Ask Your Question
0

dvb-s2 example pcap file not interpreted correctly

asked 2019-08-13 09:29:16 +0000

James Card gravatar image

I am having difficulty sniffing DVB-S2 packets.

To check that Wireshark is working as advertised, I downloaded the file: SampleCaptures/dvb-s2_bb_example.pcap from the Wireshark DVB-S2 wiki page. I passed it into Wireshark, but saw only Ethernet, UDP and ARP packets, not DVB-S2 packets as the screenshot on the wiki page shows. Adding the suggested filter: dvb-s2_modeadapt or dvb-s2_bb or dvb-s2_gse leaves no packets at all, as does using each of those filters in isolation. I have tried this on Ubuntu 16.04, Ubuntu 18.04 and Raspberry Pi 3B+, each with stock Wireshark from the OS repo.

I can't find any reference to this problem in the bug reports.

Any suggestions?

edit retag flag offensive close merge delete

1 Answer

Sort by ยป oldest newest most voted
0

answered 2019-08-13 10:03:39 +0000

grahamb gravatar image

You need to enable the dvb_s2_udp dissector, from the DVB-S2 page on the Wireshark wiki:

In the protocol preference settings the DVB-S2 dissector can be globally enabled or disabled. This setting defaults to "disabled".

In Wireshark use the menu item Analyze -> Enabled Protocols..., search for "dvb" and check the box for dvb_s2_udp.

edit flag offensive delete link more

Comments

Thanks very much! Odd that's it's just the DVB-S2 UDP director that's disabled by default.

James Card gravatar imageJames Card ( 2019-08-13 12:00:54 +0000 )edit

There's a few others. For the DVB-S2 it's a heuristic dissector rather than port based and the heuristics are weak so it can easily misidentify traffic.

grahamb gravatar imagegrahamb ( 2019-08-13 12:17:15 +0000 )edit

Ah, that makes sense. Thanks for explaining.

James Card gravatar imageJames Card ( 2019-08-13 18:26:52 +0000 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

Stats

Asked: 2019-08-13 09:29:16 +0000

Seen: 54 times

Last updated: Aug 13