Are the two ICMP packets that you saved identical? If not, what is different? Include the packet data in your lab report to substantiate your claims.
What will be an ideal response?
These two ICMP packets are identical, although they have different TTL fields. We
know that because of two reasons:
```
Frame 1 (98 bytes on wire, 98 bytes captured)
Arrival Time: Aug 11, 2003 20:54:29.410326000
Time delta from previous packet: 0.000000000 seconds
Time relative to first packet: 0.000000000 seconds
Frame Number: 1
Packet Length: 98 bytes
Capture Length: 98 bytes
Ethernet II, Src: 00:07:50:d0:90:e2, Dst: 00:07:50:d0:9e:62
Destination: 00:07:50:d0:9e:62 (00:07:50:d0:9e:62)
Source: 00:07:50:d0:90:e2 (00:07:50:d0:90:e2)
Type: IP (0x0800)
Internet Protocol, Src Addr: 10.0.4.10 (10.0.4.10), Dst Addr: 10.0.1.10
(10.0.1.10)
Version: 4
Header length: 20 bytes
Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
0000 00.. = Differentiated Services Codepoint: Default (0x00)
.... ..0. = ECN-Capable Transport (ECT): 0
.... ...0 = ECN-CE: 0
Total Length: 84
Identification: 0x0000 (0)
Flags: 0x04
.1.. = Don't fragment: Set
..0. = More fragments: Not set
Fragment offset: 0
Time to live: 62
Protocol: ICMP (0x01)
Header checksum: 0x2396 (correct)
Source: 10.0.4.10 (10.0.4.10)
Destination: 10.0.1.10 (10.0.1.10)
Internet Control Message Protocol
Type: 8 (Echo (ping) request)
Code: 0
Checksum: 0x6ce6 (correct)
Identifier: 0xdb09
Sequence number: 00:01
Data (56 bytes)
0000 61 d0 88 3f d1 fb 09 00 08 09 0a 0b 0c 0d 0e 0f a..?............
0010 10 11 12 13 14 15 16 17 18 19 1a 1b 1c 1d 1e 1f ................
0020 20 21 22 23 24 25 26 27 28 29 2a 2b 2c 2d 2e 2f !"#$%&'()*+,-./
0030 30 31 32 33 34 35 36 37 01234567
Frame 2 (98 bytes on wire, 98 bytes captured)
Arrival Time: Aug 11, 2003 20:54:29.410635000
Time delta from previous packet: 0.000309000 seconds
Time relative to first packet: 0.000309000 seconds
Frame Number: 2
Packet Length: 98 bytes
Capture Length: 98 bytes
Ethernet II, Src: 00:07:50:d0:90:e2, Dst: 00:07:50:d0:9e:62
Destination: 00:07:50:d0:9e:62 (00:07:50:d0:9e:62)
Source: 00:07:50:d0:90:e2 (00:07:50:d0:90:e2)
Type: IP (0x0800)
Internet Protocol, Src Addr: 10.0.4.10 (10.0.4.10), Dst Addr: 10.0.1.10
(10.0.1.10)
Version: 4
Header length: 20 bytes
Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
0000 00.. = Differentiated Services Codepoint: Default (0x00)
.... ..0. = ECN-Capable Transport (ECT): 0
.... ...0 = ECN-CE: 0
Total Length: 84
Identification: 0x0000 (0)
Flags: 0x04
.1.. = Don't fragment: Set
..0. = More fragments: Not set
Fragment offset: 0
Time to live: 59
Protocol: ICMP (0x01)
Header checksum: 0x2696 (correct)
Source: 10.0.4.10 (10.0.4.10)
Destination: 10.0.1.10 (10.0.1.10)
Internet Control Message Protocol
Type: 8 (Echo (ping) request)
Code: 0
Checksum: 0x6ce6 (correct)
Identifier: 0xdb09
Sequence number: 00:01
Data (56 bytes)
0000 61 d0 88 3f d1 fb 09 00 08 09 0a 0b 0c 0d 0e 0f a..?............
0010 10 11 12 13 14 15 16 17 18 19 1a 1b 1c 1d 1e 1f ................
0020 20 21 22 23 24 25 26 27 28 29 2a 2b 2c 2d 2e 2f !"#$%&'()*+,-./
0030 30 31 32 33 34 35 36 37 01234567
The bold IP 10.0.4.3 indicates there is a loop because of its multiple instances.
[root@PC4 root]# traceroute 10.0.1.10
traceroute to 10.0.1.10 (10.0.1.10), 30 hops max, 38 byte packets
1 10.0.4.3 (10.0.4.3) 1.021 ms 0.886 ms 0.820 ms
2 10.0.3.2 (10.0.3.2) 1.123 ms 1.025 ms 1.012 ms
3 10.0.2.4 (10.0.2.4) 1.118 ms 1.020 ms 0.991 ms
4 10.0.4.3 (10.0.4.3) 1.118 ms 1.052 ms 1.081 ms
5 10.0.3.2 (10.0.3.2) 1.196 ms 1.252 ms 1.199 ms
6 10.0.2.4 (10.0.2.4) 1.274 ms 22.071 ms 1.278 ms
7 10.0.4.3 (10.0.4.3) 1.245 ms 1.300 ms 1.328 ms
8 10.0.3.2 (10.0.3.2) 1.385 ms 1.498 ms 1.445 ms
9 10.0.2.4 (10.0.2.4) 1.394 ms 1.438 ms 1.386 ms
10 10.0.4.3 (10.0.4.3) 1.458 ms 1.447 ms 1.458 ms
11 10.0.3.2 (10.0.3.2) 1.561 ms 1.762 ms 1.705 ms
12 10.0.2.4 (10.0.2.4) 1.580 ms 1.590 ms 1.577 ms
13 10.0.4.3 (10.0.4.3) 1.665 ms 1.688 ms 1.704 ms
14 10.0.3.2 (10.0.3.2) 1.938 ms 1.906 ms 1.794 ms
15 10.0.2.4 (10.0.2.4) 1.623 ms 1.640 ms 1.649 ms
16 10.0.4.3 (10.0.4.3) 1.672 ms 1.700 ms 2.006 ms
17 10.0.3.2 (10.0.3.2) 2.181 ms 2.177 ms 2.184 ms
18 10.0.2.4 (10.0.2.4) 2.058 ms 2.138 ms 1.955 ms
19 10.0.4.3 (10.0.4.3) 2.115 ms 2.127 ms 2.259 ms
20 10.0.3.2 (10.0.3.2) 2.432 ms 2.360 ms 2.253 ms
21 10.0.2.4 (10.0.2.4) 2.250 ms 2.350 ms 2.147 ms
22 10.0.4.3 (10.0.4.3) 2.246 ms 2.498 ms 2.503 ms
23 10.0.3.2 (10.0.3.2) 2.674 ms 2.669 ms 2.618 ms
24 10.0.2.4 (10.0.2.4) 2.646 ms 2.566 ms 2.458 ms
25 10.0.4.3 (10.0.4.3) 2.336 ms 2.322 ms 2.273 ms
26 10.0.3.2 (10.0.3.2) 3.403 ms 2.482 ms 2.620 ms
27 10.0.2.4 (10.0.2.4) 2.476 ms 2.453 ms 2.407 ms
28 10.0.4.3 (10.0.4.3) 2.523 ms 2.450 ms 2.463 ms
29 10.0.3.2 (10.0.3.2) 2.566 ms 2.541 ms 3.051 ms
30 10.0.2.4 (10.0.2.4) 2.689 ms 2.689 ms 2.598 ms
```
You might also like to view...
Favorites can be organized much in the same way as files in Windows Explorer, by creating new ________
Fill in the blank(s) with correct word
Do firewall rules have to be symmetric? That is, does a firewall have to block a particular traffic type both inbound (to the protected site) and outbound (from the site)? Why or why not?
What will be an ideal response?