Angel,
On 8/9/06, Anders Broman <a.broman@xxxxxxxxx> wrote:
Hi,
Wireshark needs the frames setting up the connection to be able to decode
what follows after the presentation level eg knowing what the the
" presentation-context-identifier: 3" is. Presumably an OID is identifying
this at setup.
That is usually the problem. You should have a
presentation-context-definition-list in the presentation layer during
the association establishment
This should associate presentation-context-identifier '3' to the
abstract-syntax-name "1.0.9506.2.1" or "1.0.9506.2.3" (not sure
which).
If you don't have this, or it is not one of these OIDs, then you will
have a problem.
If you can send me your complete capture I will have a look for you.
Graeme