Lab 2.2: Observing LAN Activity - Hsanokklis/2022-2023-Tech-journal GitHub Wiki

Summary: In this lab our objective was to understand the role of MAC addresses in LAN communication. To do this we used Wireshark to monitor a ping from our host computer to the default gateway, and a ping to an external website.

Doc Link

Part 1: Observe a simple capture - Ping the Default Gateway

  1. Capture a "ping" to the default gateway

use the ip route show command to get the Ip address

Ip address for the default gateway: 192.168.3.250

image

  1. Start capture of the Ethernet Interface

image

  1. In the command prompt, ping the default gateway

image

Inspect the results in Wireshark: Default Gateway Inspection

  1. Click on the ICMP Ping Request packet

image

  1. Record the Source and Destination MAC addresses of the request packet

image

MAC address of the source(host computer): 00:0c:29:6f:4e:25

MAC address of the destination(default gateway): ec:13:db:c8:8e:81

  1. Click on the ICMP Ping Reply packet

image

  1. Record the Source and Destination MAC addresses of the reply packet

image

MAC address of source(defualt gateway): ec:13:db:c8:8e:81

MAC address of the destination(host computer): 00:0c:29:6f:4e:25

Question: What is the MAC address of your workstation's NIC? What is the MAC address of the Default Gateway Router interface (NIC)?

It is the MAC address of the Source in the request packet because the MAC address is burned into the NIC so its the same.

image

Part 2: Observe a simple capture - Ping outside LAN IP addresses

  1. Repeat the Wireshark capture of a ping - but this time use https://www.timeslive.co.za/

image

  1. What is the first IPv4 IP address from the site?

image

image

you can find the IP address in both packet tracer and the command line when the site was pinged

  1. Click on the ICMP Ping Request packet and record the the source and destination MAC addresses.

image

image

MAC address of source: 00:0c:29:6f:4e:25

MAC address of destination: ec:13:db:c8:8e:81

The reason that you don't see the MAC address for the server that the website is on is because you can't. You are only able to see the MAC of the host device and the default gateway.

__

Summary: In this lab our objective was to understand the role of MAC addresses in LAN communication. To do this we used Wireshark to monitor a ping from our host computer to the default gateway, and a ping to an external website.

Part 1: Observe a simple capture - Ping the Default Gateway

  1. Capture a "ping" to the default gateway

use the ip route show command to get the Ip address

Ip address for the default gateway: 192.168.3.250

image

  1. Start capture of the Ethernet Interface

image

  1. In the command prompt, ping the default gateway

image

Inspect the results in Wireshark: Default Gateway Inspection

  1. Click on the ICMP Ping Request packet

image

  1. Record the Source and Destination MAC addresses of the request packet

image

MAC address of the source(host computer): 00:0c:29:6f:4e:25

MAC address of the destination(default gateway): ec:13:db:c8:8e:81

  1. Click on the ICMP Ping Reply packet

image

  1. Record the Source and Destination MAC addresses of the reply packet

image

MAC address of source(defualt gateway): ec:13:db:c8:8e:81

MAC address of the destination(host computer): 00:0c:29:6f:4e:25

Question: What is the MAC address of your workstation's NIC? What is the MAC address of the Default Gateway Router interface (NIC)?

It is the MAC address of the Source in the request packet because the MAC address is burned into the NIC so its the same.

image

Part 2: Observe a simple capture - Ping outside LAN IP addresses

  1. Repeat the Wireshark capture of a ping - but this time use https://www.timeslive.co.za/

image

  1. What is the first IPv4 IP address from the site?

image

image

you can find the IP address in both packet tracer and the command line when the site was pinged

  1. Click on the ICMP Ping Request packet and record the the source and destination MAC addresses.

image

image

MAC address of source: 00:0c:29:6f:4e:25

MAC address of destination: ec:13:db:c8:8e:81

The reason that you don't see the MAC address for the server that the website is on is because you can't. You are only able to see the MAC of the host device and the default gateway.

__