Ask Your Question

SANTOS's profile - activity

2021-07-26 12:19:14 +0000 marked best answer Is it possible to put two different packages together within one line/tree on the main display?

Hello,

I wrote a dissector in C language that works well. Now, I would like to use a post-dissector to regroup the lines that are displayed in the main Wireshark display, because there are multiple forwardings of the same packet.

I don't want to assemble a packet that was disassembled during transmission, I want to show several "equal" packets on the same line of the main display (I would like to build a tree on this line so you can see how many of the same packets were received) in order to reduce the visual pollution caused by dissecting the packets that are forwarded.

I read that post-dissectors are mainly used to record conversations, but they do not manipulate the lines of conversation they work on.

Is it possible to implement this idea of regrouping lines in the main display after passing through the dissector?

Thanks in advance,

Anderson

2021-07-26 12:19:13 +0000 received badge  Scholar (source)
2021-07-26 11:21:12 +0000 commented question Is it possible to put two different packages together within one line/tree on the main display?

I am referring to the main display, where each line that is displayed represents a received packet, where we can read th

2021-07-26 11:20:47 +0000 received badge  Rapid Responder (source)
2021-07-26 11:20:47 +0000 answered a question Is it possible to put two different packages together within one line/tree on the main display?

I am referring to the main display, where each line that is displayed represents a received packet, where we can read th

2021-07-26 10:30:18 +0000 asked a question Is it possible to put two different packages together within one line/tree on the main display?

Is it possible to put two different packages together within one line/tree on the main display? Hello, I wrote a dissec

2021-05-21 08:09:03 +0000 commented question Error compiling Wireshark with Visual Studio 2019: Previous IPDB not found return to full compilation

I don't have C:\Qt\5.15.2\msvc2019_64 I'm using: C:\Qt\5.15.2\mingw81_64 Now I'll reinstall QT for use the msvc2019_

2021-05-21 07:30:03 +0000 commented question Error compiling Wireshark with Visual Studio 2019: Previous IPDB not found return to full compilation

I don't have C:\Qt\5.15.2\msvc2019_64 I'm using: C:\Qt\5.15.2\mingw81_64 Because is the only on in my qt directory.

2021-05-21 07:26:06 +0000 commented question Error compiling Wireshark with Visual Studio 2019: Previous IPDB not found return to full compilation

I don't have C:\Qt\5.15.2\msvc2019_64 I'm using: C:\Qt\5.15.2\mingw81_64 Because is the only on in my qt directory.

2021-05-20 13:32:51 +0000 edited question Error compiling Wireshark with Visual Studio 2019: Previous IPDB not found return to full compilation

Error compiling Wireshark with Visual Studio 2019: Previous IPDB not found return to full compilation Hello , I am try

2021-05-20 13:29:45 +0000 received badge  Editor (source)
2021-05-20 13:29:45 +0000 edited question Error compiling Wireshark with Visual Studio 2019: Previous IPDB not found return to full compilation

Error compiling Wireshark with Visual Studio 2019: Previous IPDB not found return to full compilation Hello , I am try

2021-05-20 13:28:16 +0000 asked a question Error compiling Wireshark with Visual Studio 2019: Previous IPDB not found return to full compilation

Error compiling Wireshark with Visual Studio 2019: Previous IPDB not found return to full compilation Hello , I am try