Snort mailing list archives
Re: OT- Can some confirm a TOS bit setting for me.
From: "David E. Gianndrea" <daveg () comsquared com>
Date: Thu, 23 Jan 2003 15:36:26 -0500
Ok, That is also how I read 791. Thanks for the confirmation. Matt Kettler wrote:
Yes, according to RFC 791, a "critical" precedence is 101 in binary, and precedence is the least-significant 3 bits of the field. If none of the service-type bits are set, this results in a ToS field value of 0x5.The RFC defined precedence values are: 111 - Network Control 110 - Internetwork Control 101 - CRITIC/ECP 100 - Flash Override 011 - Flash 010 - Immediate 001 - Priority 000 - Routine which are 0x7 through 0x0, in order. At 02:38 PM 1/23/2003 -0500, David E. Gianndrea wrote:Im using a packet generator to create packets with what I believe is the IP precedence bits set to critical. Does this tcpdump trace indicate the correctbits being set?dhcp61-0.4671 > 10.200.61.0.3000: udp 160 [tos 0x5] (ttl 125, id 44882, len 188) dhcp61-0.4671 > 10.200.61.0.3000: udp 160 [tos 0x5] (ttl 125, id 44883, len 188) dhcp61-0.4671 > 10.200.61.0.3000: udp 160 [tos 0x5] (ttl 125, id 44884, len 188) dhcp61-0.4671 > 10.200.61.0.3000: udp 160 [tos 0x5] (ttl 125, id 44885, len 188) dhcp61-0.4671 > 10.200.61.0.3000: udp 160 [tos 0x5] (ttl 125, id 44886, len 188)Thanks in advance.
-- David Gianndrea Senior Network Engineer Comsquared Systems, Inc. Web: www.comsquared.com Email: dgianndrea () comsquared com ------------------------------------------------------- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- OT- Can some confirm a TOS bit setting for me. David E. Gianndrea (Jan 23)
- Re: OT- Can some confirm a TOS bit setting for me. Ashley Thomas (Jan 23)
- Re: OT- Can some confirm a TOS bit setting for me. David E. Gianndrea (Jan 23)
- Re: OT- Can some confirm a TOS bit setting for me. Matt Kettler (Jan 23)
- Re: OT- Can some confirm a TOS bit setting for me. David E. Gianndrea (Jan 23)
- Re: OT- Can some confirm a TOS bit setting for me. Ashley Thomas (Jan 23)