From cb8e6c031cb92b7832f70447dfeaa4fa49efecbf Mon Sep 17 00:00:00 2001 From: Kyle Isom Date: Mon, 1 May 2023 22:32:51 -0700 Subject: [PATCH] adding notes --- notes/dhcp.pcap | Bin 0 -> 740 bytes notes/dhcp.txt | 251 ++++++++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 251 insertions(+) create mode 100644 notes/dhcp.pcap create mode 100644 notes/dhcp.txt diff --git a/notes/dhcp.pcap b/notes/dhcp.pcap new file mode 100644 index 0000000000000000000000000000000000000000..2c9bf6f65c6e8f4e95fedb75401966562e6ab06b GIT binary patch literal 740 zcmca|c+)~A1{MYcU}0bcaz1_WPYGPd#1IDLfbf4X*rEP<+rs4>46Xu<9v~eJf|k=j zG)R)cg~6H8BsztWk&R)`&u2OyadZIDk1jfN`N>Ve$)=2qJS@p6sb%K8j518j{A}es iI{H$TTK|dg))!zXTW@A3J(LsSq0EeF&1fj2h6w=N&`4SU literal 0 HcmV?d00001 diff --git a/notes/dhcp.txt b/notes/dhcp.txt new file mode 100644 index 0000000..1e37664 --- /dev/null +++ b/notes/dhcp.txt @@ -0,0 +1,251 @@ +No. Time Source Destination Protocol Length Info + 1 0.000000 0.0.0.0 255.255.255.255 DHCP 342 DHCP Discover - Transaction ID 0xbcf9e62c + +Frame 1: 342 bytes on wire (2736 bits), 342 bytes captured (2736 bits) + Encapsulation type: Ethernet (1) + Arrival Time: May 1, 2023 10:20:50.175697000 PDT + [Time shift for this packet: 0.000000000 seconds] + Epoch Time: 1682961650.175697000 seconds + [Time delta from previous captured frame: 0.000000000 seconds] + [Time delta from previous displayed frame: 0.000000000 seconds] + [Time since reference or first frame: 0.000000000 seconds] + Frame Number: 1 + Frame Length: 342 bytes (2736 bits) + Capture Length: 342 bytes (2736 bits) + [Frame is marked: False] + [Frame is ignored: False] + [Protocols in frame: eth:ethertype:ip:udp:dhcp] + [Coloring Rule Name: UDP] + [Coloring Rule String: udp] +Ethernet II, Src: Raspberr_b6:a1:a7 (b8:27:eb:b6:a1:a7), Dst: Broadcast (ff:ff:ff:ff:ff:ff) + Destination: Broadcast (ff:ff:ff:ff:ff:ff) + Address: Broadcast (ff:ff:ff:ff:ff:ff) + .... ..1. .... .... .... .... = LG bit: Locally administered address (this is NOT the factory default) + .... ...1 .... .... .... .... = IG bit: Group address (multicast/broadcast) + Source: Raspberr_b6:a1:a7 (b8:27:eb:b6:a1:a7) + Address: Raspberr_b6:a1:a7 (b8:27:eb:b6:a1:a7) + .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default) + .... ...0 .... .... .... .... = IG bit: Individual address (unicast) + Type: IPv4 (0x0800) +Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255 + 0100 .... = Version: 4 + .... 0101 = Header Length: 20 bytes (5) + Differentiated Services Field: 0x10 (DSCP: Unknown, ECN: Not-ECT) + 0001 00.. = Differentiated Services Codepoint: Unknown (4) + .... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0) + Total Length: 328 + Identification: 0x0000 (0) + Flags: 0x00 + 0... .... = Reserved bit: Not set + .0.. .... = Don't fragment: Not set + ..0. .... = More fragments: Not set + ...0 0000 0000 0000 = Fragment Offset: 0 + Time to Live: 128 + Protocol: UDP (17) + Header Checksum: 0x3996 [validation disabled] + [Header checksum status: Unverified] + Source Address: 0.0.0.0 + Destination Address: 255.255.255.255 +User Datagram Protocol, Src Port: 68, Dst Port: 67 + Source Port: 68 + Destination Port: 67 + Length: 308 + Checksum: 0x5b64 [unverified] + [Checksum Status: Unverified] + [Stream index: 0] + [Timestamps] + [Time since first frame: 0.000000000 seconds] + [Time since previous frame: 0.000000000 seconds] + UDP payload (300 bytes) +Dynamic Host Configuration Protocol (Discover) + Message type: Boot Request (1) + Hardware type: Ethernet (0x01) + Hardware address length: 6 + Hops: 0 + Transaction ID: 0xbcf9e62c + Seconds elapsed: 0 + Bootp flags: 0x0000 (Unicast) + 0... .... .... .... = Broadcast flag: Unicast + .000 0000 0000 0000 = Reserved flags: 0x0000 + Client IP address: 0.0.0.0 + Your (client) IP address: 0.0.0.0 + Next server IP address: 0.0.0.0 + Relay agent IP address: 0.0.0.0 + Client MAC address: Raspberr_b6:a1:a7 (b8:27:eb:b6:a1:a7) + Client hardware address padding: 00000000000000000000 + Server host name not given + Boot file name not given + Magic cookie: DHCP + Option: (53) DHCP Message Type (Discover) + Length: 1 + DHCP: Discover (1) + Option: (12) Host Name + Length: 4 + Host Name: cdev + Option: (55) Parameter Request List + Length: 13 + Parameter Request List Item: (1) Subnet Mask + Parameter Request List Item: (28) Broadcast Address + Parameter Request List Item: (2) Time Offset + Parameter Request List Item: (3) Router + Parameter Request List Item: (15) Domain Name + Parameter Request List Item: (6) Domain Name Server + Parameter Request List Item: (119) Domain Search + Parameter Request List Item: (12) Host Name + Parameter Request List Item: (44) NetBIOS over TCP/IP Name Server + Parameter Request List Item: (47) NetBIOS over TCP/IP Scope + Parameter Request List Item: (26) Interface MTU + Parameter Request List Item: (121) Classless Static Route + Parameter Request List Item: (42) Network Time Protocol Servers + Option: (255) End + Option End: 255 + Padding: 0000000000000000000000000000000000000000000000000000000000000000000000 + +0000 ff ff ff ff ff ff b8 27 eb b6 a1 a7 08 00 45 10 .......'......E. +0010 01 48 00 00 00 00 80 11 39 96 00 00 00 00 ff ff .H......9....... +0020 ff ff 00 44 00 43 01 34 5b 64 01 01 06 00 bc f9 ...D.C.4[d...... +0030 e6 2c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 .,.............. +0040 00 00 00 00 00 00 b8 27 eb b6 a1 a7 00 00 00 00 .......'........ +0050 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +0060 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +0070 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +0080 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +0090 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +00a0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +00b0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +00c0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +00d0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +00e0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +00f0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +0100 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +0110 00 00 00 00 00 00 63 82 53 63 35 01 01 0c 04 63 ......c.Sc5....c +0120 64 65 76 37 0d 01 1c 02 03 0f 06 77 0c 2c 2f 1a dev7.......w.,/. +0130 79 2a ff 00 00 00 00 00 00 00 00 00 00 00 00 00 y*.............. +0140 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +0150 00 00 00 00 00 00 ...... + +No. Time Source Destination Protocol Length Info + 2 2.328938 0.0.0.0 255.255.255.255 DHCP 342 DHCP Discover - Transaction ID 0xbcf9e62c + +Frame 2: 342 bytes on wire (2736 bits), 342 bytes captured (2736 bits) + Encapsulation type: Ethernet (1) + Arrival Time: May 1, 2023 10:20:52.504635000 PDT + [Time shift for this packet: 0.000000000 seconds] + Epoch Time: 1682961652.504635000 seconds + [Time delta from previous captured frame: 2.328938000 seconds] + [Time delta from previous displayed frame: 2.328938000 seconds] + [Time since reference or first frame: 2.328938000 seconds] + Frame Number: 2 + Frame Length: 342 bytes (2736 bits) + Capture Length: 342 bytes (2736 bits) + [Frame is marked: False] + [Frame is ignored: False] + [Protocols in frame: eth:ethertype:ip:udp:dhcp] + [Coloring Rule Name: UDP] + [Coloring Rule String: udp] +Ethernet II, Src: Raspberr_b6:a1:a7 (b8:27:eb:b6:a1:a7), Dst: Broadcast (ff:ff:ff:ff:ff:ff) + Destination: Broadcast (ff:ff:ff:ff:ff:ff) + Address: Broadcast (ff:ff:ff:ff:ff:ff) + .... ..1. .... .... .... .... = LG bit: Locally administered address (this is NOT the factory default) + .... ...1 .... .... .... .... = IG bit: Group address (multicast/broadcast) + Source: Raspberr_b6:a1:a7 (b8:27:eb:b6:a1:a7) + Address: Raspberr_b6:a1:a7 (b8:27:eb:b6:a1:a7) + .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default) + .... ...0 .... .... .... .... = IG bit: Individual address (unicast) + Type: IPv4 (0x0800) +Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255 + 0100 .... = Version: 4 + .... 0101 = Header Length: 20 bytes (5) + Differentiated Services Field: 0x10 (DSCP: Unknown, ECN: Not-ECT) + 0001 00.. = Differentiated Services Codepoint: Unknown (4) + .... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0) + Total Length: 328 + Identification: 0x0000 (0) + Flags: 0x00 + 0... .... = Reserved bit: Not set + .0.. .... = Don't fragment: Not set + ..0. .... = More fragments: Not set + ...0 0000 0000 0000 = Fragment Offset: 0 + Time to Live: 128 + Protocol: UDP (17) + Header Checksum: 0x3996 [validation disabled] + [Header checksum status: Unverified] + Source Address: 0.0.0.0 + Destination Address: 255.255.255.255 +User Datagram Protocol, Src Port: 68, Dst Port: 67 + Source Port: 68 + Destination Port: 67 + Length: 308 + Checksum: 0x5b61 [unverified] + [Checksum Status: Unverified] + [Stream index: 0] + [Timestamps] + [Time since first frame: 2.328938000 seconds] + [Time since previous frame: 2.328938000 seconds] + UDP payload (300 bytes) +Dynamic Host Configuration Protocol (Discover) + Message type: Boot Request (1) + Hardware type: Ethernet (0x01) + Hardware address length: 6 + Hops: 0 + Transaction ID: 0xbcf9e62c + Seconds elapsed: 3 + Bootp flags: 0x0000 (Unicast) + 0... .... .... .... = Broadcast flag: Unicast + .000 0000 0000 0000 = Reserved flags: 0x0000 + Client IP address: 0.0.0.0 + Your (client) IP address: 0.0.0.0 + Next server IP address: 0.0.0.0 + Relay agent IP address: 0.0.0.0 + Client MAC address: Raspberr_b6:a1:a7 (b8:27:eb:b6:a1:a7) + Client hardware address padding: 00000000000000000000 + Server host name not given + Boot file name not given + Magic cookie: DHCP + Option: (53) DHCP Message Type (Discover) + Length: 1 + DHCP: Discover (1) + Option: (12) Host Name + Length: 4 + Host Name: cdev + Option: (55) Parameter Request List + Length: 13 + Parameter Request List Item: (1) Subnet Mask + Parameter Request List Item: (28) Broadcast Address + Parameter Request List Item: (2) Time Offset + Parameter Request List Item: (3) Router + Parameter Request List Item: (15) Domain Name + Parameter Request List Item: (6) Domain Name Server + Parameter Request List Item: (119) Domain Search + Parameter Request List Item: (12) Host Name + Parameter Request List Item: (44) NetBIOS over TCP/IP Name Server + Parameter Request List Item: (47) NetBIOS over TCP/IP Scope + Parameter Request List Item: (26) Interface MTU + Parameter Request List Item: (121) Classless Static Route + Parameter Request List Item: (42) Network Time Protocol Servers + Option: (255) End + Option End: 255 + Padding: 0000000000000000000000000000000000000000000000000000000000000000000000 + +0000 ff ff ff ff ff ff b8 27 eb b6 a1 a7 08 00 45 10 .......'......E. +0010 01 48 00 00 00 00 80 11 39 96 00 00 00 00 ff ff .H......9....... +0020 ff ff 00 44 00 43 01 34 5b 61 01 01 06 00 bc f9 ...D.C.4[a...... +0030 e6 2c 00 03 00 00 00 00 00 00 00 00 00 00 00 00 .,.............. +0040 00 00 00 00 00 00 b8 27 eb b6 a1 a7 00 00 00 00 .......'........ +0050 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +0060 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +0070 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +0080 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +0090 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +00a0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +00b0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +00c0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +00d0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +00e0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +00f0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +0100 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +0110 00 00 00 00 00 00 63 82 53 63 35 01 01 0c 04 63 ......c.Sc5....c +0120 64 65 76 37 0d 01 1c 02 03 0f 06 77 0c 2c 2f 1a dev7.......w.,/. +0130 79 2a ff 00 00 00 00 00 00 00 00 00 00 00 00 00 y*.............. +0140 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ +0150 00 00 00 00 00 00 ......