1\r\n

Server version:
1.1 HTTP/1.1 200 OK\r\n

2. What languages (if any) does your browser indicate that it can accept to the server?
Prefers English (United States) (en-US), and it can also accept English (en) with a lower
priority (q=0.9).

3. What is the IP address of your computer? Of the gaia.cs.umass.edu server?


gaia.cs.umass.edu: 128.119.245.12
My computer: 10.128.123.209

4. What is the status code returned from the server to your browser?
200 OK, indicating the request was successful

5. When was the HTML file that you are retrieving last modified at the server?
Friday, October 25, 2024
Last-Modified: Thu, 24 Oct 2024 05:59:01 GMT\r\n

6. How many bytes of content are being returned to your browser?


128 bytes
Content-Length: 128\r\n

7. By inspecting the raw data in the packet content window, do you see any headers
within the data that are not displayed in the packet-listing window? If so, name one.
The packet content window does not show any extra headers that are missing from the
packet-listing window.
The HTTP CONDITIONAL GET/response
interaction

Figure 3: The first HTTP GET and response interaction

Figure 4: The second HTTP GET and response interaction

8. Inspect the contents of the first HTTP GET request from your browser to the
server. Do you see an “IF-MODIFIED-SINCE” line in the HTTP GET?
No
9. Inspect the contents of the server response. Did the server explicitly return the
contents of the file? How can you tell?
Yes, based on the response 200 OK

10. Now inspect the contents of the second HTTP GET request from your browser
to the server. Do you see an “IF-MODIFIED-SINCE:” line in the HTTP GET? If so,
what information follows the “IF-MODIFIED-SINCE:” header?
Yes, followed by a date and time indicating the last modification time of the
cached file.
If-Modified-Since: Thu, 24 Oct 2024 05:59:01 GMT\r\n

11. What is the HTTP status code and phrase returned from the server in response
to this second HTTP GET? Did the server explicitly return the contents of the file?
Explain.
No, based on the response 304 Not Modified

Retrieving Long Documents

Figure 5: HTTP GET and response interaction

12. How many HTTP GET request messages did your browser send? Which packet
number in the trace contains the GET message for the Bill or Rights?
One packet of number 264.

13. Which packet number in the trace contains the status code and phrase
associated with the response to the HTTP GET request? 273
14. What is the status code and phrase in the response? 200 OK

15. How many data-containing TCP segments were needed to carry the single
HTTP response and the text of the Bill of Rights? 4
[4 Reassembled TCP Segments (4861 bytes): #269(1452),
#270(1452), #272(1452), #273(505)]
[Frame: 269, payload: 0-1451 (1452 bytes)]
[Frame: 270, payload: 1452-2903 (1452 bytes)]
[Frame: 272, payload: 2904-4355 (1452 bytes)]
[Frame: 273, payload: 4356-4860 (505 bytes)]
[Segment count: 4]
[Reassembled TCP length: 4861]

HTML Documents with Embedded Objects

Figure 6: HTTP GET and response interaction

16. How many HTTP GET request messages did your browser send? To which
Internet addresses were these GET requests sent?
Three GET messages were sent:
- 1st one sent to IP 128.119.245.12
- 2nd one sent to IP 128.119.245.12
- 3rd one sent to IP 178.79.137.164

17. Can you tell whether your browser downloaded the two images serially, or
whether they were downloaded from the two web sites in parallel? Explain.
Serially. As the time stamp show that the GET requests for both images are sent
one after the other, with the second request sent only after the first one has
been fully processed.

HTML Documents with Embedded Objects

Figure 7: HTTP GET and response on an authentication page

18. What is the server’s response (status code and phrase) in response to the
initial HTTP GET message from your browser?
Status code: 401
Response phrase: Unauthorized

19. When your browser’s sends the HTTP GET message for the second time, what
new field is included in the HTTP GET message?
Authorization: Basic d2lyZXNoYXJrLXN0dWRlbnQ6bmV0d29yaw==\r\n
Credentials: wireshark-student:network

You might also like