This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

SCCP Protocol version?

0

i use wireshark-win32-1.6.5. what sccp protocol version is supported for wireshark-win32-1.6.5 ?? i can't have some information in sccp packet.

This question is marked "community wiki".

asked 16 Apr '12, 03:13

kernel7k's gravatar image

kernel7k
1111
accept rate: 0%

What fields are missing? Keep in mind that if your MTP3 variant (ANSI or ITU or ???) is wrong, then the decoding of SCCP will be a train wreck because Wireshark will then not know where SCCP starts. As you're probably aware, the ITU MTP3 routing label is 32 bits. It has in it two 14-bit point codes and a 4-bit SLS. The ANSI MTP3 routing label is 7 octets. Two 24-bit point codes and a 5 or 8-bit SLS. A whole octet is donated to the ANSI MTP3 SLS no matter if it's 5 or 8 bits.

Check to make sure you're decoding MTP3 (or M3UA?) properly.

(07 May '15, 14:19) tiger762

One Answer:

0

The SCCP dissector's source code says that it is (hopefully) compliant with these specifications:

  • ANSI T1.112.3-2001
  • ITU-T Q.713 7/1996
  • YDN 038-1997 (Chinese ITU variant)
  • JT-Q713 and NTT-Q713 (Japan)

Though there hasn't been large changes in the SCCP specs in years so the actual versions shouldn't matter much.

answered 27 Apr '12, 06:53

JeffMorriss's gravatar image

JeffMorriss ♦
6.2k572
accept rate: 27%