Revision history [back]

When I ping two IP addresses on the local network, I get the following as expected.

~ % ping 10.10.100.254
64 bytes from 10.10.100.254: icmp_seq=0 ttl=255 time=6.693 ms
64 bytes from 10.10.100.254: icmp_seq=1 ttl=255 time=1.628 ms

~ % ping 10.10.100.1
64 bytes from 10.10.100.1: icmp_seq=0 ttl=64 time=0.067 ms
64 bytes from 10.10.100.1: icmp_seq=1 ttl=64 time=0.066 ms

However, using Wireshark to look at the content of packets between the two destinations, I got the following:

Source--------------Destination-------------Protocol------------- Length---------- Info
10.10.100.254----10.10.100.1-------------ICMP----------------70-----------------Destination Unreachable(port unreachable)
10.10.100.1-------10.10.100.254----------UDP-----------------46-----------------55180 -> 192 Len = 4

Why is there a difference between the two and what steps do I need to take to read the contnets of any packets between the two. hanks for any help

When I ping two IP addresses on the local network, I get the following as expected.

~ % ping 10.10.100.254 
 10.10.100.254
64 bytes from 10.10.100.254: icmp_seq=0 ttl=255 time=6.693 ms
 ms
64 bytes from 10.10.100.254: icmp_seq=1 ttl=255 time=1.628 ms
 
ms

 ~ % ping 10.10.100.1
 10.10.100.1
64 bytes from 10.10.100.1: icmp_seq=0 ttl=64 time=0.067 ms
 ms
64 bytes from 10.10.100.1: icmp_seq=1 ttl=64 time=0.066 msms

Source         Destination    Protocol  Length  Info
10.10.100.254  10.10.100.1    ICMP      70      Destination Unreachable(port unreachable)

10.10.100.1-------10.10.100.254----------UDP-----------------46-----------------55180 unreachable)
10.10.100.1    10.10.100.254  UDP       46      55180 -> 192   Len = 4
4