https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4204
Summary: Adding dissector for DOCSIS DEPI (D-MPT) encapsulation
for L2TPv3 over IP
Product: Wireshark
Version: 1.3.x (Experimental)
Platform: All
OS/Version: All
Status: NEW
Severity: Enhancement
Priority: Low
Component: Wireshark
AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
ReportedBy: alexice71@xxxxxxxxx
CC: alexice71@xxxxxxxxx
Alex Volinsky <alexice71@xxxxxxxxx> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #3905| |review_for_checkin?
Flag| |
Created an attachment (id=3905)
--> (https://bugs.wireshark.org/bugzilla/attachment.cgi?id=3905)
patch for the enhancement
Build Information:
Version 1.3.2DOCSIS_DEPI_PROTOCOL
Copyright 1998-2009 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Compiled with GTK+ 2.16.6, with GLib 2.22.2, with WinPcap (version unknown),
with libz 1.2.3, without POSIX capabilities, with libpcre 7.0, with SMI 0.4.8,
with c-ares 1.6.0, with Lua 5.1, without Python, with GnuTLS 2.8.1, with Gcrypt
1.4.4, with MIT Kerberos, with GeoIP, with PortAudio V19-devel (built Nov 2
2009), with AirPcap, with new_packet_list.
Running on Windows XP Service Pack 2, build 2600, with WinPcap version 4.1
beta5
(packet.dll version 4.1.0.1452), based on libpcap version 1.0.0, GnuTLS 2.8.1,
Gcrypt 1.4.4, without AirPcap.
Built using Microsoft Visual C++ 9.0 build 30729
Wireshark is Open Source Software released under the GNU General Public
License.
Check the man page and http://www.wireshark.org for more information.
--
This enhancement implements dissector for Downstream DOCSIS (Data over Cable)
frames, embedded into MPEG packets and encapsulated into L2TPv3 over IP
(DEPI/D-MPT encapsulation). This type of encapsulation is used in Modular Cable
Modem Termination System (M-CMTS) architecture for head-end components that
comply with DOCSIS
DEPI, the Downstream External PHY Interface, is the interface between the
M-CMTS Core and the EQAM. More specifically, it is an IP Tunnel between the MAC
and PHY in a Modular CMTS system.
L2TPv3 is described in RFC3931
DOCSIS DEPI data packet transport mechanism is described CM-SP-DEPI-I03-060728
(Downstream External PHY Interface - CableLabs specification)
The format of MPEG packet carrying DOCSIS data is described in
CM-SP-DRFI-I07-081209 (Data-Over-Cable Service Interface Specifications -
CableLabs specification)
The changes are made in files packet-l2tp.c and packet-mp2t.c
Outline of changes:
1) packet-l2tp.c
1.1 L2TPv3 L2 type is configured through Preferences for L2TP:
Cookie Size - None
L2TPv3 L2-Specific Sublayer: DOCSIS DMPT-specific
Decoded as: DOCSIS-DMPT
1.2 Added decoding of L2-specific sublayer and called dissector of MPEG
packets
2) packet-mp2t.c
For DOCSIS frames (MPEG PID = 0x1FFE), added support of fragmentation
(DOCSIS frames can span over several MPEG packets) and DOCSIS dissector is
called
Tested successfully with fuzz script for attached capture file
--
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.