Cover V08, I12
Article
Figure 1
Figure 2
Figure 3
Figure 4

dec99.tar


Figure 2: Sample Network Packet Trace 1

--------------------- Start of Sample Network Packet Trace 1 -------------------
IPTRACE version: 2.0

Packet Number 1
TOK: ====( 66 bytes received on interface tr0 )==== 12:33:57.035387136
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 10, frame control field = 40
TOK: [ src = 00:00:30:ac:05:08, dst = 10:00:5a:b1:95:d5]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP:      < SRC =   xxx.xxx.30.90 >  
IP:      < DST =   xxx.xxx.23.19 >  (dev01)
IP:      ip_v=4, ip_hl=20, ip_tos=0, ip_len=44, ip_id=2, ip_off=0
IP:      ip_ttl=62, ip_sum=f792, ip_p = 6 (TCP)
TCP:     <source port=1902, destination port=3300 >
TCP:     th_seq=d930100, th_ack=1
TCP:     th_off=6, flags<SYN>
TCP:     th_win=4096, th_sum=d612, th_urp=0
TCP: 00000000     02040faa                                |....            |

Packet Number 2
TOK: ====( 66 bytes transmitted on interface tr0 )==== 12:33:57.035441920
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 0, frame control field = 40
TOK: [ src = 10:00:5a:b1:95:d5, dst = 00:00:30:ac:05:08]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP:      < SRC =   xxx.xxx.23.19 >  (dev01)
IP:      < DST =   xxx.xxx.30.90 >  
IP:      ip_v=4, ip_hl=20, ip_tos=0, ip_len=44, ip_id=60575, ip_off=0
IP:      ip_ttl=60, ip_sum=cf5, ip_p = 6 (TCP)
TCP:     <source port=3300, destination port=1902 >
TCP:     th_seq=4e5c4401, th_ack=d930101
TCP:     th_off=6, flags<SYN | ACK>
TCP:     th_win=15972, th_sum=1f3f, th_urp=0
TCP: 00000000     020405ac                                |....            |

Packet Number 3
TOK: ====( 62 bytes received on interface tr0 )==== 12:33:57.042041344
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 10, frame control field = 40
TOK: [ src = 00:00:30:ac:05:08, dst = 10:00:5a:b1:95:d5]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP:      < SRC =   xxx.xxx.30.90 >  
IP:      < DST =   xxx.xxx.23.19 >  (dev01)
IP:      ip_v=4, ip_hl=20, ip_tos=0, ip_len=40, ip_id=3, ip_off=0
IP:      ip_ttl=62, ip_sum=f795, ip_p = 6 (TCP)
TCP:     <source port=1902, destination port=3300 >
TCP:     th_seq=d930101, th_ack=4e5c4402
TCP:     th_off=5, flags<ACK>
TCP:     th_win=4096, th_sum=6558, th_urp=0

.        .        .        .        .
.        .        .        .        .
.        .        .        .        .
.        .        .        .        .
.        .        .        .        .
.        .        .        .        .

Packet Number 21
TOK: ====( 136 bytes received on interface tr0 )==== 12:33:57.873260544
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 10, frame control field = 40
TOK: [ src = 00:00:30:ac:05:08, dst = 10:00:5a:b1:95:d5]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP:      < SRC =   xxx.xxx.30.90 >  
IP:      < DST =   xxx.xxx.23.19 >  (dev01)
IP:      ip_v=4, ip_hl=20, ip_tos=0, ip_len=114, ip_id=13, ip_off=0DF
IP:      ip_ttl=62, ip_sum=b741, ip_p = 6 (TCP)
TCP:     <source port=1902, destination port=3300 >
TCP:     th_seq=d93043d, th_ack=4e5c462a
TCP:     th_off=5, flags<PUSH | ACK>
TCP:     th_win=3544, th_sum=f682, th_urp=0
TCP: 00000000     0101004a 00000100 53656c65 63742043     |...J....Select C|
TCP: 00000010     6f6d7061 6e794944 2066726f 6d205374     |ompanyID from St|
TCP: 00000020     6166664d 656d6265 72436f6d 70616e79     |affMemberCompany|
TCP: 00000030     20776865 72652053 74616666 4d656d62     | where StaffMemb|
TCP: 00000040     65724944 203d3238 3820                  |erID =288       |

Packet Number 22
TOK: ====( 189 bytes transmitted on interface tr0 )==== 12:33:57.900755200
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 0, frame control field = 40
TOK: [ src = 10:00:5a:b1:95:d5, dst = 00:00:30:ac:05:08]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP:      < SRC =   xxx.xxx.23.19 >  (dev01)
IP:      < DST =   xxx.xxx.30.90 >  
IP:      ip_v=4, ip_hl=20, ip_tos=0, ip_len=167, ip_id=60588, ip_off=0
IP:      ip_ttl=60, ip_sum=c6d, ip_p = 6 (TCP)
TCP:     <source port=3300, destination port=1902 >
TCP:     th_seq=4e5c462a, th_ack=d930487
TCP:     th_off=5, flags<PUSH | ACK>
TCP:     th_win=15972, th_sum=94cb, th_urp=0
TCP: 00000000     0401007f 00000000 a00a0009 436f6d70     |............Comp|
TCP: 00000010     616e7949 44a10500 7c000000 38ae0100     |anyID...|...8...|
TCP: 00000020     00d10100 0000d104 000000d1 07000000     |................|
TCP: 00000030     d1100000 00d11400 0000d116 000000d1     |................|
TCP: 00000040     4f000000 d1530000 00d1da00 0000d1fc     |O....S..........|
TCP: 00000050     000000d1 16020000 d12665cd 1dd12b65     |.........&e...+e|
TCP: 00000060     cd1dd12c 65cd1dd1 2d65cd1d d13265cd     |...,e...-e...2e.|
TCP: 00000070     1dd13a65 cd1dfd14 00010011 000000       |..:e........... |

Packet Number 23
TOK: ====( 116 bytes received on interface tr0 )==== 12:33:57.967711744
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 10, frame control field = 40
TOK: [ src = 00:00:30:ac:05:08, dst = 10:00:5a:b1:95:d5]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP:      < SRC =   xxx.xxx.30.90 >  
IP:      < DST =   xxx.xxx.23.19 >  (dev01)
IP:      ip_v=4, ip_hl=20, ip_tos=0, ip_len=94, ip_id=14, ip_off=0DF
IP:      ip_ttl=62, ip_sum=b754, ip_p = 6 (TCP)
TCP:     <source port=1902, destination port=3300 >
TCP:     th_seq=d930487, th_ack=4e5c46a9
TCP:     th_off=5, flags<PUSH | ACK>
TCP:     th_win=3417, th_sum=8885, th_urp=0
TCP: 00000000     01010036 00000100 65786563 75746520     |...6....execute |
TCP: 00000010     73705f6c 6f67696e 73776170 20406e61     |sp_loginswap @na|
TCP: 00000020     6d65203d 2727202c 40706173 73776f72     |me ='' ,@passwor|
TCP: 00000030     64203d27 2720                           |d =''           |

Packet Number 24
TOK: ====( 116 bytes received on interface tr0 )==== 12:33:57.971356416
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 10, frame control field = 40
TOK: [ src = 00:00:30:ac:05:08, dst = 10:00:5a:b1:95:d5]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP:      < SRC =   xxx.xxx.30.90 >  
IP:      < DST =   xxx.xxx.23.19 >  (dev01)
IP:      ip_v=4, ip_hl=20, ip_tos=0, ip_len=94, ip_id=15, ip_off=0DF
IP:      ip_ttl=62, ip_sum=b753, ip_p = 6 (TCP)
TCP:     <source port=1902, destination port=3300 >
TCP:     th_seq=d930487, th_ack=4e5c46a9
TCP:     th_off=5, flags<PUSH | ACK>
TCP:     th_win=3417, th_sum=8885, th_urp=0
TCP: 00000000     01010036 00000100 65786563 75746520     |...6....execute |
TCP: 00000010     73705f6c 6f67696e 73776170 20406e61     |sp_loginswap @na|
TCP: 00000020     6d65203d 2727202c 40706173 73776f72     |me ='' ,@passwor|
TCP: 00000030     64203d27 2720                           |d =''           |

Packet Number 25
TOK: ====( 62 bytes transmitted on interface tr0 )==== 12:33:57.971380992
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 0, frame control field = 40
TOK: [ src = 10:00:5a:b1:95:d5, dst = 00:00:30:ac:05:08]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP:      < SRC =   xxx.xxx.23.19 >  (dev01)
IP:      < DST =   xxx.xxx.30.90 >  
IP:      ip_v=4, ip_hl=20, ip_tos=0, ip_len=40, ip_id=60590, ip_off=0
IP:      ip_ttl=60, ip_sum=cea, ip_p = 6 (TCP)
TCP:     <source port=3300, destination port=1902 >
TCP:     th_seq=4e5c46a9, th_ack=d9304bd
TCP:     th_off=5, flags<ACK>
TCP:     th_win=15972, th_sum=3091, th_urp=0

.        .        .        .        .
.        .        .        .        .
.        .        .        .        .
.        .        .        .        .
.        .        .        .        .
.        .        .        .        .
--------------------- End of Sample Network Packet Trace 1 ---------------------