Protocols/cdpcp

= Full PROTO name (PROTO abbreviation) = Cisco Discovery Protocol Control Protocol (CDPCP)

This file tries to help you add a new protocol to the wiki. Edit anything as appropriate to the specific protocol and replace any appearance of PROTO/proto/protofirstletter by your protocols name (and remove this text line before saving!).

XXX - add a brief PROTO description here

History

XXX - add a brief description of PROTO history

Protocol dependencies

• TCP: Typically, PROTO uses TCP as its transport protocol. The well known TCP port for PROTO traffic is 80.

Example traffic

XXX - Add example decoded traffic for this protocol here (as plain text or Wireshark screenshot).

Wireshark

The PROTO dissector is (fully functional, partially functional, not existing, ... whatever the current state is). Also add info of additional Wireshark features where appropriate, like special statistics of this protocol.

Preference Settings

(XXX add links to preference settings affecting how PROTO is dissected).

Example capture file

XXX - Add a simple example capture file to the SampleCaptures page and link from here (see below). Keep this file short, it's also a good idea to gzip it to make it even smaller, as Wireshark can open gzipped files automatically.

• SampleCaptures/PROTO.pcap

Display Filter

A complete list of PROTO display filter fields can be found in the display filter reference

Show only the PROTO based traffic:

 proto 

Capture Filter

You cannot directly filter PROTO protocols while capturing. However, if you know the TCP port used (see above), you can filter on that one.

Capture only the PROTO traffic over the default port (80):

 tcp port 80 

External links

• add link to PROTO specification and where to find additional info on the web about it, e.g.:

• RFC 123 The RFC title - explanation of the RFC content.

Discussion

Imported from https://wiki.wireshark.org/Protocols/cdpcp on 2020-08-11 23:19:11 UTC