Re: [Wireshark-dev] Wireshark "Decode As"

2015-09-16 0:55 GMT+02:00 Pascal Quantin : > > 2015-09-15 23:20 GMT+02:00 João Valverde >: > > > > > > > > On 09/15/2015 09:43 PM, Pascal Quantin wrote: > >> > >> > >> > >> 2015-09-15 22:39 GMT+02:00 João Valverde > >> >> >: > >> > >> > >> > >> On 09/

Re: [Wireshark-dev] Wireshark "Decode As"

On 09/16/2015 12:19 AM, João Valverde wrote: On 09/15/2015 11:55 PM, Pascal Quantin wrote: 2015-09-15 23:20 GMT+02:00 João Valverde mailto:joao.valve...@tecnico.ulisboa.pt>>: > > > > On 09/15/2015 09:43 PM, Pascal Quantin wrote: >> >> >> >> 2015-09-15 22:39 GMT+02:00 João Valverde

Re: [Wireshark-dev] Wireshark "Decode As"

On 09/15/2015 11:55 PM, Pascal Quantin wrote: 2015-09-15 23:20 GMT+02:00 João Valverde mailto:joao.valve...@tecnico.ulisboa.pt>>: > > > > On 09/15/2015 09:43 PM, Pascal Quantin wrote: >> >> >> >> 2015-09-15 22:39 GMT+02:00 João Valverde >> mailto:joao.valve...@tecnico.ulisboa.pt> >>

Re: [Wireshark-dev] Wireshark "Decode As"

2015-09-15 23:20 GMT+02:00 João Valverde : > > > > On 09/15/2015 09:43 PM, Pascal Quantin wrote: >> >> >> >> 2015-09-15 22:39 GMT+02:00 João Valverde >> > >: >> >> >> >> On 09/15/2015 09:05 PM, Pascal Quantin wrote: >> >> >> >> 2015-09-15 21:15 G

Re: [Wireshark-dev] Wireshark "Decode As"

On 09/15/2015 09:43 PM, Pascal Quantin wrote: 2015-09-15 22:39 GMT+02:00 João Valverde mailto:joao.valve...@tecnico.ulisboa.pt>>: On 09/15/2015 09:05 PM, Pascal Quantin wrote: 2015-09-15 21:15 GMT+02:00 João Valverde mailto:joao.valve...@tecnico.ulisboa.pt> <

Re: [Wireshark-dev] Wireshark "Decode As"

2015-09-15 22:39 GMT+02:00 João Valverde : > > > On 09/15/2015 09:05 PM, Pascal Quantin wrote: > >> >> >> 2015-09-15 21:15 GMT+02:00 João Valverde >> > >: >> >> >> >> On 09/15/2015 07:38 PM, Pascal Quantin wrote: >> >> Hi João, >> >> Le

Re: [Wireshark-dev] Wireshark "Decode As"

On 09/15/2015 09:05 PM, Pascal Quantin wrote: 2015-09-15 21:15 GMT+02:00 João Valverde mailto:joao.valve...@tecnico.ulisboa.pt>>: On 09/15/2015 07:38 PM, Pascal Quantin wrote: Hi João, Le 15 sept. 2015 4:41 PM, "João Valverde" mailto:joao.valve...@tecnico.ulis

Re: [Wireshark-dev] Wireshark "Decode As"

2015-09-15 21:15 GMT+02:00 João Valverde : > > > On 09/15/2015 07:38 PM, Pascal Quantin wrote: > >> Hi João, >> >> Le 15 sept. 2015 4:41 PM, "João Valverde" >> > > a écrit : >> > >> > Hi, >> > >> > I'm trying to understand and troubleshoot some "Decode

Re: [Wireshark-dev] Wireshark "Decode As"

On 09/15/2015 07:38 PM, Pascal Quantin wrote: Hi João, Le 15 sept. 2015 4:41 PM, "João Valverde" mailto:joao.valve...@tecnico.ulisboa.pt>> a écrit : > > Hi, > > I'm trying to understand and troubleshoot some "Decode As" issues. To give an example consider the packet: > > IPv6 | IPv6 | UD

Re: [Wireshark-dev] Wireshark "Decode As"

Hi João, Le 15 sept. 2015 4:41 PM, "João Valverde" a écrit : > > Hi, > > I'm trying to understand and troubleshoot some "Decode As" issues. To give an example consider the packet: > > IPv6 | IPv6 | UDP > > Wouldn't the second IPv6 layer overwrite the Decode As protocol number for the first layer,

[Wireshark-dev] Wireshark "Decode As"

Hi, I'm trying to understand and troubleshoot some "Decode As" issues. To give an example consider the packet: IPv6 | IPv6 | UDP Wouldn't the second IPv6 layer overwrite the Decode As protocol number for the first layer, giving: IPv6 (Decode IP protocol 17 As:) | IPv6 (Decode IP protocol

Re: [Wireshark-dev] wireshark decode as..??

On Tue, Mar 23, 2010 at 10:09:19AM +1100, ronnie sahlberg wrote: > You also shouldnt hardcode the size of the array in the for loop like > that, use something like sizeof[ports] / sizeof(ports[0]) > instead. Or better use wireshark array_length() macro. _

Re: [Wireshark-dev] wireshark decode as..??

change it to if (!initialized) { data_handle = find_dissector("data"); helen_handle = create_dissector_handle(dissect_helen, proto_helen); for (i = 0; i < 25; i++) { dissector_add("udp.port", ports[i], helen_handle); } } Yo

Re: [Wireshark-dev] wireshark decode as..??

Brian Oleksa wrote: > Olivier > > Yes...looks like I do. Any thoughts on how I can fix this..?? > > Thanks, > Brian > > void proto_reg_handoff_helen(void) { > static gboolean initialized = FALSE; > > int i; > > for (i = 0; i < 25; i++) { > > if (!initialized) { >

Re: [Wireshark-dev] wireshark decode as..??

Olivier Yes...looks like I do. Any thoughts on how I can fix this..?? Thanks, Brian void proto_reg_handoff_helen(void) { static gboolean initialized = FALSE; int i; for (i = 0; i < 25; i++) { if (!initialized) { data_handle = find_dissector("data");

Re: [Wireshark-dev] wireshark decode as..??

Perhaps you call create_dissector_handle for each port ? Olivier Brian Oleksa a écrit : > Guy > > Actuallythis is what I am doing: > > dissector_add("udp.port", ports[i], helen_handle); > > Where ports has a list of port numbers in it. > > static int ports[25] = {5136, 5000, 5220, 42250, 5000

Re: [Wireshark-dev] wireshark decode as..??

Guy Actuallythis is what I am doing: dissector_add("udp.port", ports[i], helen_handle); Where ports has a list of port numbers in it. static int ports[25] = {5136, 5000, 5220, 42250, 5, 5221, 5222, 49901, 49501, 49510, 42251, 42250, 5226, 47001, 5227, 7636, 59201, 59202, 59203, 592

Re: [Wireshark-dev] wireshark decode as..??

On Mar 22, 2010, at 1:04 PM, Brian Oleksa wrote: > When I right click on a packet and select decode asunder the > transport tab... there is like 14 of my protocols in the selection box. > (so I see the word HELEN 14 times in a row) > > Does anybody know why this is..?? You're only calling

[Wireshark-dev] wireshark decode as..??

Wiresharkers When I right click on a packet and select decode asunder the transport tab... there is like 14 of my protocols in the selection box. (so I see the word HELEN 14 times in a row) Does anybody know why this is..?? Thanks, Brian _