Ask Your Question

tpt's profile - activity

overview network karma followed questions activity
2020-12-09 18:28:50 +0000 received badge  Popular Question (source)
2019-04-26 06:48:53 +0000 commented answer 802.15.4 USBTab frame format

Thx for clarifying this :-) /tpt

2019-04-25 12:26:48 +0000 marked best answer 802.15.4 USBTab frame format

Hi all,

I have my own 802.15.4 Packet Capturing device (the 'sniffer'), and a python program that collects the frames, and emits a pcap file, which can be analyzed in WireShark. This works fine.

Now I want to change to output of the sniffer firmware to a more native Wireshark/PCap format, and just let Wireshark start a USB Tap device. But I have trouble finding out (/finding the specs on) what exactly to send.

Hex decoding a working/correct .pcap file gives me:

// this is the file header:
d4c3b2a1-0200-0400-00000000-00000000-ffff0000-c3000000
// here comes the frames
58989c5c-b36b0c00-5f000000-5f000000-01e2<....cut>
58989c5c-336c0c00-5f000000-5f000000-01e2<....cut>

The 'c3000000' is the DLT_IEEE802_15_4_WITHFCS and is only issued once: in the file-header.

So - What excactly should I emit from the sniffer-firmware ?

  1. Excaclty the same as above? Possibly emitting the "file-header" every 5 seconds, so WireShark can know wich DLT type we are talking about. ... or before each frame , if I want to waste the bandwith on that :-)

  2. Is there another encapsulation, that I'm not aware of , when live-streaming from a device, as opposed to reading from a file?

Future: I am aware of the newer/better format of the DLT_IEEE802_15_4_TAP here: https://github.com/jkcko/ieee802.15.4... I just wanted to make a proof-of-concept with the current format first, - if possible.

Thx in advance for pointers/suggestions

/tpt
2019-04-25 12:26:48 +0000 received badge  Scholar (source)
2019-04-25 12:00:59 +0000 commented question 802.15.4 USBTab frame format

For other readers: This link is good, too: https://www.wireshark.org/docs/wsdg_html_chunked/ChCaptureExtcap.html This s
2019-04-25 11:42:30 +0000 commented question 802.15.4 USBTab frame format

Thx, I can certainly modify my existing python to this format. This will be a very fast solution, too. Though: As the

2019-04-25 08:51:49 +0000 commented question 802.15.4 USBTab frame format

Update - for Question b) , the best candidates atm looks like: " Emulation of network connectivity using the RDNIS pro
2019-04-25 08:35:05 +0000 commented question 802.15.4 USBTab frame format

Thx for replies both of you. I also think I'm messing up concepts here. :-) Recap: I have a 802.15.4 sniffer , that hap
2019-04-23 09:04:20 +0000 edited question 802.15.4 USBTab frame format

802.15.4 USBTab frame format Hi all, I have my own 802.15.4 Packet Capturing device (the 'sniffer'), and a python prog
2019-04-23 08:33:39 +0000 edited question 802.15.4 USBTab frame format

802.15.4 USBTab frame format Hi all, I have my own 802.15.4 Packet Capturing device (the 'sniffer'), and a python prog
2019-04-23 08:32:00 +0000 edited question 802.15.4 USBTab frame format

802.15.4 USBTab frame format Hi all, I have a 802.15.4 Packet sniffer, and a python program that collects the frames,

2019-04-23 08:31:12 +0000 received badge  Editor (source)
2019-04-23 08:31:12 +0000 edited question 802.15.4 USBTab frame format

802.15.4 USBTab frame format Hi all, I have a 802.15.4 Packet sniffer, and a python program that collects the frames,

2019-04-23 08:26:08 +0000 asked a question 802.15.4 USBTab frame format

802.15.4 USBTab frame format Hi all, I have a 802.15.4 Packet sniffer, and a python program that collects the frames,

2019-04-23 08:26:08 +0000 asked a question create usb tap device

create usb tap device Hi all, I have a 802.15.4 Packet sniffer, and a python program that collects the frames, and emi