7/30/2019 wireshark Use on Browser

1/5

LAB REPORT

QUESTION 11. For the HTTP connection, what was the request type (GET, POST, etc.)? What was the response

code? Were the objects included in the web page (images, styles) sent in the same TCP connection (i.e.

was persistent connection used)? In this case, did the browser send multiple requests to related objectsbefore waiting for the response for each request (i.e. was pipelining used)? If no persistent connection

was used, were the connections for additional objects sent simultaneously or in sequence?

A). i) GET was used in the request type.

ii) In response TCP was initialized.

7/30/2019 wireshark Use on Browser

2/5

iii) Persistent connection was used. The HTTP persistent connections do not use separate keep alive

message,they just allow multiple requests to use a single connection.

iv) HTTP Pipelining is not used in Google Chrome web browser.

2. For the second browser, did you notice any difference in the connection behavior (e.g. number of

connections, pipelining)? Did the browsers send any identification of what browser was being used?

A). i) Firefox used HTTP Persistent connection along with Pipelining. HTTP Pipelining is technique inwhich multiple requests are sent on a single TCP connection without waiting for the corresponding

response.

ii) Browser info was sent to the server.

7/30/2019 wireshark Use on Browser

3/5

3. For the FTP connection, what was the username and password used by the browser to connect to the

server? Did the browser use a command to list the contents of the directory? If so, what was it? Did ituse the active or passive mode? How many TCP connections were used in total for this process? List

the connections and the purpose of each one of them.

A) i) USER anonymous PASS chrome@example.com

mailto:chrome@example.commailto:chrome@example.com

7/30/2019 wireshark Use on Browser

4/5

ii) Command was used to list the content of the directory. PWE Print Working Directory CWD- Change

Working Directory

7/30/2019 wireshark Use on Browser

5/5

iii) Passive Mode was used.

iv) 3 times connection was established with the server.v) The connection and their purpose are as follows:

Firstly, when ftp://ftp.ubuntu.com was typed. It opened ftp server.

Secondly, when Ubuntu directory was clicked. It opened Ubuntu directory.Thirdly when dist directory was clicked.It opened dist directory.

4. Explain any interesting thing you found out while using Wireshark with this trace. It may be related

to one of the required connections, or to any other connection that was included during the tracing.

A) i) TLSv1 (Transport Layer Security version 1.0) was used. TLS is a cryptographic protocol that

provide communication security over the internet.TSL and SSL(Secure Socket Layer) encrypt the

segments of Network connections at the application layer for the Transport Layer, using Asymmetric

cryptography for key exchange, symmetric encryption for confidentiality and message authenticationfor message integrity.

ii) Every time a new directory is clicked...it establishes a new connection.