PREVIOUS - 2.3 HTTP Request Details UP - 2. The Management Interface NEXT - 2.5 Settings
The IP packet details page lists the raw IP packets associated with a particular web request, including the ethernet header. This display can be used to examine anomalous behavior in request traffic that is below the transport layer, such as strange flag settings and intentional dropping, duplication, or fragmentation. Each packet entry specifies the time at which the packet was captured, followed by the source address, source port, destination address, destination port, and flags, which are also contained in the packet header displayed in binary format below. A standard ethernet, IP, and TCP header add up to 14 + 20 + 20 = 54 bytes. So hex offset 0036 should point to the first byte of the TCP data payload in most cases. However, the TCP header size is variable and anomalous packets might have data starting at a later offset.
PREVIOUS - 2.3 HTTP Request Details UP - 2. The Management Interface NEXT - 2.5 Settings