summaryrefslogtreecommitdiff
path: root/2011/gsm-ensa2011/section-wireshark.tex
blob: a3ee9c67cb3dde048653b6fb8062c4a3cd3c1a7d (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
\subsection{wireshark Protocol Analyzer}

\begin{frame}{The wireshark protocol analyzer}
\begin{itemize}
	\item Software protocol analyzer for plethora of protocols
	\item Portable, works on most flavors of Unix and Windows
	\item Decode, display, search and filter packets with configurable level of detail
	\item Over 1000 protocol decoders
	\item Over 86000 display filters
	\item Live capturing from many different network media
	\item Import files from other capture programs
	\item Used to be called ethereal, but is now called wireshark
\item \url{http://www.wireshark.org/}
\item \url{http://www.wireshark.org/download/docs/user-guide-a4.pdf}
\end{itemize}
\end{frame}

\begin{frame}{The wireshark protocol analyzer}
GSM protocol dissectors in wireshark
\begin{itemize}
	\item TCP/IP (transport layer for Abis/IP)
	\item E1 Layer 2 (LAPD)
	\item GSM Um Layer 2 (LAPDm)
	\item GSM Layer 3 (RR, MM, CC)
        \item A-bis Layer 3 (RSL)
	\begin{itemize}
		\item A-bis OML for Siemens and ip.access in OpenBSC git
	\end{itemize}
	\item GSMTAP pseudo-header (airprobe, OpenBTS, OsmocomBB)
\end{itemize}
\end{frame}

%\begin{frame}<handout:0>{The wireshark protocol analyzer}
%        Demonstration
%\end{frame}
personal git repositories of Harald Welte. Your mileage may vary