資源描述:
《wireshark抓包軟件使用實(shí)驗(yàn)》由會(huì)員上傳分享�����,免費(fèi)在線閱讀���,更多相關(guān)內(nèi)容在工程資料-天天文庫(kù)���。
1�、利用wireshark抓包與報(bào)文分析實(shí)驗(yàn)日期:2018/4/8班級(jí):信處152實(shí)驗(yàn)地點(diǎn):6506學(xué)號(hào)2015021118姓名:張南卿實(shí)驗(yàn)?zāi)康模涸谕ㄐ跑浖幊獭⒕W(wǎng)絡(luò)設(shè)備研發(fā)和網(wǎng)絡(luò)故障檢查等領(lǐng)域��,抓包軟件十分有用�。本實(shí)驗(yàn)的li的是通過(guò)學(xué)會(huì)wireshark的初步使用方法�����,掌握以太����、IP����、UDP、TCP���、HTTP等協(xié)議���,了解通信軟件設(shè)計(jì)和網(wǎng)管的輔助工具。實(shí)驗(yàn)內(nèi)容(1)下載和安裝抓包軟件wiresharko(2)在桌面啟動(dòng)wireshark,開(kāi)始執(zhí)行它��。(3)執(zhí)行抓包開(kāi)始和抓包結(jié)朿����;執(zhí)行過(guò)濾設(shè)置。(4)分析抓到的數(shù)據(jù)包�。(5)從一個(gè)抓到的數(shù)據(jù)包中計(jì)算TCP報(bào)文的數(shù)據(jù)段長(zhǎng)度。實(shí)驗(yàn)步驟(1)從
2�、網(wǎng)上收集相關(guān)命令和軟件的說(shuō)明書�����、了解其功能及作用��。(2)從網(wǎng)上收集相關(guān)命令和軟件的使用方法�。(3)下載相關(guān)軟件�����、并安裝到PC機(jī)��。(4)將計(jì)算機(jī)聯(lián)網(wǎng)�。(5)點(diǎn)擊方框1屮的圖標(biāo)選擇需要抓包的網(wǎng)卡,出現(xiàn)下圖���,然后選擇抓包的網(wǎng)卡����,點(diǎn)擊Start開(kāi)始抓包��。(6)隨意選取一個(gè)數(shù)據(jù)包��,并對(duì)其進(jìn)行分析�。報(bào)文內(nèi)容分析:(1).wireshark的運(yùn)行、過(guò)濾器設(shè)置����、啟動(dòng)、停止過(guò)程1.選擇需要抓包的網(wǎng)卡����;2.抓包過(guò)濾設(shè)置;3.重新開(kāi)始新一輪的抓包����;4.停止當(dāng)前的抓包;5.重新開(kāi)始當(dāng)前的抓包���;(1)IP包分析DFrame5:66bytesonwire(528bits).66bytescaptured(S2
3�、8bits)oninterface1±EthernetII9Src:be:fc:01:21:04:64(be:fc:01:21:04:64)?Ost:98:e0:d9:81:d7:01(98:eO:d9:81:d7:SinternetProtocolversion4fsrc:111.13.100.91(111.13.100.91).Dst:172.20.10.4(172.20.10.4)TransiissioncontrolProtocolfSrcPort:https(443),OstPort:50943(50943)tseq:09Ack:1丨Sourceport:https(44
4���、3)Destinationport:50943(50943)[Streamindex:2]Sequencenumber:0(relativesequencenumber)Acknowledgnentnumber:1(relativeacknunber)Headerlength:32bytes田Flags:0x012(syn.ack)windowsizevalue:8192[Calculatedwindowsize:8192]?checksuii:0xa47e[validationdisabled]?options:(12bytes)?Maximunsegmentsize.No-op
5����、eration(nop),windowscale.Nooperation(nop£(SGQ/ACKanalysis]±Appidentify:(Othtunset:0fnonefNotFound,Down,Processing)從sourceport始往下依次代表源端口�,目標(biāo)端口,序號(hào)�����,確認(rèn)號(hào),數(shù)據(jù)偏移�����,窗口,檢驗(yàn)���。jytesonwire(528bits)966bytescaptureoninterEthernetII9Src:be:fc:01:21:04:64(be:fc:01:21:04:64)tDsx:98:e0:d9:81:d7:(3internetProtocolvers
6�����、ion4fsrc:183.232.27.214(183.232.27.214)fDst:172.2(version:4Headerlength:20bytesfflDifferentiatedservicesField:0x48(DSCP0x12:AssuredForwarding21;ECN:TotalLength:52Identification:OxOOOO(O)田Flags:OxOOFragmentoffset:OTimetolive:55Protocol:TCP(6)S)Headerchecksum:0xf9a5[correct]Source:183.232.27.214
7�、(183.232.27.214)Destination:172.20.10.4(172.20.10.4)[SourceGeoIP:unknown][DestinationGeoIP:urnknown]物理層的數(shù)據(jù)幀概況:37號(hào)幀���,線路66個(gè)字節(jié)����,實(shí)際捕獲60字節(jié)數(shù)據(jù)鏈路層以太網(wǎng)幀頭部信息:(be:fc:01:21:04:64)互聯(lián)網(wǎng)層IP包頭部信息:src:183.232.27.214(183.232.27.214)首長(zhǎng)度:20bytes總長(zhǎng):52源地址183.232
