Figure 2: Sample Network Packet Trace 1
--------------------- Start of Sample Network Packet Trace 1 -------------------
IPTRACE version: 2.0
Packet Number 1
TOK: ====( 66 bytes received on interface tr0 )==== 12:33:57.035387136
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 10, frame control field = 40
TOK: [ src = 00:00:30:ac:05:08, dst = 10:00:5a:b1:95:d5]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP: < SRC = xxx.xxx.30.90 >
IP: < DST = xxx.xxx.23.19 > (dev01)
IP: ip_v=4, ip_hl=20, ip_tos=0, ip_len=44, ip_id=2, ip_off=0
IP: ip_ttl=62, ip_sum=f792, ip_p = 6 (TCP)
TCP: <source port=1902, destination port=3300 >
TCP: th_seq=d930100, th_ack=1
TCP: th_off=6, flags<SYN>
TCP: th_win=4096, th_sum=d612, th_urp=0
TCP: 00000000 02040faa |.... |
Packet Number 2
TOK: ====( 66 bytes transmitted on interface tr0 )==== 12:33:57.035441920
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 0, frame control field = 40
TOK: [ src = 10:00:5a:b1:95:d5, dst = 00:00:30:ac:05:08]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP: < SRC = xxx.xxx.23.19 > (dev01)
IP: < DST = xxx.xxx.30.90 >
IP: ip_v=4, ip_hl=20, ip_tos=0, ip_len=44, ip_id=60575, ip_off=0
IP: ip_ttl=60, ip_sum=cf5, ip_p = 6 (TCP)
TCP: <source port=3300, destination port=1902 >
TCP: th_seq=4e5c4401, th_ack=d930101
TCP: th_off=6, flags<SYN | ACK>
TCP: th_win=15972, th_sum=1f3f, th_urp=0
TCP: 00000000 020405ac |.... |
Packet Number 3
TOK: ====( 62 bytes received on interface tr0 )==== 12:33:57.042041344
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 10, frame control field = 40
TOK: [ src = 00:00:30:ac:05:08, dst = 10:00:5a:b1:95:d5]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP: < SRC = xxx.xxx.30.90 >
IP: < DST = xxx.xxx.23.19 > (dev01)
IP: ip_v=4, ip_hl=20, ip_tos=0, ip_len=40, ip_id=3, ip_off=0
IP: ip_ttl=62, ip_sum=f795, ip_p = 6 (TCP)
TCP: <source port=1902, destination port=3300 >
TCP: th_seq=d930101, th_ack=4e5c4402
TCP: th_off=5, flags<ACK>
TCP: th_win=4096, th_sum=6558, th_urp=0
. . . . .
. . . . .
. . . . .
. . . . .
. . . . .
. . . . .
Packet Number 21
TOK: ====( 136 bytes received on interface tr0 )==== 12:33:57.873260544
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 10, frame control field = 40
TOK: [ src = 00:00:30:ac:05:08, dst = 10:00:5a:b1:95:d5]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP: < SRC = xxx.xxx.30.90 >
IP: < DST = xxx.xxx.23.19 > (dev01)
IP: ip_v=4, ip_hl=20, ip_tos=0, ip_len=114, ip_id=13, ip_off=0DF
IP: ip_ttl=62, ip_sum=b741, ip_p = 6 (TCP)
TCP: <source port=1902, destination port=3300 >
TCP: th_seq=d93043d, th_ack=4e5c462a
TCP: th_off=5, flags<PUSH | ACK>
TCP: th_win=3544, th_sum=f682, th_urp=0
TCP: 00000000 0101004a 00000100 53656c65 63742043 |...J....Select C|
TCP: 00000010 6f6d7061 6e794944 2066726f 6d205374 |ompanyID from St|
TCP: 00000020 6166664d 656d6265 72436f6d 70616e79 |affMemberCompany|
TCP: 00000030 20776865 72652053 74616666 4d656d62 | where StaffMemb|
TCP: 00000040 65724944 203d3238 3820 |erID =288 |
Packet Number 22
TOK: ====( 189 bytes transmitted on interface tr0 )==== 12:33:57.900755200
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 0, frame control field = 40
TOK: [ src = 10:00:5a:b1:95:d5, dst = 00:00:30:ac:05:08]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP: < SRC = xxx.xxx.23.19 > (dev01)
IP: < DST = xxx.xxx.30.90 >
IP: ip_v=4, ip_hl=20, ip_tos=0, ip_len=167, ip_id=60588, ip_off=0
IP: ip_ttl=60, ip_sum=c6d, ip_p = 6 (TCP)
TCP: <source port=3300, destination port=1902 >
TCP: th_seq=4e5c462a, th_ack=d930487
TCP: th_off=5, flags<PUSH | ACK>
TCP: th_win=15972, th_sum=94cb, th_urp=0
TCP: 00000000 0401007f 00000000 a00a0009 436f6d70 |............Comp|
TCP: 00000010 616e7949 44a10500 7c000000 38ae0100 |anyID...|...8...|
TCP: 00000020 00d10100 0000d104 000000d1 07000000 |................|
TCP: 00000030 d1100000 00d11400 0000d116 000000d1 |................|
TCP: 00000040 4f000000 d1530000 00d1da00 0000d1fc |O....S..........|
TCP: 00000050 000000d1 16020000 d12665cd 1dd12b65 |.........&e...+e|
TCP: 00000060 cd1dd12c 65cd1dd1 2d65cd1d d13265cd |...,e...-e...2e.|
TCP: 00000070 1dd13a65 cd1dfd14 00010011 000000 |..:e........... |
Packet Number 23
TOK: ====( 116 bytes received on interface tr0 )==== 12:33:57.967711744
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 10, frame control field = 40
TOK: [ src = 00:00:30:ac:05:08, dst = 10:00:5a:b1:95:d5]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP: < SRC = xxx.xxx.30.90 >
IP: < DST = xxx.xxx.23.19 > (dev01)
IP: ip_v=4, ip_hl=20, ip_tos=0, ip_len=94, ip_id=14, ip_off=0DF
IP: ip_ttl=62, ip_sum=b754, ip_p = 6 (TCP)
TCP: <source port=1902, destination port=3300 >
TCP: th_seq=d930487, th_ack=4e5c46a9
TCP: th_off=5, flags<PUSH | ACK>
TCP: th_win=3417, th_sum=8885, th_urp=0
TCP: 00000000 01010036 00000100 65786563 75746520 |...6....execute |
TCP: 00000010 73705f6c 6f67696e 73776170 20406e61 |sp_loginswap @na|
TCP: 00000020 6d65203d 2727202c 40706173 73776f72 |me ='' ,@passwor|
TCP: 00000030 64203d27 2720 |d ='' |
Packet Number 24
TOK: ====( 116 bytes received on interface tr0 )==== 12:33:57.971356416
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 10, frame control field = 40
TOK: [ src = 00:00:30:ac:05:08, dst = 10:00:5a:b1:95:d5]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP: < SRC = xxx.xxx.30.90 >
IP: < DST = xxx.xxx.23.19 > (dev01)
IP: ip_v=4, ip_hl=20, ip_tos=0, ip_len=94, ip_id=15, ip_off=0DF
IP: ip_ttl=62, ip_sum=b753, ip_p = 6 (TCP)
TCP: <source port=1902, destination port=3300 >
TCP: th_seq=d930487, th_ack=4e5c46a9
TCP: th_off=5, flags<PUSH | ACK>
TCP: th_win=3417, th_sum=8885, th_urp=0
TCP: 00000000 01010036 00000100 65786563 75746520 |...6....execute |
TCP: 00000010 73705f6c 6f67696e 73776170 20406e61 |sp_loginswap @na|
TCP: 00000020 6d65203d 2727202c 40706173 73776f72 |me ='' ,@passwor|
TCP: 00000030 64203d27 2720 |d ='' |
Packet Number 25
TOK: ====( 62 bytes transmitted on interface tr0 )==== 12:33:57.971380992
TOK: 802.5 packet
TOK: 802.5 MAC header:
TOK: access control field = 0, frame control field = 40
TOK: [ src = 10:00:5a:b1:95:d5, dst = 00:00:30:ac:05:08]
TOK: 802.2 LLC header:
TOK: dsap aa, ssap aa, ctrl 3, proto 0:0:0, type 800 (IP)
IP: < SRC = xxx.xxx.23.19 > (dev01)
IP: < DST = xxx.xxx.30.90 >
IP: ip_v=4, ip_hl=20, ip_tos=0, ip_len=40, ip_id=60590, ip_off=0
IP: ip_ttl=60, ip_sum=cea, ip_p = 6 (TCP)
TCP: <source port=3300, destination port=1902 >
TCP: th_seq=4e5c46a9, th_ack=d9304bd
TCP: th_off=5, flags<ACK>
TCP: th_win=15972, th_sum=3091, th_urp=0
. . . . .
. . . . .
. . . . .
. . . . .
. . . . .
. . . . .
--------------------- End of Sample Network Packet Trace 1 ---------------------
|