Project

General

Profile

WiresharkIntegration » History » Revision 3

Revision 2 (laforge, 02/19/2016 10:49 PM) → Revision 3/11 (laforge, 02/19/2016 10:49 PM)

= Wireshark integration = 

 [http://www.wireshark.org/ wireshark] is a popular Open Source protocol analyzer.    Among many 
 other protocols, it includes dissectors for the GSM Layer 2 (LAPDm) and 3 (04.08). 

 There also is a GSMTAP protocol dissector (not in wireshark mainline yet submitted as [https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4508 wireshark bug 4508], yet, available in our 
 git repository in {{{src/wireshark/gsmtap.patch}}}), which allows real-time capture and 
 decode of GSM protocol messages encapsulated in GSMTAP (which is in turn encapsulated 
 in UDP and IP). 

 So if you have a wireshark version with GSMTAP support, you can have realtime decode and 
 trace of GSM protocol messages. 

 The OsmocomBB [wiki:layer23] [wiki:layer2] program sends GSMTAP packets to the localhost (127.0.0.1) address 
 of the loopback interface (lo). 

 == Screenshot == 

 [[Image(gsmtap-wireshark.png, 66%)]]
Add picture from clipboard (Maximum size: 48.8 MB)