Valter
2014-06-06 15:40:48 UTC
Hello,
I have installed Wireshark on CentOS 6.5 from the official CentOS base
repository.
Issue:
====
Wireshark cannot fully decode NAS field on S1AP protocol.
Error: Unknown-aborting dissection on last NAS fields (these should be
dissected as e.g. EPS Mobility Identity, UE Network Capabilities, ESM
Message Container).
FYI: Windows 7 WS 1.10.7 and OSX 1.6.2 Wireshark latest versions can both
decode the whole S1AP NAS correctly.
Trace attached.
===============================
Platform: HP Proliant DL140 running CentOS 6.5
===============================
[***@CoreEmulator scripts]$ wireshark -v
wireshark 1.8.10 (SVN Rev Unknown from unknown)
Copyright 1998-2013 Gerald Combs <gerald-IZ8446WsY0/***@public.gmane.org> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Compiled (32-bit) with GTK+ 2.20.1, with Cairo 1.8.8, with Pango 1.28.1,
with
GLib 2.26.1, with libpcap, with libz 1.2.3, without POSIX capabilities,
with SMI
0.4.8, without c-ares, without ADNS, without Lua, without Python, with
GnuTLS
2.8.5, with Gcrypt 1.4.5, with MIT Kerberos, without GeoIP, without
PortAudio,
with AirPcap.
Running on Linux 2.6.32-431.17.1.el6.i686, with locale en_US.UTF-8, with
libpcap
version 1.4.0, with libz 1.2.3, GnuTLS 2.8.5, Gcrypt 1.4.5, without AirPcap.
Built using gcc 4.4.7 20120313 (Red Hat 4.4.7-4).
Regards
Valter
I have installed Wireshark on CentOS 6.5 from the official CentOS base
repository.
Issue:
====
Wireshark cannot fully decode NAS field on S1AP protocol.
Error: Unknown-aborting dissection on last NAS fields (these should be
dissected as e.g. EPS Mobility Identity, UE Network Capabilities, ESM
Message Container).
FYI: Windows 7 WS 1.10.7 and OSX 1.6.2 Wireshark latest versions can both
decode the whole S1AP NAS correctly.
Trace attached.
===============================
Platform: HP Proliant DL140 running CentOS 6.5
===============================
[***@CoreEmulator scripts]$ wireshark -v
wireshark 1.8.10 (SVN Rev Unknown from unknown)
Copyright 1998-2013 Gerald Combs <gerald-IZ8446WsY0/***@public.gmane.org> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Compiled (32-bit) with GTK+ 2.20.1, with Cairo 1.8.8, with Pango 1.28.1,
with
GLib 2.26.1, with libpcap, with libz 1.2.3, without POSIX capabilities,
with SMI
0.4.8, without c-ares, without ADNS, without Lua, without Python, with
GnuTLS
2.8.5, with Gcrypt 1.4.5, with MIT Kerberos, without GeoIP, without
PortAudio,
with AirPcap.
Running on Linux 2.6.32-431.17.1.el6.i686, with locale en_US.UTF-8, with
libpcap
version 1.4.0, with libz 1.2.3, GnuTLS 2.8.5, Gcrypt 1.4.5, without AirPcap.
Built using gcc 4.4.7 20120313 (Red Hat 4.4.7-4).
Regards
Valter