On Fri, Mar 16, 2007 at 06:00:56AM -0700, Bill Fassler wrote:
> Ah, yes. I already have that documentation and the problem is I don't see how
> those 5 bytes relate to the document description. Like I said, the 5th byte
> is apparently a sequence number and increments by one each packet. The fir
ler
Skickat: den 15 mars 2007 22:14
Till: wireshark-dev@wireshark.org
Ämne: Re: [Wireshark-dev] decoding thru unencrypted VPN tunnel
I haven't heard from anyone since my last post. Is the general opinion that
I should use the LUA interface, write a dissector, use "decode as" with a
by
Fassler
Skickat: den 15 mars 2007 22:14
Till: wireshark-dev@wireshark.org
Ämne: Re: [Wireshark-dev] decoding thru unencrypted VPN tunnel
I haven't heard from anyone since my last post. Is the general opinion that
I should use the LUA interface, write a dissector, use "decode as" wit
I haven't heard from anyone since my last post. Is the general opinion that I
should use the LUA interface, write a dissector, use "decode as" with a byte
offset (if possible) or some other method? The VPN tunnel is OpenVPN, but I am
not yet familiar with the 5 byte header into the encapsulated
Sure, here is one typical packet. In this particular case the VPN protocol
(PPP?) is 5 bytes and in the beginning of this payload: The final byte (value
of 18 here) is apparently a sequence number as it increases by one in each
packet. The middle 3 bytes aren't overly informative and I assume th
On Tue, Mar 13, 2007 at 10:47:44AM -0700, Bill Fassler wrote:
> My traffic is encapsulated in a VPN tunnel, when it is unencrypted I
> can see the start of the IP protocol 5 bytes into the payload. The
> first 5 bytes are overhead protocols for the tunnel itself (some form
> of PPP I believe).
My last post on this subject wound up on the wrong forum, so I'd like to repost
here. My traffic is encapsulated in a VPN tunnel, when it is unencrypted I can
see the start of the IP protocol 5 bytes into the payload. The first 5 bytes
are overhead protocols for the tunnel itself (some form of
