Wireshark mailing list archives

Re: Decoding TLS H.323 calls

From: Jaap Keuter <jaap.keuter () xs4all nl>
Date: Sat, 05 Nov 2011 12:02:34 +0100

Hi,

No, that's not a known issue.

Lets have a look at the protocol layers.
Frame
Ethernet
IP
TCP
SSL
TPKT
Q.931
H.225.0

Does this correspond to what you see?

Thanks,
Jaap


On Wed, 2 Nov 2011 16:51:22 +0100, Alexander Nenov wrote:

Hello All ,
When decoding TLS (H.323) calls in Version 1.6.2, having the privatekey
from the certificate, I partly succeed - H.245 is OK, but H.225.0 is
malformed - as I see it, the Q.931 part is "ignored" and there is

attempt

to decode the whole data part as H.225.0 UUI.
Is that a known issue?

_Kind regards_
__
_ Alexander Nenov_

___________________________________________________________________________
Sent via:    Wireshark-users mailing list <wireshark-users () wireshark org>
Archives:    http://www.wireshark.org/lists/wireshark-users
Unsubscribe: https://wireshark.org/mailman/options/wireshark-users
            mailto:wireshark-users-request () wireshark org?subject=unsubscribe

Current thread:

Decoding TLS H.323 calls Alexander Nenov (Nov 04)
- Re: Decoding TLS H.323 calls Jaap Keuter (Nov 05)