Well, I am completely new to Network analysis and have never used nor heard about Wireshark but I gave it a shot and perhaps you can tell me what the capture means.
Sidenote: As you can see below I have changed the SMTP-server from smtp.googlemail.com to smtp.gmail.com. From what I've read both should work but they both produce the same error for me.
When I trigger the function for sending the test email I immediately get these two packets:
5 3.008818 192.168.0.2 213.248.100.54 DNS Standard query A smtp.gmail.com
6 3.144012 213.248.100.54 192.168.0.2 DNS Standard query response CNAME gmail-smtp-msa.l.google.com A 209.85.143.109
5 3.008818 192.168.0.2 213.248.100.54 DNS Standard query A smtp.gmail.com
6 3.144012 213.248.100.54 192.168.0.2 DNS Standard query response CNAME gmail-smtp-msa.l.google.com A 209.85.143.109
To copy to clipboard, switch view to plain text mode
I have no idea what this means but it seems that the smtp-server is sending me an IP address which appear in the capture below.
Immediately following these two packets:
7 3.144764 192.168.0.2 209.85.143.109 TCP 49740 > urd [SYN] Seq=0 Win=8192 Len=0 MSS=1460 WS=2 SACK_PERM=1
8 3.346257 209.85.143.109 192.168.0.2 TCP urd > 49740 [SYN, ACK] Seq=0 Ack=1 Win=5720 Len=0 MSS=1400 SACK_PERM=1 WS=6
9 3.346322 192.168.0.2 209.85.143.109 TCP 49740 > urd [ACK] Seq=1 Ack=1 Win=65800 Len=0
7 3.144764 192.168.0.2 209.85.143.109 TCP 49740 > urd [SYN] Seq=0 Win=8192 Len=0 MSS=1460 WS=2 SACK_PERM=1
8 3.346257 209.85.143.109 192.168.0.2 TCP urd > 49740 [SYN, ACK] Seq=0 Ack=1 Win=5720 Len=0 MSS=1400 SACK_PERM=1 WS=6
9 3.346322 192.168.0.2 209.85.143.109 TCP 49740 > urd [ACK] Seq=1 Ack=1 Win=65800 Len=0
To copy to clipboard, switch view to plain text mode
And then 30 seconds later when the function times out we've got this (from the same TCP-stream):
112 33.346640 192.168.0.2 209.85.143.109 TCP 49740 > urd [FIN, ACK] Seq=1 Ack=1 Win=65800 Len=0
113 33.479094 209.85.143.109 192.168.0.2 TCP urd > 49740 [ACK] Seq=1 Ack=2 Win=5760 Len=0
114 33.506080 209.85.143.109 192.168.0.2 TCP urd > 49740 [FIN, ACK] Seq=1 Ack=2 Win=5760 Len=0
115 33.506113 192.168.0.2 209.85.143.109 TCP 49740 > urd [ACK] Seq=2 Ack=2 Win=65800 Len=0
112 33.346640 192.168.0.2 209.85.143.109 TCP 49740 > urd [FIN, ACK] Seq=1 Ack=1 Win=65800 Len=0
113 33.479094 209.85.143.109 192.168.0.2 TCP urd > 49740 [ACK] Seq=1 Ack=2 Win=5760 Len=0
114 33.506080 209.85.143.109 192.168.0.2 TCP urd > 49740 [FIN, ACK] Seq=1 Ack=2 Win=5760 Len=0
115 33.506113 192.168.0.2 209.85.143.109 TCP 49740 > urd [ACK] Seq=2 Ack=2 Win=65800 Len=0
To copy to clipboard, switch view to plain text mode
So, what do you make of this? It's a little hard to give you the right information since I'm new on this but just let me know if you need more/other information.
Of course I would be extremely happy if someone had a working example of sending an email via gmails(or similar) smtp!
Thank you very much!
/Tottish
Bookmarks