Comment # 9
on bug 9956
from Owen Kirby
Unfortunately, that patch doesn't fix the issue for me. A lot of our 6LoWPAN
traffic uses IEEE 802.15.4 acknowledgements, which still cause the traffic to
be incorrectly flagged as ZGP frames.
I spent a bit of time today reworking some of the heuristic dissection checks
for IEEE 802.15.4 to try and get around the problem. By requiring the ZigBee
layers to match a known protocol version and frame type, Wireshark seems to get
99% of traffic correct. There are still a few outliers, so I added a
"Decode-As" handler for IEEE 802.15.4 to allow the user to explicitly set the
network layer protocol to decode based on PANID.
I've pused the changes to Gerrit here: https://code.wireshark.org/review/1167
Hauke, if you could give it a try would you be able to tell me if the patch
fixes dissection for you?
You are receiving this mail because:
- You are watching all bug changes.
