Step 1. Explore the Wireshark Interface
The capture options in the input tab are interface, Traffic, Link-Layer Header, Snaplen (B), Monitor mode, Capture Filter. You can also manage the interfaces.
![]()
IP address of the requesting computer is 209.18.47.62
IP address of DNS server is 10.0.2.15
Site is www.umuc.edu
Step3. Inspect DNS Responses
![]()
How many IP addresses are assigned to the site, and what are these IP addresses?
(2) Source- 209.18.47.62 and destination 10.0.2.15.
What protocol is the DNS protocol implemented on top of? What is the destination port number used in that protocol?
UDP protocol port number Destination port: 44505
Step 4. Inspect DNS Request
![]()
What website does the DNS request found by the search? What is the IP address that was found?
Mitsloan.mit.edu-209.18.47.61
Step 5. Inspect HTTP Request
![]()
What protocol implemented on top of HTTP is used in this capture? Research this protocol on Internet and briefly describe what it is used for.
Transmission Control protocol is used. TCP is a communication standard that enables application programs and devices to exchange messages over the network. It is designed to send packets across the network and ensure successful delivery.
Step 6. Inspect HTTP Requests
What is the IP address of the request's destination? What is the HTTP response code?
23.49.176.128
Get / HTTP/1.1
![]()
Step 7. Inspect HTTP Requests
What HTTP operation does this request invoke?
![]()
What is its destination?
23.49.176.128
What is the HTTP response code?
HTTP response 1/1
What is the length of the returned data file?
1283\r\n
What is the extra header tucked on top of this response?
Accept-ranges: bytes\r\n
![]()
Step 8. Inspect IP Header
What is the total length of the IP header? What is the request's Time to Live?
Total Length: 405
Time to Live:64
![]()
Step 9. Inspect TCP Header
What are the source and destination ports in the TCP header? What is the TCP sequence number for this request? What is the sliding window size?
Source Port: 35722
Destination Port: 80
Sequence number:1
Sliding Window Size: -2
![]()
Step 10. Inspect Packet Content
What kind of file is that?
Picture file-PNG
![]()
Step 11. Explore Capture Statistics
What capture filters were used for this capture?
Hardware- Intel ® core ™ 15-7277U CPU @ 3.10GHz (with SSE4.2)
OS: Linus 5.0.0-23-generic
Application: Dumcap (Wireshark) 2.6.8 (Git v2.6.8 packaged as 2.6.8-1~ubuntu 18.04.0
How many addresses in the domain of akamai.net were resolved?
4 addresses:
23.209.38.147
23.209.38.219
2600:1408:8c00::17dd:4bc1
2600:1408:8c00::17dd:4b91
In the Statistics menu, click on "I/O Graph." What does this graph show?
It shows TCP errors and filtered packets.
In the Statistics menu, click on "Flow Graph." What does this graph show?
It shows the TCP handshake: The synchronize, acknowledgement and the SYN/ACK which is the way a packet is passed through the network successfully.
![]()
truth83
ChristopherWeaverStep5671.docx
0
