Ethereal-users: [Ethereal-users] BER Error in GSMMAP
Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.
|
Hi all, I’m using 0.99.0 release to decode GSM_MAP
signalling on Windowx XP SP2.Logs are collected with Tektronix K15 analyzer. It
seems that Ethereal has some bugs on decoding GSM_MAP CheckIMEI message. Here i
have attached a sample of pcap file and text output of K15 of the same message. Extra information : We are using an extension to standard GSM_MAP
CheckIMEI message that is the IMSI, which is sent to EIR with CheckIMEI within
an extension Tag.Please find it in
txt file. Information from Ethereal about box : Version 0.99.0 Compiled with GTK+ 2.6.9, with GLib 2.6.6, with
WinPcap (version unknown), with libz 1.2.3, with libpcre 6.4, with Net-SNMP
5.2.2, with ADNS, with Lua 5.1. Running with WinPcap version 3.1 (packet.dll version
3, 1, 0, 27), based on libpcap version 0.9[.x] on Windows XP SP2, build 2600.
Bu elektronik posta ve onunla iletilen butun dosyalar gizlidir ve sadece gondericisi tarafindan almasi amaclanan yetkili gercek ya da tuzel kisinin kullanimi icindir. Eger soz konusu yetkili alici degilseniz bu elektronik postanin icerigini aciklamaniz, kopyalamaniz, yonlendirmeniz ve kullanmaniz kesinlikle yasaktir ve bu elektronik postayi derhal silmeniz gerekmektedir. AVEA bu mesajin icerdigi bilgilerin dogrulugu veya eksiksiz oldugu konusunda herhangi bir garanti vermemektedir. Bu nedenle bu bilgilerin ne sekilde olursa olsun iceriginden, iletilmesinden, alinmasindan ve saklanmasindan sorumlu degildir. Bu mesajdaki gorusler yalnizca gonderen kisiye ait olup, her zaman AVEA 'nin goruslerini yansitmayabilir. Bu e-posta bilinen butun bilgisayar viruslerine karsi taranmistir. This e-mail and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you are not the intended recipient you are hereby notified that any dissemination, forwarding, copying or use of any of the information is strictly prohibited, and the e-mail should immediately be deleted. AVEA makes no warranty as to the accuracy or completeness of any information contained in this message and hereby excludes any liability of any kind for the information contained therein or for the information transmission, reception, storage or use of such in any way whatsoever.The opinions expressed in this message may belong to sender alone and may not necessarily reflect the opinions of AVEA. This e-mail has been scanned for all known computer viruses. |
+---------+---------------------------------------------+------------------------------------+ |BITMASK |ID Name |Comment or Value | +---------+---------------------------------------------+------------------------------------+ |23:49:49,412,401 1:A (Rx):1 MTP-L2 MSU SCCP UDT MAP BEG 687867191 | |MTP Level 2 (MTP-L2) MSU (= Message Signal Unit) | |Message Signal Unit | |-1000110 |Backward Sequence Number |70 | |0------- |Backward Indicator Bit |0 | |-1110011 |Forward Sequence Number |115 | |0------- |Forward Indicator Bit |0 | |--111111 |Length Indicator |63 | |00------ |Spare |0 | |----0011 |Service Indicator |SCCP | |--00---- |Sub-Service: Priority |Spare/priority 0 (U.S.A. only) | |10------ |Sub-Service: Network Ind |National message | |**b14*** |Destination Point Code |13-0-03-3 | |**b14*** |Originating Point Code |11-1-00-0 | |ITU-T White Book SCCP (SCCP) UDT (= Unitdata) | |Unitdata | |0101---- |Signalling Link Selection |5 | |00001001 |SCCP Message Type |9 | |----0000 |Protocol Class |Class 0 | |1000---- |Message Handling |Return message on error | |00000011 |Pointer to parameter |3 | |00001110 |Pointer to parameter |14 | |00011001 |Pointer to parameter |25 | |Called address parameter | |00001011 |Parameter Length |11 | |-------0 |Point Code Indicator |PC absent | |------1- |Subsystem No. Indicator |SSN present | |--0100-- |Global Title Indicator |Has transln,n-plan,code,natur | |-0------ |Routing Indicator |Route on Global Title | |0------- |For national use |0 | |00001001 |Subsystem number |EIR | |00000000 |Translation Type |Not used | |----0010 |Encoding Scheme |BCD, even number of digits | |0001---- |Numbering Plan |ISDN/Telephony (E.163/E.164) | |-0000100 |Nat. of Address Indicator |International number | |0------- |Spare |0 | |***B6*** |Called Address Signals |`905598888000` | |Calling address parameter | |00001011 |Parameter Length |11 | |-------0 |Point Code Indicator |PC absent | |------1- |Subsystem No. Indicator |SSN present | |--0100-- |Global Title Indicator |Has transln,n-plan,code,natur | |-0------ |Routing Indicator |Route on Global Title | |0------- |For national use |0 | |00001000 |Subsystem number |MSC | |00000000 |Translation Type |Not used | |----0010 |Encoding Scheme |BCD, even number of digits | |0001---- |Numbering Plan |ISDN/Telephony (E.163/E.164) | |-0000100 |Nat. of Address Indicator |International number | |0------- |Spare |0 | |***B6*** |Calling Address Signals |`905590303000` | |Data parameter | |00101000 |Parameter length |40 | |**B40*** |Data |62 26 48 04 29 00 05 37 6c 1e a1... | |E-GSM 09.02 (MAP) Version 5.3.0 (MAP) BEG (= Begin) | |Begin | |01100010 |Tag |(APPL C [2]) | |00100110 |Length |38 | |1 Origination Transaction ID | |01001000 |Tag |(APPL P [8]) | |00000100 |Length |4 | |***B4*** |Orig Trans ID |687867191 | |2 Component Portion | |01101100 |Tag |(APPL C [12]) | |00011110 |Length |30 | |2.1 Invoke | |10100001 |Tag |(CONT C [1]) | |00011100 |Length |28 | |2.1.1 Invoke ID | |00000010 |Tag |(UNIV P Integer) | |00000001 |Length |1 | |01100000 |Invoke ID value |96 | |2.1.2 Local Operation | |00000010 |Tag |(UNIV P Integer) | |00000001 |Length |1 | |00101011 |Operation Code |Check IMEI | |2.1.3 Parameter Sequence | |00110000 |Tag |(UNIV C Sequence (of)) | |00010100 |Length |20 | |2.1.3.1 Imei | |00000100 |Tag |(UNIV P OctetString) | |00001000 |Length |8 | |***B3*** |Type Approval Code |`351467` | |00000001 |Manufacturer Place |`10` | |***B3*** |Indiviual Serial No |`173716` | |11110000 |Software Number |`0f` | |2.1.3.2 Private IE | |11000001 |Tag |(PRIV P [1]) | |00001000 |Length |8 | |***B8*** |Contents |82 06 13 00 92 69 95 f8 | +----+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+ |HEX |0 |1 |2 |3 |4 |5 |6 |7 |8 |9 |A |B |C |D |E |F | +----+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+ |0 |46|73|3f|83|1b|34|20|5b|09|80|03|0e|19|0b|12|09| |10 |00|12|04|09|55|89|88|08|00|0b|12|08|00|12|04|09| |20 |55|09|03|03|00|28|62|26|48|04|29|00|05|37|6c|1e| |30 |a1|1c|02|01|60|02|01|2b|30|14|04|08|53|41|76|01| |40 |71|73|61|f0|c1|08|82|06|13|00|92|69|95|f8| | | +---------+---------------------------------------------+------------------------------------+ |BITMASK |ID Name |Comment or Value | +---------+---------------------------------------------+------------------------------------+ |23:49:49,514,707 1:B (Rx):3 MTP-L2 MSU SCCP UDT MAP END | |MTP Level 2 (MTP-L2) MSU (= Message Signal Unit) | |Message Signal Unit | |-1010000 |Backward Sequence Number |80 | |1------- |Backward Indicator Bit |1 | |-0100111 |Forward Sequence Number |39 | |0------- |Forward Indicator Bit |0 | |--111010 |Length Indicator |58 | |00------ |Spare |0 | |----0011 |Service Indicator |SCCP | |--00---- |Sub-Service: Priority |Spare/priority 0 (U.S.A. only) | |10------ |Sub-Service: Network Ind |National message | |**b14*** |Destination Point Code |11-1-00-0 | |**b14*** |Originating Point Code |13-0-03-3 | |ITU-T White Book SCCP (SCCP) UDT (= Unitdata) | |Unitdata | |1000---- |Signalling Link Selection |8 | |00001001 |SCCP Message Type |9 | |----0000 |Protocol Class |Class 0 | |0000---- |Message Handling |No special options | |00000011 |Pointer to parameter |3 | |00001110 |Pointer to parameter |14 | |00011001 |Pointer to parameter |25 | |Called address parameter | |00001011 |Parameter Length |11 | |-------0 |Point Code Indicator |PC absent | |------1- |Subsystem No. Indicator |SSN present | |--0100-- |Global Title Indicator |Has transln,n-plan,code,natur | |-0------ |Routing Indicator |Route on Global Title | |0------- |For national use |0 | |00001000 |Subsystem number |MSC | |00000000 |Translation Type |Not used | |----0010 |Encoding Scheme |BCD, even number of digits | |0001---- |Numbering Plan |ISDN/Telephony (E.163/E.164) | |-0000100 |Nat. of Address Indicator |International number | |0------- |Spare |0 | |***B6*** |Called Address Signals |`905590303000` | |Calling address parameter | |00001011 |Parameter Length |11 | |-------0 |Point Code Indicator |PC absent | |------1- |Subsystem No. Indicator |SSN present | |--0100-- |Global Title Indicator |Has transln,n-plan,code,natur | |-0------ |Routing Indicator |Route on Global Title | |0------- |For national use |0 | |00001001 |Subsystem number |EIR | |00000000 |Translation Type |Not used | |----0010 |Encoding Scheme |BCD, even number of digits | |0001---- |Numbering Plan |ISDN/Telephony (E.163/E.164) | |-0000100 |Nat. of Address Indicator |International number | |0------- |Spare |0 | |***B6*** |Calling Address Signals |`905598888000` | |Data parameter | |00010111 |Parameter length |23 | |**B23*** |Data |64 15 49 04 29 00 05 37 6c 0d a2... | |E-GSM 09.02 (MAP) Version 5.3.0 (MAP) END (= End) | |End | |01100100 |Tag |(APPL C [4]) | |00010101 |Length |21 | |1 Destination Transaction ID | |01001001 |Tag |(APPL P [9]) | |00000100 |Length |4 | |***B4*** |Dest Trans ID |687867191 | |2 Component Portion | |01101100 |Tag |(APPL C [12]) | |00001101 |Length |13 | |2.1 Return Result Last | |10100010 |Tag |(CONT C [2]) | |00001011 |Length |11 | |2.1.1 Invoke ID | |00000010 |Tag |(UNIV P Integer) | |00000001 |Length |1 | |01100000 |Invoke ID value |96 | |2.1.2 Return Result Sequence | |00110000 |Tag |(UNIV C Sequence (of)) | |00000110 |Length |6 | |2.1.2.1 Local Operation | |00000010 |Tag |(UNIV P Integer) | |00000001 |Length |1 | |00101011 |Operation Code |Check IMEI | |2.1.2.2 Equipment Status | |00001010 |Tag |(UNIV P Enumerated) | |00000001 |Length |1 | |00000000 |Equipment Status |White listed | +----+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+ |HEX |0 |1 |2 |3 |4 |5 |6 |7 |8 |9 |A |B |C |D |E |F | +----+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+ |0 |d0|27|3a|83|80|ec|06|8d|09|00|03|0e|19|0b|12|08| |10 |00|12|04|09|55|09|03|03|00|0b|12|09|00|12|04|09| |20 |55|89|88|08|00|17|64|15|49|04|29|00|05|37|6c|0d| |30 |a2|0b|02|01|60|30|06|02|01|2b|0a|01|00| | | |
Attachment:
gsm_map_bug.pcap
Description: gsm_map_bug.pcap
_______________________________________________ Ethereal-users mailing list Ethereal-users@xxxxxxxxxxxx http://www.ethereal.com/mailman/listinfo/ethereal-users
- Follow-Ups:
- Re: [Ethereal-users] BER Error in GSMMAP
- From: Andreas Fink
- Re: [Ethereal-users] BER Error in GSMMAP
- Prev by Date: [Ethereal-users] Ethereal and L2 MPLS
- Next by Date: [Ethereal-users] Utilizing the WAN and running ethereal to see VoIP Traffic
- Previous by thread: [Ethereal-users] Ethereal and L2 MPLS
- Next by thread: Re: [Ethereal-users] BER Error in GSMMAP
- Index(es):
