Hello, i hope i can find some help here. I´m working at the moment on a school project. As you can see its a TCP/IP packets output from Wireshark but i need help from you to understand the meaning, structure & contents. Can anyone assist? I appreciate it!
Here is the output:
- 13:12:49.751403 arp who-has 192.168.246.13(Broadcast) tell 192.168.246.128
- 13:12:49.751602 arp reply 192.168.246.13is-at 00:00:01:0f:2e:7e
- 13:12:50.441259 IP 192.168.246.13.137 > 192.168.246.128.137: UDP, length 50
- 13:12:50.441632 IP 192.168.246.128 > 192.168.246.13: ICMP 192.168.246.128 udp port 137 unreachable, length 86
- 13:12:51.942563 IP 192.168.246.13.137 > 192.168.246.128.137: UDP, length 50
- 13:12:51.943277 IP 192.168.246.128 > 192.168.246.13: ICMP 192.168.246.128 udp port 137 unreachable, length 86
- 13:12:53.444627 IP 192.168.246.13.137 > 192.168.246.128.137: UDP, length 50
- 13:12:53.445343 IP 192.168.246.128 > 192.168.246.13: ICMP 192.168.246.128 udp port 137 unreachable, length 86
- 13:13:02.738990 IP 192.168.246.128.39886 > 192.168.246.13.80: . ack 1611053795 win 3072
- 13:13:02.739053 IP 192.168.246.13.80 > 192.168.246.128.39886: R 1611053795:1611053795(0) win 0
- 13:13:22.407445 IP 192.168.246.128.54955 > 192.168.246.13.80: S 2910497703:2910497703(0) win 5840 <mss 1460,sackok,timestamp="" 518611="" 0,nop,wscale="" 6="">
- 13:13:22.407560 IP 192.168.246.13.80 > 192.168.246.128.54955: S 3762608065:3762608065(0) ack 2910497704 win 64240 <mss 1460,nop,wscale="" 0,nop,nop,timestamp="" 0="" 0,nop,nop,sackok="">
- 13:13:22.407963 IP 192.168.246.128.54955 > 192.168.246.13.80: . ack 1 win 92 <nop,nop,timestamp 518611="" 0="">
- 13:13:22.408321 IP 192.168.246.128.54955 > 192.168.246.13.80: R 1:1(0) ack 1 win 92 <nop,nop,timestamp 518611="" 0="">
asked 17 Nov '14, 03:08
Kell90
11●2●2●3
accept rate: 0%
ok i found out to point 8 is there anyone who can help with point 9?