Changes

← Older edit

NAD710 Lab 3 Answers

266 bytes added, 20:42, 24 September 2008

no edit summary

'''1- Write a tcpdump command to display all the packets your system sent to matrix. Do not do any name resolution for any fields in the packet but do display the physical addresses contained in the packets.'''

[root@localhost ~]# tcpdump ~~-i eth0 -s 0 dst host 142.204.140.90~~ -nn -e -r /tmp/lab3-pktsdst host 142.204.140.90

Output:

'''2- Write a tcpdump command to display all the packets sent to your system from matrix. Do not do any name resolution for any fields in the packet but do display the physical addresses contained in the packets.'''

[root@localhost ~]# tcpdump -~~i eth1~~ nn -e -r /tmp/lab3-pkts src host 142.204.140.90

Output:

'''9- Describe the steps you could use to find out all MAC addresses captured in the packet file. Include all the MAC addresses found in your answer.'''

~~Not answered yet~~ tcpdump -n -e -r lab3-pkts > lab3-pkts.txt export MAC_RE="[0-9A-F][0-9A-F]:[0-9A-F][0-9A-F]:[0-9A-F][0-9A-F]:[0-9A-F][0-9A-F]:[0-9A-F][0-9A-F]:[0-9A-F][0-9A-F]" grep -io $MAC_RE lab3-pkts.txt | sort | uniq Found only two MAC addresses. 00:0e:0c:4b:31:5c 00:16:76:69:74:5c

Pdirezze

1

edit

Changes

NAD710 Lab 3 Answers

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

get involved with CDOT

courses

course projects

links

Tools