You are on page 1of 5

LAB1

NAME : CHENG WEI SHENG DATE OF SUBMIT : 11st March 2014


LECTURER : Dr. Raja Zahilah bte Raja Mohd Radzi MATRIC NO. : AE100081

1a


a. What is the URL, hostname, and filename requested?
URL - www.jbtalks.cc/index.php, hostname - www.jbtalks.cc, filename - index.php
b. What version of HTTP is the browser running?
HTTP 1.1
c. Is the browser a Mozilla or an Internet Explorer?
Mozilla
d. Is the browser requesting a non-persistent or a persistent connection? Justify.
Persistent (Connection : Keep Alive)
e. What is the IP address of the requesting computer?
103.6.244.188
f. What type of transport protocol does this connection used?
TCP
g. What port number does HTTP protocol communicate from client to server?
53652

1b


a. Was the server able to find the document successfully or not?

YES

b. At what time was the document reply provided?

Thu , 06 Mar 2014 04:43:29 GMT

c. When was the document last modified?

Not Available

d. How many bytes are there in the document being returned?

29226 bytes

e. Did the server agree to a persistent connection? Explain your answer.

No. (Connection: Close)

1c



a. What is the URL, hostname, and filename requested?

http://p4-brzglevdboreg-f6zi4i3wa7jt66bb-if-v6exp3-v4.metric.gstatic.com/v6exp3/redir.html
http://p4-brzglevdboreg-f6zi4i3wa7jt66bb-if-v6exp3-v4.metric.gstatic.com
v6exp3/redir.html

b. Was the server able to find the document successfully or not? Explain your answer.

YES

c. If the status code reply is 304, what does it mean? Explain your answer.

If the client has performed a conditional GET request and access is allowed, but the document
has not been modified, the server SHOULD respond with this status code.

2. Filter packet connection to display only the ftp protocol. Answer the following:





a. List source and destination address for this ftp transaction?

Source : 192.168.1.103 Destination 66.35.227.3

b. What transport protocol and port number does ftp used?

TCP , port number = 21

c. Does ftp provide secure transaction? Explain.

No, As SFTP or FTPS dint use

d. In the file content, can we trace the user ID and password used for ftp transaction? What is
user ID and password used?

user ID anonymous , password chrome@example.com

e. From the tracing, list four commands that have been used in ftp transaction.

USER,PASS,SYST,PWD

3. Filter packet connection to display only the DNS protocol transactions. Investigate DNS packet
flows at frame number 191 and 192. Answer the following:



a. What is the purpose of DNS application used for?

hostname to IP address translation,host aliasing,mail server aliasing,load distribution

b. List client and proxy address of these DNS transaction.

Client : 10.60.80.213
Proxy : 161.139.250.2

c. What transport protocol and port number does DNS used?

UDP, 60604

d. What is the query of client to proxy DNS?

www.free-counter-web.com

e. What is the response of clients query in (d) from proxy DNS?



f. Briefly discuss why answer for clients query given in (e) by proxy DNS is more than one IP
address?

You can associate more than one IP address to your hostname, that can help the clients to
balance between different servers, for example, two replicated LDAP servers with the same
information.