Lab 4: DHCP

Jack Wells

SEC-255 - Prof. Duane Dunston

Deliverables #1-4: https://docs.google.com/document/d/1eBgaMvMy1k6fMNQP5OfCa0x5MoB_BhbfQAzxQjDMDss/edit?usp=sharing

Deliverable #5:

• NBNS Protocol: NetBiosNameNetwork is a DNS service on Windows computers. In wireshark, I saw NBNS packets “releasing” the domain name wks01-jack when I did ipconfig /release. Then, I saw again NBNS packets re-registering wks01-jack when I did ipconfig /renew.

• CLDAP Protocol: CLDAP is associated with Windows Active Directory services. In my wireshark capture, I see a CLDAP packet that is going from my AD server to my wks01’s new ip address. I think this packet is re-confirming wks01’s place in the active directory with the new IP address.

• DHCP ACK packet: In wireshark, the final packet sent to wks01’s new IP address is a DHCP ACK packet. This packet is a confirmation from the DHCP server to the client, in this case wks01, that it can lease the IP address for x amount of time.