Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

Help to read this trace

I'm trying to synchronize our BPX with LDAP active directory all the configuration is correct but no result in search. Please help me to read this trace PBX IP is 10.253.4.3 LDAP IP is 10.140.8.233

No. Time Source Destination Protocol Length Info 9183 19.048491 10.253.4.3 10.140.8.233 TCP 66 10131 → 636 [SYN] Seq=0 Win=5840 Len=0 MSS=1460 SACK_PERM=1 WS=1

Frame 9183: 66 bytes on wire (528 bits), 66 bytes captured (528 bits)

Ethernet II, Src: HewlettP_97:7c:84 (00:9c:02:97:7c:84), Dst: Cisco_ff:fc:88 (00:08:e3:ff:fc:88)

Internet Protocol Version 4, Src: 10.253.4.3, Dst: 10.140.8.233

Transmission Control Protocol, Src Port: 10131, Dst Port: 636, Seq: 0, Len: 0

Source Port: 10131
Destination Port: 636
[Stream index: 4]
[TCP Segment Len: 0]
Sequence number: 0    (relative sequence number)
Acknowledgment number: 0
Header Length: 32 bytes
Flags: 0x002 (SYN)
    000. .... .... = Reserved: Not set
    ...0 .... .... = Nonce: Not set
    .... 0... .... = Congestion Window Reduced (CWR): Not set
    .... .0.. .... = ECN-Echo: Not set
    .... ..0. .... = Urgent: Not set
    .... ...0 .... = Acknowledgment: Not set
    .... .... 0... = Push: Not set
    .... .... .0.. = Reset: Not set
    .... .... ..1. = Syn: Set
    .... .... ...0 = Fin: Not set
    [TCP Flags: ··········S·]
Window size value: 5840
[Calculated window size: 5840]
Checksum: 0x0068 [unverified]
[Checksum Status: Unverified]
Urgent pointer: 0
Options: (12 bytes), Maximum segment size, No-Operation (NOP), No-Operation (NOP), SACK permitted, No-Operation (NOP), Window scale
    Maximum segment size: 1460 bytes
    No-Operation (NOP)
    No-Operation (NOP)
    TCP SACK Permitted Option: True
    No-Operation (NOP)
    Window scale: 0 (multiply by 1)

No. Time Source Destination Protocol Length Info

9184 19.048923 10.140.8.233 10.253.4.3 TCP 66 636 → 10131 [SYN, ACK] Seq=0 Ack=1 Win=8192

Len=0 MSS=1380 WS=256 SACK_PERM=1

Frame 9184: 66 bytes on wire (528 bits), 66 bytes captured (528 bits)

Ethernet II, Src: Cisco_ff:fc:88 (00:08:e3:ff:fc:88), Dst: HewlettP_97:7c:84 (00:9c:02:97:7c:84)

Internet Protocol Version 4, Src: 10.140.8.233, Dst: 10.253.4.3

Transmission Control Protocol, Src Port: 636, Dst Port: 10131, Seq: 0, Ack: 1, Len: 0

Source Port: 636
Destination Port: 10131
[Stream index: 4]
[TCP Segment Len: 0]
Sequence number: 0    (relative sequence number)
Acknowledgment number: 1    (relative ack number)
Header Length: 32 bytes
Flags: 0x012 (SYN, ACK)
    000. .... .... = Reserved: Not set
    ...0 .... .... = Nonce: Not set
    .... 0... .... = Congestion Window Reduced (CWR): Not set
    .... .0.. .... = ECN-Echo: Not set
    .... ..0. .... = Urgent: Not set
    .... ...1 .... = Acknowledgment: Set
    .... .... 0... = Push: Not set
    .... .... .0.. = Reset: Not set
    .... .... ..1. = Syn: Set
    .... .... ...0 = Fin: Not set
    [TCP Flags: ·······A··S·]
Window size value: 8192
[Calculated window size: 8192]
Checksum: 0xcdf1 [unverified]
[Checksum Status: Unverified]
Urgent pointer: 0
Options: (12 bytes), Maximum segment size, No-Operation (NOP), Window scale, No-Operation (NOP), No-Operation (NOP), SACK permitted
    Maximum segment size: 1380 bytes
    No-Operation (NOP)
    Window scale: 8 (multiply by 256)
    No-Operation (NOP)
    No-Operation (NOP)
    TCP SACK Permitted Option: True
[SEQ/ACK analysis]

No. Time Source Destination Protocol Length Info

9185 19.048929 10.253.4.3 10.140.8.233 TCP 54 10131 → 636 [ACK] Seq=1 Ack=1 Win=5840 Len=0

Frame 9185: 54 bytes on wire (432 bits), 54 bytes captured (432 bits)

Ethernet II, Src: HewlettP_97:7c:84 (00:9c:02:97:7c:84), Dst: Cisco_ff:fc:88 (00:08:e3:ff:fc:88)

Internet Protocol Version 4, Src: 10.253.4.3, Dst: 10.140.8.233

Transmission Control Protocol, Src Port: 10131, Dst Port: 636, Seq: 1, Ack: 1, Len: 0

Source Port: 10131
Destination Port: 636
[Stream index: 4]
[TCP Segment Len: 0]
Sequence number: 1    (relative sequence number)
Acknowledgment number: 1    (relative ack number)
Header Length: 20 bytes
Flags: 0x010 (ACK)
    000. .... .... = Reserved: Not set
    ...0 .... .... = Nonce: Not set
    .... 0... .... = Congestion Window Reduced (CWR): Not set
    .... .0.. .... = ECN-Echo: Not set
    .... ..0. .... = Urgent: Not set
    .... ...1 .... = Acknowledgment: Set
    .... .... 0... = Push: Not set
    .... .... .0.. = Reset: Not set
    .... .... ..0. = Syn: Not set
    .... .... ...0 = Fin: Not set
    [TCP Flags: ·······A····]
Window size value: 5840
[Calculated window size: 5840]
[Window size scaling factor: 1]
Checksum: 0x17a5 [unverified]
[Checksum Status: Unverified]
Urgent pointer: 0
[SEQ/ACK analysis]

No. Time Source Destination Protocol Length Info

9186 19.048945 10.253.4.3 10.140.8.233 SSL 68 Continuation Data

Frame 9186: 68 bytes on wire (544 bits), 68 bytes captured (544 bits)

Ethernet II, Src: HewlettP_97:7c:84 (00:9c:02:97:7c:84), Dst: Cisco_ff:fc:88 (00:08:e3:ff:fc:88)

Internet Protocol Version 4, Src: 10.253.4.3, Dst: 10.140.8.233

Transmission Control Protocol, Src Port: 10131, Dst Port: 636, Seq: 1, Ack: 1, Len: 14

Source Port: 10131
Destination Port: 636
[Stream index: 4]
[TCP Segment Len: 14]
Sequence number: 1    (relative sequence number)
[Next sequence number: 15    (relative sequence number)]
Acknowledgment number: 1    (relative ack number)
Header Length: 20 bytes
Flags: 0x018 (PSH, ACK)
    000. .... .... = Reserved: Not set
    ...0 .... .... = Nonce: Not set
    .... 0... .... = Congestion Window Reduced (CWR): Not set
    .... .0.. .... = ECN-Echo: Not set
    .... ..0. .... = Urgent: Not set
    .... ...1 .... = Acknowledgment: Set
    .... .... 1... = Push: Set
    .... .... .0.. = Reset: Not set
    .... .... ..0. = Syn: Not set
    .... .... ...0 = Fin: Not set
    [TCP Flags: ·······AP···]
Window size value: 5840
[Calculated window size: 5840]
[Window size scaling factor: 1]
Checksum: 0x581c [unverified]
[Checksum Status: Unverified]
Urgent pointer: 0
[SEQ/ACK analysis]

Secure Sockets Layer

No. Time Source Destination Protocol Length Info

9187 19.049554 10.140.8.233 10.253.4.3 TCP 60 636 → 10131 [RST, ACK] Seq=1 Ack=15 Win=0 Len=0

Frame 9187: 60 bytes on wire (480 bits), 60 bytes captured (480 bits)

Ethernet II, Src: Cisco_ff:fc:88 (00:08:e3:ff:fc:88), Dst: HewlettP_97:7c:84 (00:9c:02:97:7c:84)

Internet Protocol Version 4, Src: 10.140.8.233, Dst: 10.253.4.3

Transmission Control Protocol, Src Port: 636, Dst Port: 10131, Seq: 1, Ack: 15, Len: 0

Source Port: 636
Destination Port: 10131
[Stream index: 4]
[TCP Segment Len: 0]
Sequence number: 1    (relative sequence number)
Acknowledgment number: 15    (relative ack number)
Header Length: 20 bytes
Flags: 0x014 (RST, ACK)
    000. .... .... = Reserved: Not set
    ...0 .... .... = Nonce: Not set
    .... 0... .... = Congestion Window Reduced (CWR): Not set
    .... .0.. .... = ECN-Echo: Not set
    .... ..0. .... = Urgent: Not set
    .... ...1 .... = Acknowledgment: Set
    .... .... 0... = Push: Not set
    .... .... .1.. = Reset: Set
    .... .... ..0. = Syn: Not set
    .... .... ...0 = Fin: Not set
    [TCP Flags: ·······A·R··]
Window size value: 0
[Calculated window size: 0]
[Window size scaling factor: 256]
Checksum: 0x2e63 [unverified]
[Checksum Status: Unverified]
Urgent pointer: 0
[SEQ/ACK analysis]

Help to read this trace

I'm trying to synchronize our BPX with LDAP active directory all the configuration is correct but no result in search. Please help me to read this trace PBX IP is 10.253.4.3 LDAP IP is 10.140.8.233

No.     Time           Source                Destination           Protocol Length Info
   9183 19.048491      10.253.4.3            10.140.8.233          TCP      66     10131 → 636 [SYN] Seq=0 Win=5840 Len=0 MSS=1460 SACK_PERM=1 WS=1

WS=1 Frame 9183: 66 bytes on wire (528 bits), 66 bytes captured (528 bits)

bits) Ethernet II, Src: HewlettP_97:7c:84 (00:9c:02:97:7c:84), Dst: Cisco_ff:fc:88 (00:08:e3:ff:fc:88)

(00:08:e3:ff:fc:88) Internet Protocol Version 4, Src: 10.253.4.3, Dst: 10.140.8.233

10.140.8.233 Transmission Control Protocol, Src Port: 10131, Dst Port: 636, Seq: 0, Len: 0

0

    Source Port: 10131
 Destination Port: 636
 [Stream index: 4]
 [TCP Segment Len: 0]
 Sequence number: 0    (relative sequence number)
 Acknowledgment number: 0
 Header Length: 32 bytes
 Flags: 0x002 (SYN)
     000. .... .... = Reserved: Not set
     ...0 .... .... = Nonce: Not set
     .... 0... .... = Congestion Window Reduced (CWR): Not set
     .... .0.. .... = ECN-Echo: Not set
     .... ..0. .... = Urgent: Not set
     .... ...0 .... = Acknowledgment: Not set
     .... .... 0... = Push: Not set
     .... .... .0.. = Reset: Not set
     .... .... ..1. = Syn: Set
     .... .... ...0 = Fin: Not set
     [TCP Flags: ··········S·]
 Window size value: 5840
 [Calculated window size: 5840]
 Checksum: 0x0068 [unverified]
 [Checksum Status: Unverified]
 Urgent pointer: 0
 Options: (12 bytes), Maximum segment size, No-Operation (NOP), No-Operation (NOP), SACK permitted, No-Operation (NOP), Window scale
     Maximum segment size: 1460 bytes
     No-Operation (NOP)
     No-Operation (NOP)
     TCP SACK Permitted Option: True
     No-Operation (NOP)
     Window scale: 0 (multiply by 1)

No. Time Source Destination Protocol Length Info

Info 9184 19.048923 10.140.8.233 10.253.4.3 TCP 66 636 → 10131 [SYN, ACK] Seq=0 Ack=1 Win=8192

Len=0 MSS=1380 WS=256 SACK_PERM=1

SACK_PERM=1 Frame 9184: 66 bytes on wire (528 bits), 66 bytes captured (528 bits)

bits) Ethernet II, Src: Cisco_ff:fc:88 (00:08:e3:ff:fc:88), Dst: HewlettP_97:7c:84 (00:9c:02:97:7c:84)

(00:9c:02:97:7c:84) Internet Protocol Version 4, Src: 10.140.8.233, Dst: 10.253.4.3

10.253.4.3 Transmission Control Protocol, Src Port: 636, Dst Port: 10131, Seq: 0, Ack: 1, Len: 0

0

    Source Port: 636
 Destination Port: 10131
 [Stream index: 4]
 [TCP Segment Len: 0]
 Sequence number: 0    (relative sequence number)
 Acknowledgment number: 1    (relative ack number)
 Header Length: 32 bytes
 Flags: 0x012 (SYN, ACK)
     000. .... .... = Reserved: Not set
     ...0 .... .... = Nonce: Not set
     .... 0... .... = Congestion Window Reduced (CWR): Not set
     .... .0.. .... = ECN-Echo: Not set
     .... ..0. .... = Urgent: Not set
     .... ...1 .... = Acknowledgment: Set
     .... .... 0... = Push: Not set
     .... .... .0.. = Reset: Not set
     .... .... ..1. = Syn: Set
     .... .... ...0 = Fin: Not set
     [TCP Flags: ·······A··S·]
 Window size value: 8192
 [Calculated window size: 8192]
 Checksum: 0xcdf1 [unverified]
 [Checksum Status: Unverified]
 Urgent pointer: 0
 Options: (12 bytes), Maximum segment size, No-Operation (NOP), Window scale, No-Operation (NOP), No-Operation (NOP), SACK permitted
     Maximum segment size: 1380 bytes
     No-Operation (NOP)
     Window scale: 8 (multiply by 256)
     No-Operation (NOP)
     No-Operation (NOP)
     TCP SACK Permitted Option: True
 [SEQ/ACK analysis]

No. Time Source Destination Protocol Length Info

Info 9185 19.048929 10.253.4.3 10.140.8.233 TCP 54 10131 → 636 [ACK] Seq=1 Ack=1 Win=5840 Len=0

Len=0 Frame 9185: 54 bytes on wire (432 bits), 54 bytes captured (432 bits)

bits) Ethernet II, Src: HewlettP_97:7c:84 (00:9c:02:97:7c:84), Dst: Cisco_ff:fc:88 (00:08:e3:ff:fc:88)

(00:08:e3:ff:fc:88) Internet Protocol Version 4, Src: 10.253.4.3, Dst: 10.140.8.233

10.140.8.233 Transmission Control Protocol, Src Port: 10131, Dst Port: 636, Seq: 1, Ack: 1, Len: 0

0

    Source Port: 10131
 Destination Port: 636
 [Stream index: 4]
 [TCP Segment Len: 0]
 Sequence number: 1    (relative sequence number)
 Acknowledgment number: 1    (relative ack number)
 Header Length: 20 bytes
 Flags: 0x010 (ACK)
     000. .... .... = Reserved: Not set
     ...0 .... .... = Nonce: Not set
     .... 0... .... = Congestion Window Reduced (CWR): Not set
     .... .0.. .... = ECN-Echo: Not set
     .... ..0. .... = Urgent: Not set
     .... ...1 .... = Acknowledgment: Set
     .... .... 0... = Push: Not set
     .... .... .0.. = Reset: Not set
     .... .... ..0. = Syn: Not set
     .... .... ...0 = Fin: Not set
     [TCP Flags: ·······A····]
 Window size value: 5840
 [Calculated window size: 5840]
 [Window size scaling factor: 1]
 Checksum: 0x17a5 [unverified]
 [Checksum Status: Unverified]
 Urgent pointer: 0
 [SEQ/ACK analysis]

No. Time Source Destination Protocol Length Info

Info 9186 19.048945 10.253.4.3 10.140.8.233 SSL 68 Continuation Data

Data Frame 9186: 68 bytes on wire (544 bits), 68 bytes captured (544 bits)

bits) Ethernet II, Src: HewlettP_97:7c:84 (00:9c:02:97:7c:84), Dst: Cisco_ff:fc:88 (00:08:e3:ff:fc:88)

(00:08:e3:ff:fc:88) Internet Protocol Version 4, Src: 10.253.4.3, Dst: 10.140.8.233

10.140.8.233 Transmission Control Protocol, Src Port: 10131, Dst Port: 636, Seq: 1, Ack: 1, Len: 14

14

    Source Port: 10131
 Destination Port: 636
 [Stream index: 4]
 [TCP Segment Len: 14]
 Sequence number: 1    (relative sequence number)
 [Next sequence number: 15    (relative sequence number)]
 Acknowledgment number: 1    (relative ack number)
 Header Length: 20 bytes
 Flags: 0x018 (PSH, ACK)
     000. .... .... = Reserved: Not set
     ...0 .... .... = Nonce: Not set
     .... 0... .... = Congestion Window Reduced (CWR): Not set
     .... .0.. .... = ECN-Echo: Not set
     .... ..0. .... = Urgent: Not set
     .... ...1 .... = Acknowledgment: Set
     .... .... 1... = Push: Set
     .... .... .0.. = Reset: Not set
     .... .... ..0. = Syn: Not set
     .... .... ...0 = Fin: Not set
     [TCP Flags: ·······AP···]
 Window size value: 5840
 [Calculated window size: 5840]
 [Window size scaling factor: 1]
 Checksum: 0x581c [unverified]
 [Checksum Status: Unverified]
 Urgent pointer: 0
 [SEQ/ACK analysis]

Secure Sockets Layer

Layer No. Time Source Destination Protocol Length Info

Info 9187 19.049554 10.140.8.233 10.253.4.3 TCP 60 636 → 10131 [RST, ACK] Seq=1 Ack=15 Win=0 Len=0

Len=0 Frame 9187: 60 bytes on wire (480 bits), 60 bytes captured (480 bits)

bits) Ethernet II, Src: Cisco_ff:fc:88 (00:08:e3:ff:fc:88), Dst: HewlettP_97:7c:84 (00:9c:02:97:7c:84)

(00:9c:02:97:7c:84) Internet Protocol Version 4, Src: 10.140.8.233, Dst: 10.253.4.3

10.253.4.3 Transmission Control Protocol, Src Port: 636, Dst Port: 10131, Seq: 1, Ack: 15, Len: 0

0

    Source Port: 636
 Destination Port: 10131
 [Stream index: 4]
 [TCP Segment Len: 0]
 Sequence number: 1    (relative sequence number)
 Acknowledgment number: 15    (relative ack number)
 Header Length: 20 bytes
 Flags: 0x014 (RST, ACK)
     000. .... .... = Reserved: Not set
     ...0 .... .... = Nonce: Not set
     .... 0... .... = Congestion Window Reduced (CWR): Not set
     .... .0.. .... = ECN-Echo: Not set
     .... ..0. .... = Urgent: Not set
     .... ...1 .... = Acknowledgment: Set
     .... .... 0... = Push: Not set
     .... .... .1.. = Reset: Set
     .... .... ..0. = Syn: Not set
     .... .... ...0 = Fin: Not set
     [TCP Flags: ·······A·R··]
 Window size value: 0
 [Calculated window size: 0]
 [Window size scaling factor: 256]
 Checksum: 0x2e63 [unverified]
 [Checksum Status: Unverified]
 Urgent pointer: 0
 [SEQ/ACK analysis]