Redes

Disponível somente no TrabalhosFeitos
  • Páginas : 14 (3436 palavras )
  • Download(s) : 0
  • Publicado : 26 de setembro de 2012
Ler documento completo
Amostra do texto
1 a) Interfaces existentes:
Eth0 e lo;

b)Endereço MAC: Endereço de HW 00:27:13:ae:18:17
IP: inet end.: 200.17.210.249
Broadcast:200.17.210.255
Masc:255.255.255.0
MTU:1500

2)ARP
ARP antes
? (200.17.210.80) em 00:04:96:40:ac:60 [ether] em eth0

B) IP 200.17.210.248
MAC 00:27:13:ae:0c:db

ARP depois:
? (200.17.210.80) em 00:04:96:40:ac:60 [ether] em eth0
? (200.17.210.248)em 00:27:13:ae:0c:db [ether] em eth0

A tabela arp mudou porque nela são armazenados os endereços IP recentemente usados. As máquinas agora se “conhecem”.

3) TCPDUMP
arp antes -200.17.210.249

listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes
08:31:23.651177 00:27:13:ae:18:17 > ff:ff:ff:ff:ff:ff, ethertype ARP (0x0806), length 42: Request who-has 200.17.210.248tell 200.17.210.249, length 28

08:31:23.651480 00:27:13:ae:0c:db > 00:27:13:ae:18:17, ethertype ARP (0x0806), length 60: Reply 200.17.210.248 is-at 00:27:13:ae:0c:db, length 46

08:31:28.666266 00:27:13:ae:0c:db > 00:27:13:ae:18:17, ethertype ARP (0x0806), length 60: Request who-has 200.17.210.249 tell 200.17.210.248, length 46

08:31:28.666277 00:27:13:ae:18:17 > 00:27:13:ae:0c:db,ethertype ARP (0x0806), length 42: Reply 200.17.210.249 is-at 00:27:13:ae:18:17, length 28
^C
4 packets captured
4 packets received by filter
0 packets dropped by kernel

Resposta Arp
root@camyla-DSI:/home/camyla# arp -an
? (200.17.210.80) em 00:04:96:40:ac:60 [ether] em eth0
? (200.17.210.248) em 00:27:13:ae:0c:db [ether] em eth0

4)PING
root@camyla-DSI:/home/camyla# ping -c 1200.17.210.248
PING 200.17.210.248 (200.17.210.248) 56(84) bytes of data.
64 bytes from 200.17.210.248: icmp_req=1 ttl=64 time=0.678 ms

--- 200.17.210.248 ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 0.678/0.678/0.678/0.000 ms

Com a resposta, é possível saber que o pacote foi transmitido com sucesso.

TCPDUMProot@camyla-DSI:/home/camyla# tcpdump -n host 200.17.210.249 and icmp
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes
08:40:30.730712 IP 200.17.210.249 > 200.17.210.248: ICMP echo request, id 9626, seq 1, length 64
08:40:30.731366 IP 200.17.210.248 > 200.17.210.249: ICMP echo reply, id 9626, seq 1, length 6408:40:42.451291 IP 207.191.245.195 > 200.17.210.249: ICMP echo request, id 512, seq 21055, length 41
08:40:42.451331 IP 200.17.210.249 > 207.191.245.195: ICMP echo reply, id 512, seq 21055, length 41
08:40:43.268433 IP 207.191.245.195 > 200.17.210.249: ICMP echo request, id 512, seq 48959, length 41
08:40:43.268459 IP 200.17.210.249 > 207.191.245.195: ICMP echo reply, id 512, seq 48959,length 41
^C
6 packets captured
6 packets received by filter
0 packets dropped by kernel

Através da reposta podemos ver os pacotes capturados, inclusive o que enviamos.

5) Saida TCPDUMP

root@camyla-DSI:/home/camyla# tcpdump -nv host 200.19.74.21 and \(icmp or udp\)
tcpdump: listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes
08:55:22.699404 IP (tos 0x0, ttl 1,id 4470, offset 0, flags [none], proto UDP (17), length 60)
200.17.210.249.45507 > 200.19.74.21.33434: UDP, length 32
08:55:22.699436 IP (tos 0x0, ttl 1, id 4471, offset 0, flags [none], proto UDP (17), length 60)
200.17.210.249.35826 > 200.19.74.21.33435: UDP, length 32
08:55:22.699457 IP (tos 0x0, ttl 1, id 4472, offset 0, flags [none], proto UDP (17), length 60)200.17.210.249.48484 > 200.19.74.21.33436: UDP, length 32
08:55:22.699476 IP (tos 0x0, ttl 2, id 4473, offset 0, flags [none], proto UDP (17), length 60)
200.17.210.249.54307 > 200.19.74.21.33437: UDP, length 32
08:55:22.699497 IP (tos 0x0, ttl 2, id 4474, offset 0, flags [none], proto UDP (17), length 60)
200.17.210.249.35091 > 200.19.74.21.33438: UDP, length 32
08:55:22.699559 IP (tos 0x0, ttl...
tracking img