Huge thanks to our Platinum Members Endace and LiveAction,
and our Silver Member Veeam, for supporting the Wireshark Foundation and project.

Wireshark-dev: Re: [Wireshark-dev] A question about ASN.1 encoding in wireshark

Date: Wed, 6 Sep 2006 20:37:47 +0800
Title: A question about ASN.1 encoding in wireshark
Hi Jacob,
 
That would be very great if you can post your example on the web page, or send the the example to me by emal, that would be very helpful for a new user who is trying to make a new ASN1 based dissector.
 
Thank you very much,
 
Chris


From: wireshark-dev-bounces@xxxxxxxxxxxxx [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of ext Jacob Avraham
Sent: Tuesday, September 05, 2006 11:34 PM
To: Developer support list for Wireshark
Subject: Re: [Wireshark-dev] A question about ASN.1 encoding in wireshark

Hi,

 

I was struggling with the same issue a couple of days ago, as it wasn't clear from reading

other dissectors what needs to be done.

So I wrote a very basic dissector that dissects UDP packets off a curtain port and are ASN1 encoded

with a couple of fields.

I think that such an example could be useful under the asn1 directory.

Let me know if you want me to post it and how to post it.

 

Jacob

 


From: wireshark-dev-bounces@xxxxxxxxxxxxx [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of Anders Broman (AL/EAB)
Sent: Tuesday, September 05, 2006 11:59 AM
To: Developer support list for Wireshark
Subject: Re: [Wireshark-dev] A question about ASN.1 encoding in wireshark

 

Hi,

You have to write a dissector for your protocol and have it register for the TCP port used in order to have the protocol dissected.

Brg

Anders

 


From: wireshark-dev-bounces@xxxxxxxxxxxxx [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of chris.guo@xxxxxxxxx
Sent: den 5 september 2006 05:38
To: wireshark-dev@xxxxxxxxxxxxx
Subject: Re: [Wireshark-dev] A question about ASN.1 encoding in wireshark

Hi,

 

I made a ASN1 based message on TCP, but could not get anything displayed after TCP in wireshark. by default it used ENTTEC after TCP.

 

 

 


From: wireshark-dev-bounces@xxxxxxxxxxxxx [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of ext Anders Broman (AL/EAB)
Sent: Wednesday, August 30, 2006 4:09 PM
To: Developer support list for Wireshark
Subject: Re: [Wireshark-dev] A question about ASN.1 encoding in wireshark

Hi,

Do you get anything displayed after TCP?

See http://wiki.wireshark.org/Asn2wrs on how to design an asn1 based dissector using asn2wrs.

 

Best regards

Anders

 


From: wireshark-dev-bounces@xxxxxxxxxxxxx [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of chris.guo@xxxxxxxxx
Sent: den 30 augusti 2006 04:03
To: wireshark-dev@xxxxxxxxxxxxx
Subject: [Wireshark-dev] A question about ASN.1 encoding in wireshark

Hi All,

I have a question about ASN.1 decoding in wirshark, hope can get someone's help.

I have my own defined ASN.1 messages, these messages are decoded with BER, the messages transfer based on TCP/IP, wireshark can capture the messages, and decode the message, but can not display the field name in the detailed information area.

I want to add my ASN.1 definitions in wireshark, and can decode/show the message correctly in the detailed information area in the wireshark, but I do not know how to proceed, it there any one can share the experiences or send me some useful materials?

Thank you very much,

Chris