You recently used Wireshark to capture a series of packets. You are expanding one of the packets into its constituent sections. Which of the following is not a section in a captured packet?
a. Frame
b. Ethernet II
c. Internet Protocol version 4
d. Application
Frame: This is the physical layer and describes how many bytes are on the wire.
Ethernet II: This is the data link layer and contains source and destination MAC addresses.
Internet Protocol version 4: This is the network layer and contains source and destination IP addresses.
Transmission Control Protocol: This is the transport layer and contains source and destination port numbers.
Data of some type: There is no data in this packet because it is an SYN packet, part of the TCP handshake. But if this were HTTP data, for example, the section would be titled HTTP, and it would include the raw data.
Ethernet II: This is the data link layer and contains source and destination MAC addresses.
Internet Protocol version 4: This is the network layer and contains source and destination IP addresses.
Transmission Control Protocol: This is the transport layer and contains source and destination port numbers.
Data of some type: There is no data in this packet because it is an SYN packet, part of the TCP handshake. But if this were HTTP data, for example, the section would be titled HTTP, and it would include the raw data.
No comments:
Post a Comment