Ethereal-users: Re: Re: [Ethereal-users] Some problem of ethereal & plugin

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: "MaFai" <zh-ma@xxxxxxxxxxx>
Date: Thu, 30 Oct 2003 14:40:48 +0800
Hello, Guy Harris,

Thanks

CommandLine:
/tethereal -r 200310150600.cap -z mgcp,rtd -VVVVV|more

It work,and print the following message.
But it only decoe the header of the package but not the content.
It provide the source ip,dst ip,time stamp,but it doesn't provide the phone number who call in.
Do you know whether the tethreal support decode the content or not?
If not,do any other way to do this?

Any idea apprecated.

Frame 1 (580 bytes on wire, 580 bytes captured)
    Arrival Time: Oct 15, 2003 06:01:03.838204000
    Time delta from previous packet: 0.000000000 seconds
    Time since reference or first frame: 0.000000000 seconds
    Frame Number: 1
    Packet Length: 580 bytes
    Capture Length: 580 bytes
Ethernet II, Src: 00:90:96:3c:2b:08, Dst: 00:00:0c:07:ac:d0
    Destination: 00:00:0c:07:ac:d0 (All-HSRP-routers_d0)
    Source: 00:90:96:3c:2b:08 (AskeyCom_3c:2b:08)
    Type: IP (0x0800)
Internet Protocol, Src Addr: 10.18.13.86 (10.18.13.86), Dst Addr: 10.15.204.76 (10.15.204.76)
    Version: 4
    Header length: 20 bytes
    Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
        0000 00.. = Differentiated Services Codepoint: Default (0x00)
        .... ..0. = ECN-Capable Transport (ECT): 0
        .... ...0 = ECN-CE: 0
    Total Length: 566
    Identification: 0x0000 (0)
    Flags: 0x00
        .0.. = Don't fragment: Not set
        ..0. = More fragments: Not set
    Fragment offset: 0
    Time to live: 64
    Protocol: UDP (0x11)
    Header checksum: 0x8af4 (correct)
    Source: 10.18.13.86 (10.18.13.86)
    Destination: 10.15.204.76 (10.15.204.76)
User Datagram Protocol, Src Port: 2427 (2427), Dst Port: 2727 (2727)
    Source port: 2427 (2427)
    Destination port: 2727 (2727)
    Length: 546


======= At 2003-10-29, 22:19:00 you wrote: =======

>On Oct 29, 2003, at 8:23 PM, MaFai wrote:
>
>> Then the tethreal would capture the log as the following:
>> 2003-10-30 12:15:32.0646  10.18.13.15 -> 10.15.204.52 MGCP 200 82952 OK
>> 2003-10-30 12:15:32.0876 10.15.204.52 -> 10.18.13.15  MGCP CRCX 82953 
>> aaln/3@xxxxxxxxxxxxx MGCP 1.0
>> 2003-10-30 12:15:32.1250  10.18.13.15 -> 10.15.204.52 MGCP 200 82953 OK
>> 2003-10-30 12:15:32.1371 10.15.204.52 -> 10.18.13.15  MGCP MDCX 82954 
>> aaln/3@xxxxxxxxxxxxx MGCP 1.0
>> 2003-10-30 12:15:32.1408  10.18.13.15 -> 10.15.204.52 MGCP 200 82954 OK
>> 2003-10-30 12:15:32.1418 10.15.204.52 -> 10.18.13.15  MGCP MDCX 82955 
>> aaln/3@xxxxxxxxxxxxx MGCP 1.0
>> 2003-10-30 12:15:32.1450  10.18.13.15 -> 10.15.204.52 MGCP 200 82955 OK
>>
>> According to this log,does the  dissectors(mgcp)  plugin being working?
>
>Yes.  That's the summary output from the MGCP dissectgor.
>
>You can also do "tethereal -V" and get a more detailed dissection.
>
>> When I compile the ethreal,it tell me that GTk doesn't exiting.
>> But when I compile the GTK,it tell me that it needs xserver.
>
>GTK+ is, on UNIX (well, with the exception of GTK+-for-Mac OS X, but 
>that's still under development, and various "GTK+ on the frame buffer" 
>such as GTK+ on DirectFB), an X toolkit.  It needs an X server, as it 
>connects to the X server in order to create windows and display text in 
>them.
>
>> Do any option to disable ethreal,but enable the tethreal only?
>
>Yes.
>
>> I try --disable-ethreal option,but failed.
>
>What failed?  It's supposed to work; if it doesn't, we need to see what 
>the errors are, so we can fix it.

= = = = = = = = = = = = = = = = = = = =
			

Best regards.				 
MaFai
zh-ma@xxxxxxxxxxx
2003-10-30