Question : Packets capturing

Hi all
The undermentioned captured packed of one of my wireless nodes. I need to understand what this IP (239.255.255.250) does and what it stands for. Rest of my packets are simply the pinging command which I issued to the same access point. My access node is 10.10.10.112. On the sniffer console I have red marks all over this particular packet .....why?.................................please help

No. Time Source Destination Protocol Info
38 15.488456 10.10.10.112 239.255.255.250 SSDP NOTIFY * HTTP/1.1

Frame 38 (314 bytes on wire, 314 bytes captured)
Arrival Time: Oct 4, 2005 16:25:27.172890000
Time delta from previous packet: 0.001053000 seconds
Time since reference or first frame: 15.488456000 seconds
Frame Number: 38
Packet Length: 314 bytes
Capture Length: 314 bytes
Protocols in frame: eth:ip:udp:http
Ethernet II, Src: Cisco-Li_24:9a:1c (00:13:10:24:9a:1c), Dst: 01:00:5e:7f:ff:fa (01:00:5e:7f:ff:fa)
Destination: 01:00:5e:7f:ff:fa (01:00:5e:7f:ff:fa)
Source: Cisco-Li_24:9a:1c (00:13:10:24:9a:1c)
Type: IP (0x0800)
Internet Protocol, Src: 10.10.10.112 (10.10.10.112), Dst: 239.255.255.250 (239.255.255.250)
Version: 4
Header length: 20 bytes
Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
Total Length: 300
Identification: 0x0000 (0)
Flags: 0x04 (Don't Fragment)
Fragment offset: 0
Time to live: 4
Protocol: UDP (0x11)
Header checksum: 0x714d [correct]
Source: 10.10.10.112 (10.10.10.112)
Destination: 239.255.255.250 (239.255.255.250)
User Datagram Protocol, Src Port: 1900 (1900), Dst Port: 1900 (1900)
Hypertext Transfer Protocol

No. Time Source Destination Protocol Info
39 15.489638 10.10.10.112 239.255.255.250 SSDP NOTIFY * HTTP/1.1

Frame 39 (391 bytes on wire, 391 bytes captured)
Arrival Time: Oct 4, 2005 16:25:27.174072000
Time delta from previous packet: 0.001182000 seconds
Time since reference or first frame: 15.489638000 seconds
Frame Number: 39
Packet Length: 391 bytes
Capture Length: 391 bytes
Protocols in frame: eth:ip:udp:http
Ethernet II, Src: Cisco-Li_24:9a:1c (00:13:10:24:9a:1c), Dst: 01:00:5e:7f:ff:fa (01:00:5e:7f:ff:fa)
Destination: 01:00:5e:7f:ff:fa (01:00:5e:7f:ff:fa)
Source: Cisco-Li_24:9a:1c (00:13:10:24:9a:1c)
Type: IP (0x0800)
Internet Protocol, Src: 10.10.10.112 (10.10.10.112), Dst: 239.255.255.250 (239.255.255.250)
Version: 4
Header length: 20 bytes
Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
Total Length: 377
Identification: 0x0000 (0)
Flags: 0x04 (Don't Fragment)
Fragment offset: 0
Time to live: 4
Protocol: UDP (0x11)
Header checksum: 0x7100 [correct]
Source: 10.10.10.112 (10.10.10.112)
Destination: 239.255.255.250 (239.255.255.250)
User Datagram Protocol, Src Port: 1900 (1900), Dst Port: 1900 (1900)
Hypertext Transfer Protocol
Thanks
AM

Answer : Packets capturing

On port 1900, it is highly likely that this is Microsoft Messenger attempting to find it's own routes.

http://www.winguides.com/registry/display.php/1235/

Random Solutions

Difference between Auto Detect and Auto-negotiate 1000Mbps

Different Gateway For Specific Program

I need HELP Please

Bundling ISDN with ADSL?

Webserver on Pix 515E DMZ

What is the difference between a web cache and a web proxy?

Cisco VoIP across offices

Seperate wireless and wired networks, but share single DSL

DHCP on windows server2003