Request
UDT ResponseRetRes(Last)
UDT ResponseRetRes(Last)
Following the same procedure with Wireshark 0.99.2
the decode goes as far as TCAP but not ANSI MAP.
To get the decode to work properly I have to:
5. Edit preferences, change ANSI MAP SSN Range to something different,
apply
--
Michael Lum
I have two older emails that I submitted before
joining the mailing list that are awaiting moderator approval.
One was a small patch.
Is anyone checking for those emails?
--
Michael Lum Principal Software Engineer
4600 Jacombs Road+1.604.276.0055
Richmond, B.C
There may be a couple of problems here.
The capture file contains ANSI MAP not GSM MAP.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road+1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA Division
-Original Message
the history behind the removal of the preference.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road+1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA Division
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED
on the current IOS version.
Thanks for your help.
Build environment:
Windows XP
Visual C++
--
Michael Lum Principal Software Engineer
4600 Jacombs Road+1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA Division
ansi_a_ios401_bsmap_strings[];
WS_VAR_IMPORT const value_string ansi_a_ios501_bsmap_strings[];
The pointer 'ansi_a_bsmap_strings' will be set to one of the above depending
on the current IOS version.
Thanks for your help.
Build environment:
Windows XP
Visual C++
--
Michael Lum Principal Software
That was the problem!
Thanks very much Anders.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road+1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA Division
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL
code '0x2'
Stop.
Thanks.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road+1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA Division
___
Wireshark-dev mailing list
Wireshark-dev
, see perl -V for more detail)
Copyright 1987-2001, Larry Wall
Thanks
--
Michael Lum Principal Software Engineer
4600 Jacombs Road+1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA Division
-Original Message-
From: [EMAIL PROTECTED
behind changing this dissector to ASN.1 ?
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA Division
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED
or alcap or
ansi_abis or a11 or tccs or snmp)
I believe the capture file is loaded a second time after the filter is
applied?
Thanks.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Guy Harris
Sent: February 15, 2007 5:52 PM
To: Developer support list for Wireshark
Subject: Re: [Wireshark-dev] Saving settings as Profiles
On Feb 15, 2007, at 5:35 PM, Michael Lum wrote
Apply as in function as a display filter.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA Division
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL
It's probably even worse than that!
In both GSM and CDMA protocols packed BCD can be represented as:
digit2 digit1
digit4 digit3
such that two octets:
0x01 0x23
would be:
1032
An example is the Called Party BCD Number element.
--
Michael Lum Principal Software Engineer
This patch implements parameter dissection
for about 1/2 to 2/3 of the messages in IS-801.
Built and tested against the latest source
as of Friday April 13th 2007.
Build environment was:
Windows XP Pro
Microsoft Visual Studio 6.0
Thanks
--
Michael Lum Principal Software
.
Thanks in advance.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA Division
___
Wireshark-dev mailing list
Wireshark-dev@wireshark.org
Sorry, yes I was running nmake (oops).
I have cygwin installed and it is configured with
the correct path in config.nmake.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA Division
\bin;C:\Program
Files\Subversion\bin
I have both python23 and python24 installed.
config.nmake is set to python24.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA Division
\INCLUDE;C:\PROGRA~
1\MICROS~3\VC98\INCLUDE;C:\PRO
GRA~1\MICROS~3\VC98\MFC\INCLUDE;
Has the way you setup your environment changed since 0.99.4?
Everything builds with 0.99.4.
Thanks
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond
.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA Division
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Pascal
Heude
with VC 6.0 is the February 2003
Edition, you can order a CD on the fulfillment site. Side by side
installations are not supported.
So unfortunately I'm still stuck.
I have tried, clean, distclean, setup, all, again but to no avail.
Thanks.
--
Michael Lum Principal Software Engineer
/environment I have would cause a different
conditional compile
compared to everybody else?
Thanks
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA Division
-Original Message
Hi Anders,
I performed the following:
nmake -f Makefile.nmake clean
nmake -f Makefile.nmake distclean
nmake -f Makefile.nmake clean_setup
nmake -f Makefile.nmake setup
nmake -f Makefile.nmake all
but with the same result as before. ;(
No luck.
--
Michael Lum Principal
:
create subset of 50 octets from the 20th octet and 5th bit of
my current tvb
Thanks in advance!
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
UTStarcom Canada, Inc.
CDMA Division
.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
Star Solutions
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Abhik Sarkar
Sent: November 15, 2008 1:53 AM
Done, Bug 3067.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
Star Solutions
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jaap Keuter
Sent: November 16, 2008 9
-fd, proto_rtp);
?
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
Star Solutions
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Anders Broman
Sent: November 17, 2008
Yes to the 'Unknown' but no to the stream setup by SDP.
I have modified the IOS 5 portion of packet-ansi_a.c.
IOS 5 carries the mime type, IP address, port, etc.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V
Okay, I found my problem, duh, conversations weren't being found
because I wasn't using 'tvb_get_ipv4()' everywhere and the addresses
were not matching.
Thank you
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V
Hello,
I have a dissector that gets called after RTP.
How can I get the payload type for the packet from the RTP dissection in
my dissector ?
My dissector is called based on dynamic payload types.
Thanks
--
Michael Lum Principal Software Engineer
4600 Jacombs Road
if
it is EVRC or EVRCB or EVRCWB so that I can use different header fields.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
Star Solutions
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL
Thanks Anders that works.
For my information I was trying to see if there was a preferred
way of getting dissection information from a 'encapsulating'
layer.
I'm almost done.
The last thing I'm trying to do (I think) is figure out if I
can add IOS5 to the VoIP calls analysis.
--
Michael Lum
is
carried on it ?
Thanks.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
Star Solutions
___
Wireshark-dev mailing list
Wireshark-dev@wireshark.org
https://wireshark.org
such as RANAP/IOS/BSSAP know the complete call state.
I thought I would want the IOS dissector to use the SCCP associations
for
call analysis but it doesn't seem that anybody is doing that with the
other
dissectors.
?
Thanks.
--
Michael Lum Principal Software Engineer
4600
:51 PM, Michael Lum
[EMAIL PROTECTED] wrote:
For calls IOS 5 uses connection-oriented SCCP in the same manner as
BSSAP.
The call model the voip-calls dialog uses is just too
simplistic for taking into account mobile call scenarios. So
I used Voip-Call
as a synonym of Call-Leg.
I
I updated my latest copy of source and found that
my libraries were out of date.
Running 'setup' required me to install cygwin lynx.
So I think section '2.2.2 Install Cygwin' of the
Developer's Guide should have:
Web/lynx
added.
Thanks.
--
Michael Lum Principal Software
You should probably indicate if you want GSM/UMTS or CDMA SMS and what
kind of TCAP/MAP stack.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
Star Solutions
Works fine for me. ;)
With the following settings:
MTP3 preference set to * ANSI * not ITU.
I think the point code is 3 octets in your case.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
Star
to date with version C of the specification
Thanks
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
Star Solutions
___
Sent via:Wireshark
Hi Jaap,
I understand all about development and time.
I don't see the difference between what I have done and
support for new capture file formats as per 1.0.4 or
all of the 'Updated Protocol Support' changes listed in the
release notes.
Thanks
--
Michael Lum Principal
Okay, now I understand, thank you Jaap.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
Star Solutions
-Original Message-
From: wireshark-dev-boun...@wireshark.org
[mailto:wireshark-dev-boun
\MICROS~3\VC98\BIN\NMAKE.EXE' :
return co
de '0x2'
Stop.
NMAKE : fatal error U1077: 'C:\PROGRA~1\MICROS~3\VC98\BIN\NMAKE.EXE' :
return co
de '0x2'
Stop.
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
Star Solutions
That's fixed packet-memcache.c.
Thanks
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
Star Solutions
-Original Message-
From: wireshark-dev-boun...@wireshark.org
[mailto:wireshark-dev-boun
Hello,
is there a fixed meaning of packet_info.p2p_dir for all protocols?
What is that value supposed to mean?
--
Michael Lum Principal Software Engineer
4600 Jacombs Road +1.604.276.0055
Richmond, B.C.
Canada V6V 3B1
Star Solutions
requests but some messages
are bi-directional.
For example, the ADDS Deliver message is used in both directions
for carrying SMS, OTA (IS-683), etc.
IS-683 doesn't have anything to indicate the direction.
Anders Broman has added 'link_dir' to solve this.
Thanks for the help.
--
Michael Lum
window says Unknown invokeData blob.
Michael Lum (michael@starsolutions.com
mailto:michael@starsolutions.com ) | STAR SOLUTIONS
http://www.starsolutions.com/ | Principal Software Engineer
4600 Jacombs Road, Richmond BC, Canada V6V 3B1 | +1.604.303.2315
Crap, I forgot the attachment.
Michael Lum (michael@starsolutions.com
mailto:michael@starsolutions.com ) | STAR SOLUTIONS
http://www.starsolutions.com/ | Principal Software Engineer
4600 Jacombs Road, Richmond BC, Canada V6V 3B1 | +1.604.303.2315
Thanks Anders.
I have submitted a spec reference and patch for frame #1 problems.
Michael Lum (michael@starsolutions.com
mailto:michael@starsolutions.com ) | STAR SOLUTIONS
http://www.starsolutions.com/ | Principal Software Engineer
4600 Jacombs Road, Richmond BC, Canada V6V 3B1
or 4 octets
each:
Originating Transaction ID
Responding Transaction ID
So in frame #2
Otid = 0x000e
Rtid = 0x0027
with the Rtid corresponding to the invoke transaction ID.
Thanks
Michael Lum (michael@starsolutions.com
mailto:michael@starsolutions.com ) | STAR SOLUTIONS
err-ansi_map.snoop
Here is another capture file containing ANSI MTP3/ANSI TCAP/ANSI MAP
that does not dissect the return result.
I keep getting complaints from users that Wireshark does not decode
as well as Ethereal.
I think this is a ANSI TCAP problem but I can't tell how it is
supposed to
.
It would appear maybe the GUI files are not dependent on this?
I don't really want to clean and rebuild everything.
Does anybody know exactly which files I need to remove ?
Thanks
Michael Lum (michael@starsolutions.com
mailto:michael@starsolutions.com ) | STAR SOLUTIONS
http
Yes, removing gtk\about_dlg.obj and then rebuilding fixes the problem.
Michael Lum (michael@starsolutions.com
mailto:michael@starsolutions.com ) | STAR SOLUTIONS
http://www.starsolutions.com/ | Principal Software Engineer
4600 Jacombs Road, Richmond BC, Canada V6V 3B1 | +1.604.303.2315
and 1.4.3 have all been released since without this change.
Why ?
Should I be indicating some sort of higher priority or something in the
Bugzilla report ?
Thank you
Michael Lum
(michael@starsolutions.commailto:michael@starsolutions.com) | STAR
SOLUTIONShttp://www.starsolutions.com
packet I have:
there was a UDP ERROR severity expert info for a bogus payload length
there was also a WARN severity expert info for a protocol dissected in
the UDP payload.
The 'expert' column displayed WARN.
It seems like a bug.
Michael Lum
(michael@starsolutions.commailto:michael
Hi,
its been a while since I've looked at the Wireshark source code and I'm trying
to update one of the dissectors
I added a long time ago.
Can someone tell me why code like this:
i++;
would have been changed to this:
i += 1;
?
Thank you
Michael Lum
(michael
Thanks Bill.
I was concerned there was something I was missing.
I understand its a lot of work to go through other peoples varying styles of
code.
Keep up the good work.
Thanks again.
--
Michael Lum (michael@starsolutions.com) | STAR SOLUTIONS | Principal
Software Engineer
4600 Jacombs
) to
hf_register_info ?
Basically, I want to just label a bunch of bits or octets, no subtree, not
filterable.
Thanks for you help.
Michael Lum
(michael@starsolutions.commailto:michael@starsolutions.com) | STAR
SOLUTIONShttp://www.starsolutions.com/ | Principal Software Engineer
4600 Jacombs
Yeah, I looked at the script last week and it didn't help me much.
I wrote that dissector about 10 years ago, one of my first, but I'm not sure if
it was different from a lot of the others at the time.
Michael Lum
(michael@starsolutions.commailto:michael@starsolutions.com) | STAR
submitted are having arbitrary white
space/style
changes made.
I completely understand changes, for bugs, API changes, and warnings missed
because of cross-platform
builds.
But I don't understand the need to change FROM a consistent style to some other
style.
Michael Lum
(michael
Michael Lum (michael@starsolutions.com) | STAR SOLUTIONS | Principal
Software Engineer
4600 Jacombs Road, Richmond BC, Canada V6V 3B1 | +1.604.303.2315
-Original Message-
From: wireshark-dev-boun...@wireshark.org
[mailto:wireshark-dev-boun...@wireshark.org] On Behalf Of Bill Meier
I asked around internally and as a customer of AudioCodes we still use that
dissector.
Michael Lum (michael@starsolutions.com) | STAR SOLUTIONS | Principal
Software Engineer
4600 Jacombs Road, Richmond BC, Canada V6V 3B1 | +1.604.303.2315
-Original Message-
From: wireshark-dev
I don't know how the NSIS packaging works but when you want to add a custom
plugin it
looks like you need to modify both
Custom.nmake and custom_plugins.txt
Is this correct? If so would it be possible to just have Custom.nmake and
generate the other
file (if its required)?
Michael Lum
in the ANSI SMS dissector.
iso-8859-8 (Latin/Hebrew) is pretty easy to add I believe I can follow the
pattern for the code that is there now.
The other is EUC-KR (Korean). I tried to find a code page that looks like the
ISO ones but I'm not how these
conversions are supposed to work.
Michael Lum
#define ENC_ISO_8859_2 0x000E
#define ENC_ISO_8859_5 0x0014
#define ENC_ISO_8859_9 0x001C
I can't detect a pattern aside from not using the least significant bit.
I was thrown off at the gaps between 0x000E and 0x0014 and 0x001C.
Michael Lum
Yes! ;)
Michael Lum (michael@starsolutions.com) | STAR SOLUTIONS | Principal
Software Engineer
4600 Jacombs Road, Richmond BC, Canada V6V 3B1 | +1.604.303.2315
-Original Message-
From: wireshark-dev-boun...@wireshark.org
[mailto:wireshark-dev-boun...@wireshark.org] On Behalf
with the protocol filter.
-Original Message-
From: Michael Lum <michael@starsolutions.com>
To: wireshark-dev <wireshark-dev@wireshark.org>
Sent: Thu, Mar 24, 2016 6:27 pm
Subject: [Wireshark-dev] How is the protocol display filter name determined?
Hi,
I have a custom plu
again with the latest sources.
On 1 August 2017 at 22:02, Michael Lum
<michael@starsolutions.com<mailto:michael@starsolutions.com>> wrote:
It works when I change:
set WIRESHARK_CYGWIN_INSTALL_PATH=c:\cygwin64
to
set WIRESHARK_CYGWIN_INSTALL_PATH=c:/cygwin64
This has c
...@wireshark.org] On Behalf Of
Michael Lum
Sent: August-01-17 1:47 PM
To: Developer support list for Wireshark
Subject: Re: [Wireshark-dev] Is there a way to disable documentation generation?
This is from my 2.2.5 build with the same "message" calls added:
-- CYGWIN_INSTALL_PATH=C
or does it take care of \ /?
From: Wireshark-dev [mailto:wireshark-dev-boun...@wireshark.org] On Behalf Of
Michael Lum
Sent: August-01-17 11:16 AM
To: Developer support list for Wireshark
Subject: Re: [Wireshark-dev] Is there a way to disable documentation generation?
That va
ee also "C:/ws240-64/CMakeFiles/CMakeOutput.log".
See also "C:/ws240-64/CMakeFiles/CMakeError.log".
C:\ws240-64>
Michael Lum
(michael@starsolutions.com<mailto:michael@starsolutions.com>) | STAR
SOLU
exit /b
)
IF [%1] == [prep] (
@echo cmake -DPYTHON_EXECUTABLE=c:\Python27\python -DENABLE_CHM_GUIDES=on -G
"Visual Studio 12 2013 Win64" %myPath%
cmake -DPYTHON_EXECUTABLE=c:\Python27\python -DENABLE_CHM_GUIDES=on -G
"Visual Studio 12 2013 Win64" %myPat
==
It's breaking in docbook eventhough I have the packages listed in the
developer's guide:
asciidoc 8.6.9-1
biber 2.5-1
build-docbook-catalog 1.5-2
dblatex 0.3.10-1
docbook-xml45 4.5-1
docbook-xsl 1.77.1-1
groff 1.22.3-1
iso-codes 3.75-1
less 487-1
libas
lags: -Wl,--as-needed
statuscheck linker flag - test linker flags: -pie
C:\ws240-64>
I've attached the cmake.txt output file.
Let me know if you need anything else.
BR
Michael Lum
From: Wireshark-dev [mailto:wireshark-dev-boun...@wireshark.org] On Behalf O
1-17 10:44 AM
To: Developer support list for Wireshark
Subject: Re: [Wireshark-dev] Is there a way to disable documentation generation?
On 1 August 2017 at 18:10, Michael Lum
<michael@starsolutions.com<mailto:michael@starsolutions.com>> wrote:
Hi Graham,
thanks for the help.
figure out why they are not both decoded as SLL/Linux cooked-mode
captures.
Any thoughts would be greatly appreciated.
I'm running on Windows 7 using Wireshark 2.6.1.
The capture was taken on a CentOs 7 box by a tool injecting the "fake" syslog
message.
BR,
Michael
Michael Lum
would know it was because the datalink type was changing depending on
what interface I was capturing
and the encapsulation has to be formatted differently.
I now have ethernet, Linux cooked capture, and NFLOG working.
Thanks again!
BR,
Michael Lum
From: Wir
.)
Thanks for all your hard work.
BR,
Michael
Michael Lum
(michael@starsolutions.com<mailto:michael@starsolutions.com>) | STAR
SOLUTIONS<http://www.starsolutions.com/> | Principal Software Engineer
4600 Jacombs Road, Richmond BC, Canada V6V 3B1 | +1.
ated correctly.
C:\ws348-64>
I saw there was an old issue related to these kind of errors but that was fixed.
https://gitlab.com/wireshark/wireshark/-/issues/17477
Any help would be appreciated.
Michael Lum
(michael@starsolutions.com<mailto:michael@starsolutions.com>) | STAR
missed the part about Windows 7 not being supported past 3.2, I believe.
I'm assuming #4 is because I am building on Windows 7.
My only problem is now getting everything packaged with NSIS.
I'll create a separate email for that.
Thank you again for your timely assistance.
Michael Lum
looking for.
Thanks for any help
Cheers
Michael Lum
(michael@starsolutions.com<mailto:michael@starsolutions.com>) | STAR
SOLUTIONS<http://www.starsolutions.com/> | Principal Software Engineer
4600 Jacom
80 matches
Mail list logo