Hi All, sorry if I'm disturbing for probably stupid question . I'm looking for a way to decode directly from wireshark (I'm actually using release 1.8.2) the timeticks from the hundred seconds view, like: (Wireshark running on top of Windows XD Professional): Object Name: 1.3.6.1.2.1.1.3.0 (iso.3.6.1.2.1.1.3.0) Value (TimeTicks): 129528167 to a readable values (Solaris 10 Example): bash-3.00$ /usr/sfw/bin/snmpget -v2c -c public 10.194.34.18 1.3.6.1.2.1.1.3.0 DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (1525917187) 176 days, 14:39:31.87 is there any action that I can do on Wireshark or on Windows. Best Regards Alessandro. asked 03 Sep '12, 01:54  Alessandro |
One Answer:
Wireshark
Windows
Regards answered 03 Sep '12, 03:54  Kurt Knochner ♦ |
Hi Kurt,
thanx for the answer, I appreciate.
I would like to use your first option adding an SNMP Dissector , but I don't know the procedure how to do it .
could you help on this too ?
Best Regards
Alessandro.
you don't have to add a dissector, you just need to extend the existing SNMP dissector.
O.K., you will need some programming skills and some C know how. Then read the developer guide and take a look at the SNMP dissector code.