Wireshark-bugs: [Wireshark-bugs] [Bug 1717] New: Add support for the (Juniper) NetScreen snoop f
http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1717
Summary: Add support for the (Juniper) NetScreen snoop file
format
Product: Wireshark
Version: SVN
Platform: All
OS/Version: All
Status: NEW
Severity: Enhancement
Priority: Medium
Component: Wireshark
AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
ReportedBy: sake@xxxxxxxxxx
Build Information:
--
Hi,
This patch adds support for the Juniper NetScreen snoop output format. It takes
a text-dump op the captured packets and parses the headers and hex-data. Since
the snoop files on a Junpiper NetScreen can be saved to a tftp-server, this
patch makes it quite easy to use the snoop function of the Juniper NetScreen
firewalls.
The patch was build and tested on FC4.
Here are the TODO's I can think of at this point in time to enhance this patch
even further, but for now, it would be great to have this file-format added to
the already large lists of file-formats that Wireshark already supports.
/* XXX TODO:
*
* o Create a wiki-page with instruction on how to make tracefiles
* on Juniper NetScreen devices. Also put a few examples up
* on the wiki
*
* o Use the interface names to properly detect the encapsulation
* type (ie adsl packets are now not properly dissected)
*
* o Pass the interface names and the traffic direction to either
* the frame-structure, a pseudo-header or use PPI. This needs
* to be discussed on the dev-list first
*
*/
Cheers,
Sake
--
Configure bugmail: http://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
