Wireshark-users: Re: [Wireshark-users] [Ethereal-users] ANSI 801-1

From: Guy Harris <guy@xxxxxxxxxxxx>
Date: Mon, 28 Aug 2006 16:38:35 -0700

On Aug 28, 2006, at 2:46 PM, RJ Honicky wrote:

-------------------
The Ethereal project is being continued at a new site.  Please go to
http://www.wireshark.org and subscribe to wireshark-users@xxxxxxxxxxxxx .
Don't forget to unsubscribe from this list at
http://www.ethereal.com/mailman/listinfo/ethereal-users
-------------------

Hi there all,

I'm trying to decode a stream of ansi 801-1 messages, to get LBS running on my cell phone. In order to debug a problem which seems to be happening on the network, I have the phone contact my machines, on which I have a simple proxy server running which will forward messages back and forth to a PDE. I am running Ethereal on the machine and trying to examine the 801-1 packets, but ethereal decodes them as Apache j-server packets. I can not find 801-1 in the "decode as" dialog. I am using the port 8009, which is non- standard if I recall correctly, so this could be part of the problem, but my understanding is that I should be able to decode any of the protocols by selecting them in the decode as dialog.

You should be able to decode any protocol *for which Wireshark (see above) has a dissector that's configured to run atop TCP or UDP* by selecting them in the "decode as" dialog.

Unfortunately, the ANSI IS-801 dissector isn't one of them. It's configured to run atop the ANSI MAP and ANSI A Interface dissectors.

On top of what protocol is your stream of ANSI 801 messages being transported? ("On top of" meaning "*Directly* on top of", not "somewhere on top of", i.e. what's the protocol *immediately* below it; if some protocol's being transported atop TCP or UDP, and ANSI 801 is being transported atop that protocol, ANSI 801 isn't being transported "on top of TCP" or "on top of UDP" for the purposes of this question.)

Also, is there any freely available reference from IS-801-1? What reference was used to build the decoder? The only one I can find costs $280.

	http://www.3gpp2.org/Public_html/specs/C.S0022-0_v3.0_121203.pdf