Change the IP address to a multicast group like 224.0.0.1 (instead of 127.0.0.1).There are two suggested solutions to this: if nothing is listening on the GSMTAP UDP port (4729), then you will see ICMP port unreachable messages in addition to the GSMTAP messages. Please note that the wireshark program is doing passive capture, i.e. The OsmocomBB layer23 program sends GSMTAP packets to the localhost (127.0.0.1) address of the loopback interface (lo). Workaround for "ICMP port unreachable" messages ¶ Gsm_abis_oml || gsm_abis_rsl || bssap || mgcp || gsup || rtp || rtcp One way to apply these settings, is closing wireshark and copying them at the end of ~/.config/wireshark/preferences. There are various preferences that need to be set for optimal decoding of the protocols we're interested in: $ sudo setcap 'CAP_NET_RAW+eip CAP_NET_ADMIN+eip' /usr/local/bin/dumpcap DCMAKE_BUILD_TYPE=Release -DCMAKE_INSTALL_PREFIX=/usr/local (run sudo apt-get build-dep wireshark to install them automatically) Dependencies ¶ Distributionįedora cmake c-ares-devel glib2-devel libcap-devel libpcap-devel lua libmaxminddb-devel qt5-qtmultimedia-devel qt5-qttools-devel qt5-qtsvg-devel gnutls-devel libssh-devel libgcrypt-devel flex byacc See #2537 for an effort to ship Debian binary packages with Osmocom patches applied. In order to be able to dissect all protocols relevant for Osmocom, you will need to install the git version of wireshark (as of writing, the latest stable is 2.6 and it does not yet have support for GSUP for example).
Refer to the Latest Builds instructions for adding the osmocom:wireshark repository that has the package (replace osmocom:latest with osmocom:wireshark). As of writing the binary packages are available for Debian and Ubuntu. We build a nightly version of wireshark based on wireshark's current upstream master branch with our patches on top ( list of branches, OBS). Osmocom specific patches are being developed in branches in our gitea before being sent upstream. There also is a GSMTAP protocol dissector in recent wireshark versions, which allows real-time capture and decode of GSM protocol messages encapsulated in a GSMTAP (pseudo-header, which is in turn encapsulated in UDP and IP).
Among many other protocols, it includes dissectors for the GSM Layer 2 (TS 04.06 / LAPDm) and 3 (TS 04.8 04.08 / RR,MM,CC). Wireshark is a popular Free Software / Open Source protocol analyzer.
0 kommentar(er)
