当前位置:天才代写 > 作业代写 > Wireshark Lab代写

Wireshark Lab代写

2020-09-25 15:29 星期五 所属: 作业代写 浏览:8

Wireshark Lab: DNS

Wireshark Lab代写 Question:Run nslookup to obtain the IP address of a Web server in Asia. What is the IP address of that server?

Question: Wireshark Lab代写

Run nslookup to obtain the IP address of a Web server in Asia. What is the IP address of that server?

Answer:

Server: resolver1.opendns.com

Address: 208.67.222.222

Name: www.yahoo.co.jp

Address: 183.79.250.251

Wireshark Lab代写
Wireshark Lab代写

The IP address of www.yahoo.co.jp is 183.79.250.251

Question:

Run nslookup to determine the authoritative DNS servers for a university in Europe.

Answer:

Server: resolver1.opendns.com Address: 208.67.222.222

ox.ac.uk nameserver = ns2.ja.net

ox.ac.uk nameserver = auth4.dns.ox.ac.uk ox.ac.uk nameserver = dns0.ox.ac.uk

ox.ac.uk nameserver = dns1.ox.ac.uk ox.ac.uk nameserver = auth6.dns.ox.ac.uk ox.ac.uk nameserver = dns2.ox.ac.uk ox.ac.uk nameserver = auth5.dns.ox.ac.uk

ns2.ja.net internet address = 193.63.105.17 auth4.dns.ox.ac.uk internet address = 45.33.127.156 dns0.ox.ac.uk internet address = 129.67.1.190Wireshark Lab代写

dns1.ox.ac.uk internet address = 129.67.1.191 auth6.dns.ox.ac.uk internet address = 185.24.221.32 dns2.ox.ac.uk internet address = 163.1.2.190

auth5.dns.ox.ac.uk internet address = 93.93.128.67

Question:

Run nslookup so that one of the DNS servers obtained in Question 2 is queried for the mail servers for Yahoo! mail. What is its IP address?

Answer:

Server: auth4.dns.ox.ac.uk

Address: 45.33.127.156

Name: mail.yahoo.com

Addresses: 87.248.114.12

The IP address of Yahoo! Mail is 87.248.114.12

Question:Wireshark Lab代写

Locate the DNS query and response messages. Are then sent over UDP or TCP?

Answer:

The query packet:

Frame 15: 72 bytes on wire (576 bits), 72 bytes captured (576 bits) on interface 0

Ethernet II, Src: IntelCor_5d:64:9d (70:1c:e7:5d:64:9d), Dst: e6:b2:fb:c6:55:64 (e6:b2:fb:c6:55:64)

Internet Protocol Version 4, Src: 172.20.10.2, Dst: 208.67.222.222

User Datagram Protocol, Src Port: 54039, Dst Port: 53

Source Port: 54039

Destination Port: 53

Length: 38

Checksum: 0x518f [unverified] [Checksum Status: Unverified] [Stream index: 0] [Timestamps]

Domain Name System (query)

The response packet:

Frame 19: 149 bytes on wire (1192 bits), 149 bytes captured (1192 bits) on interface 0

Ethernet II, Src: e6:b2:fb:c6:55:64 (e6:b2:fb:c6:55:64), Dst: IntelCor_5d:64:9d (70:1c:e7:5d:64:9d)

Internet Protocol Version 4, Src: 208.67.222.222, Dst: 172.20.10.2

User Datagram Protocol, Src Port: 53, Dst Port: 54039

Source Port: 53

Destination Port: 54039Wireshark Lab代写

Length: 115

Checksum: 0x9f5f [unverified] [Checksum Status: Unverified] [Stream index: 0] [Timestamps]

Domain Name System (response)

Tey sent over UDP.

Question:

What is the destination port for the DNS query message? What is the source port of DNS response message?

Answer:

The destination port for the DNS query message is 53. The source port of DNS response message is 53.

Frame 15: 72 bytes on wire (576 bits), 72 bytes captured (576 bits) on interface 0

Ethernet II, Src: IntelCor_5d:64:9d (70:1c:e7:5d:64:9d), Dst: e6:b2:fb:c6:55:64 (e6:b2:fb:c6:55:64)

Internet Protocol Version 4, Src: 172.20.10.2, Dst: 208.67.222.222

0100 …. = Version: 4

…. 0101 = Header Length: 20 bytes (5)

Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)

Total Length: 58

Identification: 0x3c43 (15427)

Flags: 0x0000

Time to live: 128

Protocol: UDP (17)

Header checksum: 0x9937 [validation disabled] [Header checksum status: Unverified]

Source: 172.20.10.2

Destination: 208.67.222.222

User Datagram Protocol, Src Port: 54039, Dst Port: 53

Domain Name System (query)

Question: Wireshark Lab代写

To what IP address is the DNS query message sent? Use ipconfig to determine the IP address of your local DNS server. Are these two IP addresses the same?

Answer:

The query packet:

The IP address of my local DNS server: Server: resolver1.opendns.com Address: 208.67.222.222

The IP address that the DNS query message sent is 208.67.222.222 The Ip address of my local DNS server is 208.67.222.222

They are same.

Question: Wireshark Lab代写

Examine the DNS query message. What “Type” of DNS query is it? Does the query message contain any “answers”?

Answer:

The query packet:

Frame 15: 72 bytes on wire (576 bits), 72 bytes captured (576 bits) on interface 0

Ethernet II, Src: IntelCor_5d:64:9d (70:1c:e7:5d:64:9d), Dst: e6:b2:fb:c6:55:64 (e6:b2:fb:c6:55:64)

Internet Protocol Version 4, Src: 172.20.10.2, Dst: 208.67.222.222

User Datagram Protocol, Src Port: 54039, Dst Port: 53

Domain Name System (query)

Transaction ID: 0x5348

Flags: 0x0100 Standard query

0… …. …. …. = Response: Message is a query

.000 0… …. …. = Opcode: Standard query (0)

…. ..0. …. …. = Truncated: Message is not truncated

…. …1 …. …. = Recursion desired: Do query recursively

…. …. .0.. …. = Z: reserved (0)

…. …. …0 …. = Non-authenticated data: Unacceptable

Questions: 1

Answer RRs: 0

Authority RRs: 0

Additional RRs: 0

Queries

www.ietf.org: type A, class IN

Name: www.ietf.org

[Name Length: 12] [Label Count: 3]

Type: A (Host Address) (1)

Class: IN (0x0001)

The “Type” of DNS query message is “type A”. The query message doesn’t contain any answers.

Question:

Examine the DNS response message. How many “answers” are provided? What do each of these answers contain?

Answer:Wireshark Lab代写

The response packet:

Frame 19: 149 bytes on wire (1192 bits), 149 bytes captured (1192 bits) on interface 0

Ethernet II, Src: e6:b2:fb:c6:55:64 (e6:b2:fb:c6:55:64), Dst: IntelCor_5d:64:9d (70:1c:e7:5d:64:9d)

Internet Protocol Version 4, Src: 208.67.222.222, Dst: 172.20.10.2

User Datagram Protocol, Src Port: 53, Dst Port: 54039

Domain Name System (response)

Transaction ID: 0x5348

Flags: 0x8180 Standard query response, No error

Questions: 1

Answer RRs: 3

Authority RRs: 0

Additional RRs: 0

Queries

Answers

www.ietf.org: type CNAME, class IN, cname www.ietf.org.cdn.cloudflare.net

Name: www.ietf.org

Type: CNAME (Canonical NAME for an alias) (5)Wireshark Lab代写

Class: IN (0x0001)

Time to live: 229

Data length: 33

CNAME: www.ietf.org.cdn.cloudflare.net

www.ietf.org.cdn.cloudflare.net: type A, class IN, addr 104.20.0.85

Name: www.ietf.org.cdn.cloudflare.net

Type: A (Host Address) (1)

Class: IN (0x0001)Wireshark Lab代写

Time to live: 229

Data length: 4

Address: 104.20.0.85

www.ietf.org.cdn.cloudflare.net: type A, class IN, addr 104.20.1.85

Name: www.ietf.org.cdn.cloudflare.net

Type: A (Host Address) (1)

Class: IN (0x0001)

Time to live: 229

Data length: 4

Address: 104.20.1.85

The DNS response message has 3 messages.

The first answer has Name, Type, Class, Time to live, Data length, CNAME. The second answer has Name, Type, Class, Time to live, Data length, Address. The third answer has Name, Type, Class, Time to live, Data length, Address.

Question: Wireshark Lab代写

Consider the subsequent TCP SYN packet sent by your host. Does the destination IP address of the SYN packet correspond to any of the IP addresses provided in the DNS response message?

Answer:

No, the destination IP address of the SYN packet correspond to none of the IP addresses provided in the DNS response message.

Question:

This web page contains images. Before retrieving each image, does your host issue new DNS queries?

Answer:

No, before retrieving each image, my host doesn’t issue any new DNS queries.

Question:

What is the destination port for the DNS query message? What is the source port of DNS response message?

Answer:

The destination port for the DNS query message is 53. The source port of DNS response message is 53.

Question:

To what IP address is the DNS query message sent? Is this the IP address of your default local DNS server?

Answer:

The IP address of the DNS query message sent is 208.67.222.222 The IP address of my default local DNS server is 208.67.222.222

They are same.

Question: Wireshark Lab代写

Examine the DNS query message. What “Type” of DNS query is it? Does the query message contain any “answers”?

Answer:

The“Type” of DNS query is “type A”.

The query message doesn’t contain any answers.

Question:

Examine the DNS response message. How many “answers” are provided? What do each of these answers contain?

Answer:

The DNS response message has 3 messages.Wireshark Lab代写

The first answer has Name, Type, Class, Time to live, Data length, CNAME. The second answer has Name, Type, Class, Time to live, Data length, CNAME. The third answer has Name, Type, Class, Time to live, Data length, Address.

Question:

Provide a screenshot.

Answer:

The query packet screenshot:

Wireshark Lab代写
Wireshark Lab代写

The response packet screenshot:

Question: Wireshark Lab代写

To what IP address is the DNS query message sent? Is this the IP address of your default local DNS server?

Answer:

The IP address of the DNS query message sent is 208.67.222.222 The IP address of my default local DNS server is 208.67.222.222 They are same.

Question:

Examine the DNS query message. What “Type” of DNS query is it? Does the query message contain any “answers”?

Answer:

The“Type” of DNS query is “type NS”.Wireshark Lab代写

The query message doesn’t contain any answers.

Question:

Examine the DNS response message. What MIT nameservers does the response message provide? Does this response message also provide the IP addresses of the MIT namesers?

Answer:

The MIT nameservers that the response message provide are as follows: asia2.akam.net Wireshark Lab代写

use5.akam.net ns1-37.akam.net eur5.akam.net use2.akam.net

usw2.akam.net ns1-173.akam.net asia1.akam.net

This response message doesn’t provide the IP addresses of the MIT namesers.

Question:

Provide a screenshot.

Answer:

The query packet screenshot:

Wireshark Lab代写
Wireshark Lab代写

The response packet screenshot:

Question:

To what IP address is the DNS query message sent? Is this the IP address of your default local DNS server? If not, what does the IP address correspond to?

Answer:

The IP address of the DNS query message sent is 18.72.0.3Wireshark Lab代写

The IP address of my default local DNS server is 208.67.222.222 They are not same.

The IP address of the DNS query message sent correspond to bitsy.mit.edu IP address.

Question:

Examine the DNS query message. What “Type” of DNS query is it? Does the query message contain any “answers”?

Answer:

The“Type” of DNS query is “type A”.

The query message doesn’t contain any answers.

Question:

Examine the DNS response message. How many “answers” are provided? What does each of these answers contain?Wireshark Lab代写

Answer:

The DNS response message has 1 message.

The answer has Name, Type, Class, Time to live, Data length, Address.

Question: Wireshark Lab代写

Provide a screenshot.

Answer:

The query packet screenshot:

Wireshark Lab代写
Wireshark Lab代写

The response packet screenshot:

Wireshark Lab代写
Wireshark Lab代写

更多其他:计算机代写 lab代写 program代写 python代写  金融经济统计代写 matlab代写 web代写 app代写 作业代写 物理代写 数学代写 考试助攻

合作平台:天才代写 幽灵代写 写手招聘 Essay代写

 


天才代写-代写联系方式