Исследование процессов в сети при использовании протоколов обмена Telnet и Ftp при помощи программы-анализатора трафика WireShark, страница 5

No.     Time        Source                Destination           Protocol Length Info

    361 34.046421   195.208.117.135       10.219.15.197         TELNET   68     Telnet Data ...

Frame 361: 68 bytes on wire (544 bits), 68 bytes captured (544 bits)

Ethernet II, Src: Cadant_36:0a:01 (00:01:5c:36:0a:01), Dst: Giga-Byt_0d:6f:1a (00:1f:d0:0d:6f:1a)

Internet Protocol Version 4, Src: 195.208.117.135 (195.208.117.135), Dst: 10.219.15.197 (10.219.15.197)

Transmission Control Protocol, Src Port: telnet (23), Dst Port: 12026 (12026), Seq: 46, Ack: 56, Len: 14

    Source port: telnet (23)

    Destination port: 12026 (12026)

    [Stream index: 9]

    Sequence number: 46    (relative sequence number)

    [Next sequence number: 60    (relative sequence number)]

    Acknowledgement number: 56    (relative ack number)

    Header length: 20 bytes

    Flags: 0x18 (PSH, ACK)

        000. .... .... = Reserved: Not set

        ...0 .... .... = Nonce: Not set

        .... 0... .... = Congestion Window Reduced (CWR): Not set

        .... .0.. .... = ECN-Echo: Not set

        .... ..0. .... = Urgent: Not set

        .... ...1 .... = Acknowledgement: Set

        .... .... 1... = Push: Set

        .... .... .0.. = Reset: Not set

        .... .... ..0. = Syn: Not set

        .... .... ...0 = Fin: Not set

    Window size value: 46

    [Calculated window size: 5888]

    [Window size scaling factor: 128]

    Checksum: 0x8ca2 [validation disabled]

    [SEQ/ACK analysis]

Telnet

    Data: \r\n

    Data: npc5 login:

No.     Time        Source                Destination           Protocol Length Info

    362 34.046853   10.219.15.197         195.208.117.135       TELNET   57     Telnet Data ...

Frame 362: 57 bytes on wire (456 bits), 57 bytes captured (456 bits)

Ethernet II, Src: Giga-Byt_0d:6f:1a (00:1f:d0:0d:6f:1a), Dst: Cadant_36:0a:01 (00:01:5c:36:0a:01)

Internet Protocol Version 4, Src: 10.219.15.197 (10.219.15.197), Dst: 195.208.117.135 (195.208.117.135)

Transmission Control Protocol, Src Port: 12026 (12026), Dst Port: telnet (23), Seq: 56, Ack: 60, Len: 3

    Source port: 12026 (12026)

    Destination port: telnet (23)

    [Stream index: 9]

    Sequence number: 56    (relative sequence number)

    [Next sequence number: 59    (relative sequence number)]

    Acknowledgement number: 60    (relative ack number)

    Header length: 20 bytes

    Flags: 0x18 (PSH, ACK)

        000. .... .... = Reserved: Not set

        ...0 .... .... = Nonce: Not set

        .... 0... .... = Congestion Window Reduced (CWR): Not set

        .... .0.. .... = ECN-Echo: Not set

        .... ..0. .... = Urgent: Not set

        .... ...1 .... = Acknowledgement: Set

        .... .... 1... = Push: Set

        .... .... .0.. = Reset: Not set

        .... .... ..0. = Syn: Not set

        .... .... ...0 = Fin: Not set

    Window size value: 16410

    [Calculated window size: 65640]

    [Window size scaling factor: 4]

    Checksum: 0x5415 [validation disabled]

    [SEQ/ACK analysis]

Telnet

    Command: Do Echo

При приеме данных приемник высылает подтверждение по протоколу TCP с флагом ACK: