archaelus/bertrpc.pcap.txt

## bertrpc.pcap.txt
Frame 4: 116 bytes on wire (928 bits), 116 bytes captured (928 bits)
    Arrival Time: Aug 30, 2011 13:05:27.159310000 PDT
    Epoch Time: 1314734727.159310000 seconds
    [Time delta from previous captured frame: 0.000137000 seconds]
    [Time delta from previous displayed frame: 0.000137000 seconds]
    [Time since reference or first frame: 0.000285000 seconds]
    Frame Number: 4
    Frame Length: 116 bytes (928 bits)
    Capture Length: 116 bytes (928 bits)
    [Frame is marked: False]
    [Frame is ignored: False]
    [Protocols in frame: null:ip:tcp:bertrpc]
Null/Loopback
    Family: IP (2)
Internet Protocol Version 4, Src: 127.0.0.1 (127.0.0.1), Dst: 127.0.0.1 (127.0.0.1)
    Version: 4
    Header length: 20 bytes
    Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
        0000 00.. = Differentiated Services Codepoint: Default (0x00)
        .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
    Total Length: 112
    Identification: 0x8ab3 (35507)
    Flags: 0x02 (Don't Fragment)
        0... .... = Reserved bit: Not set
        .1.. .... = Don't fragment: Set
        ..0. .... = More fragments: Not set
    Fragment offset: 0
    Time to live: 64
    Protocol: TCP (6)
    Header checksum: 0x0000 [incorrect, should be 0xb1d2 (maybe caused by "IP checksum offload"?)]
        [Good: False]
        [Bad: True]
            [Expert Info (Error/Checksum): Bad checksum]
                [Message: Bad checksum]
                [Severity level: Error]
                [Group: Checksum]
    Source: 127.0.0.1 (127.0.0.1)
    Destination: 127.0.0.1 (127.0.0.1)
Transmission Control Protocol, Src Port: 51930 (51930), Dst Port: irdmi (8000), Seq: 1, Ack: 1, Len: 60
    Source port: 51930 (51930)
    Destination port: irdmi (8000)
    [Stream index: 0]
    Sequence number: 1    (relative sequence number)
    [Next sequence number: 61    (relative sequence number)]
    Acknowledgement number: 1    (relative ack number)
    Header length: 32 bytes
    Flags: 0x18 (PSH, ACK)
        000. .... .... = Reserved: Not set
        ...0 .... .... = Nonce: Not set
        .... 0... .... = Congestion Window Reduced (CWR): Not set
        .... .0.. .... = ECN-Echo: Not set
        .... ..0. .... = Urgent: Not set
        .... ...1 .... = Acknowledgement: Set
        .... .... 1... = Push: Set
        .... .... .0.. = Reset: Not set
        .... .... ..0. = Syn: Not set
        .... .... ...0 = Fin: Not set
    Window size value: 40830
    [Calculated window size: 81660]
    [Window size scaling factor: 2]
    Checksum: 0xfe64 [validation disabled]
        [Good Checksum: False]
        [Bad Checksum: False]
    Options: (12 bytes)
        No-Operation (NOP)
        No-Operation (NOP)
        Timestamps: TSval 1139645350, TSecr 1139645350
            Kind: Timestamp (8)
            Length: 10
            Timestamp value: 1139645350
            Timestamp echo reply: 1139645350
    [SEQ/ACK analysis]
        [Bytes in flight: 60]
    [PDU Size: 60]
BERT-RPC
    msg_len: 56
    msg: {call, xxxxxxxxxxxxx, module_info, [exports]}
	Frame 4: 116 bytes on wire (928 bits), 116 bytes captured (928 bits)
	Arrival Time: Aug 30, 2011 13:05:27.159310000 PDT
	Epoch Time: 1314734727.159310000 seconds
	[Time delta from previous captured frame: 0.000137000 seconds]
	[Time delta from previous displayed frame: 0.000137000 seconds]
	[Time since reference or first frame: 0.000285000 seconds]
	Frame Number: 4
	Frame Length: 116 bytes (928 bits)
	Capture Length: 116 bytes (928 bits)
	[Frame is marked: False]
	[Frame is ignored: False]
	[Protocols in frame: null:ip:tcp:bertrpc]
	Null/Loopback
	Family: IP (2)
	Internet Protocol Version 4, Src: 127.0.0.1 (127.0.0.1), Dst: 127.0.0.1 (127.0.0.1)
	Version: 4
	Header length: 20 bytes
	Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
	0000 00.. = Differentiated Services Codepoint: Default (0x00)
	.... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
	Total Length: 112
	Identification: 0x8ab3 (35507)
	Flags: 0x02 (Don't Fragment)
	0... .... = Reserved bit: Not set
	.1.. .... = Don't fragment: Set
	..0. .... = More fragments: Not set
	Fragment offset: 0
	Time to live: 64
	Protocol: TCP (6)
	Header checksum: 0x0000 [incorrect, should be 0xb1d2 (maybe caused by "IP checksum offload"?)]
	[Good: False]
	[Bad: True]
	[Expert Info (Error/Checksum): Bad checksum]
	[Message: Bad checksum]
	[Severity level: Error]
	[Group: Checksum]
	Source: 127.0.0.1 (127.0.0.1)
	Destination: 127.0.0.1 (127.0.0.1)
	Transmission Control Protocol, Src Port: 51930 (51930), Dst Port: irdmi (8000), Seq: 1, Ack: 1, Len: 60
	Source port: 51930 (51930)
	Destination port: irdmi (8000)
	[Stream index: 0]
	Sequence number: 1 (relative sequence number)
	[Next sequence number: 61 (relative sequence number)]
	Acknowledgement number: 1 (relative ack number)
	Header length: 32 bytes
	Flags: 0x18 (PSH, ACK)
	000. .... .... = Reserved: Not set
	...0 .... .... = Nonce: Not set
	.... 0... .... = Congestion Window Reduced (CWR): Not set
	.... .0.. .... = ECN-Echo: Not set
	.... ..0. .... = Urgent: Not set
	.... ...1 .... = Acknowledgement: Set
	.... .... 1... = Push: Set
	.... .... .0.. = Reset: Not set
	.... .... ..0. = Syn: Not set
	.... .... ...0 = Fin: Not set
	Window size value: 40830
	[Calculated window size: 81660]
	[Window size scaling factor: 2]
	Checksum: 0xfe64 [validation disabled]
	[Good Checksum: False]
	[Bad Checksum: False]
	Options: (12 bytes)
	No-Operation (NOP)
	No-Operation (NOP)
	Timestamps: TSval 1139645350, TSecr 1139645350
	Kind: Timestamp (8)
	Length: 10
	Timestamp value: 1139645350
	Timestamp echo reply: 1139645350
	[SEQ/ACK analysis]
	[Bytes in flight: 60]
	[PDU Size: 60]
	BERT-RPC
	msg_len: 56
	msg: {call, xxxxxxxxxxxxx, module_info, [exports]}