Wireshark · Ethereal-users: [Ethereal-users] Question or Request for enhenecement

Ethereal-users: [Ethereal-users] Question or Request for enhenecement

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Mohamed LRHAZI <mohamed@xxxxxxxxxx>

Date: Fri, 6 Jul 2001 00:40:10 -0400

Hello,

When I give ethereal  the following packets to analyze it reports details about X25 over TCP protocole, while I am 99% sure it is not!

tcpdump -r dump.out -n port 1998

00:17:26.027191 169.229.109.161.1998 > 1.2.3.4.21: P 2547873368:2547873384(16) ack 1715723196 win 17471 (DF)
00:17:26.119558 169.229.109.161.1998 > 1.2.3.4.21: P 16:30(14) ack 73 win 17399 (DF)

This is what seems to be part of an FTP session, and I've seen this during HTTP sessions as well. My point is that ethereal not only
doest it convert the __source__ port name to x25-svc-port, which I believe to be irrelevent here, but it actualy tries to interpret 
the whole packet as being X25... this worried me a lot :) It tells me :
XOT version:
XOT: lenght
Logical Channel

Am I really having x25 going on behind my back, or is this "an  error" ?
Is this seen as a problem by others here? is this a feature? a bug? an annoyance? life?

Any input appreciated.
Thank you.
Mohamed~

Follow-Ups:
- Re: [Ethereal-users] Question or Request for enhenecement
  - From: Guy Harris

Prev by Date: RE: [Ethereal-users] small (solved) problem with ethereal-0.8.18' s snmp support
Next by Date: Re: [Ethereal-users] Question or Request for enhenecement
Previous by thread: RE: [Ethereal-users] small (solved) problem with ethereal-0.8.18' s snmp support
Next by thread: Re: [Ethereal-users] Question or Request for enhenecement
Index(es):
- Date
- Thread