Hi Anders,
Is the Vendor-bit set and the vendor id set to 3GPP?
Yes.
This AVP should be decoded by the upcoming 0.99.7 release and with that
Libxml2 is no longer needed with it.
http://www.wireshark.org/download/prerelease/wireshark-setup-
0.99.7pre2.exe
I downloaded and installed the
Hi,
is there any possibility to trace packets on loopback-interface of my
WindowsXP machine.
I want to trace IP packets sent from one application to the other (using
different ports).
On Linux e.g. I can trace on any interfaces, but this I cannot with
Wireshark on Windows XP, right?
-franz
Hi,
is there a possibility to arrange Wireshsark to assemble fragmented IP
protocol packets?
I trace SIP traffic and some INVITE messages are ~ 1800 bytes long. The
application reassembles, why not also Wireshark? The problem is that I use a
tool to process the pcap-file and produce a nice
]
[mailto:[EMAIL PROTECTED] För Franz Edler
Skickat: den 24 april 2007 19:25
Till: 'Anders Broman (AL/EAB)'; 'Community support list for Wireshark'
Ämne: Re: [Wireshark-users] Assembling of fragmented IP protocol packets
How about Edit-preferences-Protocols-IP Reassemble Fragmented IP
Hi,
Did you by any chance use a filter with port numbers? Since port numbers
are only present in the IP-fragment that has the UDP/TCP header in it
all the other fragments are not seen by the filter.
Yes. I used a port filter.
If you only filter on ip-addresses you should be fine though :)
I
Yes,
If you only filter on ip-addresses you should be fine though :)
It now works. Tcpdump dumps all fragments and these are correctly
re-assembled by wireshark and by the tool to produce the message flow.
Thanks again, all the helped so quickly.
-Franz
