Infa 620 laboratory 3: identifying tcp conversations

  INFA 620 Laboratory 3: Identifying TCP Conversations

Context As in Lab 2, you will be using Wireshark. You will continue with packet analysis. You will examine network traffic with a display filter. You can perform this exercise either using Wireshark on your machine or a remote lab supplied by UMUC. I encourage that you carry out the exercise using the remote Lab. The instructions to use the remote UMUC machine is provided in the Accessing Remote Virtual Lab using VPN module under Course Content. A packet trace of normal network traffic will contain more than just the packets you want to look at. You can apply a display filter to isolate conversations within the trace. For this exercise you will use a trace file of a student at home using a browser to connect to UMUC. The trace captures the traffic that resulted when the student pointed a browser to www.umuc.edu. If you are using an older, or newer version of Wireshark, or different OS some of the buttons (options) may be in different positions/locations. Assignment Answer the following questions about trace file EX03 www_umuc_edu.cap. Download trace file EX03 www_umuc_edu.cap from the LEO Lab 3 assignment folder and open it with Wireshark. (If you are using the UMUC remote facility, the file is in the Lab3Folder on the desktop.) 

1. Find the first TCP handshake. What are the packet numbers in the handshake? The three packet numbers ____, _____, and _____ (20 Points). 

2. What is the IP address of the host that started the handshake? __________________ (15 Points) 

3. What is the TCP port connection pair for this handshake? ______, ______ (15 Points) 

4. In the first packet of the handshake, the source port is the ephemeral port this host wants to use for the connection, and the destination port indicates the application the host wants to use on the serving host. What application does the host want to use on the serving host?______________ (15 Points) 

5. Look at packet number 14. Is this part of the conversation initiated by the first handshake? ______ (15 Points) 

Build a filter to see only the first handshake and the conversation for this connection. • Click Analyze (or “Edit” on other versions of ethereal) and select Display Filters from the drop-down list. This brings you to the Edit Display Filters List. • Click “Expression” • Expand TCP (click the plus sign next to TCP), and highlight “Source (src.port)”. • In the Relation section highlight == . • In the Value field type the source port used by the host that initiated the conversation. (The source port should be 1097 in this example). • Click “OK”. Now there is a filter string in the Edit Display Filter List window. (The filter string should be “tcp.port == 1097”.) • In the Filter name box type “Conversation on Source Port 1097”. Click New, then OK. Now you have defined a filter (but not yet applied it). Apply the filter to the trace file. • Find the Filter button near the top left corner of the window and click it. (Note for older versions: If you don’t see the Filter button, make sure the browser window is maximized and your task bar is not covering the bottom.) • Highlight “Conversation on Source Port 1097” and click Apply. (You will see the filter string in the filter field. You could also have typed in the filter by hand. You can take the filter off by clicking the Clear button next to the filter field at the bottom.). The handshake establishes the initial sequence numbers for each connection. Try to follow the sequence numbers in the conversation. Now change the display to show relative sequence numbers: • Click Edit and select Preferences from the drop-down list. • Drill down into Protocols until you get to TCP. • Highlight TCP and select the options, “Analyze TCP sequence numbers” and “Relative sequence numbers and window scaling.” Click OK. Try again to follow the sequence numbers. 6. You cannot see the “next sequence number” in the summary pane for packet number 6. Look for it in the protocol tree pane. Explain why packet number 7 says “ACK =344.” (20 Points) Post your answer to the assignment folder for LAB3. Extra practice

   n)`7

Calculate your paper price
Pages (550 words)
Approximate price: -

Why Choose Us

Quality Papers

We value our clients. For this reason, we ensure that each paper is written carefully as per the instructions provided by the client. Our editing team also checks all the papers to ensure that they have been completed as per the expectations.

Professional Academic Writers

Over the years, our Acme Homework has managed to secure the most qualified, reliable and experienced team of writers. The company has also ensured continued training and development of the team members to ensure that it keep up with the rising Academic Trends.

Affordable Prices

Our prices are fairly priced in such a way that ensures affordability. Additionally, you can get a free price quotation by clicking on the "Place Order" button.

On-Time delivery

We pay strict attention on deadlines. For this reason, we ensure that all papers are submitted earlier, even before the deadline indicated by the customer. For this reason, the client can go through the work and review everything.

100% Originality

At Essay USA, all papers are plagiarism-free as they are written from scratch. We have taken strict measures to ensure that there is no similarity on all papers and that citations are included as per the standards set.

Customer Support 24/7

Our support team is readily available to provide any guidance/help on our platform at any time of the day/night. Feel free to contact us via the Chat window or support email: support@acmehomework.com.

Try it now!

Calculate the price of your order

We'll send you the first draft for approval by at
Total price:
$0.00

How it works?

Follow these simple steps to get your paper done

Place your order

Fill in the order form and provide all details of your assignment.

Proceed with the payment

Choose the payment system that suits you most.

Receive the final file

Once your paper is ready, we will email it to you.

Our Services

Essay USA has stood as the world’s leading custom essay writing services providers. Once you enter all the details in the order form under the place order button, the rest is up to us.

Essays

Essay Writing Services

At Essay USA, we prioritize on all aspects that bring about a good grade such as impeccable grammar, proper structure, zero-plagiarism and conformance to guidelines. Our experienced team of writers will help you completed your essays and other assignments.

Admissions

Admission and Business Papers

Be assured that you’ll definitely get accepted to the Master’s level program at any university once you enter all the details in the order form. We won’t leave you here; we will also help you secure a good position in your aspired workplace by creating an outstanding resume or portfolio once you place an order.

Editing

Editing and Proofreading

Our skilled editing and writing team will help you restructure you paper, paraphrase, correct grammar and replace plagiarized sections on your paper just on time. The service is geared toward eliminating any mistakes and rather enhancing better quality.

Coursework

Technical papers

We have writers in almost all fields including the most technical fields. You don’t have to worry about the complexity of your paper. Simply enter as much details as possible in the place order section.

See all services