FASP:: Wireshark: UDP conversion
We can now use Wireshark to look at the packets that were exchanged during the file transfer between my local client and the remote server. We will first look at the UDP traffic, as we know this is the underlying protocol used to transfer the contents of the file.
Client (A) ↔ Server (b)
A: 130.237.209.248:42132 ↔ B: 198.23.89.123:33001
Packets: 703,728 Bytes: 1,058,302,232
| Direction | Packets | Bytes | bps |
|---|---|---|---|
| A→B | 961 | 88518 | 8,058.85 |
| A←B | 702,767 | 1,058,213,714 | 96,341,791.88 |
File size = 1,048,576,000 bytes
Transcript
Now, I took the tcpdump file and loaded it into Wireshark, and we can look at the traffic in terms of the data from my client located at this address at KTH and this port number to the server at that address and port number, and we see the number of UDP datagrams sent by the client was 703,728 packers and this total number of bytes were transferred. Now, we can break that down into packets from the client to the server and for the server to the client, and we see that there were very few messages sent from the client and a very large number packets sent from the server to the client. We see the amount in bytes, and we see the bit rates. We see that the client is sending at a very, very low bit rate. In total, we saw that the entire gigabyte file was transferred.