Ask Your Question

How do I go about adding a new protocol

asked 2021-02-21 18:36:11 +0000

teknopaul gravatar image

I'd like to add the work ongoing here

into wireshark, so that CDJ packets are rendered as such. All packets have a magic number and hardcoded ports so they should be quite easy to spot.

I have a quick hunt around the wiki and src code but I dont see where to get started.

Is there a packet dscription format or do we write C/C++?

edit retag flag offensive close merge delete

2 Answers

Sort by ยป oldest newest most voted

answered 2021-02-22 10:08:31 +0000

grahamb gravatar image

There are a number of options when adding a new dissector, some of them are discussed in my SharkFest presentation How to write a Dissector.

If using C (note C++ is not currently supported for dissectors) or Lua, then the Wireshark Developers Guide and the various files in the source tree doc directory are essential reading.

edit flag offensive delete link more

answered 2021-02-25 07:35:35 +0000

Uli gravatar image

There is already an enhancement request to implement this protocol:

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower


Asked: 2021-02-21 18:36:11 +0000

Seen: 580 times

Last updated: Feb 25 '21