Here is the first line of a captured get request, qqCcEv#[email protected]^PGET / HTTP/1.1 Here is another first line- to the same site, [email protected] #PGET / HTTP/1.1 The wierd qq.. bytes before the 'GET', what are they for? I am getting drastically different responses depending on their content. asked 11 Nov '12, 16:11  jmu2101 |
One Answer:
You're not looking at the bytes in the packets that appear before the GET request, are you? In the link-layer packet that contains the first part of the GET request (or all of it if it fits in a single TCP segment), before the GET request you'll have a TCP header, and before the TCP header you'll have an IPv4 or an IPv6 header, and before the IP header you'll probably have some link-layer header such as an Ethernet header or an 802.11 header or a PPP header or.... answered 11 Nov '12, 17:13  Guy Harris ♦♦ |
hard to say without the full packet. Can you please post the whole packet that contains that request? You can export just that one packet and upload it to cloudshark.org (or any other online storage). If it's possible to upload the response of the server as well, please do so.
Regards Kurt