Monday, May 25, 2015

Packet analysis practice part 2

I apologize for the delay in getting the next post in the series out, it was a rough week.  But happy Memorial Day! Enjoy the packet analysis practice and hug a vet today (with their permission of course).

After the previous practice on fragmentation, it's time to look at higher layer protocols.  I bring you the second in an n-part series for packet analysis practice from the hex layer up.

1.  What is the embedded protocol, the source port, and the amount of data not including protocol headers?
0x0000:  4500 005f 9bf3 4000 4006 a0a3 7f00 0001
0x0010:  7f00 0001 0019 be19 36b4 05e7 319f 5c69
0x0020:  8018 0200 bfad 0000 0101 080a 0b48 9e14

2. What is the embedded protocol, the source port, and the amount of data not including protocol headers?
0x0000:  4500 003c 3a00 0000 1f01 fcb3 0a02 0a02
0x0010:  0a03 4707 0800 1a5c 0200 3100 6162 6364
0x0020:  6566 6768 696a 6b6c 6d6e 6f70 7172 7374

3. What is the embedded protocol, the source port, and the amount of data not including protocol headers?
0x0000:  4520 005a b67d 4000 f211 3920 4bb4 813a
0x0010:  c0a8 0b3e 0035 d2ff 0046 a2b3 a818 8500
0x0020:  0001 0001 0001 0000 0776 6572 7369 6f6e

As always, the answers are in the following post.