osmith
/
wireshark
forked from osmocom/wireshark
1
0
Fork 0
Code Pull Requests Releases Wiki Activity
wireshark.org protocol dissector with Osmocom additions
164 Commits 23 Branches 0 Tags 1.3 GiB
C 95.1%
C++ 2.5%
Python 1.1%
Perl 0.4%
CMake 0.3%
Other 0.4%
Go to file
Gilbert Ramirez 10c23c3cd2 I changed the wtap_open_offline() function so that it takes only the 
filename as the parameter. So far all the filetypes that wiretap can read
can be inferred from the first few bytes of the file, so we never
have to give wiretap a hint as to the file type.

svn path=/trunk/; revision=173
 		1999-01-21 05:03:56 +00:00
doc * Added Joerg Mayer's Vines patch 1998-12-29 04:05:38 +00:00
image * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
wiretap I changed the wtap_open_offline() function so that it takes only the 1999-01-21 05:03:56 +00:00
AUTHORS I've dicovered, that the existing CDP code does not work with Cisco 1999-01-04 20:07:29 +00:00
COPYING * Copied in the correct GNU license (I'm such a goober) 1998-10-16 01:18:35 +00:00
ChangeLog Initial revision 1998-09-16 02:39:15 +00:00
INSTALL * Installation documentation updates 1998-12-29 03:12:07 +00:00
INSTALL.configure * Installation documentation updates 1998-12-29 03:12:07 +00:00
Makefile.am * Final commit for version 0.5.1 1999-01-04 01:31:18 +00:00
Makefile.in * Added RPM .spec 1999-01-10 21:20:44 +00:00
NEWS * Final commit for version 0.5.1 1999-01-04 01:31:18 +00:00
README * Installation documentation updates 1998-12-29 03:12:07 +00:00
VERSION * Added Joerg Mayer's Vines patch 1998-12-29 04:05:38 +00:00
acconfig.h Add a "acinclude.m4" file that defines a "AC_ETHEREAL_STRUCT_SA_LEN" 1998-11-17 02:17:27 +00:00
acinclude.m4 Add a "acinclude.m4" file that defines a "AC_ETHEREAL_STRUCT_SA_LEN" 1998-11-17 02:17:27 +00:00
aclocal.m4 * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
capture.c * Added Joerg Mayer's Vines patch 1998-12-29 04:05:38 +00:00
capture.h Changes to capture.c and capture.h to support more detail in the capture 1998-09-29 21:39:29 +00:00
column.c * Final commit for version 0.5.1 1999-01-04 01:31:18 +00:00
column.h * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
config.guess * Scripts needed for configure.in 1998-09-20 00:25:16 +00:00
config.h.in Add a "acinclude.m4" file that defines a "AC_ETHEREAL_STRUCT_SA_LEN" 1998-11-17 02:17:27 +00:00
config.sub * Scripts needed for configure.in 1998-09-20 00:25:16 +00:00
configure * Added Joerg Mayer's Vines patch 1998-12-29 04:05:38 +00:00
configure.in * Added Tony Abbot's fixes for libpcap include directory discovery. 1999-01-10 21:23:41 +00:00
ethereal.1 * Added Joerg Mayer's Vines patch 1998-12-29 04:05:38 +00:00
ethereal.c Include "snprintf.h", as we use "snprintf()", so that we don't get 1999-01-04 07:39:14 +00:00
ethereal.h * Added Joerg Mayer's Vines patch 1998-12-29 04:05:38 +00:00
ethereal.spec * Fixed missing curly brace. 1999-01-05 03:05:50 +00:00
ethertype.c Added "Cisco Discovery Protocol" Hooks 1998-12-19 00:12:23 +00:00
etypes.h Added "Cisco Discovery Protocol" Hooks 1998-12-19 00:12:23 +00:00
file.c I changed the wtap_open_offline() function so that it takes only the 1999-01-21 05:03:56 +00:00
file.h I removed the per-file encapsulation type from wiretap, and make all filetypes 1999-01-07 16:15:37 +00:00
filter.c * GTK+ 1.1/1.2 compatibility changes (use gtk_scrolled_window_add_with_viewport 1998-12-27 20:44:53 +00:00
filter.h * Pod page update 1998-10-13 02:10:57 +00:00
follow.c A patch spread across many files to let Ethereal compile under GTK+-1.1.x. 1998-12-17 05:42:33 +00:00
follow.h Merged in a _huge_ patch from Guy Harris. It adds a time stap column, 1998-09-27 22:12:47 +00:00
install-sh Initial revision 1998-09-16 02:39:15 +00:00
manuf *** empty log message *** 1998-09-27 07:13:29 +00:00
menu.c * Minor changes for GTK+ 1.1/1.2 support 1998-12-27 20:46:45 +00:00
menu.h A patch spread across many files to let Ethereal compile under GTK+-1.1.x. 1998-12-17 05:42:33 +00:00
missing Initial revision 1998-09-16 02:39:15 +00:00
mkinstalldirs Initial revision 1998-09-16 02:39:15 +00:00
packet-aarp.c The Appletalk ARP opcode, like other AARP fields, is big-endian, not 1998-12-03 09:42:21 +00:00
packet-arp.c * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
packet-atalk.c * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
packet-bootp.c Fix for non null-terminated strings. 1998-11-20 17:47:33 +00:00
packet-cdp.c The TLV structures in a CDP packet aren't necessarily aligned on 2-byte 1999-01-06 23:07:42 +00:00
packet-data.c A lengthy patch to add the wiretap library. Wiretap is not used by default 1998-11-12 00:06:47 +00:00
packet-dns.c Clean up what's displayed for unknown opcodes and unknown rcodes. 1999-01-05 09:01:42 +00:00
packet-dns.h Needed for common routines between DNS and NBNS. 1998-10-14 20:03:03 +00:00
packet-eth.c * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
packet-fddi.c * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
packet-giop.c * File needed for one of Laurent's patches that I just committed. 1998-11-18 03:04:25 +00:00
packet-ip.c * Added Joerg Mayer's Vines patch 1998-12-29 04:05:38 +00:00
packet-ipv6.c * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
packet-ipv6.h Initial revision 1998-09-16 02:39:15 +00:00
packet-ipx.c Be smarter about IPX port numbers and which function to call. 1998-12-31 20:36:43 +00:00
packet-ipx.h I've started to figure out the difference between NetBIOS over IPX for 1998-10-14 05:18:32 +00:00
packet-llc.c * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
packet-lpd.c A patch spread across many files to let Ethereal compile under GTK+-1.1.x. 1998-12-17 05:42:33 +00:00
packet-nbipx.c * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
packet-nbns.c Clean up what's displayed for unknown opcodes and unknown rcodes. 1999-01-05 09:01:42 +00:00
packet-ncp.c * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
packet-ncp.h * Added patches from Laurent and Guy 1998-11-18 03:01:44 +00:00
packet-null.c * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
packet-osi.c * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
packet-ospf.c Clean up some output lines, and show the checksum value on the line for 1999-01-17 09:30:05 +00:00
packet-ospf.h structure for AS-external LSA added. 1998-09-29 21:32:46 +00:00
packet-ppp.c * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
packet-raw.c * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
packet-rip.c The address family isn't part of the RIP header, it's part of the RIP 1998-11-20 09:24:42 +00:00
packet-rip.h The address family isn't part of the RIP header, it's part of the RIP 1998-11-20 09:24:42 +00:00
packet-tcp.c Include "snprintf.h", as we use "snprintf()", so that we don't get 1999-01-04 08:45:22 +00:00
packet-tr.c A bad frame control value could crash ethereal because I didn't do 1999-01-08 04:42:43 +00:00
packet-trmac.c Fixed a bug regarding bad packets. If a sub-vector indicated a 0-length, 1999-01-12 17:44:52 +00:00
packet-udp.c * Added Joerg Mayer's Vines patch 1998-12-29 04:05:38 +00:00
packet-vines.c * Added Joerg Mayer's Vines patch 1998-12-29 04:05:38 +00:00
packet-vines.h * Added Joerg Mayer's Vines patch 1998-12-29 04:05:38 +00:00
packet.c I removed the per-file encapsulation type from wiretap, and make all filetypes 1999-01-07 16:15:37 +00:00
packet.h Decode the various flag fields in resource records in NBNS replies. 1999-01-05 08:48:40 +00:00
prefs.c * Added Joerg Mayer's Vines patch 1998-12-29 04:05:38 +00:00
prefs.h * Added column formatting functionality. 1998-11-17 04:29:13 +00:00
print.c * Added preference file saves and reads. 1998-10-28 21:38:11 +00:00
print.h * Added preference file saves and reads. 1998-10-28 21:38:11 +00:00
print.ps * Added Joerg Mayer's Vines patch 1998-12-29 04:05:38 +00:00
ps.h Added ID tags to the beginning of each source file. 1998-09-16 03:22:19 +00:00
rdps.c Added ID tags to the beginning of each source file. 1998-09-16 03:22:19 +00:00
resolv.c A patch spread across many files to let Ethereal compile under GTK+-1.1.x. 1998-12-17 05:42:33 +00:00
resolv.h * Ethernet manufacturer support (Laurent) 1998-09-25 23:24:07 +00:00
snprintf-imp.h Squelch a number of "-Wall" errors by: 1998-10-13 07:03:37 +00:00
snprintf.c * Fix for unsigned overflows on Solaris 1998-11-08 00:05:45 +00:00
snprintf.h Squelch a number of "-Wall" errors by: 1998-10-13 07:03:37 +00:00
stamp-h.in Initial revision 1998-09-16 02:39:15 +00:00
util.c Added #include <sys/types.h> for compilation under gtk-1.1.11 1999-01-01 07:40:34 +00:00
util.h * Added Joerg Mayer's Vines patch 1998-12-29 04:05:38 +00:00

README 

General Information
------- -----------

Ethereal is a network traffic analyzer for Unix and Unix-like operating
systems.  It is based on GTK+, a graphical user interface library,
and libpcap, a packet capture and filtering library.

The official home of Ethereal is

    http://ethereal.zing.org

The latest distribution can be found in the subdirectory

    http://ethereal.zing.org/distribution


Installation
------------

Ethereal is known to compile and run on the following systems:

  - Linux (2.0.x)
  - Solaris (2.5.1, 2.6)
  - FreeBSD (2.2.5, 2.2.6)

It should run on other systems without too much trouble.


Full installation instructions can be found in the INSTALL file.
         

Usage
-----          

In order to capture packets from the network, you need to be running
as root, or have access to the appropriate entry under /dev if your
system is so inclined (BSD-derived systems and Solaris typically fall
into this category.  Although it might be tempting to make the
Ethereal executable setuid root, please don't - alpha code is by nature
not very robust, and liable to contain security holes.

Please consult the man page for a description of each command-line
option and interface feature.


Multiple File Types
-------------------

The wiretap library is a packet-capture library currently under
development parallel to ethereal.  In the future it is hoped that
wiretap will have more features than libpcap, but wiretap is still in
its infancy.  You can compile ethereal with the wiretap library by using
'./configure --with-wiretap'.  Using wiretap will allow you to read
pcap, Sniffer, Sun "snoop", and LANalyzer trace files, but it disables
display filters.  You can still capture packets from within ethereal
using libpcap, and therefore use libpcap-style capture filters, however.

If you can live without display filters and would like to read non-pcap
capture files, give wiretap a try. If you want to add support for other
packet-capture file formats, please look at the wiretap source code in the
wiretap directory.

Please report any problems that are wiretap related to
Gilbert Ramirez <gram@verdict.uthscsa.edu>. He uses token-ring at work, so he
is especially interested in any non-token-ring trace files you can send him.


Disclaimer
----------

There is no warranty, expressed or implied, associated with this product.
Use at your own risk.