Identifying dldp and hgmp packets

asked 2019-08-27 14:15:01 +0000

avi
5 ●2 ●4

I need to find a way to identify DLDP and HGMP packets. I didn’t see that the wireshark knows how to identify them.

The first seems to be used by an HP protocol and the second seems to be used by a Huawei protocol. All I know is that the first uses a dest MAC address of 01-80-C2-00-00-8A and the second uses a dest mac address of 01-80-C2-00-00-0A. I also know that the second MAC can be changed because it is configurable.

Can you help me know how can I identify these two packets using other fields in the packets such as ether-type, version etc.?

answered 2019-08-27 15:15:58 +0000

Jaap

13742 ●711 ●115

DLDP : Device Link Detection Protocol, the HP version of UDLD, which is a Cisco protocol, published in RFC5171

HGMP: Huawei Group Management Protocol, some switch clustering protocol.

Since both these protocols are proprietary these have to be reverse engineered in order to create dissectors for Wireshark. No one has done that so far. Iff you have relevant information and sample captures (not screenshots) you can enter an enhancement bug to help getting this effort started.

edit flag offensive delete link

Comments

Thank you very much for your answer.

I do believe that the packets structure of DLDP should be close to UDLP so they might share some identifying fields. Also, HGMP should be close to NDTP so they might share some identifying fields.

Currently I don’t have any capture of such packets. I asked for such but if someone can assist us here, he will be more than welcomed.

avi ( 2019-08-28 13:48:52 +0000 )edit

add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Identifying dldp and hgmp packets

1 Answer

Comments

Your Answer

Question Tools

Stats

Related questions

Identifying dldp and hgmp packets edit

1 Answer

Comments

Your Answer

Question Tools

Stats

Related questions

Identifying dldp and hgmp packets