Re: overriding dissector for port 8080

[Alexis La Goutte <alexis.lagoutte () gmail com>]

On Thu, Apr 3, 2014 at 4:26 PM, John Dill <John.Dill () greenfieldeng com> wrote:
> I have network traffic that uses TCP port 8080 for sending non-http data (on
> a private network with its own custom application layer on top of TCP an
> UDP).  Is there a recommendation for how to override or remove this
> dissector?  I still have port 80 for http traffic.
>
> I can remove port 8080 from the default http dissector TCP port options, and
> strip 'http-alt' out of services (to be replaced with a different well-known
> service name).  Is there anything else?
>
> I also noticed a disabled_protos.[ch], so maybe there is a feature to
> disable other protocols.  Is there a feature that could be used to hide
> protocols I don't need in the Filter Expression (to reduce the list to
> simplify the interface to users)?
Hi,
Use Decode As feature ?
> Thanks,
> John Dill
>
>
> ___________________________________________________________________________
> Sent via:    Wireshark-dev mailing list <wireshark-dev () wireshark org>
> Archives:    http://www.wireshark.org/lists/wireshark-dev
> Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev
>              mailto:wireshark-dev-request () wireshark org?subject=unsubscribe
___________________________________________________________________________
Sent via:    Wireshark-dev mailing list <wireshark-dev () wireshark org>
Archives:    http://www.wireshark.org/lists/wireshark-dev
Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev
             mailto:wireshark-dev-request () wireshark org?subject=unsubscribe