WiresharkDump

1. No. Time Source Destination Protocol Length Info
2. 137730 1170.850870 10.10.35.125 10.10.37.184 TCP 62 53499 > jprinter [SYN] Seq=0 Win=8192 Len=0 MSS=1460 SACK_PERM=1
3.  
4. Frame 137730: 62 bytes on wire (496 bits), 62 bytes captured (496 bits)
5. Arrival Time: Jul 9, 2012 13:46:56.411040000 Pacific Daylight Time
6. Epoch Time: 1341866816.411040000 seconds
7. [Time delta from previous captured frame: 0.000427000 seconds]
8. [Time delta from previous displayed frame: 0.000000000 seconds]
9. [Time since reference or first frame: 1170.850870000 seconds]
10. Frame Number: 137730
11. Frame Length: 62 bytes (496 bits)
12. Capture Length: 62 bytes (496 bits)
13. [Frame is marked: True]
14. [Frame is ignored: False]
15. [Protocols in frame: eth:ip:tcp]
16. [Coloring Rule Name: TCP SYN/FIN]
17. [Coloring Rule String: tcp.flags & 0x02 || tcp.flags.fin == 1]
18. Ethernet II, Src: Dell_38:33:18 (00:1e:4f:38:33:18), Dst: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
19. Destination: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
20. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
21. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
22. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
23. Source: Dell_38:33:18 (00:1e:4f:38:33:18)
24. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
25. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
26. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
27. Type: IP (0x0800)
28. Internet Protocol Version 4, Src: 10.10.35.125 (10.10.35.125), Dst: 10.10.37.184 (10.10.37.184)
29. Version: 4
30. Header length: 20 bytes
31. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
32. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
33. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
34. Total Length: 48
35. Identification: 0x61f5 (25077)
36. Flags: 0x02 (Don't Fragment)
37. 0... .... = Reserved bit: Not set
38. .1.. .... = Don't fragment: Set
39. ..0. .... = More fragments: Not set
40. Fragment offset: 0
41. Time to live: 128
42. Protocol: TCP (6)
43. Header checksum: 0x3b8a [correct]
44. [Good: True]
45. [Bad: False]
46. Source: 10.10.35.125 (10.10.35.125)
47. Destination: 10.10.37.184 (10.10.37.184)
48. Transmission Control Protocol, Src Port: 53499 (53499), Dst Port: jprinter (5309), Seq: 0, Len: 0
49. Source port: 53499 (53499)
50. Destination port: jprinter (5309)
51. [Stream index: 6359]
52. Sequence number: 0 (relative sequence number)
53. Header length: 28 bytes
54. Flags: 0x02 (SYN)
55. 000. .... .... = Reserved: Not set
56. ...0 .... .... = Nonce: Not set
57. .... 0... .... = Congestion Window Reduced (CWR): Not set
58. .... .0.. .... = ECN-Echo: Not set
59. .... ..0. .... = Urgent: Not set
60. .... ...0 .... = Acknowledgement: Not set
61. .... .... 0... = Push: Not set
62. .... .... .0.. = Reset: Not set
63. .... .... ..1. = Syn: Set
64. [Expert Info (Chat/Sequence): Connection establish request (SYN): server port jprinter]
65. [Message: Connection establish request (SYN): server port jprinter]
66. [Severity level: Chat]
67. [Group: Sequence]
68. .... .... ...0 = Fin: Not set
69. Window size value: 8192
70. [Calculated window size: 8192]
71. Checksum: 0x5aeb [validation disabled]
72. [Good Checksum: False]
73. [Bad Checksum: False]
74. Options: (8 bytes)
75. Maximum segment size: 1460 bytes
76. No-Operation (NOP)
77. No-Operation (NOP)
78. TCP SACK Permitted Option: True
79.  
80. No. Time Source Destination Protocol Length Info
81. 137731 1170.850890 10.10.37.184 10.10.35.125 TCP 62 jprinter > 53499 [SYN, ACK] Seq=0 Ack=1 Win=8192 Len=0 MSS=1460 SACK_PERM=1
82.  
83. Frame 137731: 62 bytes on wire (496 bits), 62 bytes captured (496 bits)
84. Arrival Time: Jul 9, 2012 13:46:56.411060000 Pacific Daylight Time
85. Epoch Time: 1341866816.411060000 seconds
86. [Time delta from previous captured frame: 0.000020000 seconds]
87. [Time delta from previous displayed frame: 0.000020000 seconds]
88. [Time since reference or first frame: 1170.850890000 seconds]
89. Frame Number: 137731
90. Frame Length: 62 bytes (496 bits)
91. Capture Length: 62 bytes (496 bits)
92. [Frame is marked: True]
93. [Frame is ignored: False]
94. [Protocols in frame: eth:ip:tcp]
95. [Coloring Rule Name: TCP SYN/FIN]
96. [Coloring Rule String: tcp.flags & 0x02 || tcp.flags.fin == 1]
97. Ethernet II, Src: Dell_a5:20:2d (bc:30:5b:a5:20:2d), Dst: Dell_38:33:18 (00:1e:4f:38:33:18)
98. Destination: Dell_38:33:18 (00:1e:4f:38:33:18)
99. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
100. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
101. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
102. Source: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
103. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
104. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
105. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
106. Type: IP (0x0800)
107. Internet Protocol Version 4, Src: 10.10.37.184 (10.10.37.184), Dst: 10.10.35.125 (10.10.35.125)
108. Version: 4
109. Header length: 20 bytes
110. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
111. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
112. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
113. Total Length: 48
114. Identification: 0x5706 (22278)
115. Flags: 0x02 (Don't Fragment)
116. 0... .... = Reserved bit: Not set
117. .1.. .... = Don't fragment: Set
118. ..0. .... = More fragments: Not set
119. Fragment offset: 0
120. Time to live: 128
121. Protocol: TCP (6)
122. Header checksum: 0x4679 [correct]
123. [Good: True]
124. [Bad: False]
125. Source: 10.10.37.184 (10.10.37.184)
126. Destination: 10.10.35.125 (10.10.35.125)
127. Transmission Control Protocol, Src Port: jprinter (5309), Dst Port: 53499 (53499), Seq: 0, Ack: 1, Len: 0
128. Source port: jprinter (5309)
129. Destination port: 53499 (53499)
130. [Stream index: 6359]
131. Sequence number: 0 (relative sequence number)
132. Acknowledgement number: 1 (relative ack number)
133. Header length: 28 bytes
134. Flags: 0x12 (SYN, ACK)
135. 000. .... .... = Reserved: Not set
136. ...0 .... .... = Nonce: Not set
137. .... 0... .... = Congestion Window Reduced (CWR): Not set
138. .... .0.. .... = ECN-Echo: Not set
139. .... ..0. .... = Urgent: Not set
140. .... ...1 .... = Acknowledgement: Set
141. .... .... 0... = Push: Not set
142. .... .... .0.. = Reset: Not set
143. .... .... ..1. = Syn: Set
144. [Expert Info (Chat/Sequence): Connection establish acknowledge (SYN+ACK): server port jprinter]
145. [Message: Connection establish acknowledge (SYN+ACK): server port jprinter]
146. [Severity level: Chat]
147. [Group: Sequence]
148. .... .... ...0 = Fin: Not set
149. Window size value: 8192
150. [Calculated window size: 8192]
151. Checksum: 0xa655 [validation disabled]
152. [Good Checksum: False]
153. [Bad Checksum: False]
154. Options: (8 bytes)
155. Maximum segment size: 1460 bytes
156. No-Operation (NOP)
157. No-Operation (NOP)
158. TCP SACK Permitted Option: True
159. [SEQ/ACK analysis]
160. [This is an ACK to the segment in frame: 137730]
161. [The RTT to ACK the segment was: 0.000020000 seconds]
162.  
163. No. Time Source Destination Protocol Length Info
164. 137732 1170.851034 10.10.35.125 10.10.37.184 TCP 60 53499 > jprinter [ACK] Seq=1 Ack=1 Win=64240 Len=0
165.  
166. Frame 137732: 60 bytes on wire (480 bits), 60 bytes captured (480 bits)
167. Arrival Time: Jul 9, 2012 13:46:56.411204000 Pacific Daylight Time
168. Epoch Time: 1341866816.411204000 seconds
169. [Time delta from previous captured frame: 0.000144000 seconds]
170. [Time delta from previous displayed frame: 0.000144000 seconds]
171. [Time since reference or first frame: 1170.851034000 seconds]
172. Frame Number: 137732
173. Frame Length: 60 bytes (480 bits)
174. Capture Length: 60 bytes (480 bits)
175. [Frame is marked: True]
176. [Frame is ignored: False]
177. [Protocols in frame: eth:ip:tcp]
178. [Coloring Rule Name: TCP]
179. [Coloring Rule String: tcp]
180. Ethernet II, Src: Dell_38:33:18 (00:1e:4f:38:33:18), Dst: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
181. Destination: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
182. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
183. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
184. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
185. Source: Dell_38:33:18 (00:1e:4f:38:33:18)
186. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
187. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
188. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
189. Type: IP (0x0800)
190. Trailer: 000000000000
191. Internet Protocol Version 4, Src: 10.10.35.125 (10.10.35.125), Dst: 10.10.37.184 (10.10.37.184)
192. Version: 4
193. Header length: 20 bytes
194. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
195. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
196. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
197. Total Length: 40
198. Identification: 0x61f6 (25078)
199. Flags: 0x02 (Don't Fragment)
200. 0... .... = Reserved bit: Not set
201. .1.. .... = Don't fragment: Set
202. ..0. .... = More fragments: Not set
203. Fragment offset: 0
204. Time to live: 128
205. Protocol: TCP (6)
206. Header checksum: 0x3b91 [correct]
207. [Good: True]
208. [Bad: False]
209. Source: 10.10.35.125 (10.10.35.125)
210. Destination: 10.10.37.184 (10.10.37.184)
211. Transmission Control Protocol, Src Port: 53499 (53499), Dst Port: jprinter (5309), Seq: 1, Ack: 1, Len: 0
212. Source port: 53499 (53499)
213. Destination port: jprinter (5309)
214. [Stream index: 6359]
215. Sequence number: 1 (relative sequence number)
216. Acknowledgement number: 1 (relative ack number)
217. Header length: 20 bytes
218. Flags: 0x10 (ACK)
219. 000. .... .... = Reserved: Not set
220. ...0 .... .... = Nonce: Not set
221. .... 0... .... = Congestion Window Reduced (CWR): Not set
222. .... .0.. .... = ECN-Echo: Not set
223. .... ..0. .... = Urgent: Not set
224. .... ...1 .... = Acknowledgement: Set
225. .... .... 0... = Push: Not set
226. .... .... .0.. = Reset: Not set
227. .... .... ..0. = Syn: Not set
228. .... .... ...0 = Fin: Not set
229. Window size value: 64240
230. [Calculated window size: 64240]
231. [Window size scaling factor: -2 (no window scaling used)]
232. Checksum: 0xf828 [validation disabled]
233. [Good Checksum: False]
234. [Bad Checksum: False]
235. [SEQ/ACK analysis]
236. [This is an ACK to the segment in frame: 137731]
237. [The RTT to ACK the segment was: 0.000144000 seconds]
238.  
239. No. Time Source Destination Protocol Length Info
240. 137733 1170.851058 10.10.35.125 10.10.37.184 TCP 110 53499 > jprinter [PSH, ACK] Seq=1 Ack=1 Win=64240 Len=56
241.  
242. Frame 137733: 110 bytes on wire (880 bits), 110 bytes captured (880 bits)
243. Arrival Time: Jul 9, 2012 13:46:56.411228000 Pacific Daylight Time
244. Epoch Time: 1341866816.411228000 seconds
245. [Time delta from previous captured frame: 0.000024000 seconds]
246. [Time delta from previous displayed frame: 0.000024000 seconds]
247. [Time since reference or first frame: 1170.851058000 seconds]
248. Frame Number: 137733
249. Frame Length: 110 bytes (880 bits)
250. Capture Length: 110 bytes (880 bits)
251. [Frame is marked: True]
252. [Frame is ignored: False]
253. [Protocols in frame: eth:ip:tcp:data]
254. [Coloring Rule Name: TCP]
255. [Coloring Rule String: tcp]
256. Ethernet II, Src: Dell_38:33:18 (00:1e:4f:38:33:18), Dst: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
257. Destination: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
258. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
259. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
260. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
261. Source: Dell_38:33:18 (00:1e:4f:38:33:18)
262. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
263. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
264. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
265. Type: IP (0x0800)
266. Internet Protocol Version 4, Src: 10.10.35.125 (10.10.35.125), Dst: 10.10.37.184 (10.10.37.184)
267. Version: 4
268. Header length: 20 bytes
269. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
270. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
271. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
272. Total Length: 96
273. Identification: 0x61f7 (25079)
274. Flags: 0x02 (Don't Fragment)
275. 0... .... = Reserved bit: Not set
276. .1.. .... = Don't fragment: Set
277. ..0. .... = More fragments: Not set
278. Fragment offset: 0
279. Time to live: 128
280. Protocol: TCP (6)
281. Header checksum: 0x3b58 [correct]
282. [Good: True]
283. [Bad: False]
284. Source: 10.10.35.125 (10.10.35.125)
285. Destination: 10.10.37.184 (10.10.37.184)
286. Transmission Control Protocol, Src Port: 53499 (53499), Dst Port: jprinter (5309), Seq: 1, Ack: 1, Len: 56
287. Source port: 53499 (53499)
288. Destination port: jprinter (5309)
289. [Stream index: 6359]
290. Sequence number: 1 (relative sequence number)
291. [Next sequence number: 57 (relative sequence number)]
292. Acknowledgement number: 1 (relative ack number)
293. Header length: 20 bytes
294. Flags: 0x18 (PSH, ACK)
295. 000. .... .... = Reserved: Not set
296. ...0 .... .... = Nonce: Not set
297. .... 0... .... = Congestion Window Reduced (CWR): Not set
298. .... .0.. .... = ECN-Echo: Not set
299. .... ..0. .... = Urgent: Not set
300. .... ...1 .... = Acknowledgement: Set
301. .... .... 1... = Push: Set
302. .... .... .0.. = Reset: Not set
303. .... .... ..0. = Syn: Not set
304. .... .... ...0 = Fin: Not set
305. Window size value: 64240
306. [Calculated window size: 64240]
307. [Window size scaling factor: -2 (no window scaling used)]
308. Checksum: 0xa81f [validation disabled]
309. [Good Checksum: False]
310. [Bad Checksum: False]
311. [SEQ/ACK analysis]
312. [Bytes in flight: 56]
313. Data (56 bytes)
314.  
315. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X...XXXXXXX=XXXX
316. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX;XXXXXXXXXXXX
317. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X=X.X.X.XXXX;XXX
318. XXXX XX XX XX XX XX XX XX XX XXXXX=X.
319. Data: 340000004d414348494e453d52555353454c4c3b534f434b...
320. [Length: 56]
321.  
322. No. Time Source Destination Protocol Length Info
323. 137734 1170.851409 10.10.35.125 10.10.37.184 TCP 1514 53499 > jprinter [ACK] Seq=57 Ack=1 Win=64240 Len=1460
324.  
325. Frame 137734: 1514 bytes on wire (12112 bits), 1514 bytes captured (12112 bits)
326. Arrival Time: Jul 9, 2012 13:46:56.411579000 Pacific Daylight Time
327. Epoch Time: 1341866816.411579000 seconds
328. [Time delta from previous captured frame: 0.000351000 seconds]
329. [Time delta from previous displayed frame: 0.000351000 seconds]
330. [Time since reference or first frame: 1170.851409000 seconds]
331. Frame Number: 137734
332. Frame Length: 1514 bytes (12112 bits)
333. Capture Length: 1514 bytes (12112 bits)
334. [Frame is marked: True]
335. [Frame is ignored: False]
336. [Protocols in frame: eth:ip:tcp:data]
337. [Coloring Rule Name: TCP]
338. [Coloring Rule String: tcp]
339. Ethernet II, Src: Dell_38:33:18 (00:1e:4f:38:33:18), Dst: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
340. Destination: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
341. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
342. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
343. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
344. Source: Dell_38:33:18 (00:1e:4f:38:33:18)
345. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
346. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
347. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
348. Type: IP (0x0800)
349. Internet Protocol Version 4, Src: 10.10.35.125 (10.10.35.125), Dst: 10.10.37.184 (10.10.37.184)
350. Version: 4
351. Header length: 20 bytes
352. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
353. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
354. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
355. Total Length: 1500
356. Identification: 0x61f8 (25080)
357. Flags: 0x02 (Don't Fragment)
358. 0... .... = Reserved bit: Not set
359. .1.. .... = Don't fragment: Set
360. ..0. .... = More fragments: Not set
361. Fragment offset: 0
362. Time to live: 128
363. Protocol: TCP (6)
364. Header checksum: 0x35db [correct]
365. [Good: True]
366. [Bad: False]
367. Source: 10.10.35.125 (10.10.35.125)
368. Destination: 10.10.37.184 (10.10.37.184)
369. Transmission Control Protocol, Src Port: 53499 (53499), Dst Port: jprinter (5309), Seq: 57, Ack: 1, Len: 1460
370. Source port: 53499 (53499)
371. Destination port: jprinter (5309)
372. [Stream index: 6359]
373. Sequence number: 57 (relative sequence number)
374. [Next sequence number: 1517 (relative sequence number)]
375. Acknowledgement number: 1 (relative ack number)
376. Header length: 20 bytes
377. Flags: 0x10 (ACK)
378. 000. .... .... = Reserved: Not set
379. ...0 .... .... = Nonce: Not set
380. .... 0... .... = Congestion Window Reduced (CWR): Not set
381. .... .0.. .... = ECN-Echo: Not set
382. .... ..0. .... = Urgent: Not set
383. .... ...1 .... = Acknowledgement: Set
384. .... .... 0... = Push: Not set
385. .... .... .0.. = Reset: Not set
386. .... .... ..0. = Syn: Not set
387. .... .... ...0 = Fin: Not set
388. Window size value: 64240
389. [Calculated window size: 64240]
390. [Window size scaling factor: -2 (no window scaling used)]
391. Checksum: 0xdb0f [validation disabled]
392. [Good Checksum: False]
393. [Bad Checksum: False]
394. [SEQ/ACK analysis]
395. [Bytes in flight: 1516]
396. Data (1460 bytes)
397.  
398. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X$XX$XX.........
399. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ..........X.....
400. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ....XXX.........
401. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ................
402. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX `...XXXXXXXXXXXX
403. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
404. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX.XX.X...X...
405. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X...X...X...X...
406. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X...X...........
407. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ................
408. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ................
409. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ................
410. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ................
411. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ................
412. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ............X.@.
413. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ................
414. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ................
415. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX $...<.......!...
416. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ....X.......XXXX
417. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
418. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXX....
419. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
420. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX.....[XXXXX].
421. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX .XXXXXX=XXXXXXXX
422. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
423. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXX..XXXXXX
424. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX =XXXXXXXXXXXXXXX
425. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
426. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X..XXXXXX=XXXXXX
427. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
428. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXX..XXXX
429. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXX=XXXX..X
430. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXX=XXX
431. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
432. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX..XXXXXXXXXXX
433. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX =X..XXXXXXXXXXXX
434. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX=XXXX....[XXXX
435. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX]....[XXX]..X
436. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXX=XXXXX..
437. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX=XXXX..XXXXX
438. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX=XXXX::XXX
439. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX :XXXX:XXXX:XXXX.
440. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX .XXXXXXXXXXX=XXX
441. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX..XXXXXXXXXX=X
442. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX::XXX:XXXX:XX
443. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX:XXXX..XXXXXXX
444. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX=XX..XXXXXXXX
445. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX=XXXX::XXX:XX
446. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX:XXXX:XXXX..XX
447. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXX=XX..XX
448. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX=XXX..XXXXXXX
449. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX=XXXX..XXX
450. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX=XXXXXXX..X
451. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXX=XXX.X.X.
452. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X..XXXXXXXXXXXXX
453. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX=X.X.X-XX.XX
454. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ..XXXXXXXXXXXXXX
455. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX=XXXXX..XXXXX
456. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXX=XXXX
457. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX :XXXX:XXXX:XXXX:
458. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX:XXXX:XXXX:X
459. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX..XXXXXXXXXXX
460. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX=XXXX:XXXX:X
461. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX:XXXX:XXXX:XX
462. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX:XXXX:XXXX..XX
463. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXX=X
464. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX:XXXX:XXXX:XX
465. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX:XXXX:XXXX:XXX
466. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X:XXXX..XXXXXXXX
467. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXX=XXX-
468. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X..XXXXXXXXXXXXX
469. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXX=XXX-
470. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX-X..XXXXXXXX
471. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX=XXXX..XXX
472. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX =/XXXXX/XX/XXXXX
473. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX/XXXXXXXXXXXXX
474. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX .XXX..XXXXXXXXXX
475. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX=XXXX/X.X..
476. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXX=XXX
477. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X/XXXX; XXXXXXX=
478. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX-X..XXXXXXXXX
479. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X=XXX..XXXXXXXXX
480. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX=XX..XXXXXX
481. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXX=XXXX
482. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ..XXXXXXXXXXXXXX
483. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X=XXX..XXXXXXXXX
484. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX=XXXX..XXXXXXX
485. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXX=XXX.
486. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX .XXXXXXXXXXXXXXX
487. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X=XXX..XXXXXXXXX
488. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX=XXX..XXXXXXX
489. XXXX XX XX XX XX XXXX
490. Data: 5424535024303100010000008c1700008c1700008c170000...
491. [Length: 1460]
492.  
493. No. Time Source Destination Protocol Length Info
494. 137735 1170.851432 10.10.37.184 10.10.35.125 TCP 54 jprinter > 53499 [ACK] Seq=1 Ack=1517 Win=64240 Len=0
495.  
496. Frame 137735: 54 bytes on wire (432 bits), 54 bytes captured (432 bits)
497. Arrival Time: Jul 9, 2012 13:46:56.411602000 Pacific Daylight Time
498. Epoch Time: 1341866816.411602000 seconds
499. [Time delta from previous captured frame: 0.000023000 seconds]
500. [Time delta from previous displayed frame: 0.000023000 seconds]
501. [Time since reference or first frame: 1170.851432000 seconds]
502. Frame Number: 137735
503. Frame Length: 54 bytes (432 bits)
504. Capture Length: 54 bytes (432 bits)
505. [Frame is marked: True]
506. [Frame is ignored: False]
507. [Protocols in frame: eth:ip:tcp]
508. [Coloring Rule Name: TCP]
509. [Coloring Rule String: tcp]
510. Ethernet II, Src: Dell_a5:20:2d (bc:30:5b:a5:20:2d), Dst: Dell_38:33:18 (00:1e:4f:38:33:18)
511. Destination: Dell_38:33:18 (00:1e:4f:38:33:18)
512. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
513. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
514. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
515. Source: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
516. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
517. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
518. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
519. Type: IP (0x0800)
520. Internet Protocol Version 4, Src: 10.10.37.184 (10.10.37.184), Dst: 10.10.35.125 (10.10.35.125)
521. Version: 4
522. Header length: 20 bytes
523. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
524. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
525. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
526. Total Length: 40
527. Identification: 0x5707 (22279)
528. Flags: 0x02 (Don't Fragment)
529. 0... .... = Reserved bit: Not set
530. .1.. .... = Don't fragment: Set
531. ..0. .... = More fragments: Not set
532. Fragment offset: 0
533. Time to live: 128
534. Protocol: TCP (6)
535. Header checksum: 0x4680 [correct]
536. [Good: True]
537. [Bad: False]
538. Source: 10.10.37.184 (10.10.37.184)
539. Destination: 10.10.35.125 (10.10.35.125)
540. Transmission Control Protocol, Src Port: jprinter (5309), Dst Port: 53499 (53499), Seq: 1, Ack: 1517, Len: 0
541. Source port: jprinter (5309)
542. Destination port: 53499 (53499)
543. [Stream index: 6359]
544. Sequence number: 1 (relative sequence number)
545. Acknowledgement number: 1517 (relative ack number)
546. Header length: 20 bytes
547. Flags: 0x10 (ACK)
548. 000. .... .... = Reserved: Not set
549. ...0 .... .... = Nonce: Not set
550. .... 0... .... = Congestion Window Reduced (CWR): Not set
551. .... .0.. .... = ECN-Echo: Not set
552. .... ..0. .... = Urgent: Not set
553. .... ...1 .... = Acknowledgement: Set
554. .... .... 0... = Push: Not set
555. .... .... .0.. = Reset: Not set
556. .... .... ..0. = Syn: Not set
557. .... .... ...0 = Fin: Not set
558. Window size value: 64240
559. [Calculated window size: 64240]
560. [Window size scaling factor: -2 (no window scaling used)]
561. Checksum: 0xf23c [validation disabled]
562. [Good Checksum: False]
563. [Bad Checksum: False]
564. [SEQ/ACK analysis]
565. [This is an ACK to the segment in frame: 137734]
566. [The RTT to ACK the segment was: 0.000023000 seconds]
567.  
568. No. Time Source Destination Protocol Length Info
569. 137736 1170.851639 10.10.37.184 10.10.35.125 TCP 54 jprinter > 53499 [FIN, ACK] Seq=1 Ack=1517 Win=64240 Len=0
570.  
571. Frame 137736: 54 bytes on wire (432 bits), 54 bytes captured (432 bits)
572. Arrival Time: Jul 9, 2012 13:46:56.411809000 Pacific Daylight Time
573. Epoch Time: 1341866816.411809000 seconds
574. [Time delta from previous captured frame: 0.000207000 seconds]
575. [Time delta from previous displayed frame: 0.000207000 seconds]
576. [Time since reference or first frame: 1170.851639000 seconds]
577. Frame Number: 137736
578. Frame Length: 54 bytes (432 bits)
579. Capture Length: 54 bytes (432 bits)
580. [Frame is marked: True]
581. [Frame is ignored: False]
582. [Protocols in frame: eth:ip:tcp]
583. [Coloring Rule Name: TCP SYN/FIN]
584. [Coloring Rule String: tcp.flags & 0x02 || tcp.flags.fin == 1]
585. Ethernet II, Src: Dell_a5:20:2d (bc:30:5b:a5:20:2d), Dst: Dell_38:33:18 (00:1e:4f:38:33:18)
586. Destination: Dell_38:33:18 (00:1e:4f:38:33:18)
587. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
588. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
589. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
590. Source: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
591. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
592. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
593. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
594. Type: IP (0x0800)
595. Internet Protocol Version 4, Src: 10.10.37.184 (10.10.37.184), Dst: 10.10.35.125 (10.10.35.125)
596. Version: 4
597. Header length: 20 bytes
598. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
599. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
600. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
601. Total Length: 40
602. Identification: 0x5708 (22280)
603. Flags: 0x02 (Don't Fragment)
604. 0... .... = Reserved bit: Not set
605. .1.. .... = Don't fragment: Set
606. ..0. .... = More fragments: Not set
607. Fragment offset: 0
608. Time to live: 128
609. Protocol: TCP (6)
610. Header checksum: 0x467f [correct]
611. [Good: True]
612. [Bad: False]
613. Source: 10.10.37.184 (10.10.37.184)
614. Destination: 10.10.35.125 (10.10.35.125)
615. Transmission Control Protocol, Src Port: jprinter (5309), Dst Port: 53499 (53499), Seq: 1, Ack: 1517, Len: 0
616. Source port: jprinter (5309)
617. Destination port: 53499 (53499)
618. [Stream index: 6359]
619. Sequence number: 1 (relative sequence number)
620. Acknowledgement number: 1517 (relative ack number)
621. Header length: 20 bytes
622. Flags: 0x11 (FIN, ACK)
623. 000. .... .... = Reserved: Not set
624. ...0 .... .... = Nonce: Not set
625. .... 0... .... = Congestion Window Reduced (CWR): Not set
626. .... .0.. .... = ECN-Echo: Not set
627. .... ..0. .... = Urgent: Not set
628. .... ...1 .... = Acknowledgement: Set
629. .... .... 0... = Push: Not set
630. .... .... .0.. = Reset: Not set
631. .... .... ..0. = Syn: Not set
632. .... .... ...1 = Fin: Set
633. [Expert Info (Chat/Sequence): Connection finish (FIN)]
634. [Message: Connection finish (FIN)]
635. [Severity level: Chat]
636. [Group: Sequence]
637. Window size value: 64240
638. [Calculated window size: 64240]
639. [Window size scaling factor: -2 (no window scaling used)]
640. Checksum: 0xf23b [validation disabled]
641. [Good Checksum: False]
642. [Bad Checksum: False]
643.  
644. No. Time Source Destination Protocol Length Info
645. 137737 1170.851898 10.10.35.125 10.10.37.184 TCP 1514 53499 > jprinter [ACK] Seq=1517 Ack=1 Win=64240 Len=1460
646.  
647. Frame 137737: 1514 bytes on wire (12112 bits), 1514 bytes captured (12112 bits)
648. Arrival Time: Jul 9, 2012 13:46:56.412068000 Pacific Daylight Time
649. Epoch Time: 1341866816.412068000 seconds
650. [Time delta from previous captured frame: 0.000259000 seconds]
651. [Time delta from previous displayed frame: 0.000259000 seconds]
652. [Time since reference or first frame: 1170.851898000 seconds]
653. Frame Number: 137737
654. Frame Length: 1514 bytes (12112 bits)
655. Capture Length: 1514 bytes (12112 bits)
656. [Frame is marked: True]
657. [Frame is ignored: False]
658. [Protocols in frame: eth:ip:tcp:data]
659. [Coloring Rule Name: TCP]
660. [Coloring Rule String: tcp]
661. Ethernet II, Src: Dell_38:33:18 (00:1e:4f:38:33:18), Dst: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
662. Destination: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
663. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
664. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
665. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
666. Source: Dell_38:33:18 (00:1e:4f:38:33:18)
667. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
668. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
669. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
670. Type: IP (0x0800)
671. Internet Protocol Version 4, Src: 10.10.35.125 (10.10.35.125), Dst: 10.10.37.184 (10.10.37.184)
672. Version: 4
673. Header length: 20 bytes
674. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
675. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
676. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
677. Total Length: 1500
678. Identification: 0x61f9 (25081)
679. Flags: 0x02 (Don't Fragment)
680. 0... .... = Reserved bit: Not set
681. .1.. .... = Don't fragment: Set
682. ..0. .... = More fragments: Not set
683. Fragment offset: 0
684. Time to live: 128
685. Protocol: TCP (6)
686. Header checksum: 0x35da [correct]
687. [Good: True]
688. [Bad: False]
689. Source: 10.10.35.125 (10.10.35.125)
690. Destination: 10.10.37.184 (10.10.37.184)
691. Transmission Control Protocol, Src Port: 53499 (53499), Dst Port: jprinter (5309), Seq: 1517, Ack: 1, Len: 1460
692. Source port: 53499 (53499)
693. Destination port: jprinter (5309)
694. [Stream index: 6359]
695. Sequence number: 1517 (relative sequence number)
696. [Next sequence number: 2977 (relative sequence number)]
697. Acknowledgement number: 1 (relative ack number)
698. Header length: 20 bytes
699. Flags: 0x10 (ACK)
700. 000. .... .... = Reserved: Not set
701. ...0 .... .... = Nonce: Not set
702. .... 0... .... = Congestion Window Reduced (CWR): Not set
703. .... .0.. .... = ECN-Echo: Not set
704. .... ..0. .... = Urgent: Not set
705. .... ...1 .... = Acknowledgement: Set
706. .... .... 0... = Push: Not set
707. .... .... .0.. = Reset: Not set
708. .... .... ..0. = Syn: Not set
709. .... .... ...0 = Fin: Not set
710. Window size value: 64240
711. [Calculated window size: 64240]
712. [Window size scaling factor: -2 (no window scaling used)]
713. Checksum: 0x45f2 [validation disabled]
714. [Good Checksum: False]
715. [Bad Checksum: False]
716. [SEQ/ACK analysis]
717. [Bytes in flight: 1460]
718. Data (1460 bytes)
719.  
720. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXX=XXX-X..X
721. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXX=XXXX
722. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X..XXXXXXXXXXXX=
723. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX..XXXXXXXXX
724. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX=XXXXX..XXXXX
725. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXX=X..X
726. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXX=*/*..
727. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
728. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX=XX-XX..XXXX
729. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXX=XXXXX
730. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX..XXXXXXXX
731. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX=XXXX://XXX.
732. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
733. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X.XXX/XXXXX/XXXX
734. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X.XXX/XXX-XXX-XX
735. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX/XXXXXX-XXXX..
736. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
737. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXX=XXX..
738. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
739. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXX=/XXXXX/X
740. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX.XXX/XXX-XXX
741. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX -XXXX/XXXXXX-XXX
742. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X..XXXXXXXXXXXXX
743. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXX=XXXXXXX
744. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX; XXXX..XXXXXX
745. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXX=XXX
746. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXX..XXXXXX
747. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXX=XXXX
748. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX /XXX..XXXXXXXXXX
749. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
750. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX=X..XXXXXXXXXX
751. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
752. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X=X..XXXXXXXXXXX
753. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXX=
754. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X..XXXXXXXXXXXXX
755. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXX=X..
756. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
757. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
758. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX=XXXX.X.X.X
759. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ..XXXXXXXXXXX=XX
760. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X..XXXXXXXXXXXXX
761. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXX=XXXX, XX
762. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX..XXXXXXXXX
763. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX=XXXXXXX/X
764. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX .X (XXXXXXXXXX;
765. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX X.X; XXXXXX
766. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X XX X.X; .XXX X
767. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X.X.XXXX; .XX
768. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X XXX X.X.XXXXX;
769. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX .XXX XXX X.X.XX
770. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX.XX; XX-XXX X
771. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X X)..XXXXXXXXX=
772. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX.XXXXXXXXXXXX
773. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX.XXX..XXXXX
774. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXX=X
775. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX..XXXXXXXXXXXX
776. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX=XXXX-XXXXX..
777. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
778. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX=XX-XXXXX..XXX
779. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXX=XXXXXXX
780. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX =XXXXXXXXXXXXXXX
781. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
782. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X; XXXXXXXX=XXXX
783. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
784. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX; XXXXX=X;
785. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX=XXXXXXXX
786. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
787. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXX; XXXXXX
788. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX =XXXXXXXXX.XXXXX
789. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXX.X
790. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXX.XXXXXX
791. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX.XXXXXXXXXX.
792. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X; XXXXXX=XXXXXX
793. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX.XX.XX.XXXXXX
794. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX; XXXXXX=XXX
795. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX.XXXXXXXXX
796. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X.X.X.XXXXXX=(XX
797. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX)|XXXXXX=(XX
798. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX)|XXXXXX=(XX
799. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX); XXXXXX=XXXX
800. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX.XXXXXX%XXX
801. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
802. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXX;
803. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX=XXXXXXXX
804. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
805. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXX; XXXXXX
806. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX =XXXXXXXXXXXXXXX
807. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
808. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X; XXXXXX=XXXXXX
809. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX; XXXX=XXXX;
810. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX=%XX%XXX%XX%
811. XXXX XX XX XX XX XX..
812. Data: 4e434f44494e473d5554462d380d0a52657143616e63656c...
813. [Length: 1460]
814.  
815. No. Time Source Destination Protocol Length Info
816. 137738 1170.851926 10.10.37.184 10.10.35.125 TCP 54 jprinter > 53499 [RST, ACK] Seq=2 Ack=2977 Win=0 Len=0
817.  
818. Frame 137738: 54 bytes on wire (432 bits), 54 bytes captured (432 bits)
819. Arrival Time: Jul 9, 2012 13:46:56.412096000 Pacific Daylight Time
820. Epoch Time: 1341866816.412096000 seconds
821. [Time delta from previous captured frame: 0.000028000 seconds]
822. [Time delta from previous displayed frame: 0.000028000 seconds]
823. [Time since reference or first frame: 1170.851926000 seconds]
824. Frame Number: 137738
825. Frame Length: 54 bytes (432 bits)
826. Capture Length: 54 bytes (432 bits)
827. [Frame is marked: True]
828. [Frame is ignored: False]
829. [Protocols in frame: eth:ip:tcp]
830. [Coloring Rule Name: TCP RST]
831. [Coloring Rule String: tcp.flags.reset eq 1]
832. Ethernet II, Src: Dell_a5:20:2d (bc:30:5b:a5:20:2d), Dst: Dell_38:33:18 (00:1e:4f:38:33:18)
833. Destination: Dell_38:33:18 (00:1e:4f:38:33:18)
834. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
835. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
836. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
837. Source: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
838. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
839. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
840. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
841. Type: IP (0x0800)
842. Internet Protocol Version 4, Src: 10.10.37.184 (10.10.37.184), Dst: 10.10.35.125 (10.10.35.125)
843. Version: 4
844. Header length: 20 bytes
845. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
846. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
847. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
848. Total Length: 40
849. Identification: 0x570b (22283)
850. Flags: 0x02 (Don't Fragment)
851. 0... .... = Reserved bit: Not set
852. .1.. .... = Don't fragment: Set
853. ..0. .... = More fragments: Not set
854. Fragment offset: 0
855. Time to live: 128
856. Protocol: TCP (6)
857. Header checksum: 0x467c [correct]
858. [Good: True]
859. [Bad: False]
860. Source: 10.10.37.184 (10.10.37.184)
861. Destination: 10.10.35.125 (10.10.35.125)
862. Transmission Control Protocol, Src Port: jprinter (5309), Dst Port: 53499 (53499), Seq: 2, Ack: 2977, Len: 0
863. Source port: jprinter (5309)
864. Destination port: 53499 (53499)
865. [Stream index: 6359]
866. Sequence number: 2 (relative sequence number)
867. Acknowledgement number: 2977 (relative ack number)
868. Header length: 20 bytes
869. Flags: 0x14 (RST, ACK)
870. 000. .... .... = Reserved: Not set
871. ...0 .... .... = Nonce: Not set
872. .... 0... .... = Congestion Window Reduced (CWR): Not set
873. .... .0.. .... = ECN-Echo: Not set
874. .... ..0. .... = Urgent: Not set
875. .... ...1 .... = Acknowledgement: Set
876. .... .... 0... = Push: Not set
877. .... .... .1.. = Reset: Set
878. [Expert Info (Chat/Sequence): Connection reset (RST)]
879. [Message: Connection reset (RST)]
880. [Severity level: Chat]
881. [Group: Sequence]
882. .... .... ..0. = Syn: Not set
883. .... .... ...0 = Fin: Not set
884. Window size value: 0
885. [Calculated window size: 0]
886. [Window size scaling factor: -2 (no window scaling used)]
887. Checksum: 0xe774 [validation disabled]
888. [Good Checksum: False]
889. [Bad Checksum: False]
890. [SEQ/ACK analysis]
891. [This is an ACK to the segment in frame: 137737]
892. [The RTT to ACK the segment was: 0.000028000 seconds]
893.  
894. No. Time Source Destination Protocol Length Info
895. 137739 1170.851986 10.10.35.125 10.10.37.184 TCP 1514 53499 > jprinter [ACK] Seq=2977 Ack=1 Win=64240 Len=1460
896.  
897. Frame 137739: 1514 bytes on wire (12112 bits), 1514 bytes captured (12112 bits)
898. Arrival Time: Jul 9, 2012 13:46:56.412156000 Pacific Daylight Time
899. Epoch Time: 1341866816.412156000 seconds
900. [Time delta from previous captured frame: 0.000060000 seconds]
901. [Time delta from previous displayed frame: 0.000060000 seconds]
902. [Time since reference or first frame: 1170.851986000 seconds]
903. Frame Number: 137739
904. Frame Length: 1514 bytes (12112 bits)
905. Capture Length: 1514 bytes (12112 bits)
906. [Frame is marked: True]
907. [Frame is ignored: False]
908. [Protocols in frame: eth:ip:tcp:data]
909. [Coloring Rule Name: TCP]
910. [Coloring Rule String: tcp]
911. Ethernet II, Src: Dell_38:33:18 (00:1e:4f:38:33:18), Dst: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
912. Destination: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
913. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
914. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
915. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
916. Source: Dell_38:33:18 (00:1e:4f:38:33:18)
917. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
918. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
919. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
920. Type: IP (0x0800)
921. Internet Protocol Version 4, Src: 10.10.35.125 (10.10.35.125), Dst: 10.10.37.184 (10.10.37.184)
922. Version: 4
923. Header length: 20 bytes
924. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
925. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
926. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
927. Total Length: 1500
928. Identification: 0x61fa (25082)
929. Flags: 0x02 (Don't Fragment)
930. 0... .... = Reserved bit: Not set
931. .1.. .... = Don't fragment: Set
932. ..0. .... = More fragments: Not set
933. Fragment offset: 0
934. Time to live: 128
935. Protocol: TCP (6)
936. Header checksum: 0x35d9 [correct]
937. [Good: True]
938. [Bad: False]
939. Source: 10.10.35.125 (10.10.35.125)
940. Destination: 10.10.37.184 (10.10.37.184)
941. Transmission Control Protocol, Src Port: 53499 (53499), Dst Port: jprinter (5309), Seq: 2977, Ack: 1, Len: 1460
942. Source port: 53499 (53499)
943. Destination port: jprinter (5309)
944. [Stream index: 6359]
945. Sequence number: 2977 (relative sequence number)
946. [Next sequence number: 4437 (relative sequence number)]
947. Acknowledgement number: 1 (relative ack number)
948. Header length: 20 bytes
949. Flags: 0x10 (ACK)
950. 000. .... .... = Reserved: Not set
951. ...0 .... .... = Nonce: Not set
952. .... 0... .... = Congestion Window Reduced (CWR): Not set
953. .... .0.. .... = ECN-Echo: Not set
954. .... ..0. .... = Urgent: Not set
955. .... ...1 .... = Acknowledgement: Set
956. .... .... 0... = Push: Not set
957. .... .... .0.. = Reset: Not set
958. .... .... ..0. = Syn: Not set
959. .... .... ...0 = Fin: Not set
960. Window size value: 64240
961. [Calculated window size: 64240]
962. [Window size scaling factor: -2 (no window scaling used)]
963. Checksum: 0xc7e5 [validation disabled]
964. [Good Checksum: False]
965. [Bad Checksum: False]
966. [SEQ/ACK analysis]
967. [Bytes in flight: 1460]
968. Data (1460 bytes)
969.  
970. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXX=
971. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX=XXXXXXXXX
972. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
973. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXX; XXXX=/;
974. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX=.XXXXXXX
975. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXX.XXX..
976. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXX=X
977. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX..XXXXXXXXXXXX
978. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXX=X
979. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ....[XXXXXXXXX].
980. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX .XXXXXXXXXXXXX=X
981. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX-XX-XXXXX:XX:
982. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX.XXXX..XXXXXXX
983. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXX=XXX
984. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X-XX-XXXXX:XX:XX
985. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX .XXXX..XXXXXXXXX
986. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX=XXXX-XX-XX
987. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX:XX:XX.XXXX..
988. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
989. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X=XXXX-XX-XXXXX:
990. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX:XX.XXXXXXX..X
991. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
992. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X=XXXX-XX-XXXXX:
993. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX:XX.XXXXXXX..X
994. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX=XX..XXXXX
995. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX=XXX..XXXXXXX=
996. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X..XXXXXXX=XXXXX
997. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ..XXXXXXXXX=XXXX
998. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX..XXXXXXXX=XXX
999. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X..XXXXXXXXXXXXX
1000. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX =XXX..XXXXXXXX=X
1001. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXX..XXXX
1002. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX=X..XXXXXX
1003. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX=XXXXX..XXXXXX
1004. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX=XXXXXXXXXXX..
1005. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXX=X..XX
1006. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX=XXXXX..XX
1007. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX=XXXXXXXXX
1008. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX..XXXXXXXXXX=X
1009. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ............[XXX
1010. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX]....[XXXXX
1011. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX]..XXXXXX=XXXX
1012. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
1013. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXX..XX
1014. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX=XXXXXXXXXX
1015. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
1016. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX..XXXXXXXX
1017. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX =XXXXXXXXXXXXXXX
1018. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXX..XXX
1019. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX=X..XXXXXX=XXX
1020. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
1021. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXX..X
1022. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX=XXXXXXXXX.
1023. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
1024. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX.XXXXXXXXXX.X
1025. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXX.XXXXXX
1026. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX.X..XXXXXX=X
1027. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXX.XX.XX.X
1028. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXX..XXXXX
1029. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X=XXXXXXXXX.XXXX
1030. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX.X.X.XXXXX
1031. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X=(XXXXXX)|XXXXX
1032. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X=(XXXXXX)|XXXXX
1033. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X=(XXXX)..XXXXXX
1034. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX =XXXXXXXXX.XXXXX
1035. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X/XXXXXXXXXXXXXX
1036. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
1037. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX..XXXXXX=XXXXX
1038. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
1039. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXX..XXX
1040. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX=XXXXXXXXXXXX
1041. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
1042. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX..XXXXXX=XXX
1043. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX..XXXX=XXX
1044. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X..XXXX=[[X]]..X
1045. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXX=XX
1046. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ......[XXXX]..<X
1047. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX>..<XXXXXX
1048. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX XXXXX="X"
1049. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX="XXX" XXXXX
1050. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX="XXXXX" XXXXX
1051. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X="XXXXXXXXXXXXX
1052. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
1053. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX" XXXX="X" XX
1054. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ="XXXXXX" XXXXXX
1055. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX="XXXX" XXX
1056. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX="XXXXX" XXX
1057. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX="X" XXXXXXX
1058. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX="XXXXX" XX
1059. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXX="XXX
1060. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXX" />..
1061. XXXX XX XX XX XX </XX
1062. Data: 485454505f5345545f434f4f4b49453d544c544849443d30...
1063. [Length: 1460]
1064.  
1065. No. Time Source Destination Protocol Length Info
1066. 137740 1170.851997 10.10.37.184 10.10.35.125 TCP 54 jprinter > 53499 [RST] Seq=1 Win=0 Len=0
1067.  
1068. Frame 137740: 54 bytes on wire (432 bits), 54 bytes captured (432 bits)
1069. Arrival Time: Jul 9, 2012 13:46:56.412167000 Pacific Daylight Time
1070. Epoch Time: 1341866816.412167000 seconds
1071. [Time delta from previous captured frame: 0.000011000 seconds]
1072. [Time delta from previous displayed frame: 0.000011000 seconds]
1073. [Time since reference or first frame: 1170.851997000 seconds]
1074. Frame Number: 137740
1075. Frame Length: 54 bytes (432 bits)
1076. Capture Length: 54 bytes (432 bits)
1077. [Frame is marked: True]
1078. [Frame is ignored: False]
1079. [Protocols in frame: eth:ip:tcp]
1080. [Coloring Rule Name: TCP RST]
1081. [Coloring Rule String: tcp.flags.reset eq 1]
1082. Ethernet II, Src: Dell_a5:20:2d (bc:30:5b:a5:20:2d), Dst: Dell_38:33:18 (00:1e:4f:38:33:18)
1083. Destination: Dell_38:33:18 (00:1e:4f:38:33:18)
1084. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
1085. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
1086. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
1087. Source: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
1088. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
1089. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
1090. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
1091. Type: IP (0x0800)
1092. Internet Protocol Version 4, Src: 10.10.37.184 (10.10.37.184), Dst: 10.10.35.125 (10.10.35.125)
1093. Version: 4
1094. Header length: 20 bytes
1095. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
1096. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
1097. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
1098. Total Length: 40
1099. Identification: 0x570c (22284)
1100. Flags: 0x02 (Don't Fragment)
1101. 0... .... = Reserved bit: Not set
1102. .1.. .... = Don't fragment: Set
1103. ..0. .... = More fragments: Not set
1104. Fragment offset: 0
1105. Time to live: 128
1106. Protocol: TCP (6)
1107. Header checksum: 0x467b [correct]
1108. [Good: True]
1109. [Bad: False]
1110. Source: 10.10.37.184 (10.10.37.184)
1111. Destination: 10.10.35.125 (10.10.35.125)
1112. Transmission Control Protocol, Src Port: jprinter (5309), Dst Port: 53499 (53499), Seq: 1, Len: 0
1113. Source port: jprinter (5309)
1114. Destination port: 53499 (53499)
1115. [Stream index: 6359]
1116. Sequence number: 1 (relative sequence number)
1117. Acknowledgement number: Broken TCP. The acknowledge field is nonzero while the ACK flag is not set
1118. Header length: 20 bytes
1119. Flags: 0x04 (RST)
1120. 000. .... .... = Reserved: Not set
1121. ...0 .... .... = Nonce: Not set
1122. .... 0... .... = Congestion Window Reduced (CWR): Not set
1123. .... .0.. .... = ECN-Echo: Not set
1124. .... ..0. .... = Urgent: Not set
1125. .... ...0 .... = Acknowledgement: Not set
1126. .... .... 0... = Push: Not set
1127. .... .... .1.. = Reset: Set
1128. [Expert Info (Chat/Sequence): Connection reset (RST)]
1129. [Message: Connection reset (RST)]
1130. [Severity level: Chat]
1131. [Group: Sequence]
1132. .... .... ..0. = Syn: Not set
1133. .... .... ...0 = Fin: Not set
1134. Window size value: 0
1135. [Calculated window size: 0]
1136. [Window size scaling factor: -2 (no window scaling used)]
1137. Checksum: 0x03d4 [validation disabled]
1138. [Good Checksum: False]
1139. [Bad Checksum: False]
1140.  
1141. No. Time Source Destination Protocol Length Info
1142. 137741 1170.852095 10.10.35.125 10.10.37.184 TCP 1514 53499 > jprinter [ACK] Seq=4437 Ack=1 Win=64240 Len=1460
1143.  
1144. Frame 137741: 1514 bytes on wire (12112 bits), 1514 bytes captured (12112 bits)
1145. Arrival Time: Jul 9, 2012 13:46:56.412265000 Pacific Daylight Time
1146. Epoch Time: 1341866816.412265000 seconds
1147. [Time delta from previous captured frame: 0.000098000 seconds]
1148. [Time delta from previous displayed frame: 0.000098000 seconds]
1149. [Time since reference or first frame: 1170.852095000 seconds]
1150. Frame Number: 137741
1151. Frame Length: 1514 bytes (12112 bits)
1152. Capture Length: 1514 bytes (12112 bits)
1153. [Frame is marked: True]
1154. [Frame is ignored: False]
1155. [Protocols in frame: eth:ip:tcp:data]
1156. [Coloring Rule Name: TCP]
1157. [Coloring Rule String: tcp]
1158. Ethernet II, Src: Dell_38:33:18 (00:1e:4f:38:33:18), Dst: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
1159. Destination: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
1160. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
1161. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
1162. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
1163. Source: Dell_38:33:18 (00:1e:4f:38:33:18)
1164. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
1165. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
1166. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
1167. Type: IP (0x0800)
1168. Internet Protocol Version 4, Src: 10.10.35.125 (10.10.35.125), Dst: 10.10.37.184 (10.10.37.184)
1169. Version: 4
1170. Header length: 20 bytes
1171. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
1172. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
1173. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
1174. Total Length: 1500
1175. Identification: 0x61fb (25083)
1176. Flags: 0x02 (Don't Fragment)
1177. 0... .... = Reserved bit: Not set
1178. .1.. .... = Don't fragment: Set
1179. ..0. .... = More fragments: Not set
1180. Fragment offset: 0
1181. Time to live: 128
1182. Protocol: TCP (6)
1183. Header checksum: 0x35d8 [correct]
1184. [Good: True]
1185. [Bad: False]
1186. Source: 10.10.35.125 (10.10.35.125)
1187. Destination: 10.10.37.184 (10.10.37.184)
1188. Transmission Control Protocol, Src Port: 53499 (53499), Dst Port: jprinter (5309), Seq: 4437, Ack: 1, Len: 1460
1189. Source port: 53499 (53499)
1190. Destination port: jprinter (5309)
1191. [Stream index: 6359]
1192. Sequence number: 4437 (relative sequence number)
1193. [Next sequence number: 5897 (relative sequence number)]
1194. Acknowledgement number: 1 (relative ack number)
1195. Header length: 20 bytes
1196. Flags: 0x10 (ACK)
1197. 000. .... .... = Reserved: Not set
1198. ...0 .... .... = Nonce: Not set
1199. .... 0... .... = Congestion Window Reduced (CWR): Not set
1200. .... .0.. .... = ECN-Echo: Not set
1201. .... ..0. .... = Urgent: Not set
1202. .... ...1 .... = Acknowledgement: Set
1203. .... .... 0... = Push: Not set
1204. .... .... .0.. = Reset: Not set
1205. .... .... ..0. = Syn: Not set
1206. .... .... ...0 = Fin: Not set
1207. Window size value: 64240
1208. [Calculated window size: 64240]
1209. [Window size scaling factor: -2 (no window scaling used)]
1210. Checksum: 0x8bf6 [validation disabled]
1211. [Good Checksum: False]
1212. [Bad Checksum: False]
1213. [SEQ/ACK analysis]
1214. [Bytes in flight: 2920]
1215. Data (1460 bytes)
1216.  
1217. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX>..
1218. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1219. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1220. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1221. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1222. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1223. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1224. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1225. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1226. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1227. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1228. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1229. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1230. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1231. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1232. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1233. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1234. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1235. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1236. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1237. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1238. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1239. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1240. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1241. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1242. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1243. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1244. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ..
1245. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1246. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1247. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1248. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1249. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1250. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1251. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1252. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1253. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1254. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1255. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1256. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1257. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1258. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1259. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1260. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1261. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1262. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1263. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1264. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1265. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1266. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1267. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1268. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1269. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1270. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1271. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1272. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1273. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1274. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1275. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1276. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1277. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1278. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1279. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1280. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1281. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1282. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1283. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1284. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1285. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1286. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1287. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1288. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1289. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX
1290. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ..
1291. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX ....XXXX/X.X XXX
1292. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX..XXXX: XXX,
1293. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX XXXX XX:X
1294. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X:XX XXX..XXXXXX
1295. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX : XXXXXX/X.X.X (
1296. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXX)..XXX-XXX
1297. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX: XXXXXX=XXXX
1298. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXXX
1299. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXX; XX
1300. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX=/; XXXXXX=.XX
1301. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXXXXXXXXXXXX.
1302. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXX..X-XXXXXXX-X
1303. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X: XXX/X.X.X..XX
1304. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXXX-XXXXXX: XX
1305. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX X..XXXXXXXXXX: X
1306. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XXXX..XXXXXXX-XX
1307. XXXX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX XX: XXXX/XXXX; X
1308. XXXX XX XX XX XX XXXX
1309. Data: 71756573743e0d0a20202020202020202020202020202020...
1310. [Length: 1460]
1311.  
1312. No. Time Source Destination Protocol Length Info
1313. 137742 1170.852098 10.10.35.125 10.10.37.184 TCP 60 53499 > jprinter [ACK] Seq=5897 Ack=2 Win=64240 Len=0
1314.  
1315. Frame 137742: 60 bytes on wire (480 bits), 60 bytes captured (480 bits)
1316. Arrival Time: Jul 9, 2012 13:46:56.412268000 Pacific Daylight Time
1317. Epoch Time: 1341866816.412268000 seconds
1318. [Time delta from previous captured frame: 0.000003000 seconds]
1319. [Time delta from previous displayed frame: 0.000003000 seconds]
1320. [Time since reference or first frame: 1170.852098000 seconds]
1321. Frame Number: 137742
1322. Frame Length: 60 bytes (480 bits)
1323. Capture Length: 60 bytes (480 bits)
1324. [Frame is marked: True]
1325. [Frame is ignored: False]
1326. [Protocols in frame: eth:ip:tcp]
1327. [Coloring Rule Name: TCP]
1328. [Coloring Rule String: tcp]
1329. Ethernet II, Src: Dell_38:33:18 (00:1e:4f:38:33:18), Dst: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
1330. Destination: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
1331. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
1332. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
1333. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
1334. Source: Dell_38:33:18 (00:1e:4f:38:33:18)
1335. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
1336. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
1337. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
1338. Type: IP (0x0800)
1339. Trailer: 000000000000
1340. Internet Protocol Version 4, Src: 10.10.35.125 (10.10.35.125), Dst: 10.10.37.184 (10.10.37.184)
1341. Version: 4
1342. Header length: 20 bytes
1343. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
1344. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
1345. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
1346. Total Length: 40
1347. Identification: 0x61fd (25085)
1348. Flags: 0x02 (Don't Fragment)
1349. 0... .... = Reserved bit: Not set
1350. .1.. .... = Don't fragment: Set
1351. ..0. .... = More fragments: Not set
1352. Fragment offset: 0
1353. Time to live: 128
1354. Protocol: TCP (6)
1355. Header checksum: 0x3b8a [correct]
1356. [Good: True]
1357. [Bad: False]
1358. Source: 10.10.35.125 (10.10.35.125)
1359. Destination: 10.10.37.184 (10.10.37.184)
1360. Transmission Control Protocol, Src Port: 53499 (53499), Dst Port: jprinter (5309), Seq: 5897, Ack: 2, Len: 0
1361. Source port: 53499 (53499)
1362. Destination port: jprinter (5309)
1363. [Stream index: 6359]
1364. Sequence number: 5897 (relative sequence number)
1365. Acknowledgement number: 2 (relative ack number)
1366. Header length: 20 bytes
1367. Flags: 0x10 (ACK)
1368. 000. .... .... = Reserved: Not set
1369. ...0 .... .... = Nonce: Not set
1370. .... 0... .... = Congestion Window Reduced (CWR): Not set
1371. .... .0.. .... = ECN-Echo: Not set
1372. .... ..0. .... = Urgent: Not set
1373. .... ...1 .... = Acknowledgement: Set
1374. .... .... 0... = Push: Not set
1375. .... .... .0.. = Reset: Not set
1376. .... .... ..0. = Syn: Not set
1377. .... .... ...0 = Fin: Not set
1378. Window size value: 64240
1379. [Calculated window size: 64240]
1380. [Window size scaling factor: -2 (no window scaling used)]
1381. Checksum: 0xe11f [validation disabled]
1382. [Good Checksum: False]
1383. [Bad Checksum: False]
1384. [SEQ/ACK analysis]
1385. [This is an ACK to the segment in frame: 137736]
1386. [The RTT to ACK the segment was: 0.000459000 seconds]
1387.  
1388. No. Time Source Destination Protocol Length Info
1389. 137743 1170.852113 10.10.37.184 10.10.35.125 TCP 54 jprinter > 53499 [RST] Seq=1 Win=0 Len=0
1390.  
1391. Frame 137743: 54 bytes on wire (432 bits), 54 bytes captured (432 bits)
1392. Arrival Time: Jul 9, 2012 13:46:56.412283000 Pacific Daylight Time
1393. Epoch Time: 1341866816.412283000 seconds
1394. [Time delta from previous captured frame: 0.000015000 seconds]
1395. [Time delta from previous displayed frame: 0.000015000 seconds]
1396. [Time since reference or first frame: 1170.852113000 seconds]
1397. Frame Number: 137743
1398. Frame Length: 54 bytes (432 bits)
1399. Capture Length: 54 bytes (432 bits)
1400. [Frame is marked: True]
1401. [Frame is ignored: False]
1402. [Protocols in frame: eth:ip:tcp]
1403. [Coloring Rule Name: TCP RST]
1404. [Coloring Rule String: tcp.flags.reset eq 1]
1405. Ethernet II, Src: Dell_a5:20:2d (bc:30:5b:a5:20:2d), Dst: Dell_38:33:18 (00:1e:4f:38:33:18)
1406. Destination: Dell_38:33:18 (00:1e:4f:38:33:18)
1407. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
1408. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
1409. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
1410. Source: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
1411. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
1412. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
1413. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
1414. Type: IP (0x0800)
1415. Internet Protocol Version 4, Src: 10.10.37.184 (10.10.37.184), Dst: 10.10.35.125 (10.10.35.125)
1416. Version: 4
1417. Header length: 20 bytes
1418. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
1419. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
1420. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
1421. Total Length: 40
1422. Identification: 0x570d (22285)
1423. Flags: 0x02 (Don't Fragment)
1424. 0... .... = Reserved bit: Not set
1425. .1.. .... = Don't fragment: Set
1426. ..0. .... = More fragments: Not set
1427. Fragment offset: 0
1428. Time to live: 128
1429. Protocol: TCP (6)
1430. Header checksum: 0x467a [correct]
1431. [Good: True]
1432. [Bad: False]
1433. Source: 10.10.37.184 (10.10.37.184)
1434. Destination: 10.10.35.125 (10.10.35.125)
1435. Transmission Control Protocol, Src Port: jprinter (5309), Dst Port: 53499 (53499), Seq: 1, Len: 0
1436. Source port: jprinter (5309)
1437. Destination port: 53499 (53499)
1438. [Stream index: 6359]
1439. Sequence number: 1 (relative sequence number)
1440. Acknowledgement number: Broken TCP. The acknowledge field is nonzero while the ACK flag is not set
1441. Header length: 20 bytes
1442. Flags: 0x04 (RST)
1443. 000. .... .... = Reserved: Not set
1444. ...0 .... .... = Nonce: Not set
1445. .... 0... .... = Congestion Window Reduced (CWR): Not set
1446. .... .0.. .... = ECN-Echo: Not set
1447. .... ..0. .... = Urgent: Not set
1448. .... ...0 .... = Acknowledgement: Not set
1449. .... .... 0... = Push: Not set
1450. .... .... .1.. = Reset: Set
1451. [Expert Info (Chat/Sequence): Connection reset (RST)]
1452. [Message: Connection reset (RST)]
1453. [Severity level: Chat]
1454. [Group: Sequence]
1455. .... .... ..0. = Syn: Not set
1456. .... .... ...0 = Fin: Not set
1457. Window size value: 0
1458. [Calculated window size: 0]
1459. [Window size scaling factor: -2 (no window scaling used)]
1460. Checksum: 0x03d4 [validation disabled]
1461. [Good Checksum: False]
1462. [Bad Checksum: False]
1463.  
1464. No. Time Source Destination Protocol Length Info
1465. 137744 1170.852129 10.10.37.184 10.10.35.125 TCP 54 jprinter > 53499 [RST] Seq=2 Win=0 Len=0
1466.  
1467. Frame 137744: 54 bytes on wire (432 bits), 54 bytes captured (432 bits)
1468. Arrival Time: Jul 9, 2012 13:46:56.412299000 Pacific Daylight Time
1469. Epoch Time: 1341866816.412299000 seconds
1470. [Time delta from previous captured frame: 0.000016000 seconds]
1471. [Time delta from previous displayed frame: 0.000016000 seconds]
1472. [Time since reference or first frame: 1170.852129000 seconds]
1473. Frame Number: 137744
1474. Frame Length: 54 bytes (432 bits)
1475. Capture Length: 54 bytes (432 bits)
1476. [Frame is marked: True]
1477. [Frame is ignored: False]
1478. [Protocols in frame: eth:ip:tcp]
1479. [Coloring Rule Name: TCP RST]
1480. [Coloring Rule String: tcp.flags.reset eq 1]
1481. Ethernet II, Src: Dell_a5:20:2d (bc:30:5b:a5:20:2d), Dst: Dell_38:33:18 (00:1e:4f:38:33:18)
1482. Destination: Dell_38:33:18 (00:1e:4f:38:33:18)
1483. Address: Dell_38:33:18 (00:1e:4f:38:33:18)
1484. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
1485. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
1486. Source: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
1487. Address: Dell_a5:20:2d (bc:30:5b:a5:20:2d)
1488. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
1489. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
1490. Type: IP (0x0800)
1491. Internet Protocol Version 4, Src: 10.10.37.184 (10.10.37.184), Dst: 10.10.35.125 (10.10.35.125)
1492. Version: 4
1493. Header length: 20 bytes
1494. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
1495. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
1496. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
1497. Total Length: 40
1498. Identification: 0x570e (22286)
1499. Flags: 0x02 (Don't Fragment)
1500. 0... .... = Reserved bit: Not set
1501. .1.. .... = Don't fragment: Set
1502. ..0. .... = More fragments: Not set
1503. Fragment offset: 0
1504. Time to live: 128
1505. Protocol: TCP (6)
1506. Header checksum: 0x4679 [correct]
1507. [Good: True]
1508. [Bad: False]
1509. Source: 10.10.37.184 (10.10.37.184)
1510. Destination: 10.10.35.125 (10.10.35.125)
1511. Transmission Control Protocol, Src Port: jprinter (5309), Dst Port: 53499 (53499), Seq: 2, Len: 0
1512. Source port: jprinter (5309)
1513. Destination port: 53499 (53499)
1514. [Stream index: 6359]
1515. Sequence number: 2 (relative sequence number)
1516. Acknowledgement number: Broken TCP. The acknowledge field is nonzero while the ACK flag is not set
1517. Header length: 20 bytes
1518. Flags: 0x04 (RST)
1519. 000. .... .... = Reserved: Not set
1520. ...0 .... .... = Nonce: Not set
1521. .... 0... .... = Congestion Window Reduced (CWR): Not set
1522. .... .0.. .... = ECN-Echo: Not set
1523. .... ..0. .... = Urgent: Not set
1524. .... ...0 .... = Acknowledgement: Not set
1525. .... .... 0... = Push: Not set
1526. .... .... .1.. = Reset: Set
1527. [Expert Info (Chat/Sequence): Connection reset (RST)]
1528. [Message: Connection reset (RST)]
1529. [Severity level: Chat]
1530. [Group: Sequence]
1531. .... .... ..0. = Syn: Not set
1532. .... .... ...0 = Fin: Not set
1533. Window size value: 0
1534. [Calculated window size: 0]
1535. [Window size scaling factor: -2 (no window scaling used)]
1536. Checksum: 0x03d2 [validation disabled]
1537. [Good Checksum: False]
1538. [Bad Checksum: False]