Wireshark-dev: [Wireshark-dev] Dissecting of Raw QSig over LAPD
From: "Varuna De Silva" <[email protected]>
Date: Sun, 21 Oct 2007 16:28:12 +0530
Hello,

I got a new DLT_ value for raw LAPD from tcpdump.org i.e 203;

I was advised earlier by the WireShark Dev as below

__________________________________________________________

> If you can't use the Linux LAPD DLT (even by faking the headers?)
__________________________________________________________

Where Can I know how to fake the headers? If I know that would be
easy for me, since I dont need to change the wiretap library and wireshark
code.

_________________________________________________________

>then you'd have to:

>- ask tcpdump.org to allocate a new DLT value for raw LAPD
>- patch the wiretap/ library to support the new DLT value (bug 1751
>contains a patch that shows how to do this)
>- patch packet-lapd.c to register for the new linktype (by adding
>another "dissector_add() call)
__________________________________________________________

I went through this bug,

http://bugs.wireshark.org/bugzilla/attachment.cgi?id=953&action="">
According to this there are some changes that I need to do to
the wtap.c/wtap.h

Can I please know the connection between wiretap library and the
libpcap library. Cant I anyhow wait without changing the wiretap
library. I thought it is a substitute for libpcap.

Is libpcap just on of the types that wireshark Understand?

Thanks
Varuna