This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

What protocol should I use to trace raw hex SSL traffic?

0

I'm tracing three IP addresses. Address A and Address B communicate with each other using HTTPS. Address C and B communicate with each other using raw packets that are encrypted using the same certificate as the other two. Address A and C are servers. My question is, when I configure Wireshark for SSL packets using the "SSL Decrypt Edit" form, what do I enter in the "protocol" field to trace hex data?

asked 14 Sep '12, 16:28

tcoder's gravatar image

tcoder
0568
accept rate: 0%


One Answer:

0

You can enter "data" as protocol, this will make Wireshark not interpret the decrypted data as any protocol, but it will just be shown as "data".

answered 14 Sep '12, 23:46

SYN-bit's gravatar image

SYN-bit ♦♦
17.1k957245
accept rate: 20%

Thanks! Just what I needed.

(16 Sep '12, 12:00) tcoder