Side labor 5 Juurdepääs arvutivõrku aruanne
Töö
tegija nimi:
*********
Töö tegemise kuupäev: Tue Nov 29 20:23:37
2016 4.2 Arvuti IP aadress
A. Enda arvuti MAC aadress käsurealt vaadates: A0-D3-C1-1C-B8-4D
B. Enda arvuti IP aadress käsurealt vaadates: 192.168.252.188
C. Oma võrgu marsruuteri IP aadress (Default
Gateway ):
192.168.252.1
D. Nimeserverite IP
aadressid (DNS servers): 193.40.252.145;
193.40.254.227; 193.40.56.245
E. Veebilehel näidatud enda arvuti IP aadress: 193.40.252.132
F. Mis on võimalike erinevuste põhjuseks? Tegemist võib olla
ümbersuunamisega.
4.3 Ping (protokollid ARP, ICMP, UDP, DNS)
A. Mida programm
ping teeb ja mida tulemus näitab?.
(Täissuuruses pilt klõpsates peale.)
saadab serverile
paketi /info ning seejärel mõõdab palju aega
kulub vastuse saamiseks.
4.3.1 ARP
B. Milliste protokollide päiseid ARP
paketid sisaldavad?
eth:ethertype:arp
C.
Millisele aadressile saadetakse ARP
päring ? HewlettP_1c:b8:4d
(a0:d3:c1:1c:b8:4d)
D. Milliselt aadressilt tuleb ARP vastus? RealtekU_ca:94:db
(52:54:00:ca:94:db)
E. Milline on ARP
pakettide sisu?
saatja ja
vastuvõtja aadressid
ja saadetava paketi info .
Lisada ekraanipilt Wiresharki keskmisest
aknast , kus näha
dekodeeritud kujul ARP päringu paketis EthernetII ja ARP osa ning
teine ekraanipilt Wiresharki keskmisest aknast, kus näha ARP vastuse
paketis dekodeeritud EthernetII ja ARP osa.
(Täissuuruses pilt klõpsates peale.)
(Täissuuruses klõpsates peale.)
IP
F. Millised väljad on IP päises?
Version , Header
Length ,
Differentiated
Services Field, (Explicit Congestion Notification,
Total Length, Identification), Flags, Fragment Offset, Time To
Live ,
Protocol , Header Checksum, Source address, Destination address
Lisada ekraanipilt ühest paketist (ping vastus) Wiresharki
keskmises
aknas , kus IP osa on tervenisti lahti.
(Täissuuruses pilt klõpsates peale.)
G. Milliste protokollide päiseid ICMP paketid sisaldavad?
eth:ethertype:ip:icmp:data
H. Millisele aadressile saadetakse ping päring (MAC aadress ja IP
aadress)? RealtekU_ca:94:db (52:54:00:ca:94:db), 192.168.252.79
I. Milliselt aadressilt tuleb vastus (MAC aadress ja IP aadress)?
HewlettP_1c:b8:4d (a0:d3:c1:1c:b8:4d), 192.168.252.188
J. Mis on päringu ja vastuse Data osas (kirjeldada oma sõnadega
andmete kogust ja sisu)?
Lisada ekraanipildid ping päringu ja ping vastuse Wiresharki
keskmisest aknast, kus dekodeeritud ICMP paketi IP ja ICMP osa.
(Täissuuruses pilt klõpsates peale.)
K. Millisele aadressile saadetakse ping päring (MAC aadress ja IP
aadress)? HewlettP_1c:b8:4d (a0:d3:c1:1c:b8:4d),93.184.216.3
L. Milliselt aadressilt tuleb vastus (MAC aadress ja IP aadress)?
HewlettP_1c:b8:4d (a0:d3:c1:1c:b8:4d),93.184.216.34
Lisada ekraanipilt ping päringu ja ping vastuse pakettidest
Wiresharki keskmises aknas, (kus kõik plussid kinni).
(Täissuuruses pilt klõpsates peale.)
(Täissuuruses pilt klõpsates peale.)
UDP, DNS
M. Milliste protokollide päiseid DNS paketid sisaldavad?
eth:ethertype:ip:udp:dns
N. Kui pikk on UDP
päis ? 8
O. Mis sisaldub UDP päises? Source Port, Destination Port,
Length, Checksum
P. Milline on UDP pordi number DNS jaoks (serveri port)? 53
R. Mis sisaldub DNS osas? Transaction ID, Flags, Questions (1),
Answer RRs,
Authority RRs, Additional RRs, Queries (www.example.com)
Lisada ekraanipildid DNS päringu ja vastuse pakettidest
Wiresharki keskmises aknas, kus UDP ja DNS osad on lahti.
(Täissuuruses pilt klõpsates peale.)
(Täissuuruses pilt klõpsates peale.)
Lisada ekraanipilt käsurealt olevatest traceroute tulemustest.
(Täissuuruses pilt klõpsates peale.)
A. Mis on traceroute tulemuseks üldiselt? Milline oli paketi
teekond ning kui kaua tal selle teekonna läbimiseks kulus.
B. Mitme marsruuteri kaugusel meie võrgust asub www.example.com?
13
C. Milliseid protokolle kasutatakse tracert käsu täitmiseks?
ICMP, DNS
D. Milline paketi eluaja (Time To Live, TTL) väärtus on kõikidel
ICMP päringu pakettidel ning vastuse pakettidel? 1, 2, 3, 4, 5, 6,
7, 8, 9, 10, 11, 12, 13; vastusel 53
E. Mida TTL näitab? Time to live näitab aega, kui kaua kulub
brauseril uue DNSi laadimiseks, mis peaks olema andmete eluiga
sisuliselt.
Lisada Wiresharkist salvestatud pakettide faili sisu.
No. Time Source Destination Protocol Length Info
1 0.000000000 192.168.252.188 193.40.252.145 DNS 75 Standard query
0x6aa6 A www.example.com
2 0.001986000 193.40.252.145 192.168.252.188 DNS 139 Standard
query response 0x6aa6 A 93.184.216.34
3 0.007004000 192.168.252.188 93.184.216.34 ICMP 106
Echo (ping)
request id=0x0001, seq=122/31232, ttl=1 (no response found!)
4 0.007998000 192.168.252.1 192.168.252.188 ICMP 134 Time-to-live
exceeded (Time to live exceeded in
transit )
5 0.008836000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=123/31488, ttl=1 (no response found!)
6 0.010049000 192.168.252.1 192.168.252.188 ICMP 134 Time-to-live
exceeded (Time to live exceeded in transit)
7 0.010986000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=124/31744, ttl=1 (no response found!)
8 0.012204000 192.168.252.1 192.168.252.188 ICMP 134 Time-to-live
exceeded (Time to live exceeded in transit)
9 0.013612000 192.168.252.188 193.40.252.145 DNS 86 Standard query
0xb19f PTR 1.252.168.192.in-addr.arpa
10 0.015514000 193.40.252.145 192.168.252.188 DNS 159 Standard
query response 0xb19f PTR sise-gw.lr-sise
11 1.022943000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=125/32000, ttl=2 (no response found!)
12 1.026376000 193.40.252.254 192.168.252.188 ICMP 134
Time-to-live exceeded (Time to live exceeded in transit)
13 1.027181000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=126/32256, ttl=2 (no response found!)
14 1.028735000 193.40.252.254 192.168.252.188 ICMP 134
Time-to-live exceeded (Time to live exceeded in transit)
15 1.029472000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=127/32512, ttl=2 (no response found!)
16 1.031888000 193.40.252.254 192.168.252.188 ICMP 134
Time-to-live exceeded (Time to live exceeded in transit)
17 1.033046000 192.168.252.188 193.40.252.145 DNS 87 Standard
query 0x44d4 PTR 254.252.40.193.in-addr.arpa
18 1.035837000 193.40.252.145 192.168.252.188 DNS 331 Standard
query response 0x44d4 PTR PP1648T.ttu.ee
19 2.022287000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=128/32768, ttl=3 (no response found!)
20 2.024633000 193.40.242.50 192.168.252.188 ICMP 134 Time-to-live
exceeded (Time to live exceeded in transit)
21 2.025564000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=129/33024, ttl=3 (no response found!)
22 2.027053000 193.40.242.50 192.168.252.188 ICMP 134 Time-to-live
exceeded (Time to live exceeded in transit)
23 2.027999000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=130/33280, ttl=3 (no response found!)
24 2.030516000 193.40.242.50 192.168.252.188 ICMP 134 Time-to-live
exceeded (Time to live exceeded in transit)
25 2.031875000 192.168.252.188 193.40.252.145 DNS 86 Standard
query 0xbf57 PTR 50.242.40.193.in-addr.arpa
26 2.034346000 193.40.252.145 192.168.252.188 DNS 297 Standard
query response 0xbf57 PTR ttu-gw2-vrrp.ttu.ee
27 3.022537000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=131/33536, ttl=4 (no response found!)
28 3.024322000 193.40.244.198 192.168.252.188 ICMP 134
Time-to-live exceeded (Time to live exceeded in transit)
29 3.025277000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=132/33792, ttl=4 (no response found!)
30 3.027927000 193.40.244.198 192.168.252.188 ICMP 134
Time-to-live exceeded (Time to live exceeded in transit)
31 3.028877000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=133/34048, ttl=4 (no response found!)
32 3.030462000 193.40.244.198 192.168.252.188 ICMP 134
Time-to-live exceeded (Time to live exceeded in transit)
33 3.031812000 192.168.252.188 193.40.252.145 DNS 87 Standard
query 0xdd90 PTR 198.244.40.193.in-addr.arpa
34 3.034364000 193.40.252.145 192.168.252.188 DNS 292 Standard
query response 0xdd90 PTR X460G2.ttu.ee
35 4.021987000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=134/34304, ttl=5 (no response found!)
36 4.024863000 193.40.244.1 192.168.252.188 ICMP 70 Time-to-live
exceeded (Time to live exceeded in transit)
37 4.025801000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=135/34560, ttl=5 (no response found!)
38 4.028557000 193.40.244.1 192.168.252.188 ICMP 70 Time-to-live
exceeded (Time to live exceeded in transit)
39 4.029500000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=136/34816, ttl=5 (no response found!)
40 4.031159000 193.40.244.1 192.168.252.188 ICMP 70 Time-to-live
exceeded (Time to live exceeded in transit)
41 4.032518000 192.168.252.188 193.40.252.145 DNS 85 Standard
query 0xa450 PTR 1.244.40.193.in-addr.arpa
42 4.034911000 193.40.252.145 192.168.252.188 DNS 290 Standard
query response 0xa450 PTR ttu-gw.eenet.ee
43 5.021295000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=137/35072, ttl=6 (no response found!)
44 5.025249000 109.105.98.113 192.168.252.188 ICMP 70 Time-to-live
exceeded (Time to live exceeded in transit)
45 5.026057000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=138/35328, ttl=6 (no response found!)
46 5.028813000 109.105.98.113 192.168.252.188 ICMP 70 Time-to-live
exceeded (Time to live exceeded in transit)
47 5.029549000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=139/35584, ttl=6 (no response found!)
48 5.033363000 109.105.98.113 192.168.252.188 ICMP 70 Time-to-live
exceeded (Time to live exceeded in transit)
49 5.034523000 192.168.252.188 193.40.252.145 DNS 87 Standard
query 0xc383 PTR 113.98.105.109.in-addr.arpa
50 5.036378000 193.40.252.145 192.168.252.188 DNS 182 Standard
query response 0xc383 PTR fi-csc.nordu.net
51 6.035075000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=140/35840, ttl=7 (no response found!)
52 6.044274000 109.105.97.93 192.168.252.188 ICMP 182 Time-to-live
exceeded (Time to live exceeded in transit)
53 6.045191000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=141/36096, ttl=7 (no response found!)
54 6.055530000 109.105.97.93 192.168.252.188 ICMP 182 Time-to-live
exceeded (Time to live exceeded in transit)
55 6.056452000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=142/36352, ttl=7 (no response found!)
56 6.065679000 109.105.97.93 192.168.252.188 ICMP 182 Time-to-live
exceeded (Time to live exceeded in transit)
57 6.067047000 192.168.252.188 193.40.252.145 DNS 86 Standard
query 0x5a90 PTR 93.97.105.109.in-addr.arpa
58 6.069457000 193.40.252.145 192.168.252.188 DNS 228 Standard
query response 0x5a90 PTR se-fre.nordu.net
59 7.064638000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=143/36608, ttl=8 (no response found!)
60 7.082931000 109.105.97.130 192.168.252.188 ICMP 182
Time-to-live exceeded (Time to live exceeded in transit)
61 7.083894000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=144/36864, ttl=8 (no response found!)
62 7.104116000 109.105.97.130 192.168.252.188 ICMP 182
Time-to-live exceeded (Time to live exceeded in transit)
63 7.105065000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=145/37120, ttl=8 (no response found!)
64 7.123198000 109.105.97.130 192.168.252.188 ICMP 182
Time-to-live exceeded (Time to live exceeded in transit)
65 7.124697000 192.168.252.188 193.40.252.145 DNS 87 Standard
query 0x05b5 PTR 130.97.105.109.in-addr.arpa
66 7.126733000 193.40.252.145 192.168.252.188 DNS 229 Standard
query response 0x05b5 PTR dk-ore.nordu.net
67 8.110748000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=146/37376, ttl=9 (no response found!)
68 8.129844000 109.105.97.56 192.168.252.188 ICMP 182 Time-to-live
exceeded (Time to live exceeded in transit)
69 8.130763000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=147/37632, ttl=9 (no response found!)
70 8.148334000 109.105.97.56 192.168.252.188 ICMP 182 Time-to-live
exceeded (Time to live exceeded in transit)
71 8.149258000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=148/37888, ttl=9 (no response found!)
72 8.167826000 109.105.97.56 192.168.252.188 ICMP 182 Time-to-live
exceeded (Time to live exceeded in transit)
73 8.169226000 192.168.252.188 193.40.252.145 DNS 86 Standard
query 0xbb28 PTR 56.97.105.109.in-addr.arpa
74 8.171694000 193.40.252.145 192.168.252.188 DNS 228 Standard
query response 0xbb28 PTR dk-ore.nordu.net
75 9.155967000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=149/38144, ttl=10 (no response found!)
76 9.185276000 109.105.97.137 192.168.252.188 ICMP 182
Time-to-live exceeded (Time to live exceeded in transit)
77 9.186239000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=150/38400, ttl=10 (no response found!)
78 9.214935000 109.105.97.137 192.168.252.188 ICMP 182
Time-to-live exceeded (Time to live exceeded in transit)
79 9.215863000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=151/38656, ttl=10 (no response found!)
80 9.245100000 109.105.97.137 192.168.252.188 ICMP 182
Time-to-live exceeded (Time to live exceeded in transit)
81 9.246468000 192.168.252.188 193.40.252.145 DNS 87 Standard
query 0x6920 PTR 137.97.105.109.in-addr.arpa
82 9.248832000 193.40.252.145 192.168.252.188 DNS 229 Standard
query response 0x6920 PTR nl-sar.nordu.net
83 10.233299000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=152/38912, ttl=11 (no response found!)
84 10.348816000 109.105.97.139 192.168.252.188 ICMP 70
Time-to-live exceeded (Time to live exceeded in transit)
85 10.349787000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=153/39168, ttl=11 (no response found!)
86 10.464209000 109.105.97.139 192.168.252.188 ICMP 70
Time-to-live exceeded (Time to live exceeded in transit)
87 10.465175000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=154/39424, ttl=11 (no response found!)
88 10.580877000 109.105.97.139 192.168.252.188 ICMP 70
Time-to-live exceeded (Time to live exceeded in transit)
89 10.582256000 192.168.252.188 193.40.252.145 DNS 87 Standard
query 0x9c60 PTR 139.97.105.109.in-addr.arpa
90 10.584713000 193.40.252.145 192.168.252.188 DNS 229 Standard
query response 0x9c60 PTR us-man.nordu.net
91 11.465600000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=155/39680, ttl=12 (no response found!)
92 12.503424000 192.168.252.188 193.40.252.145 DNS 85 Standard
query 0xa2c4 A teredo.
ipv6 .microsoft.com
93 12.509625000 193.40.252.145 192.168.252.188 DNS 187 Standard
query response 0xa2c4 No
such name
CNAME teredo.ipv6.microsoft.com.nsatc.net
94 15.299734000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=156/39936, ttl=12 (no response found!)
95 19.300867000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=157/40192, ttl=12 (no response found!)
96 23.300752000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=158/40448, ttl=13 (
reply in 97)
97 23.411167000 93.184.216.34 192.168.252.188 ICMP 106 Echo (ping)
reply id=0x0001, seq=158/40448, ttl=48 (request in 96)
98 23.412106000 192.168.252.188 93.184.216.34 ICMP 106 Echo (ping)
request id=0x0001, seq=159/40704, ttl=13 (reply in 99)
99 23.523821000 93.184.216.34 192.168.252.188 ICMP 106 Echo (ping)
reply id=0x0001, seq=159/40704, ttl=48 (request in 98)
100 23.524761000 192.168.252.188 93.184.216.34 ICMP 106 Echo
(ping) request id=0x0001, seq=160/40960, ttl=13 (reply in 101)
101 23.636343000 93.184.216.34 192.168.252.188 ICMP 106 Echo
(ping) reply id=0x0001, seq=160/40960, ttl=48 (request in 100)
102 23.637629000 192.168.252.188 193.40.252.145 DNS 86 Standard
query 0xe45c PTR 34.216.184.93.in-addr.arpa
103 23.660275000 193.40.252.145 192.168.252.188 DNS 157 Standard
query response 0xe45c No such name
4.5 WWW (protokollid TCP, HTTP)
Lisada Wiresharki ülemisest aknast ekraanipilt.
Lisada ekraanipilt külastatud veebilehest.
Lisada salvestatud lehe lähtekood.
(Täissuuruses pilt klõpsates peale.)
(Täissuuruses pilt klõpsates peale.)
(Täissuuruses pilt klõpsates peale.)
TCP
A. Milliste protokollide päiseid saadud paketid sisaldavad? TCP,
HTTP
B. Kui pikk on TCP päis? 32
C. Millised väljad sisalduvad TCP päises? Source port,
Destination port, Sequence number, Acknowledgment number, Data
offset, Flags,
Window size, Checksum, Urgent Pointer, Options
D. Kuidas TCP ühendust alustatakse (3 esimest paketti - milline
arvuti millisele saadab ja millised TCP lipud on aktiveeritud)? SYN,
SYN, SYN ACK
E. Kuidas TCP ühendust lõpetatakse (4 viimast paketti - milline
arvuti millisele saadab ja millised TCP lipud on aktiveeritud)? ACK,
ACK, ACK, ACK
Lisada Wiresharki ekraanipilt ühest paketist, kus keskmises aknas
on TCP osa lahti.
(Täissuuruses pilt klõpsates peale.)
HTTP
F. Milline HTTP päring saadetakse (järgmine
pakett , mille Teie
arvuti saatis pärast TCP ühenduse loomist)?
GET / HTTP/1.1
G. Milline tuleb HTTP vastus sellele päringule? HTTP/1.1 200 OK
(text/html) + veebilehe sisu
H. Milline on TCP pordi number HTTP jaoks (serveri port)? 80
Lisada ekraanipilt päringu paketist Wiresharki akna keskmine osa,
kus HTTP osa on lahti ning vastuse paketist Wiresharki akna keskmine
osa, kus HTTP osa on lahti.
(Täissuuruses pilt klõpsates peale.)
4.6 Individuaalülesanne
Lisada ekraanipilt ping käsureast ja tulemustest.
(Täissuuruses pilt klõpsates peale.)
Üliõpilaskood
163690CTF
Ping käsurida:
ping www.example.com -n 10 -l 2500
Keskmine RTT
118ms
Wiresharkist leida:
mitmes fragmendis etteantud pikkusega üks ping päring saadeti.
0
ühe päringu andmete (data) osa pikkus (kõikides fragmentides kokku)
2500
EthernetII päise pikkus.
1480 IP päise pikkus.
20
ICMP päise pikkus.
1062
Lisada Wiresharki ekraanipilt, kus peal ülemises aknas üks
päring koos fragmentidega ja üks vastus fragmentidega (iga pakett
on üks rida).
(Täissuuruses pilt klõpsates peale.)
LISADA LAHENDUSKÄIK JA TULEMUSED !!!
Kasulikke andmeid oli 2500
baiti . Kokku edastati andmeid 5180
baiti.
Edastuskiirus on 5180/(118/2)= 87,79 kB/s
Efektiivsus on 2500/5180=0,482=48,2%
Kokkuvõte ja järeldused
Tutvusin lähemalt programmiga Wireshark ja õppisin, kuidas
erinevad
protokollid käituvad ja omavahel seotud on.
50 punkti
Autor soovib selle materjali allalaadimise eest saada 50 punkti.
~ 12 lehte
Lehekülgede arv dokumendis
2017-02-01
Kuupäev, millal dokument üles laeti
55 laadimist
Kokku alla laetud
0 arvamust
Teiste kasutajate poolt lisatud kommentaarid
wirx911
Õppematerjali autor
annaabi.ee 
Kõik kommentaarid