Wireshark · Ethereal-dev: [ethereal-dev] ISO/OSI CLNP & COTP packet decoding + misc

[Laurent Deniel <deniel@xxxxxxxxxxx>]

[To test the new majordomo message size limit :)]


 Hi,

 The first patch (gzip'ed diff to 0.3.15 distribution) implements
 the ISO/OSI CLNP and COTP packets decoding. For those who had / will
 never seen OSI packets on their network, I have attached a screenshot :-)
 
 The second patch contains only modifications of the manual page.

 Third, I would like to know if everybody is agree to replace the "No"
 (first column of the packet list) by a "Time" field which will display
 the timestamp (from the captured file) "00:00:00.000000". If so, I have
 a patch.
 
 But as Gerald suggested, it would be nice to have fully configurable 
 columns, so maybe we should add/find a new mechanism for referencing 
 columns instead of win_info[i] that are hand-crafted in the code ...

 Laurent.

--
>From <http://lwn.net/bigpage.phtml> :

Bernd Eckenfels and "others" have posted The Freefire Bulletin #3
to comp.security.unix. This edition has comments and information on 
Ethereal, SAINT, g2s, smtpd/smtpfwdd and the SINUS Firewall.Mailing List. 

#3 : <http://lwn.net/1998/0910/freefire.html>
1  Ethereal
It is a GTK and libpcap based tool to capture (to disk) and analyze (view in
a GUI) network traffic. This neat program from Gerald Combs compiles very 
cleanly on my Debian 2.0 GNU/Linux System. Even the alpha version of this
tool looks very promising. I suggest everybody to check this tool out if
they want to have a free solution for network analyzing.
--

--
Laurent DENIEL            | E-mail: deniel@xxxxxxxxxxx
Paris, FRANCE             |         deniel@xxxxxxxxxxxxxxxxxxxxxxxxxxxx
                          | WWW   : http://www.worldnet.fr/~deniel
    All above opinions are personal, unless stated otherwise.

Attachment: patch-0.3.15-osi.gz
Description: GNU Zip compressed data

--- ethereal-0.3.15/ethereal.1	Sun Aug 30 17:59:54 1998
+++ ethereal-0.3.15-deniel/ethereal.1	Mon Sep 14 09:47:01 1998
@@ -96,7 +96,7 @@
 .nr % 0
 .rr F
 .\}
-.TH ETHEREAL 1 "0.3.8" "24/Aug/98" "The Ethereal Network Analyzer"
+.TH ETHEREAL 1 "0.3.15" "14/Sep/98" "The Ethereal Network Analyzer"
 .UC
 .if n .hy 0
 .if n .na
@@ -196,8 +196,12 @@
 \fBethereal\fR
 [\ \fB\-v\fR\ ]
 [\ \fB\-B\fR\ byte\ view\ height\ ]
+[\ \fB\-b\fR\ bold\ font\ ] 
 [\ \fB\-c\fR\ count\ ]
+[\ \fB\-h\fR\ ]
 [\ \fB\-i\fR\ interface\ ] 
+[\ \fB\-m\fR\ font\ ] 
+[\ \fB\-n\fR\ ] 
 [\ \fB\-P\fR\ packet\ list\ height\ ]
 [\ \fB\-r\fR\ infile\ ]
 [\ \fB\-s\fR\ snaplen\ ]
@@ -210,11 +214,19 @@
 .SH "OPTIONS"
 .Ip "-B" 4
 Sets the initial height of the byte view (bottom) pane
+.Ip "-b" 4
+The bold font name used for packet fied display.
 .Ip "-c" 4
 The default number of packets to read when capturing live data.
+.Ip "-h" 4
+Prints the version and options and exits.
 .Ip "-i" 4
 The name of the interface to use for live packet capture.  It should match
 one of the names listed in \*(L"\fBnetstat \-i\fR\*(R" or \*(L"\fBifconfig \-a\fR\*(R".
+.Ip "-m" 4
+The font name used by \fBEthereal\fR.
+.Ip "-n" 4
+Disable network object name resolution (such as hostname, TCP and UDP port names).
 .Ip "-P" 4
 Sets the initial height of the packet list (top) pane
 .Ip "-r" 4
@@ -339,6 +351,7 @@
 \&  Hannes R. Boehm      <hannes@xxxxxxxxx>
 \&  Mike Hall            <mlh@xxxxxx>
 \&  cpg                  <cpg@xxxxxxxxxxxxxx>
+\&  Laurent Deniel       <deniel@xxxxxxxxxxx>
 .Ve
 Theo de Raadt <deraadt@xxxxxxxxxxxxxxx> was kind enough to give his
 permission to use his version of snprintf.c.
@@ -360,9 +373,17 @@
 
 .IX Item "-B"
 
+.IX Item "-b"
+
 .IX Item "-c"
 
+.IX Item "-h"
+
 .IX Item "-i"
+
+.IX Item "-m"
+
+.IX Item "-n"
 
 .IX Item "-P"