[Wireshark-dev] Wireshark monitoring in the enterprise environment

Hi all, I've written an article about monitoring business data, things like invoices or stock quotes, using Wireshark: http://www.zeromq.org/code:traffic-monitoring If there's anybody interested in business messaging on the list I would appreciate any pointers to handy and/or fancy features,

Re: [Wireshark-dev] AMQP dissector patch

PROTECTED] Date: Mon, 21 May 2007 14:02:33 -0700 On Mon, May 21, 2007 at 02:30:59PM +0200, Martin Sustrik wrote: Here's the patch for following issues: - If there are several AMQP frames in single TCP packet, all of them are shown in the 'info' column - AMQP heartbeat is dissected correctly

[Wireshark-dev] AMQP dissector patch

Hi Ronnie, I've corrected AMQP dissector to handle heartbeats corectly. Diff is attached. Can you check it in, please? Thanks. Martin 0a1 9,10d9 * $Id: packet-amqp.c 21254 2007-03-28 22:16:43Z sahlberg $ * 2089a2089,2094 case AMQP_FRAME_TYPE_HEARTBEAT: if

Re: [Wireshark-dev] (Fwd) Re: Patch to AMQP dissector

Ronnie, Why do you change all function argumentns to use _U_ ? _U_ is only used to mark a parameter as unused so that the compiler will not emit any warnings parameter foo is never used. You only set this _U_ for arguments that are indeed never used inside the function to suppress these

[Wireshark-dev] Patch to AMQP dissector

Hi Ronnie, here's a patch to AMQP dissector. The only change is that when there are seceral AMQP frames in single TCP packet, all of them are referred in the info column. Can you check it in? Thanks. Martin wireshark.amqp.r21226.diff.gz Description: GNU Zip compressed data

Re: [Wireshark-dev] AMQP dissector - alpha version

, Jaap On Thu, 22 Mar 2007, Martin Sustrik wrote: Hi, The question I've actually wanted to ask was: Is there a way to distribute plugin dissectors separately from the Wireshark codebase? The idea being that we review the plugin internally in AMQP working group before submitting it to you

[Wireshark-dev] AMQP dissector - alpha version

Hi all, I've written dissector for AMQP protocol (www.amqp.org). It's in alpha version and I would like to distribute it among AMQP working group members to get comments/suggestions. Do you think it is appropriate to incorporate alpha version into Wireshark codebase? Or is there some other

Re: [Wireshark-dev] AMQP dissector - alpha version

into mainline wireshark, please send the patch to the list for revies (unless it is very large in case a url is better) also please provide a few example captures that we can use to test the dissector with. On 3/21/07, Martin Sustrik [EMAIL PROTECTED] wrote: Hi all, I've written