On Aug 20, 2009, at 11:47 AM, Cristian Constantin wrote:
hi!
I am trying to plot the tsns in an association's data flow; anyway the
result is not what I expect. here are some details:
0. wireshark on linux/debian:
cco@xxx:~$ dpkg -l | grep wireshark
ii wireshark
1.2.1-1 network traffic analyzer
ii wireshark-common
1.2.1-1 network traffic analyser (common
files)
1. flow contains handshake as well.
2. at the receiver I have an iptables rule dropping SACKs and DATA on
the input chain. so basically SACKs and DATA chunks arrive, wireshark
also sees them, the application not and that is why it is initiating
retransmissions.
3. if I enable the TSN analysis from the SCTP protocol menu, it will
basically tell me when a CHUNK is retransmitted, that the SACK was
also
seen aso.
4. I am trying to plot the TSNs to have an overview (using Telephony/
SCTP/Analyse this association). it is showing all the TSNs up to the
ones that are retransmitted as I have explained at 2. any idea what
happens? is there a maximum number of tsns that are shown on the
graph?
No.
Is wireshark seeing the packets at all? Where are you capturing the
traffic? At the same node where iptables runs? How does iptables and
capturing interact?
Best regards
Michael
thanks a lot!
bye now!
cristian
___________________________________________________________________________
Sent via: Wireshark-dev mailing list <wireshark-dev@xxxxxxxxxxxxx>
Archives: http://www.wireshark.org/lists/wireshark-dev
Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev
mailto:wireshark-dev-request@xxxxxxxxxxxxx?subject=unsubscribe
