Wireshark · Wireshark-users: Re: [Wireshark-users] Decode SSL?

Wireshark-users: Re: [Wireshark-users] Decode SSL?

Date: Mon, 22 Jan 2007 13:16:15 -0500

Hi Steve

That was the problem!  Openssl s_server uses TCP port 4433 by default.
Once I did the right-click and Decode as SSL, decoding occurred.  I was
even able to decode a file created with tcpdump that contained SSL
traffic.

Thanks very much for the help!
tl



>What port is the exchange going over?  Wireshark only expects SSL over 
>certain ports by default: 443 (http), 636 (ldap), 993 (imap), 995 
>(pop3).  You can force your traffic to be recognized as SSL by right 
>clicking on one of the packets in the packet list and choosing "Decode 
>As" and picking SSL from the list.
>
>
>Steve

References:
- [Wireshark-users] Decode SSL?
  - From: lemons_terry
- Re: [Wireshark-users] Decode SSL?
  - From: Mike Savory
- Re: [Wireshark-users] Decode SSL?
  - From: lemons_terry
- Re: [Wireshark-users] Decode SSL?
  - From: Stephen Fisher

Prev by Date: Re: [Wireshark-users] Using the SSL rsasnakeoil example
Next by Date: Re: [Wireshark-users] Using the SSL rsasnakeoil example
Previous by thread: Re: [Wireshark-users] Decode SSL?
Next by thread: [Wireshark-users] Using the SSL rsasnakeoil example
Index(es):
- Date
- Thread