Home > Others

Wireshark decoding display of ping messages (be and LE) transferred from author: Yi Yin

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Wireshark decoding display of ping messages (be and LE)

We are very familiar with the package structure of the ping message, but in this message decoding we find that the decoding of Wireshark has several parameters: Identifier (BE), Identifier (LE), Sequence number (BE), Sequence Number (LE), as shown in:

Never notice wireshark is such decoding ping message, it feels very strange, we first to carefully look at the Wireshark of the ping message in the decoding of these parameters:

Wireshark decoding shows that Identifier (BE) and Identifier (le) correspond to "hex 0200", Sequence number (BE) and Sequence number (le) correspond to "Hex 027b", Looking closely, we can see that the difference between the be value (0x0200) and the Le Value (0x0002) is that the order is different. So what is being, le? Search all over Baidu no fruit, decided or go to Wireshark official website to see, results found the following link content: http://www.wireshark.org/lists/wireshark-bugs/200909/msg00439.html, one of which is described as follows:

"After I discovered that the Windows ping sends ICMP echo request packets with the sequence number in Little-endian by Te order, but the Linux Ping sends it in proper Big-endian format, a discussion about it took place on the mailing list as  To how to handle it (refer to http://www.wireshark.org/lists/wireshark-dev/200909/msg00216.html). However,to keep things simple and avoid adding all new ICMP preferences and/or trying to guess at the byte order, I though T why isn't just display the sequence number in both formats and so that's what's this patch does. "

Let me make a summary:Wireshark The byte order of theWindows system with the ping message from the Linux system (mainly the Ping application field rather than the ping packet that contains the IP header) LE:little-endian byte order,Linux is be:Big-endian), in order to reflect the wireshark ease of use, Developers to display them separately.

Wireshark's Cow B, the details can be seen here!

Wireshark decoding display of ping messages (be and LE) is transferred from the invisible person

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
wireshark ping yin yang copy and paste author of php lz77 encoding and decoding example php retrieve data from mysql and display le and les how to fetch data from database in php and display

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More