I use wireshark to capture SMB packets with custom port(44555) due to port forwarding. Since such SMB packets cannot be directly recognized, I then use Decode As function to set packets with tcp port 44555 as NBSS packets. After the setting, most SMB packets are correctly decoded instead of TCP payload. However, there are still some packets shown as TCP payload.
As shown in the screenshot above, packet 1078 is obviously an SMB packet and not properly decoded.
What should I configure in Wireshark so that such packets can be properly decoded?