Ask Your Question
0

TCP Flow Graph not displaying packets length on localhost

asked 2021-10-11 10:08:21 +0000

Sleriss gravatar image

Hello,

I am using wireshark as a teacher for students to investigate how the sequence and acknowledgment numbers of a TCP flow works. To simplify the data capture, I am asking them to run some server/client on IPv6 localhost. When displaying the corresponding Flow Graph, the two vertical lines that would correspond to the client and the server seems to collapse together as a single line (with header ::1) resulting in the flags and packet length missing on the graph, which is a vital piece of information for this purpose ^^

Is there anyway to get the graph split the two lines as it does when the client and server addresses are different?

Many thanks!

edit retag flag offensive close merge delete
add a comment

1 Answer

Sort by » oldest newest most voted
0

answered 2021-10-11 16:15:37 +0000

Chuckc gravatar image

Can you provide a sample capture file and open a Gitlab issue? Please include a link back to this question.

Testing with tshark -z flow,any,standard reveals that it also doesn't display properly for traffic to/from localhost.

p$ tshark -r ./*localhost_http* -q -z flow,any,standard,tcp.port==1026
|Time     | 127.0.0.1                             |
|         |
|7.595188  ** (tshark:8684) 11:14:03.813463 [GLib CRITICAL] -- g_string_erase: assertion 'pos_unsigned + len_unsigned
 <= string->len' failed
|         1026 → 80 [SYN] Seq=          |TCP: 1026 → 80 [SYN] Seq=0 Win=65535 Len=0 MSS=65495 WS=256 SACK_PERM=1
|          ** (tshark:8684) 11:14:03.825533 [GLib CRITICAL] -- g_string_erase: assertion 'pos_unsigned + len_unsigned
 <= string->len' failed
|(1026)   ------------------>  (80)    |
edit flag offensive delete link more
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2021-10-11 10:03:04 +0000

Seen: 169 times

Last updated: Oct 11 '21

Copyright Wireshark Foundation, 2017-2023 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service
Powered by Askbot version 0.10.2