Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

Dissector doesn't do anything

I've followed the instructions in this video from SharkFest Wireshark Developer and User Conference: about making a dissector for TCP traffic. However, once I've built the dissector (In C) and put the .c file into /usr/local/include/wireshark/epan/dissectors and run wireshark, all TCP traffic on the specified FOO_PORT still shows as TCP, and not FOO, and it isn't dissected. Has anybody else followed this video (the last 15 minutes is the C part) and come across this?