I added my own dissector to wireshark and compiled everything. I want to filter the packets so it only captures the ones that register as the "CDMI" protocol. The protocol is an extension to HTTP on port 80 if that helps. asked 10 Feb '11, 10:49  Rodayo |
One Answer:
Capture filters have no knowledge about dissectors but are based on the BPF filtering rules. This is done to make them fast and safe to run in the kernel. How is your "CDMI" protocol an extension to HTTP? Does it use it's own methods instead of GET/POST? Or does it run on top of HTTP? answered 10 Feb '11, 16:23  SYN-bit ♦♦ |
There will be an extra along with the HTTP ones:
...
X-CDMI-Specification-Version: 1.0 { ... }
...
But I figured this out yesterday, lol. Thanks anyways.