THIS IS A TEST INSTANCE. Feel free to ask and answer questions, but take care to avoid triggering too many notifications.
Ask Your Question
0

Asterix Dissector not Triggering on data generated by ScanViewer

Hello everyone!

I have a simulator called ScanViewer which generates Asterix CAT240 data for me. Unfortunately, the data packets aren't triggering the Asterix dissector so it's hard for me to analyse the data.

I manually checked a packet and it wasn't much different from a packet found within a stream I downloaded from the web. The packets are registered with a faulty checksum value, so I'm wondering if that could be the source of the issue.

Did anyone else come across this issue?

GeorgeZ's avatar
3
GeorgeZ
asked 2023-06-07 16:15:06 +0000
edit flag offensive 0 remove flag close merge delete

Comments

Can you share a capture file on a public file share and update the question with a link to it.

Chuckc's avatar Chuckc (2023-06-07 16:57:50 +0000) edit
more
  • delete

What @Chuckc said. Also, does this traffic flow on UDP port 8600? or did you change the preference for that? Do the packets adhere to the format: 1 octet Category, 2 octets Length, followed by n records?

Jaap's avatar Jaap (2023-06-07 17:28:28 +0000) edit
more
  • delete

Morning! Here's is a set of sample packets: Google Drive link Please tell me if you spot something in the way that the packets are getting sent.

GeorgeZ's avatar GeorgeZ (2023-06-08 09:45:36 +0000) edit
more
  • delete

Can you make the file public?

Chuckc's avatar Chuckc (2023-06-08 09:51:16 +0000) edit
more
  • delete

So sorry! Try now

GeorgeZ's avatar GeorgeZ (2023-06-08 09:58:26 +0000) edit
more
  • delete
add a comment see more comments

1 Answer

0

What @Jaap said. Add 5800 and 2563 to the Asterix UDP port(s):

Edit->Preferences...->Protocols->Asterix
UDP port(s): 8600,5800,2563

image description

Chuckc's avatar
3k
Chuckc
answered 2023-06-08 10:36:14 +0000, updated 2023-06-08 13:00:49 +0000
edit flag offensive 0 remove flag delete link
more

Comments

Thank you both of you! What is the reason behind the solution? Why would the port affect dissection?

GeorgeZ's avatar GeorgeZ (2023-06-08 12:53:55 +0000) edit
more
  • delete

To let the UDP dissector know that if it sees traffic on one of the Asterix ports, call that dissector.

View -> Internals -> Dissector Tables
Integer Tables -> UDP port

(See the screen shot in answer above)

Chuckc's avatar Chuckc (2023-06-08 13:00:16 +0000) edit
more
  • delete

I see now, thank you!

GeorgeZ's avatar GeorgeZ (2023-06-08 13:03:46 +0000) edit
more
  • delete
add a comment see more comments

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account. This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss.

Add Answer