如何从HTTP GET请求的Wireshark转储获取源IP [英] How to obtain the source IP from a Wireshark dump of an HTTP GET request
问题描述
我正在为考试做准备,但似乎无法弄清楚.我被要求从这个wireshark帧中找出源IP地址(仅使用参考图像),我将如何处理?
I'm currently studying for my test but I can't seem to figure this one out. I'm asked to figure out the source IP address out of this wireshark frame (using the reference image only), how would I be going about this?
推荐答案
源IP地址为172.22.7.134.
Source IP address is 172.22.7.134.
e0 3f 49 09 60 68 c8 2a 14 55 eb bd 08 00-前14个字节将是第2层以太网帧.
e0 3f 49 09 60 68 c8 2a 14 55 eb bd 08 00 - First 14 bytes will be layer 2 Ethernet frame.
接下来的20个字节属于IP版本4,您可以在其中获取源IP地址和目标IP地址.
Next 20 bytes belongs to IP version 4 where you can get source IP address and destination IP address.
45-1字节–版本为4,标头长度为5
45 - 1 Byte – version which is 4 and header length 5
00 – 1字节-DSCP值
00 – 1 Byte - DSCP value
01 a3 – 2个字节–总长度:为419
01 a3 – 2 bytes – Total length : which is 419
18 84 – 2个字节–标识
18 84 – 2 bytes – identification
40 00 –标志和片段偏移
40 00 – flag and fragment offset
80 –生存时间128
80 – time to live 128
06 –协议:TCP(6)
06 – protocol : TCP (6)
00 00 –标头校验和
00 00 – header checksum
ac 16 07 86 –以十六进制表示的源IP地址,它是点分十进制格式的172.22.7.134.
ac 16 07 86 – Source IP address in hex which is 172.22.7.134 in dotted decimal format.
91 21 05 ad –十六进制的目标IP地址,它是点分十进制格式的145.33.5.173.
91 21 05 ad – Destination IP address in hex which is 145.33.5.173 in dotted decimal format.
源IP地址为172.22.7.134,您的答案位于此处,
Source IP address is 172.22.7.134 and your answer is located here,
这篇关于如何从HTTP GET请求的Wireshark转储获取源IP的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!