I have this problem. To try and figure out what the problem is I have created two dumps, one over Wifi and one over 3G / HSDPA by running tcpdump on the Android device.
The Wifi dump is decoded by Wireshark no problem.
But the 3G dump isn't very helpful.
Does anyone know how I can get Wireshark to decode this data so I can figure out what the problem might be?
asked 15 Apr '12, 22:42
Unfortunately, it appears that either tcpdump, libpcap, or the network software on your Android machine is buggy; the packets in the 3G capture almost certainly do NOT have an Ethernet packet header, but the capture file has a link-layer header type of "Ethernet".
Unfortunately, without seeing the capture, we can't determine what the right link-layer header type would be - or even if there currently is an appropriate link-layer header type (the set of "official" link-layer header types is on the tcpdump.org Web site). Without knowing what the link-layer header type should be, we can't figure out whether Wireshark can even decode them or, if it can, what link-layer header type should be used in Wireshark.
answered 16 Apr '12, 11:01
Guy Harris ♦♦