Intrusion Analyst Packet Header Chart

IP and TCP

Copyright © Guy Bruneau, 2000-2001. All rights reserved.
 

4

5

82

002c

4-bit version

4-bit header length

8-bit type of service (TOS)

16-bit total length (in bytes)

7620

4000 (DF) or 2000 (MF)

16-bit identification

3-bit flags

13-bit fragment offset

80

06

c6cb

8-bit time to live (TTL)

8-bit protocol

16-bit header checksum

c0a8 1e0c

32-bit source IP address

c0a8 1e01

32-bit destination IP address

Options (if any)

040e

0017

16-bit source port number

16-bit destination port number

0000 e875

32-bit sequence number

0000 0000

32-bit acknowledgment number

6

002

2000

4-bit header length

reserved (6 bits)

U

A

P

R

S

F

16-bit window size

ce2d

0000

16-bit TCP checksum

16-urgent pointer

Options (if any)

0204 05b4

Start of Data (if any)


 

TCPDump trace (20 bites IP header [without options] + 24 bites TCP header)


20:50:42.096190 Rover.1038 > Seeker.telnet: S 59509:59509(0) win 8192 <mss 1460> (DF) [tos 0x82]

4582 002c 7620 4000 8006 c6cb c0a8 1e0c

c0a8 1e01040e 0017 0000 e875 0000 0000

6002 2000 ce2d 0000 0204 05b4 05b4
 
 

8-PROTOCOL NUMBERS

In the Internet Protocol version 4 (IPv4) [RFC791] there is a field, called "Protocol", to identify the next level protocol. This is an 8 bit field. In Internet Protocol version 6 (IPv6) [RFC1883] this field is called the "Next Header" field. These protocols are bite 1 of the IP field; 8-bit type of service (TOS).
 
 

Assigned Internet Protocol Numbers

Decimal     Keyword     Protocol                                HEX

1                        ICMP                Internet Control Message                    0x01

2                        IGMP                Internet Group Management              0x02

6                        TCP                  Transmission Control                        0x06

17                      UDP                  User Datagram                                   0x11

41                      IPv6                   Ipv6                                                     0x29

43                      IPv6-Route        Routing Header for IPv6                    0x2b

44                       IPv6-Frag        Fragment Header for IPv6                 0x2c

50                       ESP                   Encap Security Payload for IPv6       0x32

51                       AH                    Authentication Header for IPv6        0x33

88                       EIGRP               EIGRP                                               0x58

89                       OSPFIGP           OSPFIGP                                          0x59
 


Non-Active Sitemap

Copyright © 2000-2014 Whitehats.ca
Contact Information 519.221.9132 : Web Contact webmaster@whitehats.ca