diff options
| author | Sake Blok <sake@euronet.nl> | 2007-08-17 08:03:32 +0000 |
|---|---|---|
| committer | Sake Blok <sake@euronet.nl> | 2007-08-17 08:03:32 +0000 |
| commit | 47ec0bead948443f243c38fa83bbed335189b81a (patch) | |
| tree | 4b8b90c91f6734cf3856cb4407509687de834280 /wiretap/file_access.c | |
| parent | 2efdf99f2861f02af97a3eabd2c5253c1625102e (diff) | |
(http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1717)
This patch adds support for the Juniper NetScreen snoop output format.
It takes a text-dump op the captured packets and parses the headers
and hex-data. Since the snoop files on a Junpiper NetScreen can be saved
to a tftp-server, this patch makes it quite easy to use the snoop
function of the Juniper NetScreen firewalls.
/* XXX TODO:
*
* o Create a wiki-page with instruction on how to make tracefiles
* on Juniper NetScreen devices. Also put a few examples up
* on the wiki (Done: wiki-page added 2007-08-03)
*
* o Use the interface names to properly detect the encapsulation
* type (ie adsl packets are now not properly dissected)
* (Done: adsl packets are now correctly seen as PPP, 2007-08-03)
*
* o Pass the interface names and the traffic direction to either
* the frame-structure, a pseudo-header or use PPI. This needs
* to be discussed on the dev-list first
* (Posted a message to wireshark-dev abou this 2007-08-03)
*
*/
svn path=/trunk/; revision=22533
Diffstat (limited to 'wiretap/file_access.c')
| -rw-r--r-- | wiretap/file_access.c | 12 |
1 files changed, 11 insertions, 1 deletions
diff --git a/wiretap/file_access.c b/wiretap/file_access.c index 1d27d3df41..08ca94b442 100644 --- a/wiretap/file_access.c +++ b/wiretap/file_access.c @@ -73,6 +73,7 @@ #include "ber.h" #include "catapult_dct2000.h" #include "mpeg.h" +#include "netscreen.h" @@ -122,6 +123,11 @@ static wtap_open_routine_t open_routines_base[] = { * would be, for example, saved copies of a Telnet session * to some box. */ + + /* I put NetScreen *before* erf, because there were some + * false positives with my test-files (Sake Blok, July 2007) + */ + netscreen_open, erf_open, k12text_open, etherpeek_open, @@ -554,9 +560,13 @@ static const struct file_type_info dump_open_table_base[] = { { "MPEG", "mpeg", "*.mpeg;*.mpg;*.mp3", ".mpeg", FALSE, NULL, NULL }, - /* WTAP_FILE_K12TEXT */ + /* WTAP_FILE_K12TEXT */ { "K12 text file", "k12text", "*.txt", ".txt", TRUE, k12text_dump_can_write_encap, k12text_dump_open }, + + /* WTAP_FILE_NETSCREEN */ + { "NetScreen snoop text file", "netscreen", "*.*", NULL, FALSE, + NULL, NULL }, }; gint wtap_num_file_types = sizeof(dump_open_table_base) / sizeof(struct file_type_info); |