Ask Your Question
0

Identifying dldp and hgmp packets

asked 2019-08-27 14:15:01 +0000

avi gravatar image

I need to find a way to identify DLDP and HGMP packets. I didn’t see that the wireshark knows how to identify them.

The first seems to be used by an HP protocol and the second seems to be used by a Huawei protocol. All I know is that the first uses a dest MAC address of 01-80-C2-00-00-8A and the second uses a dest mac address of 01-80-C2-00-00-0A. I also know that the second MAC can be changed because it is configurable.

Can you help me know how can I identify these two packets using other fields in the packets such as ether-type, version etc.?

edit retag flag offensive close merge delete

1 Answer

Sort by » oldest newest most voted
0

answered 2019-08-27 15:15:58 +0000

Jaap gravatar image

DLDP : Device Link Detection Protocol, the HP version of UDLD, which is a Cisco protocol, published in RFC5171

HGMP: Huawei Group Management Protocol, some switch clustering protocol.

Since both these protocols are proprietary these have to be reverse engineered in order to create dissectors for Wireshark. No one has done that so far. Iff you have relevant information and sample captures (not screenshots) you can enter an enhancement bug to help getting this effort started.

edit flag offensive delete link more

Comments

Thank you very much for your answer.

I do believe that the packets structure of DLDP should be close to UDLP so they might share some identifying fields. Also, HGMP should be close to NDTP so they might share some identifying fields.

Currently I don’t have any capture of such packets. I asked for such but if someone can assist us here, he will be more than welcomed.

avi gravatar imageavi ( 2019-08-28 13:48:52 +0000 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

Stats

Asked: 2019-08-27 14:15:01 +0000

Seen: 629 times

Last updated: Aug 27 '19