I am using WS on a Diameter trace. I am looking for records that do not have a matching end-to-end value. In the trace file the Diameter packets are identified with a [Request in: xxx] tag or the tag [Answer In: yyy] where xxx and yyy are record numbers. My objective is to find all orphaned Diameter records, meaning the records that do not have a matching end-to-end value or do not have matching Tags (mated Request – Answer). I am looking for Request messages that do not have an response. asked 01 Oct '13, 11:02  plaurie |
One Answer:
This display filter should do the trick:
That's asking for all Diameter Request messages that Wireshark didn't find/link an answer to. (Since you appear to be new here: if this answers your question, please Accept the answer by clicking on the check box next to the answer.) answered 01 Oct '13, 17:40  JeffMorriss ♦ |
Thank You Jeff, I worked like a charm.
You're welcome. I went ahead and Accepted this answer for you (by clicking on the checkbox). That way this question doesn't show up in the list of "unanswered questions."