FiPITlan AI-Y1adiansyah

®@

Judul

Fernater-i Mata Pelajar-an

: : : :

Xl TKJ

Sa btu, 13 Agustus 2911

Enkapsulasi

Job he
Par-af

1 Pendahuluan
Enhapsulasi secara umum meropakan sebuah proses yang membuat satu jenis paket data jarinqan menjadl jenis data lainnqa Enhapsulasi terjad! ketika sebuah protokol yang berada pada lapisan yang lebib rendab menerima data dan protokol yang berada pada lapisan yang lebib tinggi dan meletakkan data he format data yang dipaharm oleh protokol tersebot,

11 Tuhuan
- Sisua dapat mengetahui jenis komonfkasi saat browsing - Sisua mengetahui proses enkapsclasi - Sisua dapat menqlmpclhan dart prektek pengamatan enkapsolasi ini

111Alat dan Bahan

- Sebuah Personal Computer (PC) - Sebuah - Sebuah software Sinshark - Sato atao beberapa aplikasi browsing - Sebuah modem / wireless / media lainnya ontok koneksi internet

as Windows atao Linox

lV. Langkah kerja

1. Nyalakan PC

os Windows/linux

) lalu install software uiireshark

2. Koneksikan PC anda ke internet melalot modem atau wireless

.~
.

""-.:::_:_

':

'J

_~.

_::

•• ..-

J.;, _".:'.-:_.i_t~"~ .. '~':~."":"';..1il. _ b

Network Protocol Analyzer

Registering dissector ,.. xot 50%

3. Jika sudah terkoneksi, buka software unreshark

The Wireshark file f_dit ~iew Network §o Analyu:r ~apture Analyze

i~j iii( iii

Fllter;

Q(

filii 18 ~ X ~ ~ I ('" '"

* ~ if

;l
,..

I[[@JIBII
E<!;pression."

Q;t
Clear

e. 6.
ApplY

Ell

a ~~~I~

.
-

The World's Most Popular Network

~ =--~

Protocol Analyzer

Interface
l~listofthecapture

List
intert;ce~ (counu incoming p:;Icken)

8
Open

Open
Open a prevbu~lj<capture:lfi'e

Website
Vis~the proj:ct'swebsite

Start capture ~ ~ ~

on interface:

Recent: (43 KB)

User's Guide
The users euere (b:alversbn, if inrtllle:t)

Marvell Yukon Ethernet Controller. Microsoft Microsoft Sun VMwareVirtual VMware EthernetAdapter Virtual EthernetAdapter

C:\Users\User\Oocument5\x,pcap

&!J
~ ~

GiJ
Options
.... hdetl'l2d optbns ~

Sample Captures
A ,;:h <H:;ortmenl 01 e>o,;Imp'ecapturefi'eson thewik;

GiJ

Security
Workw~h Wiresharkas !a:urelyas P='ssible

Capture
Stlrta (apture

GiJ

How to Capture
Stepbysteptoasucces!:lulcaptureletup

Network

Media
for capturing on: Ethernet WLAN •...

scec ac informatbn

---~~~--~------------r.N~o~P'-'~k'~t'--------------------------------------------------------------------~
.. .... ~

-----------------"
9:49PM

4. Klik Capture ~
Wireshark:

lnterface ~

dan pilib salah satu koneksi yang akan diamati "start"

Cap ure Interfaces Description IP feSO::69SS:S6Sc:733c:ScSO feSO::2c 74:cbS9:9a9:940 feS 0::40Sb: dS 05: 7Ofd:S3bS fe SO::Sdel: S92S:3dab: cdS b feSO::5S43:e9cO:c2d4:bb3S feSO::c1dd:Sc93:76f6:S739 Packets 0 0 0 2 6 S Packets/s 0 0 0 0 0 0 [ l.start Stop

Marvell Yukon Ethernet Controller. Microsoft Microsoft Sun VMware Virtual Ethernet Adapter VMware Virtual Ethernet Adapter t:!elp

IIQptions [.start I[Qptions

IIQptions !.start I[Qptions l.start I [Qptions

l.start

l.startl [Qptions

I IIQetails I I [Qetails I I [Qetails I IIQetails I I [Qetails I I [Qetails I

~Iose

..

5. Buha apltkast browser misalnqa Firefox dan minimize software unreshark 6. Cobalah masok he salah satu website misalnqa www.google.com

Penelusuran

laniutan I Perangkat

bahasa I iGoogle I Setelan penelusuran

I Masuk

II
PenelusuranGoogle Silyalagi Oeruntung

~I
Google.co.id tersedia dalam: English Basa Jawa

Program

Periklanan

I Serba-serbi

Google

I Google.ccm

in English

Oentiqambarlatlf

.... 'D

l052PM

7. Tunggu beberapa saat sampai proses loading browser tersebut selesai (Oone)
8. Jiha sudah, maximize software unreshark Amah proses yang sudah terjadi,
wew.pcap file f_dit - Wiresha ~iew §o

583 584 585 586 587 588 589 590 591 592 593

228.462176 228.464789 228.497610 228.499161 228.516942 228.517086 228.517404 228.628306 228.672714 229.483124 229.483718

174.129.228.246 172.16.16.77 2-02.51. 232.114 172.16.16.77 174.129.228.246 172.16.16.77 172.16.16.77 174.129.228.246 172.16.16.77 174.129.228.246 174.129.228.246

172.16.16.77 202.51. 232 .114 172.16.16.77 174.129.228.246 172.16.16.77 174.129.228.246 174.129.228.246 172.16.16.77 174.129.228.246 172.16.16.77 172.16.16.77

St ~,~'~"-i,.;:T-;
TCP TCP TCP HTTP TCP TCP

~"n."co~"i~~~~~~~~~ (text/htrnl)
'1015=3

-rcr-

Standard query- response A 174.129.228.246 A 184.73.216.15 49690 ). http [SYN] seq=O win=8192 t.en-u Mss=1460 w5=2 ht t p ). 49690 [SYN, ACK] seq-o Ack=l win=65535 t.en-o Mss=1460 49690 >- http [ACK] seq=1 Ack=l win=175Z0 t.en-o GET / / HTTP!1.1 ht t p >- 49690 [ACK] seq=1 Ack=371 win=65696 cen-o 49689 ). http [ACK] seq=374 Ack=550 win=16968 t.en-o

594 229.483814
595 229.484331 I±I Frame 581 (427 bytes on wire, 427 I±I Ethernet II, Src: HonHa;pr_84:3e:c4 I±I Internet I±I Transmission I±I Hypertext protocol, Control Transfer Src:

172.16.16.77
174.129.228.246

174.129.228.246
172.16.16.77

172.16.16.77

202.51. 2J2.ll4
os t : EdimaxTe_62:e7:94

TCP Tep TCP DNS

[TCP segment of a reassembled PDU] [TCP segment of a reassembled PDU] 49690 >- http [ACK] Seq=371 Ack=Z921 W;n=17520 [TCP segment of a reassembled PDUJ standard guerY' A 54. static. fiootsuite. com

t.en-c

bytes captured) (fO:7b:cb:84:3e:c4), (172.16.16.77), 49689 (49689), Dst:

(00:Oe:2e:62:e7:94) seq: 1, Ack: 1, Len: 373

172.16.16.77

174.129.228.246 Dst Port: http

(174.129.228.246) (80),

protocol, protocol

sr c Port:

(\(\~(\____f;_o_,:::,+ .:::.+

00 01 e4 11 2f

Oe 9d f6 1c 31

2e 36 c2 7f 2e

62 c3 19 d4 31
7.'1

e7 40 00 00 Od
7:>

94 00 50 00 Oa
7~

fO 80 4f 47 48
':::'1':1

7b 06 42 45 6f
7.'1

cb 72 ob 54 73
.:::.~

84 c2 d7 20 74
'),.,

I Packets:

3e c4 08 ac 10 10 fa Oe b5 2f 20 48 3a 20 77 .:::.:> .:::.+ .:::..4

00 4d e4 54 77
(\.4

45 ae 50 54 77
(\..,

00 81 18 50 2e
~~

...
••

b ...
6.@

...•• ..... /1.1

h ............. , ,~...

{ .. > E. ••• r M •• POS ••••.. P• . GE T / HTTP .. HO st: www.

2747 Displayed:

2747 Marked:

I Profile:

Default

..

... 'i:lJ

9:52PM

9. Klik salah sato proses penerimaan data ontok lebib melibat prosesnya lebib detail lagi
.
569224726324 570224.726386 571224.726436 572 .a4.726492 573224726543 574224726598 575 224 726713

.
TCP TCP TCP TCP TCP TCP TCP DNS TCP TCP 49672> 49671> 49653> 49613 > 49651> 49622 > 49618 > tt tt tt tt tt Itt tt RST, RST, RST, RST, RST, RST, RST, ACK ACK ACK ACK ACK ACK ACK se sc sc sc sc Se se =2 =2 =2 =.: =2 =2 =2 AC AC AC Ac Ac Ac Ac

172.16.1677 172.16.16.77 172.16.1677 172.16.1677 172.16.16.77 172 16.16 77 172 16 16.77

74125.235.51 209.85.175.132 58.27.22.43 74125.235.38 58.27.22.43 74125.235.41 74 125 235.44

577 227.702756
578 227.704095 579 227.714420

202.51. 232.114 172.16.16.77

174.129.228.246

172.16.16.77
174.129.228.246

=1 wi n-o =1 wtneo =1 wtneo =1 wtneo =1 wtneo =1 wtneo =1 w+n-o

t.eu-o t.en-o t.en-o t.en-o t.en-o

t.eneO t.en.,o

172.16.16.77

583 584 585 586 587 588 589 590 591 592 593 594 595

228.462176 228.464789 228.497610 228.499161 228.516942 228.517086 228.517404 228.628306 228.672714 229.483124 229.483718 229.483814 229.484331 229.520216

174.129.228.246 172.16.16.77 202.51. 232.114 172.16.16.77 174.129.228.246 172.16.16.77 172.16.16.77 174.129.228.246 172.16.16.77 174.129.228.246 174.129.228.246 172.16.16.77 174.129.228.246 172.16.16.77

172.16.16. 202.51. 232 .114 172.16.16.77 174.129.228.246 172.16.16.77 174.129.228.246 174.129.228.246 172.16.16.77 174.129.228.246 172 .16.16.77 172.16.16.77 174.129.228.246 172.16.16.77 202.51. 232 .114

HTTP DNS DNS TCP

res

TCP HTTP TCP Tep Tep Tep

rc>

Tep DNS

standard query A hoot suf t e. com standard query response A 174.129.228.246 A 184.73.216.15 49690 > http [SYN] seq=O wi n=8192 t.eneo Mss=1460 wS=2 http > 49690 [SYN, ACK] seq=O Ack=1 win=65535 Len=O Mss=1460 49690 > http [ACK] seq=1 Ack=1 wi n=17520 t.eneo Gn 1/ HTTP/1.1 http > 49690 [ACK] seq=1 Ack=371 win=65696 t.en-o 49689 ). http [ACK] seq=374 Ack=550 w4n=16968 t.en-c of a reassembl ed PDU] [TCP segment of a reassembl ed PDU] [TCP segment 49690 ). http [ACK] sec-szi Ack=2921 W4n=17520 t.en-u of a r-eas s emb'l ed PDU] [TCP segment Standard guerv. A s4.static.hootsuite.com

301

wS=3

10. Ontuh melihat detailnqa, lihat kolom dtbamab (bachground putih) 11.Pertama kita akan mengamati penjelasan "frame"! Klik ontok melihat detailnqa
582 227.825381 583 228.462176 174.129.228.246 174.129.228.246 172.16.16.77 172.16.16.77

rce
HTTP

.-,.,ju+'1-'.i,tfW.iii,i.WtI4Pbi+'Ii,·Ii#:e
Arrival [Time [Time [Time Fr arne
Frame

http > 49689 [ACK] seq 1 Ack 374 win 65696 Len a HTTP/1.0 301 Moved permanently Ctext/html)

Time: Aug 12,201115:28:16.833835000 delta from previous captured frame: 0.000097000 seconds] delta from previous displayed frame: 0.000097000 seconds] since reference or first frame: 227.714656000 seconds] Number: 581
Length: 427 bytes

capt ur-e Length: 427 bytes [Frame is marked: False] [protocols in frame: eth:ip:tcp:http]
[coloring Rule Name: HTTP]

[coloring Rule string: htt:p II tep.port: == 80] III Ethernet II, Src: HonHaiPr _84 :3e:c4 (fO:7b:cb:84 :3e:c4), Dst: EdimaxTe_62 :e7:94 (00:Oe:2e:62 :e7:94) ffJ Internet protocol, Src: 172.16.16.77 (172.16.16.77), Dst: 174.129.228.246 (174.129.228.246) src port: 49689 (49689), ost port: http (80), seq: 1, Ack: 1, Len: 373

12. Kedua kita akan mengamati penjelasan "etbernet'l

5B2227.B25381 583 228.462176 174.129.228.246 174.129.228.246 172.16.16.77 172.16.16.77

rc>

i+1.,m+w@.

Wi. 118,'*•• 8 Ethernet II, Src: HonHaiPr_84:3e:c4 (fO:7b:cb:84:3e:c4), Dst: EdimaxTe_62:e7:94 (00:Oe:2e:62:e7:94) 8 Destination: EdimaxTe_62:e7:94 (00:Oe:2e:62:e7:94) Address: EdimaXTe_62:e7:94 (00:Oe:2e:62:e7:94) ....... 0 = IG b-it : Individual address (unicast) ...... 0 = LG b-it : Globally unique address (factory default) El Source: HonHaiPr _84 :3e:c4 (fO:7b:cb:84 :3e:c4) Address: ncnna+er _84 :3e :c4 (fO:7b :cb:84: 3e:c4) ... 0. . = IG b-it : Individual address (unicast) ...... O = LG bit:: Globally unique address (factory default) Type: IP (Ox0800) I±l Internet protocol, Src: 172.16.16.77 (172.16.16.77), ost : 174.129.228.246 (174.129.228.246) src eor-t : 49689 (49689), DSt: eor-t : htt:p (80), seq: 1, Ack : 1, Len: 373

1_ fa4+" 'ni"

HTTP

http > 49689 [ACI<] seq=l Ack=374 win=65696 t.en-c HTTP/1.0 301 Moved cer-manent l v (t:ext./html)

13. Ketiga kita akan mengamati penjelasan "lnternet Protokol"

1t1.'IuI¥,,-,.t- NY'iR2 777. R2'i<:R1

118i [±J Ethernet II, src: HonHaipr_84:3e:c4 (fO:7b:cb:84:3e:c4), os t : EdimaXTe_62:e7:94 (00:Oe:2e:62:e7:94) EI rnt er net =r ot ocot , src: 172 .16.16. 77 (172.16.16.77). ost : 174.129.228.246 (174.129.228.246) Version: 4 Header length: 20 bytes EI Differentiated services Field: OxOO(nsc= OxOO: Default; ECN: OxOO) 0000 00 .. = Differentiated services codepoint: Default (OxOO) .. 0. = ECN-capab 1 e Tr ans port: (ECT): 0 ....... 0 = ECN-CE: 0 Total Length: 413 Identification: Ox36c3 (14019) EI Flags: Ox02 (Don't Fragment) 0.. = Reserved bit: NOt. Set: .1. = Don't fr agment: Set .. 0 = More fragments: Not Set r-ragment offs et : 0 Time t:o 1 ive: 128 Protocol: TCP (Ox06) EI Header checksum: Ox72c2 [correct] [Good: True] [Bad False] Source: 172.16.16.77 (172.16.16.77) Destination: 174.129.228.246 (174.129.228.246) m Transmission control protocol, sr c Port: 49689 (49689), est Port: http (80), seq: 1, Ack: 1, Len: 373 [±J i'Ftypertext: Transfer Prot:ocol

,,*•. •

174.12CL/:JR.74fl

17/.1fl.1fl.77

T,P

m*N" "liM'

14. Berihutnya kita akan mengamati penjelasan "Tep"

cr-eme 581 (427 byt es on wire, 427 bytes captured) Ethernet II, Src: HonHaiPr _84 :3e:c4 (fO:7b:cb:84 :3e:c4), Dst: EdimaxTe_62:e7:94 (00:Oe:2e:62 Internet protocol, src: 172.16.16.77 (172.16.16.77), ost : 174.129.228.246 (174.129.228.246) .-I" .. 'iWiifN"iri i.M Hi
I±I I±I I±I Source

:e7:94)

;iI'Jii' liE """'#+,, f3 '.as

port: 49689 (49689)

ii-,i,_Un

"'+*4;••

" ••

'"

if

Destination port: http (80) [stream index: 33] sequence number: 1 (r-e l at tve sequence number) [Next sequence number: 374 (relative sequence number)] Acknowledgement number: 1 (relative ack number) Header 1enqt h: 20 bytes Fl ags: Ox1S (PSH, ACK) O. '" congestion window Reduced CCWR): Not set
· O. .
= = =

ECN-ECho:

Not

set

· . O. .. 1 1. .
· · O .. O.

urgent: Not set Acknowl edgement: push: set

Set

373]

15.Dan yang terakhir amati penjelasan "YlTTP"

_.,

,.,-.,.".,.,

jl"

§j~.

Frame 589 (424 bytes on wire, 424 bytes captured) 1tI Ethernet II, Src: HonHaiPr_84:3e:c4 (fO:7b:cb:84:3e:c4), ost: EdimaxTe_62:e7:94 (00:Oe:2e:62:e7:94) 1tI Internet protocol, src: 172.16.16.77 (172.16.16.77), ost : 174.129.228.246 (174.129.228.246) 1tI Transmission control protocol, src port: 49690 (49690), ost port: http (80), seq: 1, Ack: 1, Len: 370 EI HYf::IerteXLTransfer Protocol El GET/ ;:HTTp/1.1\r\n EI [Expert Info (chat/sequence): GET / / HTTP/1.1\r\n] [Message: GET / / HTTP/1.1\r\n] [severity level: Chat] [Gr oup: sequence] Request Met hod: GET Request URI: / / Request Version: HTTP/1.1 Host: hootsuite. com\r\n user-Agent: Mozilla/5.0 (windows; u; windows NT 6.1; en-us; rv:1. 9. O. 8) Gecko/2009032609 Firefox/3. O. 8\r\n Accept: text/html, appl i cat; on/xhtml+xml .aop'l ' cat; cn/xm'l : q=O. 9,"" /r, q=O. 8\r\n Accept-Language: en-us, en; q=O. 5\r\n Accept-Encodi ng: gzi p, defl at e'v-xn «ccept-ctiar s er : ISO-8859-1, utf-8; q=D, 7,""; q=O. 7\r\n keep-A! ive: 300\r\n Connecti on: keep-al ive\r\n \r\n
1tI

v. HasH Kepja
Dari praktik yang saya lakokan saya dapat menqanaltsis basil prahtihnya sebagai berikct;

1. T emqata protokol ito cokop banqak yaitu

A.YlTTP Ylyper Text Transfer Protocol adalah protokol yang diperqunakan ontok mentransfer dokomen dalam World Wide Web (www). Protocol ini adalah protokol ringan, tidak berstatos dan generih yang dapal diperqonakan berbaqai macam tipe

dokomen B.Gopher Gopher adalah apltkast yang dapat mencari maklomat yang ada dl internet, teks, Ontuh mendapatkan tetapi hanya "text base" saja, atau berdasarkan gopher, kita harus menghubunghan maklcmat dan

diri dengan gopher server yang ada di internet.

YlTTP. internet FTP yang berjalan merupakan

Gopher meropakan protocol yang sudah lama dan saat ini sudah molal dttinqqalkan

karena penggunaanya

ttdak sesederhana

C.

FTP File Transfer antar Protocol adalah sebuah protocol

dl dalam
salah satu

lapisan apltkast yang meropakan standar ontok pentransferan mesin - mesin dalam sebuah internetwork

berkas (file) kompoter

protokol internet yang paling awal dtkembanqkan, dan masih diqunakan hingga saat ini ontok melakokan pengunduhan (download) dan penggugahan (upload) berkas-

berkas kompoter antar client FTP dan server FTP. Pada umumnya browser
browser verst terbaru sudah menduhung FTP. O. Mailto

Frotolol mailto diqunakan ontok mengirim email melalol jaringan internet. Bentuh
format pada protocol ini adalah :maito:nama email@namahostcontoh:mailto:otahhacau@yahoo.com Control Protocol/lnternet Protocol merupakan standar komonikasi data dalam proses tukar-menokar data dari satn

E. TCP/1P
Transfer yang diqunakan oleh komonitas internet

computer he computer yang lain dalam jaringan internet 2. lntemet Protocol lntemet yang diqunakan adalah internet protocol versi If (ipvlf). Selain versi If ada juga alamat lP versi 6 yang diqunakan di dalam protocol.

Vll. Kesirnpulan
Pada tepsebut saat kita rnengakses website. disebut tepnyata tepjadi banyak kita sekali pposes yang tepjadi . pposes tepsebut enkapsulasi. Dana pada pposes membuka

tepjadi pposes pembepian dan pembepian. Jadi saat

website tepmasuk jenis komunikasi Half Duplex. Namun sebagian opang- opang menyebutnya full duplex Isar-errapposes pepmintaan dan pembepian tepsebut beplangsung sang at cepat