THIS IS A TEST INSTANCE. Feel free to ask and answer questions, but take care to avoid triggering too many notifications.
Ask Your Question
0

WIRESHARK HELP

  • retag add tags

Is 10.9.10.21 the DNS Server? 10.10.100.207 the Client? 74.125.226.55 is the router or switch? I'm confused can someone help me?

Picture: https://gyazo.com/0dd6ef14029602cd16a...

asked 2018-01-06 13:03:58 +0000
This post is a wiki. Anyone with karma >750 is welcome to improve it.
edit flag offensive 0 remove flag close merge delete

Comments

add a comment see more comments

1 Answer

0

First of all, working from a picture is just a PITA, share capture files instead.

So only partial answers can be derived from this picture.

You're showing a DNS query packet, with 10.9.10.21 as the source (thus client) and 10.10.100.207 as the destination (server, or proxy). 74.125.226.55 is some host on an interconnected network, which you can reach via a router.

That is as far as this analysis goes. With a proper capture file we could possibly tell more.

Jaap's avatar
13.7k
Jaap
answered 2018-01-06 13:56:27 +0000
edit flag offensive 0 remove flag delete link
more

Comments

Alright, that sounds about right, also what would be the socket address of the client? And this would be a Client to server communication right?

corey.bear's avatar corey.bear (2018-01-07 12:30:33 +0000) edit
more
  • delete

What do you think the socket address is, and can you tell why? The other question is, is DNS a client server protocol of a peer-to-peer protocol?

Jaap's avatar Jaap (2018-01-07 14:45:45 +0000) edit
more
  • delete
add a comment see more comments

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account. This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss.

Add Answer