On Wed, Apr 22, 2009 at 9:46 PM, Guy Harris
<guy@xxxxxxxxxxxx> wrote:
"HTTP Continuation" means that reassembly of multi-TCP-segment HTTP
requests or replies isn't happening, and the packet doesn't look like
the beginning of an HTTP request or reply, so that packet is probably
a TCP segment that's part of the HTTP reply that begins in an earlier
packet (packet 9).
I.e., as that page says:
The HTTP Continuation lines represent where the contents of the html
page are sent over. It includes text, links, etc.
> I mean he is surfing
www.cyberguard.com given in that example,is
> that correct what i understand ?
), and packets 9 and 10 have the reply from www.cyberguard.com giving
the page in question.
> 2) when the user close the browser on his workstation, so line 11
> and line 12 happens next ?
Packet 11 is the user's machine acknowledging, at the TCP layer, that
it received some packets from the server, probably all TCP packets up
to packet 10. It has nothing to do with the user closing the browser.
Packet 12 might be the result of closing the browser, or the browser
might be closing the connection for other reasons.
___________________________________________________________________________
Sent via: Wireshark-users mailing list <wireshark-users@xxxxxxxxxxxxx>
Archives: http://www.wireshark.org/lists/wireshark-users
Unsubscribe: https://wireshark.org/mailman/options/wireshark-users
mailto:wireshark-users-request@xxxxxxxxxxxxx?subject=unsubscribe
Hi,
what does the number 1939 in 1939 > http [SYN] means ?
2577 > http [ACK] Seq=388864 Ack=37076821 Win=8241 Len=0 means ?
2577 > http [RST] Seq=388864 Ack=37077089 Win=0 Len=0 means ?
Thanks and Regards
Kaushal
