SlideShare a Scribd company logo

03 wireshark dns-solution_july_22_2007

brayan huamani capcha
brayan huamani capcha

solucion wireskarh lab dns

Engineering
1 of 6
Download to read offline
Wireshark Lab: DNS PART 1 1.Run nslookup to obtain the IP address of a Web server in Asia. I performed nslookup for www.rediff.com Screenshot taken after question 1 2. Run nslookup to determine the authoritative DNS servers for a university in Europe. I performed nslookup for a European University in Ioannina Greece Screenshot taken after question 2 3. Run nslookup so that one of the DNS servers obtained in Question 2 is queried for the mail servers for Yahoo! mail. Screenshot taken after question 3
PART 3a Screenshot for DNS query Screenshot for DNS response 4. Locate the DNS query and response messages. Are then sent over UDP or TCP? They are sent over UDP 5. What is the destination port for the DNS query message? What is the source port of DNS response message? The destination port for the DNS query is 53 and the source port of the DNS response is 53. Screenshot for ipconfig –all 6. To what IP address is the DNS query message sent? Use ipconfig to determine the IP address of your local DNS server. Are these two IP addresses the same? It’s sent to 192.168.1.1 which is the IP address of one of my local DNS servers.
7. Examine the DNS query message. What “Type” of DNS query is it? Does the query message contain any “answers”? It’s a type A Standard Query and it doesn’t contain any answers. 8. Examine the DNS response message. How many “answers” are provided? What do each of these answers contain? There were 2 answers containing information about the name of the host, the type of address, class, the TTL, the data length and the IP address. Answers www.ietf.org: type A, class IN, addr 209.173.57.180 Name: www.ietf.org Type: A (Host address) Class: IN (0x0001) Time to live: 30 minutes Data length: 4 Addr: 209.173.57.180 www.ietf.org: type A, class IN, addr 209.173.53.180 Name: www.ietf.org Type: A (Host address) Class: IN (0x0001) Time to live: 30 minutes Data length: 4 Addr: 209.173.53.180 9. Consider the subsequent TCP SYN packet sent by your host. Does the destination IP address of the SYN packet correspond to any of the IP addresses provided in the DNS response message? The first SYN packet was sent to 209.173.57.180 which corresponds to the first IP address provided in the DNS response message. 10. This web page contains images. Before retrieving each image, does your host issue new DNS queries? No
PART 3b Screenshot for DNS query Screenshot for DNS response 11. What is the destination port for the DNS query message? What is the source port of DNS response message? The destination port of the DNS query is 53 and the source port of the DNS response is 53. 12. To what IP address is the DNS query message sent? Is this the IP address of your default local DNS server? It’s sent to 192.168.1.1 which as we can see from the ipconfig –all screenshot, is the default local DNS server. 13. Examine the DNS query message. What “Type” of DNS query is it? Does the query message contain any “answers”? The query is of type A and it doesn’t contain any answers. 14. Examine the DNS response message. How many “answers” are provided? What do each of these answers contain? The response DNS message contains one answer containing the name of the host, the type of address, the class, and the IP address. Answers www.mit.edu: type A, class IN, addr 18.7.22.83 Name: www.mit.edu Type: A (Host address) Class: IN (0x0001) Time to live: 1 minute Data length: 4 Addr: 18.7.22.83 15. Provide a screenshot.
PART 3c Screenshot for DNS response 16. To what IP address is the DNS query message sent? Is this the IP address of your default local DNS server? It was sent to 128.238.29.22 which is my default DNS server. 17. Examine the DNS query message. What “Type” of DNS query is it? Does the query message contain any “answers”? It’s a type NS DNS query that doesn’t contain any answers. 18. Examine the DNS response message. What MIT nameservers does the response message provide? Does this response message also provide the IP addresses of the MIT nameservers? The nameservers are bitsy, strawb and w20ns. We can find their IP addresses if we expand the Additional records field in Wireshark as seen below. Answers mit.edu: type NS, class inet, ns bitsy.mit.edu mit.edu: type NS, class inet, ns strawb.mit.edu mit.edu: type NS, class inet, ns w20ns.mit.edu Additional records bitsy.mit.edu: type A, class inet, addr 18.72.0.3 strawb.mit.edu: type A, class inet, addr 18.71.0.151 w20ns.mit.edu: type A, class inet, addr 18.70.0.160 19. Provide a screenshot.
PART 3d Screenshot for DNS response 20. To what IP address is the DNS query message sent? Is this the IP address of your default local DNS server? If not, what does the IP address correspond to? The query is sent to 18.72.0.3 which corresponds to bitsy.mit.edu. 21. Examine the DNS query message. What “Type” of DNS query is it? Does the query message contain any “answers”? It’s a standard type A query that doesn’t contain any answers. 22. Examine the DNS response message. How many “answers” are provided? What does each of these answers contain? One answeri s provided in the DNS response message. It contains the following: Answers www.aiit.or.kr: type A, class inet, addr 222.106.36.102 Name: www.aiit.or.kr Type: Host address Class: inet Time to live: 1 hour Data length: 4 Addr: 222.106.36.102 23. Provide a screenshot.

Recommended

Review of TCP- IP CS105 Norwalk CC
Review of TCP- IP CS105 Norwalk CCReview of TCP- IP CS105 Norwalk CC
Review of TCP- IP CS105 Norwalk CCArthur Landry
 
IWESEP 2013
IWESEP 2013IWESEP 2013
IWESEP 2013Norihiro Yoshida
 
COUNTERMEASURE TOOL - CARAPACE FOR NETWORK SECURITY
COUNTERMEASURE TOOL - CARAPACE FOR NETWORK SECURITYCOUNTERMEASURE TOOL - CARAPACE FOR NETWORK SECURITY
COUNTERMEASURE TOOL - CARAPACE FOR NETWORK SECURITYIJNSA Journal
 
Network (IP)
Network (IP)Network (IP)
Network (IP)Tanat Tonguthaisri
 
Whole c++ lectures ITM1 Th
Whole c++ lectures ITM1 ThWhole c++ lectures ITM1 Th
Whole c++ lectures ITM1 ThAram Mohammed
 
Wireshark tcp - 2110165028
Wireshark tcp - 2110165028Wireshark tcp - 2110165028
Wireshark tcp - 2110165028Nanda Afif
 
Wireshark tcp
Wireshark tcpWireshark tcp
Wireshark tcpYasin Abdullah
 
Network (FE)
Network (FE)Network (FE)
Network (FE)Tanat Tonguthaisri
 

Recommended

Review of TCP- IP CS105 Norwalk CC
Review of TCP- IP CS105 Norwalk CCReview of TCP- IP CS105 Norwalk CC
Review of TCP- IP CS105 Norwalk CCArthur Landry
 
IWESEP 2013
IWESEP 2013IWESEP 2013
IWESEP 2013Norihiro Yoshida
 
COUNTERMEASURE TOOL - CARAPACE FOR NETWORK SECURITY
COUNTERMEASURE TOOL - CARAPACE FOR NETWORK SECURITYCOUNTERMEASURE TOOL - CARAPACE FOR NETWORK SECURITY
COUNTERMEASURE TOOL - CARAPACE FOR NETWORK SECURITYIJNSA Journal
 
Network (IP)
Network (IP)Network (IP)
Network (IP)Tanat Tonguthaisri
 
Whole c++ lectures ITM1 Th
Whole c++ lectures ITM1 ThWhole c++ lectures ITM1 Th
Whole c++ lectures ITM1 ThAram Mohammed
 
Wireshark tcp - 2110165028
Wireshark tcp - 2110165028Wireshark tcp - 2110165028
Wireshark tcp - 2110165028Nanda Afif
 
Wireshark tcp
Wireshark tcpWireshark tcp
Wireshark tcpYasin Abdullah
 
Network (FE)
Network (FE)Network (FE)
Network (FE)Tanat Tonguthaisri
 
TLS, SPF, DKIM, DMARC, authenticated email
TLS, SPF, DKIM, DMARC, authenticated emailTLS, SPF, DKIM, DMARC, authenticated email
TLS, SPF, DKIM, DMARC, authenticated emailrinnocente
 
MPI_Mprobe is good for you
MPI_Mprobe is good for youMPI_Mprobe is good for you
MPI_Mprobe is good for youJeff Squyres
 
SureMail: Notification Overlay for Email Reliability
SureMail: Notification Overlay for Email ReliabilitySureMail: Notification Overlay for Email Reliability
SureMail: Notification Overlay for Email Reliabilitywebhostingguy
 
Linguistic Passphrase Cracking
Linguistic Passphrase CrackingLinguistic Passphrase Cracking
Linguistic Passphrase CrackingPriyanka Aash
 
Lecture17
Lecture17Lecture17
Lecture17Alok Tripathi
 
Human Interface & Multimedia
Human Interface & MultimediaHuman Interface & Multimedia
Human Interface & MultimediaTanat Tonguthaisri
 
Authentication in Different Scenarios
Authentication in Different ScenariosAuthentication in Different Scenarios
Authentication in Different ScenariosRaj Sikarwar
 
IBPS SO
IBPS SOIBPS SO
IBPS SOJitendra kadu
 
CS6601 DISTRIBUTED SYSTEMS
CS6601 DISTRIBUTED SYSTEMSCS6601 DISTRIBUTED SYSTEMS
CS6601 DISTRIBUTED SYSTEMSKathirvel Ayyaswamy
 
Network Security CS2
Network Security CS2Network Security CS2
Network Security CS2Infinity Tech Solutions
 
internet applications
internet applicationsinternet applications
internet applicationsSrinivasa Rao
 
Lab 04
Lab 04Lab 04
Lab 04Om Thakkar
 
Wireshark Lab DNS v6.01 Supplement to Computer Networkin.docx
Wireshark Lab DNS v6.01 Supplement to Computer Networkin.docxWireshark Lab DNS v6.01 Supplement to Computer Networkin.docx
Wireshark Lab DNS v6.01 Supplement to Computer Networkin.docxalanfhall8953
 
Week3 lec 2
Week3 lec 2Week3 lec 2
Week3 lec 2syedhaiderraza
 
Wireshark Lab HTTP, DNS and ARP v7 solution
Wireshark Lab HTTP, DNS and ARP v7 solutionWireshark Lab HTTP, DNS and ARP v7 solution
Wireshark Lab HTTP, DNS and ARP v7 solutionUnited International University
 
Dns and irc
Dns and ircDns and irc
Dns and ircZekriaMuzafar
 
Footprinting LAB SETUP GUIDE.pdf
Footprinting LAB SETUP GUIDE.pdfFootprinting LAB SETUP GUIDE.pdf
Footprinting LAB SETUP GUIDE.pdfsdfghj21
 
Dns detail understanding
Dns detail understandingDns detail understanding
Dns detail understandingCapital University of Science and Technology
 
DIAPOSITIVAS DNS HTTP SMTP
DIAPOSITIVAS DNS HTTP SMTPDIAPOSITIVAS DNS HTTP SMTP
DIAPOSITIVAS DNS HTTP SMTPRichard Eliseo Mendoza Gafaro
 
A Measurement Study of Open Resolvers and DNS Server Version
A Measurement Study of Open Resolvers and DNS Server VersionA Measurement Study of Open Resolvers and DNS Server Version
A Measurement Study of Open Resolvers and DNS Server VersionYuuki Takano
 
08 tcp-dns
08 tcp-dns08 tcp-dns
08 tcp-dnspantu_1961
 
The Application Layer
The Application LayerThe Application Layer
The Application LayerMSharmilaDeviITDEPT
 

More Related Content

What's hot

TLS, SPF, DKIM, DMARC, authenticated email
TLS, SPF, DKIM, DMARC, authenticated emailTLS, SPF, DKIM, DMARC, authenticated email
TLS, SPF, DKIM, DMARC, authenticated emailrinnocente
 
MPI_Mprobe is good for you
MPI_Mprobe is good for youMPI_Mprobe is good for you
MPI_Mprobe is good for youJeff Squyres
 
SureMail: Notification Overlay for Email Reliability
SureMail: Notification Overlay for Email ReliabilitySureMail: Notification Overlay for Email Reliability
SureMail: Notification Overlay for Email Reliabilitywebhostingguy
 
Linguistic Passphrase Cracking
Linguistic Passphrase CrackingLinguistic Passphrase Cracking
Linguistic Passphrase CrackingPriyanka Aash
 
Authentication in Different Scenarios
Authentication in Different ScenariosAuthentication in Different Scenarios
Authentication in Different ScenariosRaj Sikarwar
 
internet applications
internet applicationsinternet applications
internet applicationsSrinivasa Rao
 

What's hot (11)

TLS, SPF, DKIM, DMARC, authenticated email
TLS, SPF, DKIM, DMARC, authenticated emailTLS, SPF, DKIM, DMARC, authenticated email
TLS, SPF, DKIM, DMARC, authenticated email
 
MPI_Mprobe is good for you
MPI_Mprobe is good for youMPI_Mprobe is good for you
MPI_Mprobe is good for you
 
SureMail: Notification Overlay for Email Reliability
SureMail: Notification Overlay for Email ReliabilitySureMail: Notification Overlay for Email Reliability
SureMail: Notification Overlay for Email Reliability
 
Linguistic Passphrase Cracking
Linguistic Passphrase CrackingLinguistic Passphrase Cracking
Linguistic Passphrase Cracking
 
Lecture17
Lecture17Lecture17
Lecture17
 
Human Interface & Multimedia
Human Interface & MultimediaHuman Interface & Multimedia
Human Interface & Multimedia
 
Authentication in Different Scenarios
Authentication in Different ScenariosAuthentication in Different Scenarios
Authentication in Different Scenarios
 
IBPS SO
IBPS SOIBPS SO
IBPS SO
 
CS6601 DISTRIBUTED SYSTEMS
CS6601 DISTRIBUTED SYSTEMSCS6601 DISTRIBUTED SYSTEMS
CS6601 DISTRIBUTED SYSTEMS
 
Network Security CS2
Network Security CS2Network Security CS2
Network Security CS2
 
internet applications
internet applicationsinternet applications
internet applications
 

Similar to 03 wireshark dns-solution_july_22_2007

Wireshark Lab DNS v6.01 Supplement to Computer Networkin.docx
Wireshark Lab DNS v6.01 Supplement to Computer Networkin.docxWireshark Lab DNS v6.01 Supplement to Computer Networkin.docx
Wireshark Lab DNS v6.01 Supplement to Computer Networkin.docxalanfhall8953
 
Footprinting LAB SETUP GUIDE.pdf
Footprinting LAB SETUP GUIDE.pdfFootprinting LAB SETUP GUIDE.pdf
Footprinting LAB SETUP GUIDE.pdfsdfghj21
 
A Measurement Study of Open Resolvers and DNS Server Version
A Measurement Study of Open Resolvers and DNS Server VersionA Measurement Study of Open Resolvers and DNS Server Version
A Measurement Study of Open Resolvers and DNS Server VersionYuuki Takano
 
DNS spoofing/poisoning Attack Report (Word Document)
DNS spoofing/poisoning Attack Report (Word Document)DNS spoofing/poisoning Attack Report (Word Document)
DNS spoofing/poisoning Attack Report (Word Document)Fatima Qayyum
 
Networkin new
Networkin newNetworkin new
Networkin newrajujast
 
Dns server
Dns serverDns server
Dns serverMuuluu
 
Design of a campus network
Design of a campus networkDesign of a campus network
Design of a campus networkAalap Tripathy
 

Similar to 03 wireshark dns-solution_july_22_2007 (20)

Lab 04
Lab 04Lab 04
Lab 04
 
Wireshark Lab DNS v6.01 Supplement to Computer Networkin.docx
Wireshark Lab DNS v6.01 Supplement to Computer Networkin.docxWireshark Lab DNS v6.01 Supplement to Computer Networkin.docx
Wireshark Lab DNS v6.01 Supplement to Computer Networkin.docx
 
Week3 lec 2
Week3 lec 2Week3 lec 2
Week3 lec 2
 
Wireshark Lab HTTP, DNS and ARP v7 solution
Wireshark Lab HTTP, DNS and ARP v7 solutionWireshark Lab HTTP, DNS and ARP v7 solution
Wireshark Lab HTTP, DNS and ARP v7 solution
 
Dns and irc
Dns and ircDns and irc
Dns and irc
 
Footprinting LAB SETUP GUIDE.pdf
Footprinting LAB SETUP GUIDE.pdfFootprinting LAB SETUP GUIDE.pdf
Footprinting LAB SETUP GUIDE.pdf
 
Dns detail understanding
Dns detail understandingDns detail understanding
Dns detail understanding
 
DIAPOSITIVAS DNS HTTP SMTP
DIAPOSITIVAS DNS HTTP SMTPDIAPOSITIVAS DNS HTTP SMTP
DIAPOSITIVAS DNS HTTP SMTP
 
A Measurement Study of Open Resolvers and DNS Server Version
A Measurement Study of Open Resolvers and DNS Server VersionA Measurement Study of Open Resolvers and DNS Server Version
A Measurement Study of Open Resolvers and DNS Server Version
 
08 tcp-dns
08 tcp-dns08 tcp-dns
08 tcp-dns
 
The Application Layer
The Application LayerThe Application Layer
The Application Layer
 
Dns 2
Dns 2Dns 2
Dns 2
 
DNS spoofing/poisoning Attack Report (Word Document)
DNS spoofing/poisoning Attack Report (Word Document)DNS spoofing/poisoning Attack Report (Word Document)
DNS spoofing/poisoning Attack Report (Word Document)
 
Networkin new
Networkin newNetworkin new
Networkin new
 
Dns And Snmp
Dns And SnmpDns And Snmp
Dns And Snmp
 
Dns server
Dns serverDns server
Dns server
 
Ip Spoofing
Ip SpoofingIp Spoofing
Ip Spoofing
 
Design of a campus network
Design of a campus networkDesign of a campus network
Design of a campus network
 
Domain Name System
Domain Name SystemDomain Name System
Domain Name System
 
M7 - Manual
M7 - ManualM7 - Manual
M7 - Manual
 

Recently uploaded

Introduction to Multiple Access Protocol.pptx
Introduction to Multiple Access Protocol.pptxIntroduction to Multiple Access Protocol.pptx
Introduction to Multiple Access Protocol.pptxupamatechverse
 
Call Girls Delhi {Jodhpur} 9711199012 high profile service
Call Girls Delhi {Jodhpur} 9711199012 high profile serviceCall Girls Delhi {Jodhpur} 9711199012 high profile service
Call Girls Delhi {Jodhpur} 9711199012 high profile servicerehmti665
 
Microscopic Analysis of Ceramic Materials.pptx
Microscopic Analysis of Ceramic Materials.pptxMicroscopic Analysis of Ceramic Materials.pptx
Microscopic Analysis of Ceramic Materials.pptxpurnimasatapathy1234
 
SPICE PARK APR2024 ( 6,793 SPICE Models )
SPICE PARK APR2024 ( 6,793 SPICE Models )SPICE PARK APR2024 ( 6,793 SPICE Models )
SPICE PARK APR2024 ( 6,793 SPICE Models )Tsuyoshi Horigome
 
Software Development Life Cycle By Team Orange (Dept. of Pharmacy)
Software Development Life Cycle By Team Orange (Dept. of Pharmacy)Software Development Life Cycle By Team Orange (Dept. of Pharmacy)
Software Development Life Cycle By Team Orange (Dept. of Pharmacy)Suman Mia
 
Architect Hassan Khalil Portfolio for 2024
Architect Hassan Khalil Portfolio for 2024Architect Hassan Khalil Portfolio for 2024
Architect Hassan Khalil Portfolio for 2024hassan khalil
 
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130Suhani Kapoor
 
Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...
Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...
Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...Dr.Costas Sachpazis
 
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...Soham Mondal
 
Decoding Kotlin - Your guide to solving the mysterious in Kotlin.pptx
Decoding Kotlin - Your guide to solving the mysterious in Kotlin.pptxDecoding Kotlin - Your guide to solving the mysterious in Kotlin.pptx
Decoding Kotlin - Your guide to solving the mysterious in Kotlin.pptxJoão Esperancinha
 
Call Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur Escorts
Call Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur EscortsCall Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur Escorts
Call Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur EscortsCall Girls in Nagpur High Profile
 
High Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur EscortsHigh Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur Escortsranjana rawat
 
MANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLS
MANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLSMANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLS
MANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLSSIVASHANKAR N
 
Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝
Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝
Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝soniya singh
 
Analog to Digital and Digital to Analog Converter
Analog to Digital and Digital to Analog ConverterAnalog to Digital and Digital to Analog Converter
Analog to Digital and Digital to Analog ConverterAbhinavSharma374939
 
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...srsj9000
 
main PPT.pptx of girls hostel security using rfid
main PPT.pptx of girls hostel security using rfidmain PPT.pptx of girls hostel security using rfid
main PPT.pptx of girls hostel security using rfidNikhilNagaraju
 
(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...ranjana rawat
 

Recently uploaded (20)

Introduction to Multiple Access Protocol.pptx
Introduction to Multiple Access Protocol.pptxIntroduction to Multiple Access Protocol.pptx
Introduction to Multiple Access Protocol.pptx
 
Call Girls Delhi {Jodhpur} 9711199012 high profile service
Call Girls Delhi {Jodhpur} 9711199012 high profile serviceCall Girls Delhi {Jodhpur} 9711199012 high profile service
Call Girls Delhi {Jodhpur} 9711199012 high profile service
 
Microscopic Analysis of Ceramic Materials.pptx
Microscopic Analysis of Ceramic Materials.pptxMicroscopic Analysis of Ceramic Materials.pptx
Microscopic Analysis of Ceramic Materials.pptx
 
SPICE PARK APR2024 ( 6,793 SPICE Models )
SPICE PARK APR2024 ( 6,793 SPICE Models )SPICE PARK APR2024 ( 6,793 SPICE Models )
SPICE PARK APR2024 ( 6,793 SPICE Models )
 
Software Development Life Cycle By Team Orange (Dept. of Pharmacy)
Software Development Life Cycle By Team Orange (Dept. of Pharmacy)Software Development Life Cycle By Team Orange (Dept. of Pharmacy)
Software Development Life Cycle By Team Orange (Dept. of Pharmacy)
 
Roadmap to Membership of RICS - Pathways and Routes
Roadmap to Membership of RICS - Pathways and RoutesRoadmap to Membership of RICS - Pathways and Routes
Roadmap to Membership of RICS - Pathways and Routes
 
Architect Hassan Khalil Portfolio for 2024
Architect Hassan Khalil Portfolio for 2024Architect Hassan Khalil Portfolio for 2024
Architect Hassan Khalil Portfolio for 2024
 
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
VIP Call Girls Service Kondapur Hyderabad Call +91-8250192130
 
Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...
Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...
Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...
 
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
 
Decoding Kotlin - Your guide to solving the mysterious in Kotlin.pptx
Decoding Kotlin - Your guide to solving the mysterious in Kotlin.pptxDecoding Kotlin - Your guide to solving the mysterious in Kotlin.pptx
Decoding Kotlin - Your guide to solving the mysterious in Kotlin.pptx
 
Call Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur Escorts
Call Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur EscortsCall Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur Escorts
Call Girls Service Nagpur Tanvi Call 7001035870 Meet With Nagpur Escorts
 
High Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur EscortsHigh Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur Escorts
 
MANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLS
MANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLSMANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLS
MANUFACTURING PROCESS-II UNIT-5 NC MACHINE TOOLS
 
Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝
Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝
Model Call Girl in Narela Delhi reach out to us at 🔝8264348440🔝
 
Analog to Digital and Digital to Analog Converter
Analog to Digital and Digital to Analog ConverterAnalog to Digital and Digital to Analog Converter
Analog to Digital and Digital to Analog Converter
 
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
Gfe Mayur Vihar Call Girls Service WhatsApp -> 9999965857 Available 24x7 ^ De...
 
DJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINE
DJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINEDJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINE
DJARUM4D - SLOT GACOR ONLINE | SLOT DEMO ONLINE
 
main PPT.pptx of girls hostel security using rfid
main PPT.pptx of girls hostel security using rfidmain PPT.pptx of girls hostel security using rfid
main PPT.pptx of girls hostel security using rfid
 
(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
(ANVI) Koregaon Park Call Girls Just Call 7001035870 [ Cash on Delivery ] Pun...
 

03 wireshark dns-solution_july_22_2007

  • 1. Wireshark Lab: DNS PART 1 1.Run nslookup to obtain the IP address of a Web server in Asia. I performed nslookup for www.rediff.com Screenshot taken after question 1 2. Run nslookup to determine the authoritative DNS servers for a university in Europe. I performed nslookup for a European University in Ioannina Greece Screenshot taken after question 2 3. Run nslookup so that one of the DNS servers obtained in Question 2 is queried for the mail servers for Yahoo! mail. Screenshot taken after question 3
  • 2. PART 3a Screenshot for DNS query Screenshot for DNS response 4. Locate the DNS query and response messages. Are then sent over UDP or TCP? They are sent over UDP 5. What is the destination port for the DNS query message? What is the source port of DNS response message? The destination port for the DNS query is 53 and the source port of the DNS response is 53. Screenshot for ipconfig –all 6. To what IP address is the DNS query message sent? Use ipconfig to determine the IP address of your local DNS server. Are these two IP addresses the same? It’s sent to 192.168.1.1 which is the IP address of one of my local DNS servers.
  • 3. 7. Examine the DNS query message. What “Type” of DNS query is it? Does the query message contain any “answers”? It’s a type A Standard Query and it doesn’t contain any answers. 8. Examine the DNS response message. How many “answers” are provided? What do each of these answers contain? There were 2 answers containing information about the name of the host, the type of address, class, the TTL, the data length and the IP address. Answers www.ietf.org: type A, class IN, addr 209.173.57.180 Name: www.ietf.org Type: A (Host address) Class: IN (0x0001) Time to live: 30 minutes Data length: 4 Addr: 209.173.57.180 www.ietf.org: type A, class IN, addr 209.173.53.180 Name: www.ietf.org Type: A (Host address) Class: IN (0x0001) Time to live: 30 minutes Data length: 4 Addr: 209.173.53.180 9. Consider the subsequent TCP SYN packet sent by your host. Does the destination IP address of the SYN packet correspond to any of the IP addresses provided in the DNS response message? The first SYN packet was sent to 209.173.57.180 which corresponds to the first IP address provided in the DNS response message. 10. This web page contains images. Before retrieving each image, does your host issue new DNS queries? No
  • 4. PART 3b Screenshot for DNS query Screenshot for DNS response 11. What is the destination port for the DNS query message? What is the source port of DNS response message? The destination port of the DNS query is 53 and the source port of the DNS response is 53. 12. To what IP address is the DNS query message sent? Is this the IP address of your default local DNS server? It’s sent to 192.168.1.1 which as we can see from the ipconfig –all screenshot, is the default local DNS server. 13. Examine the DNS query message. What “Type” of DNS query is it? Does the query message contain any “answers”? The query is of type A and it doesn’t contain any answers. 14. Examine the DNS response message. How many “answers” are provided? What do each of these answers contain? The response DNS message contains one answer containing the name of the host, the type of address, the class, and the IP address. Answers www.mit.edu: type A, class IN, addr 18.7.22.83 Name: www.mit.edu Type: A (Host address) Class: IN (0x0001) Time to live: 1 minute Data length: 4 Addr: 18.7.22.83 15. Provide a screenshot.
  • 5. PART 3c Screenshot for DNS response 16. To what IP address is the DNS query message sent? Is this the IP address of your default local DNS server? It was sent to 128.238.29.22 which is my default DNS server. 17. Examine the DNS query message. What “Type” of DNS query is it? Does the query message contain any “answers”? It’s a type NS DNS query that doesn’t contain any answers. 18. Examine the DNS response message. What MIT nameservers does the response message provide? Does this response message also provide the IP addresses of the MIT nameservers? The nameservers are bitsy, strawb and w20ns. We can find their IP addresses if we expand the Additional records field in Wireshark as seen below. Answers mit.edu: type NS, class inet, ns bitsy.mit.edu mit.edu: type NS, class inet, ns strawb.mit.edu mit.edu: type NS, class inet, ns w20ns.mit.edu Additional records bitsy.mit.edu: type A, class inet, addr 18.72.0.3 strawb.mit.edu: type A, class inet, addr 18.71.0.151 w20ns.mit.edu: type A, class inet, addr 18.70.0.160 19. Provide a screenshot.
  • 6. PART 3d Screenshot for DNS response 20. To what IP address is the DNS query message sent? Is this the IP address of your default local DNS server? If not, what does the IP address correspond to? The query is sent to 18.72.0.3 which corresponds to bitsy.mit.edu. 21. Examine the DNS query message. What “Type” of DNS query is it? Does the query message contain any “answers”? It’s a standard type A query that doesn’t contain any answers. 22. Examine the DNS response message. How many “answers” are provided? What does each of these answers contain? One answeri s provided in the DNS response message. It contains the following: Answers www.aiit.or.kr: type A, class inet, addr 222.106.36.102 Name: www.aiit.or.kr Type: Host address Class: inet Time to live: 1 hour Data length: 4 Addr: 222.106.36.102 23. Provide a screenshot.