CS 268 - Assignment 4: Network Sniffing

Given: November 11, 1999

Due: December 2 (in class), 1999

Language Options: Any

Your assignment is to decode some sniffed IP packet traffic. You may do this by hand or write a program to do it. For each packet you will need to figure out:

Source IP address

Destination IP address

IP header length

IP packet total length

IP protocol number

In addition, if the packet is UDP, list the value of all four UDP header fields. If the packet is TCP, list all the TCP header field values. You may ignore the TCP options.

The sniffed traffic is in binary form as a file at:


~cs268/sniff-111199.data

You will turn in a break down of each packet. You will not turn in any program for this assignment.

Extra Credit

Value: up to +6% onto final grade

For extra credit, decode the TCP and IP options (if present) as well as all the IP header fields (+1%). Decode the application data into hexadecimal (+2%). Decode what application protocol it is and what each message is doing (+3%).

Todd L. Montgomery (revised 11.10.1999)