Wireshark Capture

by
Uncategorized
  • Download and install Wireshark
  • Download the sample.cap.zip file 
  • Unzip the capture file.
  • Load it into Wireshark.
  • Answer the following questions:
  1. Make a list of all the protocols in that capture.
  2. Briefly explain what all the protocols do (approximately one paragraph per protocol). Please do not copy and paste from Wikipedia or some other source. Instead, write in your own words.
  3. What is the source MAC address of the computer making a RIPv1 request at IP address 10.0.0.2?
  4. What’s happening with capture # 67? Explain.
  5. Are there any FTP or Telnet sessions? Why are FTP and Telnet considered insecure protocols?
  6. Are there any SSH sessions? How does Telnet relate to SSH? Tell us why SSH v2 is better?
Tags: No tags