There is no better Christmas gift, that I can think of to give, than one that involved packets. Its been awhile since I posted a packet challenge, but I couldn't let Christmas go by without posting one. So for all you fellow packet heads out there, here is one for you to spend your holidays pondering. This challenge is different from last year, so let me tell you the rules for solving this one. I will give you your first clue to start you off, but you can choose the approach you take:
Approach #1: Download the file called xmas_Starter.pcap which contains the single starter packet and look at it in your favorite sniffer to extract the payload to decode.

In the payload, you will find a Christmas question that has a numeric answer. The correct answer will be the exact packet in the xmas_challenge_2007.pcap file where you will find your next Christmas question. So for example, if the answer is 30, then packet number 30 will be the packet you are looking for in xmas_challenge_2007.pcap. Do NOT start counting at the packet for which you just answered a question, you will be wrong.