Question 1

Which of the following protocols are shown as appearing (i.e., are listed in the Wireshark “protocol” column) in your trace file: TCP, QUIC, HTTP, DNS, UDP, TLSv1.2?

TCP, HTTP, and TLSv1.2 appear.

QUIC, DNS and UDP, do not appear in trace’s Protocol column.

Question 2

How long did it take from when the HTTP GET message was sent until the HTTP OK reply was received?

(By default, the value of the Time column in the packet-listing window is the amount of time, in seconds, since Wireshark tracing began. If you want to display the Time field in time-of-day format, select the Wireshark View pull down menu, then select Time Display Format, then select Time-of-day).

~0.029 s (28.885 ms) from HTTP GET to HTTP 200 OK.

Question 3

What is the Internet address of the gaia.cs.umass.edu (also known as www-net.cs.umass.edu)? What is the Internet address of your computer or (if you are using the trace file) the computer that sent the HTTP GET message?

• gaia.cs.umass.edu: 128.119.245.12
• Client (sender of the GET): 10.0.0.44

10.0.0.44 is in a private RFC1918 range, this suggest that this client reaches the Internet through a NAT.

Question 4

Expand the information on the HTTP message in the Wireshark “Details of selected packet” window so you can see the fields in the HTTP GET request message.

What type of Web browser issued the HTTP request?