Re: [Wireshark-dev] why cannot I use heur_dissector_add("ip", .....

From: Guy Harris <guy_at_nospam>
Date: Sun Jun 26 2011 - 21:17:37 GMT
To: Developer support list for Wireshark <wireshark-dev@wireshark.org>

On Jun 26, 2011, at 2:09 PM, John x wrote:

> these packets run directly atop IP, any suggestions?

1) Get a protocol number from the IANA and use it, instead of some hack based on the TTL value.

2) Hack the IP dissector in a private version of Wireshark.
___________________________________________________________________________
Sent via: Wireshark-dev mailing list <wireshark-dev@wireshark.org>
Archives: http://www.wireshark.org/lists/wireshark-dev
Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev
mailto:wireshark-dev-request@wireshark.org?subject=unsubscribe

This message: [ Message body ]
Next message: John x: "Re: [Wireshark-dev] why cannot I use heur_dissector_add("ip", ....."
Previous message: John x: "Re: [Wireshark-dev] why cannot I use heur_dissector_add("ip", ....."
In reply to: John x: "Re: [Wireshark-dev] why cannot I use heur_dissector_add("ip", ....."
Next in thread: John x: "Re: [Wireshark-dev] why cannot I use heur_dissector_add("ip", ....."
Reply: John x: "Re: [Wireshark-dev] why cannot I use heur_dissector_add("ip", ....."

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]