You are on page 1of 20

# Disciplina : Tecnologia e Redes De Computadores

## R: Meu endereo -> 74 : 27 : ea : 7c : 10 :38

2. What is the 48-bit destination address in the Ethernet frame? Is this the Ethernet
R: O endereo de destino foi 58 : 23 : 8c : 05 : c5 : 7f, no caso esse o
endereo de destino do meu roteador Technicolor.
3. Give the hexadecimal value for the two-byte Frame type field. What do the bit(s)
whose value is 1 mean within the flag field?

## R: O valor Hexadecimal 0x0800 ,Internet Protocol o campo que

identifica o protocolo do cliente , no meu caso sendo o IPv4.
4 . How many bytes from the very start of the Ethernet frame does the ASCII G in
GET appear in the Ethernet frame?

R: Aparece no 59 byte

5. What is the hexadecimal value of the CRC field in this Ethernet frame?
R: No existe o valor de CRC na janela do Ethernet.
6. What is the value of the Ethernet source address? Is this the address of your
computer, or of gaia.cs.umass.edu (Hint: the answer is no). What device has this

## R: O endereo 58 : 23 : 8c : 05 : c5 : 7f, esse endereo no do meu

computador ou da url acessada , o endereo que de destino do meu
roteador , o endereo para chegar na minha subrede.

7. What is the destination address in the Ethernet frame? Is this the Ethernet address

## R: O endereo de destino 74 : 27 : ea : 7c : 10 :38. Sim o endereo do

meu pc.

8. Give the hexadecimal value for the two-byte Frame type field. What do the bit(s)
whose value is 1 mean within the flag field?

## R: O valor 0x800, ou seja o protocolo usado continua sendo o IPv4

9. How many bytes from the very start of the Ethernet frame does the ASCII O in
OK (i.e., the HTTP response code) appear in the Ethernet frame?
R: Como na questo 4, aparece nos mesmos 59 bytes.

10. What is the hexadecimal value of the CRC field in this Ethernet frame?
R: Como na questo 5 , no existe o valor de CRC na janela do Ethernet.

11. Write down the contents of your computers ARP cache. What is the meaning of
each column value?
R: Em ordem podemos observar os Endereos IP's, os endereos MAC's e
por ultimo o tipo de protocolo, se dinmico ou esttico.

12. What are the hexadecimal values for the source and destination addresses in the
Ethernet frame containing the ARP request message?
R: O endereo de origem 74 : 27 : ea : 7c : 10 :38 , j o endereo de
destino como broadcast, ff : ff : ff : ff : ff : ff

13. Give the hexadecimal value for the two-byte Ethernet Frame type field. What do
the bit(s) whose value is 1 mean within the flag field?
R: No campo do tipo de protocolo , vemos o valor em hecadecimal 0x0806
que representa uma mensagem ARP.

14.
a) How many bytes from the very beginning of the Ethernet frame does the
ARP opcode field begin?
R: O Campo ARP code comea 42 bytes depois do inicio do Ethernet

b) What is the value of the opcode field within the ARP-payload part of the
Ethernet frame in which an ARP request is made?
R: O valor do campo opcode dentro da mensagem ARP tem carga util
de 0x0001

## c) Does the ARP message contain the IP address of the sender?

R: Sim , contm o endereo de IP do emissor.

d) Where in the ARP request does the question appear the Ethernet
R: Aparece no endereo MAC do destino.

15. Now find the ARP reply that was sent in response to the ARP request.
a) How many bytes from the very beginning of the Ethernet frame does the
ARP opcode field begin?

## R: o de 10 bytes a partir do inicio.

b) What is the value of the opcode field within the ARP-payload part of the
Ethernet frame in which an ARP response is made?

## R: O valor do request "1".

c) Where in the ARP message does the answer to the earlier ARP request
appear the IP address of the machine having the Ethernet address whose
corresponding IP address is being queried?
R: Endereo de MAC que enviou.: Technic_05:c5:7f (58 : 23 : 8c : 05 : c5 :7f
)e Ip 192.168.0.1
16. What are the hexadecimal values for the source and destination addresses in the
Ethernet frame containing the ARP reply message?
R: O valor em hexadecimal (MAC) do endereo de destino o
74:27:ea:7c:10:38 . E o valor em hexadecimal (MAC) do endereo de
origem 58 : 23 : 8c : 05 : c5 :7f
17. Open the ethernet-ethereal-trace-1 trace file in
http://gaia.cs.umass.edu/wireshark-labs/wireshark-traces.zip. The first and second
ARP packets in this trace correspond to an ARP request sent by the computer
running Wireshark, and the ARP reply sent to the computer running Wireshark by
the computer with the ARP-requested Ethernet address. But there is yet another
computer on this network, as indiated by packet 6 another ARP request. Why is
there no ARP reply (sent in response to the ARP request in packet 6) in the packet
trace?
R: Porque o endereo Ip e ARP no sao verdadeiros , ou seja eles nao
esto coincidindo , por isso o pc no ira receber a mensagem de request.

LABORATORIO 802.11

1. What are the SSIDs of the two access points that are issuing most of the beacon
frames in this trace?
R: Os SSIDs so 30 Munroe St e o linksys_12.
2. What are the intervals of time between the transmission of the beacon frames the
linksys_ses_24086 access point? From the 30 Munroe St. access point?
R: O intervalo de 0.098185000 segundos.
3. What (in hexadecimal notation) is the source MAC address on the beacon frame
from 30 Munroe St?
R: O endereo MAC 00:16:b6:f7:1d:51
4. What (in hexadecimal notation) is the destination MAC address on the beacon
frame from 30 Munroe St??
R: O endereo MAC o do Broadcast ff:ff:ff:ff:ff:ff .

5. What (in hexadecimal notation) is the MAC BSS id on the beacon frame from 30
Munroe St?
R: o mesmo endereo da origem pois um "quadro" beacon, ou seja o
endereo 00:16:b6:f7:1d:51.

6. The beacon frames from the 30 Munroe St access point advertise that the access
point can support four data rates and eight additional extended supported rates.
What are these rates?
R: So suportados.: 1(B), 2(B), 5.5(B) e 11(B), porem pode ser extendidas
para 6.0, 9.0, 12.0, 18.0, 24.0, 36.0, 48.0 e 54.0 Mbps.

7.Find the 802.11 frame containing the SYN TCP segment for this first TCP session
frame? Which MAC address in this frame corresponds to the wireless host (give
the hexadecimal representation of the MAC address for the host)? To the access
point? To the first-hop router? What is the IP address of the wireless host
sending this TCP segment? What is the destination IP address? Does this
destination IP address correspond to the host, access point, first-hop router, or
some other network-attached device? Explain.
R: So os endereos MAC's de origem e destino, endereos do access
point , so conhecidos por endereos BSSid. Respectivamente so os
seguintes endereos MAC's.:

## Endereo de Destino - 00:16:b6:f7:1d:51 || IP -128.199.245.12

8. Find the 802.11 frame containing the SYNACK segment for this TCP session.
What are three MAC address fields in the 802.11 frame? Which MAC address in
this frame corresponds to the host? To the access point? To the first-hop router?
Does the sender MAC address in the frame correspond to the IP address of the
device that sent the TCP segment encapsulated within this datagram? (Hint:
review Figure 5.19 in the text if you are unsure of how to answer this question, or
the corresponding part of the previous question. Its particularly important that
you understand this).
R: Endereo mac no campo do 802.11 00:16:b6:f7:1d:51 .

Destino = 00:13:02:d1:b6:4f

Origem = 00:16:b6:f7:1d:51

## O endereo MAC correspondente ao Host o de destino =

00:13:02:d1:b6:4f.

## MAC do primeiro salto o de origem = 00:16:b6:f7:1d:51

9. What two actions are taken (i.e., frames are sent) by the host in the trace just after
t=49, to end the association with the 30 Munroe St AP that was initially in place
when trace collection began? (Hint: one is an IP-layer action, and one is an
802.11-layer action). Looking at the 802.11 specification, is there another frame
that you might have expected to see, but dont see here?
R: O endereo DHCP de envio 192.168.1.1 . O host enviou a
DEAUTHENTICATION depois de 0.02 segundos.
10. Examine the trace file and look for AUTHENICATION frames sent from the host
to an AP and vice versa. How many AUTHENTICATION messages are sent
from the wireless host to the linksys_ses_24086 AP (which has a MAC address of
Cisco_Li_f5:ba:bb) starting at around t=49? .
R: Existem 17 mensagens de AUTHENTICATION do AP - IntelCor_d1:b6:4f

11. Does the host want the authentication to require a key or be open?
R: Sim.
12. Do you see a reply AUTHENTICATION from the linksys_ses_24086 AP in the
trace?
R: No.

13. Now lets consider what happens as the host gives up trying to associate with the
linksys_ses_24086 AP and now tries to associate with the 30 Munroe St AP. Look
for AUTHENICATION frames sent from the host to and AP and vice versa. At
what times are there an AUTHENTICATION frame from the host to the 30
Munroe St. AP, and when is there a reply AUTHENTICATION sent from that AP
R: Existe uma mensagem de AUTHENTICATION enviada de
00:13:02:d1:b6:4f para 00:16:b7:f7:1d:51, no tempo de 63.169910

## 14. An ASSOCIATE REQUEST from host to AP, and a corresponding ASSOCIATE

RESPONSE frame from AP to host are used for the host to associated with an AP.
At what time is there an ASSOCIATE REQUEST from host to the 30 Munroe St
AP? When is the corresponding ASSOCIATE REPLY sent?
R: ASSOCIATE REQUEST vindo do host 30 Munroe St AP at t = 63.169910 e
respondido em t = 63.192101.
15. What transmission rates is the host willing to use? The AP? To answer this
question, you will need to look into the parameters fields of the 802.11 wireless
LAN management frame.
R: So Possiveis 1, 2, 5.5, 11, 6, 9, 12, 18, 24, 32, 48, 54 Mbps.
16. What are the sender, receiver and BSS ID MAC addresses in these frames? What
is the purpose of these two types of frames?
R:

Request = InterCor_d1:b6:4f,

## BSS Id = Broadcast (ff:ff:ff:ff:ff:ff)

Response:

Sender = Cisco-Li_f7:1d:51