• Use ipconfig to empty the DNS cache in your host. • Open your browser and empty your browser cache. (With Internet Explorer, go to Tools menu and select Internet Options; then in the General tab select Delete Files.) • Open Wireshark and enter “ip.addr == your_IP_address” into the filter, where you obtain your_IP_address (the IP address for the computer on which you are running Wireshark) with ipconfig. This filter removes all packets that neither originate nor are destined to your host. • Start packet capture in Wireshark. • With your browser, visit the Web page: • Stop packet capture. Answer the following questions:
Question 9. Locate the DNS query and response messages. Are they sent over UDP or TCP? response message? of your local DNS server. Are these two IP addresses the same? contain any “answers”? Ans: It is a Standard query Type. It does not contain any answers. Question 13. Examine the DNS response message. How many “answers” are provided? What does each of these answers contain? IP address of the SYN packet correspond to any of the IP addresses provided in the DNS response message?
You've reached the end of your free preview.
Want to read all 18 pages?
- Summer '19
- IP address, Domain Name System, local DNS server, DNS query