Anders's profile - activity

What version of Wireshark? Please raise a bug report including an example pcap.

No, Ericsson CS1 is a proprietarry protocol and no public specification exists to my knowledge.

Probably that the packet you are looking at isn't RTP. Is encryption used? or possibly proprietarry signaling.

Hi, It seams like it's only dissected over cotp heur_dissector_add("cotp", dissect_ses_heur, "SES over COTP", "ses_

Not sure I get it, the rtp huer dissector claims a packet it shoudn't? You can dissable that particular dissector.

Raise a bug report including an example trace requesting an enhancement decoding this data.

Raise a bug report including an example trace requesting an enhancement decoding this data.

If you or your organisation are dealing with the protocol in any comersial way you probably should buy the stanndards...

So did you write a dissector for your protocol? If so you should adjust the dissector to show the string and the checksu

Modify the code of ui/voip_calls.c and commit it back to us for inclusion into Wireshark.

pushed a patch

There is this code in packet-ber.c /* allow the dissection of BER/DER carried over a TCP transport by using "De

If the two machines running wireshark have syncronised clocks, yes it will give you the time from that the packet was en

A dissector can't do a re read. Every time a packet is displayed in the UI it's information is re-read from file. Packet

The dissectors arwe only passed the content of the current packet. If any information from that packet is needed to diss

Looking into the future so to speak sounds wrong and weird.

By port in preferences, you can do decode as on the UDP layer and select quick.

Only by adding code. There is hooks to dissect AVP contents in such a function you would have to parse the xml and decod

Go to Statistics->file properties, at the bottom you can add and save file comments. It shold be possible to do with

It is not easy to set up and get good relable values but the theory is, take a trace near the sender with a accurate and

If you could share a packet of your sample traffic we could have a look.

Sorry I don't get that. RTP packets are sent with a fixed delta time, packatesation time. Witch depends on codec and sam

Sorry I don't get that. RTP packets are sent with a fixed delta time, packatesation time. Witch depends on codec and sam

Delta time is the time difference between the time stamps made by the capturing mechanism on the computer doing the capt

Hi, In the development version you can use "decode as" and select JSON which workls in some cases but I think code chan

Hi, Not without code changes. I have suggested these cahnges to the support library used to decode http2 https://github.

Yes I think you need to debug why these two names differ: Scanning dependencies of target rpm-package Generating pack

cmake3 -G "Unix Makefiles" ../wireshark/ I don't remember if build-dir was supposed to be a sub dir to /wireshark for i

What happens if you run cmake without any parameters?

Look at the IUA preferences, you probably want to uncheck Use GSM SAPI values

Look at the IUA preferences, you probably want to uncheck Use GSM SAPI values"

Look at the iua preferences, you probably does not want the sapi as GSM.

pyshark is not a part of the Wireshark project you will have to ask that project(link?).

Are the smartphones connecting to your WiFi or the Mobile network?

I think the problem is that the user dlt dissector owerrides your registration. Remove that line and register your disec

What do you mean,? Wireshark has many dependencies if all features is to be used.

Your question is unclear. You can see the source code in your browser here https://code.wireshark.org/review/gitweb?p=wi