Assignment No: 1

Name: Abdullah

Reg No:

TCN-11

Question 1: What is the MAC address of your Host? You can find this in the frame level
information.

Answer: As i confirm from my MAC address from CMD prompt. My MAC address which is “40-
F0-2F-F0-B3-E8”.

Which can also be seen in wire shark my selecting protocol TCP and then looking in “Packet list”

to Ethernet where our MAC address has been shown as Source Address.

Screen Shots:-
Question 2: List the different protocols that appear in the protocol column in the unfiltered
packet-listing window?

Answer:
Protocols that appears in protocol column
Question 3:How long did it take from when the HTTP GET message was sent until the HTTP
OK reply was received? (By default, the value of the Time column in the packet-listing window is
the amount of time, in seconds, since Wireshark tracing began. To display the Time field in
time-of-day format, select the Wireshark View pull down menu, then select Time Display
Format, then select Time-of-day.)

Answer: Open any Http website and than look for HTTP GET note the time from time column
and also than look HTTP OK and not the time. Subtract the HTTP GET time from HTTP OK we
will get the time required for reply to HTTP GET from HTTP OK.

Screenshot for HTTP GET:

Screenshot for HTTP OK:

Question 4:What is the Internet address of the gaia.cs.umass.edu (also known as
wwwnet.cs.umass.edu)? What is the Internet address of your computer?

Answer: In Packet listing we have given information of Internet Protocol through which we
can find IP address of Both host and Server.

Soruce IP Address: 192.168.0.119 Destination IP Address: 111.68.101.101

Question 4: Print the two HTTP messages. To do so, select Printfrom the Wireshark
Filecommand menu, and select “Selected Packet Only”under Packet Range and “As
displayed”under Packet Format and then click OK.

Answer: Screenshot: Print of two mark HTTP Messages.

Screenshot : Marked two HTTP Messages.

Question 6: Identify two scenarios of your own where you can make use of Wireshark to
view/follow protocols in action while interacting with network applications of your choice. For
each scenario, put together a short report that explains precisely each scenario as well as
corresponding steps and how Wireshark is being used in each case to help view/follow
protocols and analyze corresponding packets.

Answer:

Scenarios 1: (Watching LIVE stream)

As I choose to watch live stream and in result in Protocol column UDP packets starts get
increasing until and unless I stop the steaming. Which shows that Live Streaming use the UPD
protocol. Due to help of Wireshark I confirm that yes live streaming use UDP protocol.

Scenarios 2:
Question 7: Select certain flow as per your choice. Find out the following parameters
regarding that flow?

Answer:

a. Total packets in that flow in Pkts/sec = 7793/sec

b. Total Data captured in Mbps/Kbps/bps of that particular flow =0.005896Mbps

c. Total duration of that particular flow in (Min:Sec) =3:56

d. Packet loss = 0%