API tools faq
paste
Advertisement
Guest User

windows

a guest
Jul 26th, 2012
540
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 38.69 KB | None | 0 0
raw download clone embed print report
  1. Frame 11: 66 bytes on wire (528 bits), 66 bytes captured (528 bits)
  2. Arrival Time: Jul 27, 2012 02:14:26.505949000 Iran Daylight Time
  3. Epoch Time: 1343339066.505949000 seconds
  4. [Time delta from previous captured frame: 0.007324000 seconds]
  5. [Time delta from previous displayed frame: 0.000000000 seconds]
  6. [Time since reference or first frame: 1.065033000 seconds]
  7. Frame Number: 11
  8. Frame Length: 66 bytes (528 bits)
  9. Capture Length: 66 bytes (528 bits)
  10. [Frame is marked: False]
  11. [Frame is ignored: False]
  12. [Protocols in frame: eth:ip:tcp]
  13. [Coloring Rule Name: HTTP]
  14. [Coloring Rule String: http || tcp.port == 80]
  15. Ethernet II, Src: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR), Dst: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  16. Destination: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  17. Address: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  18. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  19. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  20. Source: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  21. Address: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  22. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  23. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  24. Type: IP (0x0800)
  25. Internet Protocol, Src: SR.C.IP.ADDR (SR.C.IP.ADDR), Dst: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  26. Version: 4
  27. Header length: 20 bytes
  28. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  29. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
  30. .... ..0. = ECN-Capable Transport (ECT): 0
  31. .... ...0 = ECN-CE: 0
  32. Total Length: 52
  33. Identification: 0x497e (18814)
  34. Flags: 0x02 (Don't Fragment)
  35. 0... .... = Reserved bit: Not set
  36. .1.. .... = Don't fragment: Set
  37. ..0. .... = More fragments: Not set
  38. Fragment offset: 0
  39. Time to live: 128
  40. Protocol: TCP (6)
  41. Header checksum: 0xe764 [correct]
  42. [Good: True]
  43. [Bad: False]
  44. Source: SR.C.IP.ADDR (SR.C.IP.ADDR)
  45. Destination: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  46. Transmission Control Protocol, Src Port: 46790 (46790), Dst Port: http (80), Seq: 0, Len: 0
  47. Source port: 46790 (46790)
  48. Destination port: http (80)
  49. [Stream index: 4]
  50. Sequence number: 0 (relative sequence number)
  51. Header length: 32 bytes
  52. Flags: 0x02 (SYN)
  53. 000. .... .... = Reserved: Not set
  54. ...0 .... .... = Nonce: Not set
  55. .... 0... .... = Congestion Window Reduced (CWR): Not set
  56. .... .0.. .... = ECN-Echo: Not set
  57. .... ..0. .... = Urgent: Not set
  58. .... ...0 .... = Acknowledgement: Not set
  59. .... .... 0... = Push: Not set
  60. .... .... .0.. = Reset: Not set
  61. .... .... ..1. = Syn: Set
  62. [Expert Info (Chat/Sequence): Connection establish request (SYN): server port http]
  63. [Message: Connection establish request (SYN): server port http]
  64. [Severity level: Chat]
  65. [Group: Sequence]
  66. .... .... ...0 = Fin: Not set
  67. Window size: 8192
  68. Checksum: 0x529d [validation disabled]
  69. [Good Checksum: False]
  70. [Bad Checksum: False]
  71. Options: (12 bytes)
  72. Maximum segment size: 1460 bytes
  73. NOP
  74. Window scale: 2 (multiply by 4)
  75. NOP
  76. NOP
  77. TCP SACK Permitted Option: True
  78.  
  79. Frame 13: 66 bytes on wire (528 bits), 66 bytes captured (528 bits)
  80. Arrival Time: Jul 27, 2012 02:14:26.638114000 Iran Daylight Time
  81. Epoch Time: 1343339066.638114000 seconds
  82. [Time delta from previous captured frame: 0.003135000 seconds]
  83. [Time delta from previous displayed frame: 0.132165000 seconds]
  84. [Time since reference or first frame: 1.197198000 seconds]
  85. Frame Number: 13
  86. Frame Length: 66 bytes (528 bits)
  87. Capture Length: 66 bytes (528 bits)
  88. [Frame is marked: False]
  89. [Frame is ignored: False]
  90. [Protocols in frame: eth:ip:tcp]
  91. [Coloring Rule Name: HTTP]
  92. [Coloring Rule String: http || tcp.port == 80]
  93. Ethernet II, Src: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR), Dst: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  94. Destination: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  95. Address: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  96. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  97. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  98. Source: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  99. Address: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  100. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  101. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  102. Type: IP (0x0800)
  103. Internet Protocol, Src: DE.ST.IP.ADDR (DE.ST.IP.ADDR), Dst: SR.C.IP.ADDR (SR.C.IP.ADDR)
  104. Version: 4
  105. Header length: 20 bytes
  106. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  107. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
  108. .... ..0. = ECN-Capable Transport (ECT): 0
  109. .... ...0 = ECN-CE: 0
  110. Total Length: 52
  111. Identification: 0x4528 (17704)
  112. Flags: 0x00
  113. 0... .... = Reserved bit: Not set
  114. .0.. .... = Don't fragment: Not set
  115. ..0. .... = More fragments: Not set
  116. Fragment offset: 0
  117. Time to live: 119
  118. Protocol: TCP (6)
  119. Header checksum: 0x34bb [correct]
  120. [Good: True]
  121. [Bad: False]
  122. Source: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  123. Destination: SR.C.IP.ADDR (SR.C.IP.ADDR)
  124. Transmission Control Protocol, Src Port: http (80), Dst Port: 46790 (46790), Seq: 0, Ack: 1, Len: 0
  125. Source port: http (80)
  126. Destination port: 46790 (46790)
  127. [Stream index: 4]
  128. Sequence number: 0 (relative sequence number)
  129. Acknowledgement number: 1 (relative ack number)
  130. Header length: 32 bytes
  131. Flags: 0x12 (SYN, ACK)
  132. 000. .... .... = Reserved: Not set
  133. ...0 .... .... = Nonce: Not set
  134. .... 0... .... = Congestion Window Reduced (CWR): Not set
  135. .... .0.. .... = ECN-Echo: Not set
  136. .... ..0. .... = Urgent: Not set
  137. .... ...1 .... = Acknowledgement: Set
  138. .... .... 0... = Push: Not set
  139. .... .... .0.. = Reset: Not set
  140. .... .... ..1. = Syn: Set
  141. [Expert Info (Chat/Sequence): Connection establish acknowledge (SYN+ACK): server port http]
  142. [Message: Connection establish acknowledge (SYN+ACK): server port http]
  143. [Severity level: Chat]
  144. [Group: Sequence]
  145. .... .... ...0 = Fin: Not set
  146. Window size: 16384
  147. Checksum: 0x9808 [validation disabled]
  148. [Good Checksum: False]
  149. [Bad Checksum: False]
  150. Options: (12 bytes)
  151. Maximum segment size: 1400 bytes
  152. NOP
  153. Window scale: 0 (multiply by 1)
  154. NOP
  155. NOP
  156. TCP SACK Permitted Option: True
  157. [SEQ/ACK analysis]
  158. [This is an ACK to the segment in frame: 11]
  159. [The RTT to ACK the segment was: 0.132165000 seconds]
  160.  
  161. Frame 14: 54 bytes on wire (432 bits), 54 bytes captured (432 bits)
  162. Arrival Time: Jul 27, 2012 02:14:26.638177000 Iran Daylight Time
  163. Epoch Time: 1343339066.638177000 seconds
  164. [Time delta from previous captured frame: 0.000063000 seconds]
  165. [Time delta from previous displayed frame: 0.000063000 seconds]
  166. [Time since reference or first frame: 1.197261000 seconds]
  167. Frame Number: 14
  168. Frame Length: 54 bytes (432 bits)
  169. Capture Length: 54 bytes (432 bits)
  170. [Frame is marked: False]
  171. [Frame is ignored: False]
  172. [Protocols in frame: eth:ip:tcp]
  173. [Coloring Rule Name: HTTP]
  174. [Coloring Rule String: http || tcp.port == 80]
  175. Ethernet II, Src: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR), Dst: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  176. Destination: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  177. Address: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  178. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  179. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  180. Source: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  181. Address: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  182. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  183. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  184. Type: IP (0x0800)
  185. Internet Protocol, Src: SR.C.IP.ADDR (SR.C.IP.ADDR), Dst: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  186. Version: 4
  187. Header length: 20 bytes
  188. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  189. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
  190. .... ..0. = ECN-Capable Transport (ECT): 0
  191. .... ...0 = ECN-CE: 0
  192. Total Length: 40
  193. Identification: 0x497f (18815)
  194. Flags: 0x02 (Don't Fragment)
  195. 0... .... = Reserved bit: Not set
  196. .1.. .... = Don't fragment: Set
  197. ..0. .... = More fragments: Not set
  198. Fragment offset: 0
  199. Time to live: 128
  200. Protocol: TCP (6)
  201. Header checksum: 0xe76f [correct]
  202. [Good: True]
  203. [Bad: False]
  204. Source: SR.C.IP.ADDR (SR.C.IP.ADDR)
  205. Destination: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  206. Transmission Control Protocol, Src Port: 46790 (46790), Dst Port: http (80), Seq: 1, Ack: 1, Len: 0
  207. Source port: 46790 (46790)
  208. Destination port: http (80)
  209. [Stream index: 4]
  210. Sequence number: 1 (relative sequence number)
  211. Acknowledgement number: 1 (relative ack number)
  212. Header length: 20 bytes
  213. Flags: 0x10 (ACK)
  214. 000. .... .... = Reserved: Not set
  215. ...0 .... .... = Nonce: Not set
  216. .... 0... .... = Congestion Window Reduced (CWR): Not set
  217. .... .0.. .... = ECN-Echo: Not set
  218. .... ..0. .... = Urgent: Not set
  219. .... ...1 .... = Acknowledgement: Set
  220. .... .... 0... = Push: Not set
  221. .... .... .0.. = Reset: Not set
  222. .... .... ..0. = Syn: Not set
  223. .... .... ...0 = Fin: Not set
  224. Window size: 16800 (scaled)
  225. Checksum: 0x0830 [validation disabled]
  226. [Good Checksum: False]
  227. [Bad Checksum: False]
  228. [SEQ/ACK analysis]
  229. [This is an ACK to the segment in frame: 13]
  230. [The RTT to ACK the segment was: 0.000063000 seconds]
  231.  
  232. Frame 15: 160 bytes on wire (1280 bits), 160 bytes captured (1280 bits)
  233. Arrival Time: Jul 27, 2012 02:14:26.648034000 Iran Daylight Time
  234. Epoch Time: 1343339066.648034000 seconds
  235. [Time delta from previous captured frame: 0.009857000 seconds]
  236. [Time delta from previous displayed frame: 0.009857000 seconds]
  237. [Time since reference or first frame: 1.207118000 seconds]
  238. Frame Number: 15
  239. Frame Length: 160 bytes (1280 bits)
  240. Capture Length: 160 bytes (1280 bits)
  241. [Frame is marked: False]
  242. [Frame is ignored: False]
  243. [Protocols in frame: eth:ip:tcp:http]
  244. [Coloring Rule Name: HTTP]
  245. [Coloring Rule String: http || tcp.port == 80]
  246. Ethernet II, Src: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR), Dst: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  247. Destination: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  248. Address: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  249. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  250. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  251. Source: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  252. Address: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  253. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  254. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  255. Type: IP (0x0800)
  256. Internet Protocol, Src: SR.C.IP.ADDR (SR.C.IP.ADDR), Dst: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  257. Version: 4
  258. Header length: 20 bytes
  259. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  260. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
  261. .... ..0. = ECN-Capable Transport (ECT): 0
  262. .... ...0 = ECN-CE: 0
  263. Total Length: 146
  264. Identification: 0x4980 (18816)
  265. Flags: 0x02 (Don't Fragment)
  266. 0... .... = Reserved bit: Not set
  267. .1.. .... = Don't fragment: Set
  268. ..0. .... = More fragments: Not set
  269. Fragment offset: 0
  270. Time to live: 128
  271. Protocol: TCP (6)
  272. Header checksum: 0xe704 [correct]
  273. [Good: True]
  274. [Bad: False]
  275. Source: SR.C.IP.ADDR (SR.C.IP.ADDR)
  276. Destination: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  277. Transmission Control Protocol, Src Port: 46790 (46790), Dst Port: http (80), Seq: 1, Ack: 1, Len: 106
  278. Source port: 46790 (46790)
  279. Destination port: http (80)
  280. [Stream index: 4]
  281. Sequence number: 1 (relative sequence number)
  282. [Next sequence number: 107 (relative sequence number)]
  283. Acknowledgement number: 1 (relative ack number)
  284. Header length: 20 bytes
  285. Flags: 0x18 (PSH, ACK)
  286. 000. .... .... = Reserved: Not set
  287. ...0 .... .... = Nonce: Not set
  288. .... 0... .... = Congestion Window Reduced (CWR): Not set
  289. .... .0.. .... = ECN-Echo: Not set
  290. .... ..0. .... = Urgent: Not set
  291. .... ...1 .... = Acknowledgement: Set
  292. .... .... 1... = Push: Set
  293. .... .... .0.. = Reset: Not set
  294. .... .... ..0. = Syn: Not set
  295. .... .... ...0 = Fin: Not set
  296. Window size: 16800 (scaled)
  297. Checksum: 0x7549 [validation disabled]
  298. [Good Checksum: False]
  299. [Bad Checksum: False]
  300. [SEQ/ACK analysis]
  301. [Number of bytes in flight: 106]
  302. Hypertext Transfer Protocol
  303. GET / HTTP/1.1\r\n
  304. [Expert Info (Chat/Sequence): GET / HTTP/1.1\r\n]
  305. [Message: GET / HTTP/1.1\r\n]
  306. [Severity level: Chat]
  307. [Group: Sequence]
  308. Request Method: GET
  309. Request URI: /
  310. Request Version: HTTP/1.1
  311. User-Agent: curl/7.21.6 (i686-pc-mingw32) libcurl/7.21.6\r\n
  312. Host: dest.com\r\n
  313. Accept: */*\r\n
  314. \r\n
  315.  
  316. Frame 16: 160 bytes on wire (1280 bits), 160 bytes captured (1280 bits)
  317. Arrival Time: Jul 27, 2012 02:14:27.068014000 Iran Daylight Time
  318. Epoch Time: 1343339067.068014000 seconds
  319. [Time delta from previous captured frame: 0.419980000 seconds]
  320. [Time delta from previous displayed frame: 0.419980000 seconds]
  321. [Time since reference or first frame: 1.627098000 seconds]
  322. Frame Number: 16
  323. Frame Length: 160 bytes (1280 bits)
  324. Capture Length: 160 bytes (1280 bits)
  325. [Frame is marked: False]
  326. [Frame is ignored: False]
  327. [Protocols in frame: eth:ip:tcp:http]
  328. [Coloring Rule Name: Bad TCP]
  329. [Coloring Rule String: tcp.analysis.flags]
  330. Ethernet II, Src: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR), Dst: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  331. Destination: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  332. Address: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  333. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  334. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  335. Source: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  336. Address: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  337. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  338. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  339. Type: IP (0x0800)
  340. Internet Protocol, Src: SR.C.IP.ADDR (SR.C.IP.ADDR), Dst: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  341. Version: 4
  342. Header length: 20 bytes
  343. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  344. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
  345. .... ..0. = ECN-Capable Transport (ECT): 0
  346. .... ...0 = ECN-CE: 0
  347. Total Length: 146
  348. Identification: 0x4981 (18817)
  349. Flags: 0x02 (Don't Fragment)
  350. 0... .... = Reserved bit: Not set
  351. .1.. .... = Don't fragment: Set
  352. ..0. .... = More fragments: Not set
  353. Fragment offset: 0
  354. Time to live: 128
  355. Protocol: TCP (6)
  356. Header checksum: 0xe703 [correct]
  357. [Good: True]
  358. [Bad: False]
  359. Source: SR.C.IP.ADDR (SR.C.IP.ADDR)
  360. Destination: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  361. Transmission Control Protocol, Src Port: 46790 (46790), Dst Port: http (80), Seq: 1, Ack: 1, Len: 106
  362. Source port: 46790 (46790)
  363. Destination port: http (80)
  364. [Stream index: 4]
  365. Sequence number: 1 (relative sequence number)
  366. [Next sequence number: 107 (relative sequence number)]
  367. Acknowledgement number: 1 (relative ack number)
  368. Header length: 20 bytes
  369. Flags: 0x18 (PSH, ACK)
  370. 000. .... .... = Reserved: Not set
  371. ...0 .... .... = Nonce: Not set
  372. .... 0... .... = Congestion Window Reduced (CWR): Not set
  373. .... .0.. .... = ECN-Echo: Not set
  374. .... ..0. .... = Urgent: Not set
  375. .... ...1 .... = Acknowledgement: Set
  376. .... .... 1... = Push: Set
  377. .... .... .0.. = Reset: Not set
  378. .... .... ..0. = Syn: Not set
  379. .... .... ...0 = Fin: Not set
  380. Window size: 16800 (scaled)
  381. Checksum: 0x7549 [validation disabled]
  382. [Good Checksum: False]
  383. [Bad Checksum: False]
  384. [SEQ/ACK analysis]
  385. [Number of bytes in flight: 106]
  386. [TCP Analysis Flags]
  387. [This frame is a (suspected) retransmission]
  388. [Expert Info (Note/Sequence): Retransmission (suspected)]
  389. [Message: Retransmission (suspected)]
  390. [Severity level: Note]
  391. [Group: Sequence]
  392. [The RTO for this segment was: 0.419980000 seconds]
  393. [RTO based on delta from frame: 15]
  394. Hypertext Transfer Protocol
  395. GET / HTTP/1.1\r\n
  396. [Expert Info (Chat/Sequence): GET / HTTP/1.1\r\n]
  397. [Message: GET / HTTP/1.1\r\n]
  398. [Severity level: Chat]
  399. [Group: Sequence]
  400. Request Method: GET
  401. Request URI: /
  402. Request Version: HTTP/1.1
  403. User-Agent: curl/7.21.6 (i686-pc-mingw32) libcurl/7.21.6\r\n
  404. Host: dest.com\r\n
  405. Accept: */*\r\n
  406. \r\n
  407.  
  408. Frame 17: 830 bytes on wire (6640 bits), 830 bytes captured (6640 bits)
  409. Arrival Time: Jul 27, 2012 02:14:27.074026000 Iran Daylight Time
  410. Epoch Time: 1343339067.074026000 seconds
  411. [Time delta from previous captured frame: 0.006012000 seconds]
  412. [Time delta from previous displayed frame: 0.006012000 seconds]
  413. [Time since reference or first frame: 1.633110000 seconds]
  414. Frame Number: 17
  415. Frame Length: 830 bytes (6640 bits)
  416. Capture Length: 830 bytes (6640 bits)
  417. [Frame is marked: False]
  418. [Frame is ignored: False]
  419. [Protocols in frame: eth:ip:tcp:http:data-text-lines]
  420. [Coloring Rule Name: HTTP]
  421. [Coloring Rule String: http || tcp.port == 80]
  422. Ethernet II, Src: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR), Dst: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  423. Destination: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  424. Address: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  425. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  426. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  427. Source: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  428. Address: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  429. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  430. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  431. Type: IP (0x0800)
  432. Internet Protocol, Src: DE.ST.IP.ADDR (DE.ST.IP.ADDR), Dst: SR.C.IP.ADDR (SR.C.IP.ADDR)
  433. Version: 4
  434. Header length: 20 bytes
  435. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  436. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
  437. .... ..0. = ECN-Capable Transport (ECT): 0
  438. .... ...0 = ECN-CE: 0
  439. Total Length: 816
  440. Identification: 0x4a01 (18945)
  441. Flags: 0x02 (Don't Fragment)
  442. 0... .... = Reserved bit: Not set
  443. .1.. .... = Don't fragment: Set
  444. ..0. .... = More fragments: Not set
  445. Fragment offset: 0
  446. Time to live: 119
  447. Protocol: TCP (6)
  448. Header checksum: 0xece5 [correct]
  449. [Good: True]
  450. [Bad: False]
  451. Source: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  452. Destination: SR.C.IP.ADDR (SR.C.IP.ADDR)
  453. Transmission Control Protocol, Src Port: http (80), Dst Port: 46790 (46790), Seq: 1, Ack: 107, Len: 776
  454. Source port: http (80)
  455. Destination port: 46790 (46790)
  456. [Stream index: 4]
  457. Sequence number: 1 (relative sequence number)
  458. [Next sequence number: 777 (relative sequence number)]
  459. Acknowledgement number: 107 (relative ack number)
  460. Header length: 20 bytes
  461. Flags: 0x18 (PSH, ACK)
  462. 000. .... .... = Reserved: Not set
  463. ...0 .... .... = Nonce: Not set
  464. .... 0... .... = Congestion Window Reduced (CWR): Not set
  465. .... .0.. .... = ECN-Echo: Not set
  466. .... ..0. .... = Urgent: Not set
  467. .... ...1 .... = Acknowledgement: Set
  468. .... .... 1... = Push: Set
  469. .... .... .0.. = Reset: Not set
  470. .... .... ..0. = Syn: Not set
  471. .... .... ...0 = Fin: Not set
  472. Window size: 65429
  473. Checksum: 0x38d8 [validation disabled]
  474. [Good Checksum: False]
  475. [Bad Checksum: False]
  476. [SEQ/ACK analysis]
  477. [This is an ACK to the segment in frame: 15]
  478. [The RTT to ACK the segment was: 0.425992000 seconds]
  479. [Number of bytes in flight: 776]
  480. Hypertext Transfer Protocol
  481. HTTP/1.1 302 Found\r\n
  482. [Expert Info (Chat/Sequence): HTTP/1.1 302 Found\r\n]
  483. [Message: HTTP/1.1 302 Found\r\n]
  484. [Severity level: Chat]
  485. [Group: Sequence]
  486. Request Version: HTTP/1.1
  487. Response Code: 302
  488. Date: Thu, 26 Jul 2012 21:44:30 GMT\r\n
  489. Server: Microsoft-IIS/6.0\r\n
  490. X-Powered-By: ASP.NET\r\n
  491. X-AspNet-Version: 2.0.50727\r\n
  492. Location: http://dest.com/Default.aspx\r\n
  493. Set-Cookie: Esperantus_Language_ime=en-US; path=/\r\n
  494. Set-Cookie: Esperantus_Language_fa=en-US; path=/\r\n
  495. Set-Cookie: PortalAlias=fa; path=/\r\n
  496. Set-Cookie: refreshed=true; expires=Thu, 26-Jul-2012 21:45:30 GMT; path=/\r\n
  497. Set-Cookie: .ASPXAUTH=; expires=Mon, 11-Oct-1999 20:30:00 GMT; path=/; HttpOnly\r\n
  498. Set-Cookie: portalroles=; expires=Mon, 11-Oct-1999 20:30:00 GMT; path=/\r\n
  499. Cache-Control: private\r\n
  500. Content-Type: text/html; charset=utf-8\r\n
  501. Content-Length: 146\r\n
  502. [Content length: 146]
  503. \r\n
  504. Line-based text data: text/html
  505. <html><head><title>Object moved</title></head><body>\r\n
  506. <h2>Object moved to <a href="http://dest.com/Default.aspx">here</a>.</h2>\r\n
  507. </body></html>\r\n
  508.  
  509. Frame 18: 54 bytes on wire (432 bits), 54 bytes captured (432 bits)
  510. Arrival Time: Jul 27, 2012 02:14:27.074862000 Iran Daylight Time
  511. Epoch Time: 1343339067.074862000 seconds
  512. [Time delta from previous captured frame: 0.000836000 seconds]
  513. [Time delta from previous displayed frame: 0.000836000 seconds]
  514. [Time since reference or first frame: 1.633946000 seconds]
  515. Frame Number: 18
  516. Frame Length: 54 bytes (432 bits)
  517. Capture Length: 54 bytes (432 bits)
  518. [Frame is marked: False]
  519. [Frame is ignored: False]
  520. [Protocols in frame: eth:ip:tcp]
  521. [Coloring Rule Name: HTTP]
  522. [Coloring Rule String: http || tcp.port == 80]
  523. Ethernet II, Src: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR), Dst: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  524. Destination: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  525. Address: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  526. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  527. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  528. Source: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  529. Address: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  530. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  531. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  532. Type: IP (0x0800)
  533. Internet Protocol, Src: SR.C.IP.ADDR (SR.C.IP.ADDR), Dst: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  534. Version: 4
  535. Header length: 20 bytes
  536. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  537. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
  538. .... ..0. = ECN-Capable Transport (ECT): 0
  539. .... ...0 = ECN-CE: 0
  540. Total Length: 40
  541. Identification: 0x4982 (18818)
  542. Flags: 0x02 (Don't Fragment)
  543. 0... .... = Reserved bit: Not set
  544. .1.. .... = Don't fragment: Set
  545. ..0. .... = More fragments: Not set
  546. Fragment offset: 0
  547. Time to live: 128
  548. Protocol: TCP (6)
  549. Header checksum: 0xe76c [correct]
  550. [Good: True]
  551. [Bad: False]
  552. Source: SR.C.IP.ADDR (SR.C.IP.ADDR)
  553. Destination: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  554. Transmission Control Protocol, Src Port: 46790 (46790), Dst Port: http (80), Seq: 107, Ack: 777, Len: 0
  555. Source port: 46790 (46790)
  556. Destination port: http (80)
  557. [Stream index: 4]
  558. Sequence number: 107 (relative sequence number)
  559. Acknowledgement number: 777 (relative ack number)
  560. Header length: 20 bytes
  561. Flags: 0x11 (FIN, ACK)
  562. 000. .... .... = Reserved: Not set
  563. ...0 .... .... = Nonce: Not set
  564. .... 0... .... = Congestion Window Reduced (CWR): Not set
  565. .... .0.. .... = ECN-Echo: Not set
  566. .... ..0. .... = Urgent: Not set
  567. .... ...1 .... = Acknowledgement: Set
  568. .... .... 0... = Push: Not set
  569. .... .... .0.. = Reset: Not set
  570. .... .... ..0. = Syn: Not set
  571. .... .... ...1 = Fin: Set
  572. [Expert Info (Chat/Sequence): Connection finish (FIN)]
  573. [Message: Connection finish (FIN)]
  574. [Severity level: Chat]
  575. [Group: Sequence]
  576. Window size: 16024 (scaled)
  577. Checksum: 0x057f [validation disabled]
  578. [Good Checksum: False]
  579. [Bad Checksum: False]
  580. [SEQ/ACK analysis]
  581. [This is an ACK to the segment in frame: 17]
  582. [The RTT to ACK the segment was: 0.000836000 seconds]
  583.  
  584. Frame 20: 54 bytes on wire (432 bits), 54 bytes captured (432 bits)
  585. Arrival Time: Jul 27, 2012 02:14:27.246996000 Iran Daylight Time
  586. Epoch Time: 1343339067.246996000 seconds
  587. [Time delta from previous captured frame: 0.002914000 seconds]
  588. [Time delta from previous displayed frame: 0.172134000 seconds]
  589. [Time since reference or first frame: 1.806080000 seconds]
  590. Frame Number: 20
  591. Frame Length: 54 bytes (432 bits)
  592. Capture Length: 54 bytes (432 bits)
  593. [Frame is marked: False]
  594. [Frame is ignored: False]
  595. [Protocols in frame: eth:ip:tcp]
  596. [Coloring Rule Name: Bad TCP]
  597. [Coloring Rule String: tcp.analysis.flags]
  598. Ethernet II, Src: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR), Dst: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  599. Destination: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  600. Address: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  601. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  602. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  603. Source: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  604. Address: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  605. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  606. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  607. Type: IP (0x0800)
  608. Internet Protocol, Src: DE.ST.IP.ADDR (DE.ST.IP.ADDR), Dst: SR.C.IP.ADDR (SR.C.IP.ADDR)
  609. Version: 4
  610. Header length: 20 bytes
  611. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  612. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
  613. .... ..0. = ECN-Capable Transport (ECT): 0
  614. .... ...0 = ECN-CE: 0
  615. Total Length: 40
  616. Identification: 0x546b (21611)
  617. Flags: 0x02 (Don't Fragment)
  618. 0... .... = Reserved bit: Not set
  619. .1.. .... = Don't fragment: Set
  620. ..0. .... = More fragments: Not set
  621. Fragment offset: 0
  622. Time to live: 119
  623. Protocol: TCP (6)
  624. Header checksum: 0xe583 [correct]
  625. [Good: True]
  626. [Bad: False]
  627. Source: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  628. Destination: SR.C.IP.ADDR (SR.C.IP.ADDR)
  629. Transmission Control Protocol, Src Port: http (80), Dst Port: 46790 (46790), Seq: 777, Ack: 107, Len: 0
  630. Source port: http (80)
  631. Destination port: 46790 (46790)
  632. [Stream index: 4]
  633. Sequence number: 777 (relative sequence number)
  634. Acknowledgement number: 107 (relative ack number)
  635. Header length: 20 bytes
  636. Flags: 0x10 (ACK)
  637. 000. .... .... = Reserved: Not set
  638. ...0 .... .... = Nonce: Not set
  639. .... 0... .... = Congestion Window Reduced (CWR): Not set
  640. .... .0.. .... = ECN-Echo: Not set
  641. .... ..0. .... = Urgent: Not set
  642. .... ...1 .... = Acknowledgement: Set
  643. .... .... 0... = Push: Not set
  644. .... .... .0.. = Reset: Not set
  645. .... .... ..0. = Syn: Not set
  646. .... .... ...0 = Fin: Not set
  647. Window size: 65429
  648. Checksum: 0x1590 [validation disabled]
  649. [Good Checksum: False]
  650. [Bad Checksum: False]
  651. [SEQ/ACK analysis]
  652. [TCP Analysis Flags]
  653. [This is a TCP duplicate ack]
  654. [Duplicate ACK #: 1]
  655. [Duplicate to the ACK in frame: 17]
  656. [Expert Info (Note/Sequence): Duplicate ACK (#1)]
  657. [Message: Duplicate ACK (#1)]
  658. [Severity level: Note]
  659. [Group: Sequence]
  660.  
  661. Frame 21: 54 bytes on wire (432 bits), 54 bytes captured (432 bits)
  662. Arrival Time: Jul 27, 2012 02:14:27.247953000 Iran Daylight Time
  663. Epoch Time: 1343339067.247953000 seconds
  664. [Time delta from previous captured frame: 0.000957000 seconds]
  665. [Time delta from previous displayed frame: 0.000957000 seconds]
  666. [Time since reference or first frame: 1.807037000 seconds]
  667. Frame Number: 21
  668. Frame Length: 54 bytes (432 bits)
  669. Capture Length: 54 bytes (432 bits)
  670. [Frame is marked: False]
  671. [Frame is ignored: False]
  672. [Protocols in frame: eth:ip:tcp]
  673. [Coloring Rule Name: HTTP]
  674. [Coloring Rule String: http || tcp.port == 80]
  675. Ethernet II, Src: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR), Dst: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  676. Destination: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  677. Address: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  678. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  679. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  680. Source: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  681. Address: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  682. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  683. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  684. Type: IP (0x0800)
  685. Internet Protocol, Src: DE.ST.IP.ADDR (DE.ST.IP.ADDR), Dst: SR.C.IP.ADDR (SR.C.IP.ADDR)
  686. Version: 4
  687. Header length: 20 bytes
  688. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  689. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
  690. .... ..0. = ECN-Capable Transport (ECT): 0
  691. .... ...0 = ECN-CE: 0
  692. Total Length: 40
  693. Identification: 0x546c (21612)
  694. Flags: 0x02 (Don't Fragment)
  695. 0... .... = Reserved bit: Not set
  696. .1.. .... = Don't fragment: Set
  697. ..0. .... = More fragments: Not set
  698. Fragment offset: 0
  699. Time to live: 119
  700. Protocol: TCP (6)
  701. Header checksum: 0xe582 [correct]
  702. [Good: True]
  703. [Bad: False]
  704. Source: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  705. Destination: SR.C.IP.ADDR (SR.C.IP.ADDR)
  706. Transmission Control Protocol, Src Port: http (80), Dst Port: 46790 (46790), Seq: 777, Ack: 108, Len: 0
  707. Source port: http (80)
  708. Destination port: 46790 (46790)
  709. [Stream index: 4]
  710. Sequence number: 777 (relative sequence number)
  711. Acknowledgement number: 108 (relative ack number)
  712. Header length: 20 bytes
  713. Flags: 0x10 (ACK)
  714. 000. .... .... = Reserved: Not set
  715. ...0 .... .... = Nonce: Not set
  716. .... 0... .... = Congestion Window Reduced (CWR): Not set
  717. .... .0.. .... = ECN-Echo: Not set
  718. .... ..0. .... = Urgent: Not set
  719. .... ...1 .... = Acknowledgement: Set
  720. .... .... 0... = Push: Not set
  721. .... .... .0.. = Reset: Not set
  722. .... .... ..0. = Syn: Not set
  723. .... .... ...0 = Fin: Not set
  724. Window size: 65429
  725. Checksum: 0x158f [validation disabled]
  726. [Good Checksum: False]
  727. [Bad Checksum: False]
  728. [SEQ/ACK analysis]
  729. [This is an ACK to the segment in frame: 18]
  730. [The RTT to ACK the segment was: 0.173091000 seconds]
  731.  
  732. Frame 22: 54 bytes on wire (432 bits), 54 bytes captured (432 bits)
  733. Arrival Time: Jul 27, 2012 02:14:27.248594000 Iran Daylight Time
  734. Epoch Time: 1343339067.248594000 seconds
  735. [Time delta from previous captured frame: 0.000641000 seconds]
  736. [Time delta from previous displayed frame: 0.000641000 seconds]
  737. [Time since reference or first frame: 1.807678000 seconds]
  738. Frame Number: 22
  739. Frame Length: 54 bytes (432 bits)
  740. Capture Length: 54 bytes (432 bits)
  741. [Frame is marked: False]
  742. [Frame is ignored: False]
  743. [Protocols in frame: eth:ip:tcp]
  744. [Coloring Rule Name: HTTP]
  745. [Coloring Rule String: http || tcp.port == 80]
  746. Ethernet II, Src: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR), Dst: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  747. Destination: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  748. Address: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  749. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  750. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  751. Source: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  752. Address: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  753. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  754. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  755. Type: IP (0x0800)
  756. Internet Protocol, Src: DE.ST.IP.ADDR (DE.ST.IP.ADDR), Dst: SR.C.IP.ADDR (SR.C.IP.ADDR)
  757. Version: 4
  758. Header length: 20 bytes
  759. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  760. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
  761. .... ..0. = ECN-Capable Transport (ECT): 0
  762. .... ...0 = ECN-CE: 0
  763. Total Length: 40
  764. Identification: 0x546d (21613)
  765. Flags: 0x02 (Don't Fragment)
  766. 0... .... = Reserved bit: Not set
  767. .1.. .... = Don't fragment: Set
  768. ..0. .... = More fragments: Not set
  769. Fragment offset: 0
  770. Time to live: 119
  771. Protocol: TCP (6)
  772. Header checksum: 0xe581 [correct]
  773. [Good: True]
  774. [Bad: False]
  775. Source: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  776. Destination: SR.C.IP.ADDR (SR.C.IP.ADDR)
  777. Transmission Control Protocol, Src Port: http (80), Dst Port: 46790 (46790), Seq: 777, Ack: 108, Len: 0
  778. Source port: http (80)
  779. Destination port: 46790 (46790)
  780. [Stream index: 4]
  781. Sequence number: 777 (relative sequence number)
  782. Acknowledgement number: 108 (relative ack number)
  783. Header length: 20 bytes
  784. Flags: 0x11 (FIN, ACK)
  785. 000. .... .... = Reserved: Not set
  786. ...0 .... .... = Nonce: Not set
  787. .... 0... .... = Congestion Window Reduced (CWR): Not set
  788. .... .0.. .... = ECN-Echo: Not set
  789. .... ..0. .... = Urgent: Not set
  790. .... ...1 .... = Acknowledgement: Set
  791. .... .... 0... = Push: Not set
  792. .... .... .0.. = Reset: Not set
  793. .... .... ..0. = Syn: Not set
  794. .... .... ...1 = Fin: Set
  795. [Expert Info (Chat/Sequence): Connection finish (FIN)]
  796. [Message: Connection finish (FIN)]
  797. [Severity level: Chat]
  798. [Group: Sequence]
  799. Window size: 65429
  800. Checksum: 0x158e [validation disabled]
  801. [Good Checksum: False]
  802. [Bad Checksum: False]
  803.  
  804. Frame 23: 54 bytes on wire (432 bits), 54 bytes captured (432 bits)
  805. Arrival Time: Jul 27, 2012 02:14:27.248634000 Iran Daylight Time
  806. Epoch Time: 1343339067.248634000 seconds
  807. [Time delta from previous captured frame: 0.000040000 seconds]
  808. [Time delta from previous displayed frame: 0.000040000 seconds]
  809. [Time since reference or first frame: 1.807718000 seconds]
  810. Frame Number: 23
  811. Frame Length: 54 bytes (432 bits)
  812. Capture Length: 54 bytes (432 bits)
  813. [Frame is marked: False]
  814. [Frame is ignored: False]
  815. [Protocols in frame: eth:ip:tcp]
  816. [Coloring Rule Name: HTTP]
  817. [Coloring Rule String: http || tcp.port == 80]
  818. Ethernet II, Src: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR), Dst: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  819. Destination: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  820. Address: DE:ST:MA:C_:AD:DR (DE:ST:MA:C_:AD:DR)
  821. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  822. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  823. Source: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  824. Address: SR:C_:MA:C_:AD:DR (SR:C_:MA:C_:AD:DR)
  825. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  826. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  827. Type: IP (0x0800)
  828. Internet Protocol, Src: SR.C.IP.ADDR (SR.C.IP.ADDR), Dst: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  829. Version: 4
  830. Header length: 20 bytes
  831. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  832. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
  833. .... ..0. = ECN-Capable Transport (ECT): 0
  834. .... ...0 = ECN-CE: 0
  835. Total Length: 40
  836. Identification: 0x4984 (18820)
  837. Flags: 0x02 (Don't Fragment)
  838. 0... .... = Reserved bit: Not set
  839. .1.. .... = Don't fragment: Set
  840. ..0. .... = More fragments: Not set
  841. Fragment offset: 0
  842. Time to live: 128
  843. Protocol: TCP (6)
  844. Header checksum: 0xe76a [correct]
  845. [Good: True]
  846. [Bad: False]
  847. Source: SR.C.IP.ADDR (SR.C.IP.ADDR)
  848. Destination: DE.ST.IP.ADDR (DE.ST.IP.ADDR)
  849. Transmission Control Protocol, Src Port: 46790 (46790), Dst Port: http (80), Seq: 108, Ack: 778, Len: 0
  850. Source port: 46790 (46790)
  851. Destination port: http (80)
  852. [Stream index: 4]
  853. Sequence number: 108 (relative sequence number)
  854. Acknowledgement number: 778 (relative ack number)
  855. Header length: 20 bytes
  856. Flags: 0x10 (ACK)
  857. 000. .... .... = Reserved: Not set
  858. ...0 .... .... = Nonce: Not set
  859. .... 0... .... = Congestion Window Reduced (CWR): Not set
  860. .... .0.. .... = ECN-Echo: Not set
  861. .... ..0. .... = Urgent: Not set
  862. .... ...1 .... = Acknowledgement: Set
  863. .... .... 0... = Push: Not set
  864. .... .... .0.. = Reset: Not set
  865. .... .... ..0. = Syn: Not set
  866. .... .... ...0 = Fin: Not set
  867. Window size: 16024 (scaled)
  868. Checksum: 0x057e [validation disabled]
  869. [Good Checksum: False]
  870. [Bad Checksum: False]
  871. [SEQ/ACK analysis]
  872. [This is an ACK to the segment in frame: 22]
  873. [The RTT to ACK the segment was: 0.000040000 seconds]
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!