I wrote the foo dissector example, put it in epan/dissectors, changed the Makefile.common, and ran the whole autogen, configure, make, make install. My code compiles just fine now and i don't run into any errors or warnings. However when i run wireshark my protocol is not there. It is red when i type it in the filter and it does not appear on the list of supported protocols. How can I get my protocol to show up in wireshark? asked 18 Jun '12, 11:11  rewindmad |
One Answer:
Are you sure you're running your newly compiled version of Wireshark and not an already installed version, perhaps? In particular, did you follow all the steps in the developer's guide and run the following from your build directory? answered 18 Jun '12, 13:48  cmaynard ♦♦ |
Nevermind, I managed to get it working as a plugin instead thank you.
Well, if you want to change it to a built-in dissector, then have a look at the example provided in section 1.2 of README.developer.