>>>>> "Pascal" == Pascal Quantin <pascal.quan...@gmail.com> writes:
Pascal> Anders Broman, Wireshark core developer, is currently designing an
export
Pascal> functionality for PDUs and would need a DLT allocated for this new
Pascal> functionality.
Pascal> You will find below the email he tried to send to this mailing list
a few
Pascal> days ago and that got bounced. I hope mine will go through
Pascal> :)
sorry.
Anders> I would need a DLT for a wrapper around higher level PDU's or
per-packet
Anders> DLT:s the format is multipurpose and consists of a number of TLV:s
Anders> proceeding the actual PDU.
Anders> There are TLV:s which describes which protocol the PDU is and meta
data
Anders> such as IP address and port (if the transport protocol(s) are
striped off).
Anders> The format can be used by logging functions in various nodes, say
after
Anders> deserialization(SS7 over TDM) decryption(GSM/UMTS/LTE Nodes?) etc.
Anders> Tag values and an outline of the format can be found here
Anders>
http://anonsvn.wireshark.org/viewvc/trunk/epan/exported_pdu.h?revision=49285&view=markup
Looks like a rather sane TLV structure.
Is it intended to be used beyond SS7 stuff?
--
] Never tell me the odds! | ipv6 mesh networks [
] Michael Richardson, Sandelman Software Works | network architect [
] m...@sandelman.ca http://www.sandelman.ca/ | ruby on rails [
_______________________________________________
tcpdump-workers mailing list
tcpdump-workers@lists.tcpdump.org
https://lists.sandelman.ca/mailman/listinfo/tcpdump-workers
