Hello,
I'd like to register my new dissector only to a udp src port
Therefore using following code
udp_table = DissectorTable.get("udp.port")
udp_table:add(7777,trivial_proto)
is not a good idea. I'd be glad to have an example how to do it to a specific udp source port (or destination port).
Thank you all
I don't believe it is possible to register your dissector for a source port as opposed to a destination port. You can only register your dissector for "a port". However, what you can do is register your UDP dissector for that port and then in your dissector return 0 if you detect that the src_port is actually not what you want. Let me give you an example:
local p_triv = Proto.new("triv", "Trivial Protocol")
function p_triv.dissector(buf, pinfo, tree)
if pinfo.src_port ~= 77777 then
return 0; --lets wireshark know nothing was dissected, other dissectors can be called
end
--Dissect your trivial protocol packet here
end
udp_table = DissectorTable.get("udp.port")
udp_table:add(7777,trivial_proto)
I hope this helps!
Asked: 2018-02-27 14:09:55 +0000
Seen: 2,180 times
Last updated: Mar 26 '18
Copyright Wireshark Foundation, 2017-2023 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.