CSC411
WireShark Labs

            NOTES:

                 1.  Do NOT do your own captures; download the capture files from D2L,unless otherwise noted. 
                            To download a trace file, right click on the link and select "Save Link As..." and then rename to *.pcapng
                 2. When answering the questions in the lab, ignore any HTTP GET requests for /favicon.ico
                 3.  In the lab instructions/questions, "Your computer" refers to the computer used to do the capture in Wireshark. Use the packets to determine this computer address.


                

          Introduction
               trace file

         DHCP
               trace file

           TCP  (do not do #13 or 14)
                Note: Do NOT use relative sequence numbers, use absolute sequence numbers
                           Edit / Preferences / Protocols / TCP -->
                trace file

           IP  
               Note: Set the IP preferences in WireShark to not reassemble fragmented packets
                         Edit / Preferences / Protocols / IP --> uncheck "Reassemble fragmented IP datagrams"
                trace
 

           ICMP
                You will do the entire lab for this lab.
                Use the noted host in Hong Kong (www.ust.hk)
                Do NOT do the extra credit question

           802.11
                 Note: Do only questions 1-8. When doing this lab, set the time view to 'seconds since
                           beginning of capture' (View / Time Display Format)
                 trace         

           

  

 

Lisa Frye, PhD frye@kutztown.edu
Old Main 254 (610) 683-4422 (office)
(484) 619-3132 (ONLY during office hours)
Office Hours (F2F and Online via Zoom or MS Teams):
  Mon   2:30-4:00pm  Tue  8:00-10:00am  
  Wed   2:30-4:00pmm Other times by appointment