I added my own dissector to wireshark and compiled everything. I want to filter the packets so it only captures the ones that register as the "CDMI" protocol.

The protocol is an extension to HTTP on port 80 if that helps.

asked 10 Feb '11, 10:49

Rodayo's gravatar image

Rodayo
61111115
accept rate: 0%


Capture filters have no knowledge about dissectors but are based on the BPF filtering rules. This is done to make them fast and safe to run in the kernel.

How is your "CDMI" protocol an extension to HTTP? Does it use it's own methods instead of GET/POST? Or does it run on top of HTTP?

link

answered 10 Feb '11, 16:23

SYN-bit's gravatar image

SYN-bit ♦♦
15.0k848219
accept rate: 19%

There will be an extra along with the HTTP ones:

...

X-CDMI-Specification-Version: 1.0 { ... }

...

But I figured this out yesterday, lol. Thanks anyways.

(11 Feb '11, 14:23) Rodayo
Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "Title")
  • image?![alt text](/path/img.jpg "Title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Tags:

×185
×78
×29
×18

Asked: 10 Feb '11, 10:49

Seen: 2,212 times

Last updated: 11 Feb '11, 14:23

powered by OSQA