如何从HTTP GET请求的Wireshark转储获取源IP [英] How to obtain the source IP from a Wireshark dump of an HTTP GET request

问题描述

我正在为考试做准备，但似乎无法弄清楚.我被要求从这个wireshark帧中找出源IP地址(仅使用参考图像)，我将如何处理?

I'm currently studying for my test but I can't seem to figure this one out. I'm asked to figure out the source IP address out of this wireshark frame (using the reference image only), how would I be going about this?

推荐答案

源IP地址为172.22.7.134.

Source IP address is 172.22.7.134.

e0 3f 49 09 60 68 c8 2a 14 55 eb bd 08 00-前14个字节将是第2层以太网帧.

e0 3f 49 09 60 68 c8 2a 14 55 eb bd 08 00 - First 14 bytes will be layer 2 Ethernet frame.

接下来的20个字节属于IP版本4，您可以在其中获取源IP地址和目标IP地址.

Next 20 bytes belongs to IP version 4 where you can get source IP address and destination IP address.

45-1字节–版本为4，标头长度为5

45 - 1 Byte – version which is 4 and header length 5

00 – 1字节-DSCP值

00 – 1 Byte - DSCP value

01 a3 – 2个字节–总长度:为419

01 a3 – 2 bytes – Total length : which is 419

18 84 – 2个字节–标识

18 84 – 2 bytes – identification

40 00 –标志和片段偏移

40 00 – flag and fragment offset

80 –生存时间128

80 – time to live 128

06 –协议:TCP(6)

06 – protocol : TCP (6)

00 00 –标头校验和

00 00 – header checksum

ac 16 07 86 –以十六进制表示的源IP地址，它是点分十进制格式的172.22.7.134.

ac 16 07 86 – Source IP address in hex which is 172.22.7.134 in dotted decimal format.

91 21 05 ad –十六进制的目标IP地址，它是点分十进制格式的145.33.5.173.

91 21 05 ad – Destination IP address in hex which is 145.33.5.173 in dotted decimal format.

源IP地址为172.22.7.134，您的答案位于此处，

Source IP address is 172.22.7.134 and your answer is located here,

这篇关于如何从HTTP GET请求的Wireshark转储获取源IP的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！