Huge thanks to our Platinum Members Endace and LiveAction,
and our Silver Member Veeam, for supporting the Wireshark Foundation and project.

Wireshark-dev: Re: [Wireshark-dev] Linux Dissector Example

From: Jaap Keuter <jaap.keuter@xxxxxxxxx>
Date: Fri, 28 Dec 2007 11:47:17 +0100
Hi,

I must direct you to doc/README.developer and doc/README.plugins for more information on that.

Thanx,
Jaap

warlord wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

Hi everyone

I do realize this probably is one of the more basic questions, but still
it doesn't seem to work for me. I'm on Linux and I checked out Wireshark
trunk from svn yesterday and built it. Fine so far.


I was trying to follow this guide on codeproject.com to create my own
very simple dissector as a point to start from, but sadly this is for
Wndows and didnt work for me (This guide:
http://www.codeproject.com/KB/IP/custom_dissector.aspx)

I copied those files into trunk/plugins/amin/ but 'make' failed to
compile them. As Makefile.am was called the "Unix-version" Makefile or
something in the documentation that was the one I tried to run, but it
bailed with 'missing separator in line 29'.

So all I am looking for now is a very simple example dissector which I
can compile and use in Linux. I hope/suppose I can find my way from
there. I do realize I can look at all the folders in trunk/, but they
seem to usually contain a gazillion lines of code. I'd prefer a smaller
example.

My intention is to add a completely different set of functionality to
Wireshark, which could be quite useful for a bigger bunch of people.

Thanks for the supprt,

wrl