Wireshark
the world's foremost network protocol analyzer
Wireshark-dev: [Wireshark-dev] [PATCH] ppp_hdlc in sll
From: "Matt Addison" <maddison@xxxxxxxxxx>
Date: Wed, 2 May 2007 00:57:05 -0400
Problem:
The
existing sll dissector does not handle ppp_hdlc packets (sll.ltype ==
0x0007).
Resolution:
Alter packet-sll.c
to call the ppp_hdlc dissector when a packet with sll.ltype=0x0007 is
received.
Why:
Bringing up a T1
sniffer using a Digium Wildcat TE205P, stock wireshark would not recognize the
packets as they are delivered as ppp_hdlc in sll, this is/has not been an issue
for people using these cards to terminate ppp in the machine as they can sniff
the pppX interface, but in a passive monitoring mode like I am trying to set up
there is no pppX interface- only an hdlcX interface from the zaptel
drivers.
Hardware:
Digium Wildcat
TE205P, T1 spans in nethdlc mode in zaptel.conf, set to ppp mode using sethdlc
then hdlcX interfaces manually brought up with ifconfig.
Patch developed
against SVN revision 21635 and applies/compiles clean on both
Linux (against the 0.99.4 sources used in Debian Etch) and Windows
(VC2005).
I'm not subscribed
to the -dev list so if you could unicast questions/comments to me as well as
well as the list that'd be great.
~Matt
Attachment:
sllppphdlc.patch
Description: sllppphdlc.patch
- Follow-Ups:
- Re: [Wireshark-dev] [PATCH] ppp_hdlc in sll
- From: Jaap Keuter
- Re: [Wireshark-dev] [PATCH] ppp_hdlc in sll
- Prev by Date: [Wireshark-dev] XML parser to be used???
- Next by Date: Re: [Wireshark-dev] [Wireshark-commits] rev 21635: /trunk/ /trunk/epan/dissectors/: packet-gsm_map.c packet-gtp.c packet-h221_nonstd.c packet-h225.c packet-h225.h packet-h235.c packet-h245.c packet-h245.h packet-h450.c packet-h450.h ...
- Previous by thread: [Wireshark-dev] XML parser to be used???
- Next by thread: Re: [Wireshark-dev] [PATCH] ppp_hdlc in sll
- Index(es):