Scribd
Upload
4 views3 pages

Assignment 1 - Frame Analysis by Vivek Ravi

The document outlines an assignment on frame analysis, detailing the examination of Ethernet and IPv4 packets captured using TCPdump. It includes specific tasks such as highlighting various headers, extracting field values, and describing the nature of the traffic. The assignment requires the student to analyze packet structures and identify key components related to network communication.

Uploaded by

Vivek Ravi
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
4 views3 pages

Assignment 1 - Frame Analysis by Vivek Ravi

The document outlines an assignment on frame analysis, detailing the examination of Ethernet and IPv4 packets captured using TCPdump. It includes specific tasks such as highlighting various headers, extracting field values, and describing the nature of the traffic. The assignment requires the student to analyze packet structures and identify key components related to network communication.

Uploaded by

Vivek Ravi
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 3

Assignment 1: Frame Analysis (10%)

Student Name: Vivek Ravi


Class day/time: Friday/12-3 pm

Question 1: The following is a complete Ethernet frame that was captured using TCPdump:

00 1E C9 83 E4 F7 E0 46 9A 8D 57 36 08 00 45 00
00 3C B9 57 00 00 39 06 D8 A9 4A 7D E2 97 C0 A8
01 FE 00 50 E5 1D E4 B2 E2 68 26 0A EF DB A0 12
A6 2C 2E 50 00 00 02 04 05 96 04 02 08 0A 22 CF
65 69 09 A5 2F 8A 01 03 03 06
 Highlight with a unique color the bytes that make up the Ethernet header (layer 2 header)
 Highlight with a unique color the bytes that make up the IP header (layer 3 header)
 Highlight with a unique color the embedded protocol header (layer 4 header)
 Extract the values of the following fields:

1. Source MAC address (hex): E0 46 9A 8D 57 36

2. Destination MAC address (hex): 00 1E C9 83 E4 F7

3. Type of payload contained in the frame (hex): 08 00

4. Source IP address (in hex): 4A 7D E2 97

5. Destination IP address (in hex): C0 A8 01 FE

6. Source IP address (dotted decimal notation): 74.125.226.151

7. Dst IP address (dotted decimal notation): 192.168.1.254

8. IP Header Length (in bytes, decimal): 20

9. Protocol (decimal): 6

10. TTL (decimal): 57

11. Source port (decimal): 80

12. Destination port (decimal): 58653

13. Sequence number (hex and decimal): Hex Value -> E4B2E268
Decimal Value -> 3836928616

14. Which TCP flags are set? ACK, SYN

15. How would you describe this packet? What This packet is part of a TCP communication
kind of traffic was it part of? and is likely associated with HTTP traffic.

Question 2: Examine this IPv4 packet hex dump and answer the questions below.

45 10 00 36 32 3f 40 00 40 06 50 b7 c0 a8 66 83
8e 37 02 59 bc b6 00 15 b7 22 d9 58 36 25 63 7f
50 18 72 10 7c b1 00 00 50 41 53 53 20 6d 72 72
6f 62 6f 74 0d 0a
 Highlight with a unique color the bytes that make up the IP header (layer 3 header)
 Highlight with a unique color the embedded protocol header (layer 4 header)
 Extract the values of the following fields:

16. Length of the IP header in bytes: 20

17. Length of the TCP header in bytes: 20

18. Length of the TCP payload: 14

Decimal -> 192.168.102.131


19. Source IP address:
Hex -> c0 a8 66 83

Decimal -> 142.55.2.89


20. Destination IP address:
Hex -> 8e 37 02 59

21. Protocol (decimal): 6

22. TTL (decimal): 64

23. Source port (decimal): 48310

24. Destination port (decimal): 21

25. TCP flags set: ACK, PUSH


50 41 53 53 20 6d 72 72 6f 62 6f 74 0d 0a
26. What is the payload (data)?
P A S S m r r o b o t
27. How would you describe this packet? Data transfer from the client to the server during a
What kind of traffic was it part of? portion of an FTP connection

Reference:

You might also like