Ask Your Question
0

WIRESHARK HELP

asked 2018-01-06 13:03:58 +0000

this post is marked as community wiki

This post is a wiki. Anyone with karma >750 is welcome to improve it.

Is 10.9.10.21 the DNS Server? 10.10.100.207 the Client? 74.125.226.55 is the router or switch? I'm confused can someone help me?

Picture: https://gyazo.com/0dd6ef14029602cd16a...

edit retag flag offensive close merge delete

1 Answer

Sort by ยป oldest newest most voted
0

answered 2018-01-06 13:56:27 +0000

Jaap gravatar image

First of all, working from a picture is just a PITA, share capture files instead.

So only partial answers can be derived from this picture.

You're showing a DNS query packet, with 10.9.10.21 as the source (thus client) and 10.10.100.207 as the destination (server, or proxy). 74.125.226.55 is some host on an interconnected network, which you can reach via a router.

That is as far as this analysis goes. With a proper capture file we could possibly tell more.

edit flag offensive delete link more

Comments

Alright, that sounds about right, also what would be the socket address of the client? And this would be a Client to server communication right?

corey.bear gravatar imagecorey.bear ( 2018-01-07 12:30:33 +0000 )edit

What do you think the socket address is, and can you tell why? The other question is, is DNS a client server protocol of a peer-to-peer protocol?

Jaap gravatar imageJaap ( 2018-01-07 14:45:45 +0000 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

Stats

Asked: 2018-01-06 13:03:58 +0000

Seen: 551 times

Last updated: Jan 06 '18