Since we are getting really, really close to the release of the Wireshark Workbook, I thought I'd start sending out some packet challenges to give you some practice and a feel for what the new book will contain.
Downloads:
Questions .pdf file: Packet Challenge 100119 - Look it Up in the Dictionary
When you have answered all the questions, play the video at the end of this blog to check your answers!
Enjoy!
WANT TO LEARN MORE? We offer on-demand, online and instructor-led courses on Wireshark and TCP/IP communications! Check out the links under "Training" on the menu for more information and sign up for our biweekly newsletter to know when future blogs, events, or freebies are announced. Every new sign up also gets five free Wireshark labs!
Packet Challenge: Look it Up in the Dictionary [100119]
Question 1: What is the IP address of the client?
Question 2: What is the IP address of the DNS server?
Question 3: Was the traffic captured closer to the client or closer to the www.dictionary.com server?
Question 4: What browser did the client use?
Question 5: What is the purpose of the “301 Moved Permanently” packet?
Question 6: What cipher suite is used in this trace file?
Question 7: Which TCP conversation (stream index number) had the highest Initial Round Trip Time?
Question 8: What CNAME is associated with the server communicating in TCP stream 1?
Question 9: Towards which host can the larger TCP data segments travel?
Question 10: In how many frames does the word “undertow” appear?