5.Save the capture as a file calledlearnname_L3_capture. This is important, if you need to returnto the original file after applying display filters.6.Type in the Display filter text boxip.addr==142.204.140.90. This will show the beginning of yourconversation with the matrix server.Your Wireshark window should look like the screen shotbelow.6.Notice the first conversation between your host to the server is a [SYN] packet with an infonumber of 49912 (yours will be different).The latter is a TCP flag which tells the server to open aconnection to the host. Notice SEQ=0. Click on the [SYN] packet and open the drop-down arrowon the Transmission Control Protocol in the Details pane in the middle Wireshark window.7.In the top Wireshark packet list pane, select the second TCP packet, labeled SYN, ACK with thesame info number 49912.8.Observe the packet details in the middle Wireshark packet details pane. Notice that it is anEthernet II / Internet Protocol Version 4 / Transmission Control Protocol frame.9.Expand Ethernet II to view Ethernet details. Answer the following questions in the table below:10.Observe the Destination and Source fields.11.Expand Internet Protocol Version 4 to view IP details.12.Observe the Source and Destination IP addresses.13.Expand Transmission Control Protocol to view TCP details.14.Observe the Source and Destination ports.15.Observe the Sequence number. Notice that it is 0 (relative sequence number). To see the actualsequence number, select Sequence number to highlight the sequence number in the bottomWireshark bytes pane.
