PPID==7 does not work in the sense that iti is not decoded , however
filtering on sctp data payload ==7
delivers exactly the packets one would expect and where one would
expect them , so rather weird.
/wbr
Ariel Burbaickij
On Jan 12, 2008 11:41 PM, Anders Broman <[EMAIL PROTECTED]> wrote:
> Hi,
>
Please note that a new wireshark package installer has been made
available on
http://www.finkconsulting.com/page7.php
http://www.finkconsulting.com/opensource/WiresharkLeopard/Wireshark-Leopard.dmg
(direct download)
The package contains Wireshark 0.99.7 (from www.wireshark.org) built
fro
Hi,
It does on my traces but if H248 is not detected in yours the filter won't
work. At a glance at the code SCTP port does not work for H.248(not
implermented(yet)) ppid *should* work.
Regards
Anders
-Ursprungligt meddelande-
Från: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] För Ariel Bur
I would recommend that you use utility such as TCPView
(http://technet.microsoft.com/en-us/sysinternals/bb897437.aspx) to see what
a specific application is doing.
It would be neat to see Wireshark extended to be able to capture traffic on
a process and all sub-processes that are spawned - I wo
Most Windows machines seem to be very busy in terms of the amount of network
traffic. Is it possible to set up a filter that basically says "ignore
everything that is current showing up"? It would make it so much easier to
see what a new program is sending and receiving if you could focus on just
i
E B wrote:
> You mean to tell me that nobody has ever seen a packet with this summary
> line before?! :
> "I P, N(R)=1, N(S)=85; DSAP LLC Sub-Layer Management Individual, SSAP SNAP
> Command"
> and it gets this response
> "U F, func=RD; DSAP LLC Sub-Layer Management Group, SSAP 0x52 Response"
L
Hello Anders,
glad to see your again,
I will provide detailed answers on Monday, 14.01.2007 as I am
away from equipment. However, if I understand the nature of your
questions correctly -- they imply that there are some limitations.
Is it correct? How about the fact that filter h248 does not work
i
Hi,
Traces I have of H.248 over SCTP decodes...
Is PPID 7 used? Is it Binary or text?
Can you send a small sample trace?
Regards
Anders
-Ursprungligt meddelande-
Från: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] För Ariel Burbaickij
Skickat: den 12 januari 2008 11:02
Till: wireshark-users@
Hello all,
we use h.248 over SCTP and wireshark behaves in such a way that I at least
need your advise as of now I still hesistate to submit bug report.
We observe following:
1) It is not possible to filter on h248 or MEGACO filters user needs
to enter sctp protocol payload
number in order to g