Wireshark · Ethereal-users: Re: [Ethereal-users] Network type 99

Ethereal-users: Re: [Ethereal-users] Network type 99

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: "Zanetta Michael" <mzanetta@xxxxxxxxx>

Date: Mon, 22 Mar 2004 09:50:02 +0100

Hello Guy,

Sorry for the delayed reply.
I attached the output of the tcpdump -e -r somefile.dmp
(I didn't knew this command, thanks)

I hope it will help you.

For your information, 10.0.1.51 is the Symantec Firewall
internal interface, where the trace has been done.
I don't know what it is doing in the trace...

Thanks in advance

13:39:28.057468 10.0.1.51 ip 92: 10.0.33.1.5873 > 216.239.59.99.80: S 3031460451:3031460451(0) win 32768 <mss 1380,nop,nop,sackOK> (DF) (ttl 255, id 47024)
13:39:28.057468 10.0.1.51 ip 92: 216.239.59.99.80 > 10.0.33.1.5873: S 3867198940:3867198940(0) ack 3031460452 win 64240 <mss 1460,nop,nop,sackOK> (DF) (ttl 60, id 52009)
13:39:28.057468 10.0.1.51 ip 84: 10.0.33.1.5873 > 216.239.59.99.80: . ack 1 win 33120 (DF) (ttl 255, id 47026)
13:39:28.088718 10.0.1.51 ip 412: 10.0.33.1.5873 > 216.239.59.99.80: P 1:329(328) ack 1 win 33120 (DF) (ttl 255, id 47027)
13:39:28.229344 10.0.1.51 ip 252: 216.239.59.99.80 > 10.0.33.1.5873: P 1:169(168) ack 329 win 63912 (DF) (ttl 60, id 52019)
13:39:28.229344 10.0.1.51 ip 1464: 216.239.59.99.80 > 10.0.33.1.5873: . 169:1549(1380) ack 329 win 63912 (DF) (ttl 60, id 52020)
13:39:28.229344 10.0.1.51 ip 374: 216.239.59.99.80 > 10.0.33.1.5873: P 1549:1839(290) ack 329 win 63912 (DF) (ttl 60, id 52021)
13:39:28.229344 10.0.1.51 ip 84: 10.0.33.1.5873 > 216.239.59.99.80: . ack 1549 win 33120 (DF) (ttl 255, id 47029)
13:39:28.369970 10.0.1.51 ip 84: 10.0.33.1.5873 > 216.239.59.99.80: . ack 1839 win 32830 (DF) (ttl 255, id 47030)
13:39:29.057472 10.0.1.51 ip 458: 10.0.33.1.5873 > 216.239.59.99.80: P 329:703(374) ack 1839 win 32830 (DF) (ttl 255, id 47031)
13:39:29.073097 10.0.1.51 ip 92: 10.0.33.1.5874 > 216.239.59.99.80: S 3031798655:3031798655(0) win 32768 <mss 1380,nop,nop,sackOK> (DF) (ttl 255, id 47033)
13:39:29.073097 10.0.1.51 ip 92: 216.239.59.99.80 > 10.0.33.1.5874: S 2394565106:2394565106(0) ack 3031798656 win 64240 <mss 1460,nop,nop,sackOK> (DF) (ttl 60, id 52023)
13:39:29.073097 10.0.1.51 ip 84: 10.0.33.1.5874 > 216.239.59.99.80: . ack 1 win 33120 (DF) (ttl 255, id 47034)
13:39:29.073097 10.0.1.51 ip 92: 10.0.33.1.5875 > 216.239.59.99.80: S 3031842191:3031842191(0) win 32768 <mss 1380,nop,nop,sackOK> (DF) (ttl 255, id 47036)
13:39:29.073097 10.0.1.51 ip 92: 216.239.59.99.80 > 10.0.33.1.5875: S 3758750949:3758750949(0) ack 3031842192 win 64240 <mss 1460,nop,nop,sackOK> (DF) (ttl 60, id 52024)
13:39:29.073097 10.0.1.51 ip 84: 10.0.33.1.5875 > 216.239.59.99.80: . ack 1 win 33120 (DF) (ttl 255, id 47037)
13:39:29.073097 10.0.1.51 ip 458: 10.0.33.1.5874 > 216.239.59.99.80: P 1:375(374) ack 1 win 33120 (DF) (ttl 255, id 47039)
13:39:29.088722 10.0.1.51 ip 458: 10.0.33.1.5875 > 216.239.59.99.80: P 1:375(374) ack 1 win 33120 (DF) (ttl 255, id 47041)
13:39:29.088722 10.0.1.51 ip 92: 10.0.33.1.5876 > 216.239.59.99.80: S 3031886267:3031886267(0) win 32768 <mss 1380,nop,nop,sackOK> (DF) (ttl 255, id 47043)
13:39:29.088722 10.0.1.51 ip 92: 216.239.59.99.80 > 10.0.33.1.5876: S 590036732:590036732(0) ack 3031886268 win 64240 <mss 1460,nop,nop,sackOK> (DF) (ttl 60, id 52027)
13:39:29.088722 10.0.1.51 ip 84: 10.0.33.1.5876 > 216.239.59.99.80: . ack 1 win 33120 (DF) (ttl 255, id 47044)
13:39:29.088722 10.0.1.51 ip 458: 10.0.33.1.5876 > 216.239.59.99.80: P 1:375(374) ack 1 win 33120 (DF) (ttl 255, id 47046)
13:39:29.119972 10.0.1.51 ip 290: 216.239.59.99.80 > 10.0.33.1.5873: P 1839:2045(206) ack 703 win 63538 (DF) (ttl 60, id 52029)
13:39:29.119972 10.0.1.51 ip 1308: 216.239.59.99.80 > 10.0.33.1.5873: P 2045:3269(1224) ack 703 win 63538 (DF) (ttl 60, id 52030)
13:39:29.119972 10.0.1.51 ip 84: 10.0.33.1.5873 > 216.239.59.99.80: . ack 3269 win 33120 (DF) (ttl 255, id 47048)
13:39:29.135597 10.0.1.51 ip 1274: 216.239.59.99.80 > 10.0.33.1.5873: P 3269:4459(1190) ack 703 win 63538 (DF) (ttl 60, id 52032)
13:39:29.135597 10.0.1.51 ip 1464: 216.239.59.99.80 > 10.0.33.1.5873: . 4459:5839(1380) ack 703 win 63538 (DF) (ttl 60, id 52034)
13:39:29.135597 10.0.1.51 ip 134: 216.239.59.99.80 > 10.0.33.1.5873: P 5839:5889(50) ack 703 win 63538 (DF) (ttl 60, id 52036)
13:39:29.135597 10.0.1.51 ip 84: 10.0.33.1.5873 > 216.239.59.99.80: . ack 5839 win 33120 (DF) (ttl 255, id 47049)
13:39:29.182472 10.0.1.51 ip 517: 216.239.59.99.80 > 10.0.33.1.5873: P 5889:6322(433) ack 703 win 63538 (DF) (ttl 60, id 52040)
13:39:29.182472 10.0.1.51 ip 84: 10.0.33.1.5873 > 216.239.59.99.80: . ack 6322 win 32637 (DF) (ttl 255, id 47051)
13:39:29.198097 10.0.1.51 ip 290: 216.239.59.99.80 > 10.0.33.1.5875: P 1:207(206) ack 375 win 63866 (DF) (ttl 60, id 52042)
13:39:29.198097 10.0.1.51 ip 1308: 216.239.59.99.80 > 10.0.33.1.5875: P 207:1431(1224) ack 375 win 63866 (DF) (ttl 60, id 52043)
13:39:29.198097 10.0.1.51 ip 84: 10.0.33.1.5875 > 216.239.59.99.80: . ack 1431 win 33120 (DF) (ttl 255, id 47052)
13:39:29.213722 10.0.1.51 ip 1464: 216.239.59.99.80 > 10.0.33.1.5875: . 1431:2811(1380) ack 375 win 63866 (DF) (ttl 60, id 52045)
13:39:29.213722 10.0.1.51 ip 433: 216.239.59.99.80 > 10.0.33.1.5875: P 2811:3160(349) ack 375 win 63866 (DF) (ttl 60, id 52046)
13:39:29.213722 10.0.1.51 ip 84: 10.0.33.1.5875 > 216.239.59.99.80: . ack 3160 win 33120 (DF) (ttl 255, id 47053)
13:39:29.276222 10.0.1.51 ip 84: 216.239.59.99.80 > 10.0.33.1.5874: . ack 375 win 63866 (DF) (ttl 60, id 52047)
13:39:29.276222 10.0.1.51 ip 84: 216.239.59.99.80 > 10.0.33.1.5876: . ack 375 win 63866 (DF) (ttl 60, id 52048)
13:39:32.166856 10.0.1.51 ip 290: 216.239.59.99.80 > 10.0.33.1.5874: P 1:207(206) ack 375 win 63866 (DF) (ttl 60, id 52057)
13:39:32.166856 10.0.1.51 ip 1308: 216.239.59.99.80 > 10.0.33.1.5874: P 207:1431(1224) ack 375 win 63866 (DF) (ttl 60, id 52058)
13:39:32.166856 10.0.1.51 ip 84: 10.0.33.1.5874 > 216.239.59.99.80: . ack 1431 win 33120 (DF) (ttl 255, id 47054)
13:39:32.166856 10.0.1.51 ip 1274: 216.239.59.99.80 > 10.0.33.1.5874: P 1431:2621(1190) ack 375 win 63866 (DF) (ttl 60, id 52060)
13:39:32.166856 10.0.1.51 ip 372: 216.239.59.99.80 > 10.0.33.1.5874: P 2621:2909(288) ack 375 win 63866 (DF) (ttl 60, id 52061)
13:39:32.166856 10.0.1.51 ip 84: 10.0.33.1.5874 > 216.239.59.99.80: . ack 2909 win 33120 (DF) (ttl 255, id 47055)
13:39:32.213731 10.0.1.51 ip 290: 216.239.59.99.80 > 10.0.33.1.5876: P 1:207(206) ack 375 win 63866 (DF) (ttl 60, id 52064)
13:39:32.213731 10.0.1.51 ip 1464: 216.239.59.99.80 > 10.0.33.1.5876: . 207:1587(1380) ack 375 win 63866 (DF) (ttl 60, id 52065)
13:39:32.213731 10.0.1.51 ip 114: 216.239.59.99.80 > 10.0.33.1.5876: P 1587:1617(30) ack 375 win 63866 (DF) (ttl 60, id 52066)
13:39:32.213731 10.0.1.51 ip 84: 10.0.33.1.5876 > 216.239.59.99.80: . ack 1587 win 33120 (DF) (ttl 255, id 47056)
13:39:32.369982 10.0.1.51 ip 84: 10.0.33.1.5876 > 216.239.59.99.80: . ack 1617 win 33090 (DF) (ttl 255, id 47057)
13:40:32.339167 10.0.1.51 ip 84: 10.0.33.1.5873 > 216.239.59.99.80: R 3031461154:3031461154(0) win 0 (DF) (ttl 255, id 47064)
13:40:32.339167 10.0.1.51 ip 84: 10.0.33.1.5875 > 216.239.59.99.80: R 3031842566:3031842566(0) win 0 (DF) (ttl 255, id 47065)
13:40:32.339167 10.0.1.51 ip 84: 10.0.33.1.5874 > 216.239.59.99.80: R 3031799030:3031799030(0) win 0 (DF) (ttl 255, id 47066)
13:40:37.339199 10.0.1.51 ip 84: 10.0.33.1.5876 > 216.239.59.99.80: R 3031886642:3031886642(0) win 0 (DF) (ttl 255, id 47069)

Follow-Ups:
- Re: [Ethereal-users] Network type 99
  - From: Guy Harris

Prev by Date: Re: [Ethereal-users] Packet Loss
Next by Date: Re: [Ethereal-users] Problems Importing TCPDUMP Output intoEthereal
Previous by thread: Re: [Ethereal-users] Network type 99
Next by thread: Re: [Ethereal-users] Network type 99
Index(es):
- Date
- Thread