Wireshark · Wireshark-dev: [Wireshark-dev] multiple dissectors for similar protocols

Wireshark-dev: [Wireshark-dev] multiple dissectors for similar protocols

Date: Mon, 17 Mar 2008 23:28:21 +0000


Folks,

I was modifying the built in SIP dissector to accommodate some fields that we have added to the SIP protocol. Since the sip dissector is statically built into wireshark, I would need to distribute a customized version of wireshark to my customers (internal). 

I would prefer to distribute this modified SIP dissctor (say "mySip") as a plugin that can be used with  a standard distribution of wireshark. Is there any way I can achieve this without wireshark complaining of a clash when it builds its dissector table? One way might be to use "mySip" in all the restration routines and then associate port 5060 with "mySip" dissector (using the Analyze -> Decode As option). Are there other any better solutions? Thanks,

--Mahesh

_________________________________________________________________
Shed those extra pounds with MSN and The Biggest Loser!
http://biggestloser.msn.com/

Prev by Date: Re: [Wireshark-dev] [Wireshark-commits] rev 24675: /trunk-1.0/
Next by Date: Re: [Wireshark-dev] RTP raw file
Previous by thread: Re: [Wireshark-dev] [Wireshark-commits] rev 24675: /trunk-1.0/
Next by thread: [Wireshark-dev] Compilation error:/usr/local/lib/libgmodule.a(gmodule.o): could not read symbols: Bad value
Index(es):
- Date
- Thread