Ethereal-users: Re: [ethereal-users] Ethereal dissector for SNMP traps?

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next
From: Craig Rodrigues <rodrigc@xxxxxxxxxxxx>
Date: Mon, 31 Jan 2000 22:26:16 -0500
On Mon, Jan 31, 2000 at 01:26:23PM -0800, Guy Harris wrote:
> 	#define UDP_PORT_SNMP_TRAP 162
> 
> and change
> 
>   else if (PORT_IS(UDP_PORT_SNMP))
>       dissect_snmp(pd, offset, fd, tree);
> 
> in "dissect_udp()" to
> 
>   else if (PORT_IS(UDP_PORT_SNMP) || PORT_IS(UDP_PORT_SNMP_TRAP))
>       dissect_snmp(pd, offset, fd, tree);

Thanks!  This solves part of the problem.

However, I am having a slight problem.  If I run:
tcpdump -w capfile \udp and port 162

I can read capfile with ethereal, and see the SNMP trap messages
which I generated.
However, if I run ethereal, with the filter "udp and port 162",
if I then generate SNMP traps, they do not appear in the ethereal
display.

Any ideas?

Thanks. 
-- 
Craig Rodrigues        
http://www.gis.net/~craigr    
rodrigc@xxxxxxxxxxxx