This wiki has been migrated to https://gitlab.com/wireshark/wireshark/-/wikis/home and is now deprecated. Please use that site instead.
Differences between revisions 15 and 16
Revision 15 as of 2006-02-17 05:50:36
Size: 3403
Editor: h108n1fls32o887
Comment: Explain how to use libxml on Windows better.
Revision 16 as of 2006-06-05 03:19:13
Size: 3409
Editor: localhost
Comment:
Deletions are marked like this. Additions are marked like this.
Line 16: Line 16:
XXX - Add example traffic here (as plain text or Ethereal screenshot). XXX - Add example traffic here (as plain text or Wireshark screenshot).
Line 18: Line 18:
== Ethereal == == Wireshark ==
Line 23: Line 23:
Ethereal directory ( Program files/Ethereal ). Wireshark directory ( Program files/Wireshark ).
Line 31: Line 31:
XXX - Add a simple example capture file to the SampleCaptures page and link from here. Keep it short, it's also a good idea to gzip it to make it even smaller, as Ethereal can open gzipped files automatically. XXX - Add a simple example capture file to the SampleCaptures page and link from here. Keep it short, it's also a good idea to gzip it to make it even smaller, as Wireshark can open gzipped files automatically.
Line 34: Line 34:
A complete list of DIAMETER display filter fields can be found in the [http://www.ethereal.com/docs/dfref/d/diameter.html display filter reference] A complete list of DIAMETER display filter fields can be found in the [http://www.wireshark.org/docs/dfref/d/diameter.html display filter reference]

DIAMETER

The Diameter base protocol is intended to provide an Authentication, Authorization and Accounting (AAA) framework for applications such as network access or IP mobility. Diameter is also intended to work in both local Authentication, Authorization & Accounting and roaming situations. This document specifies the message format, transport, error reporting, accounting and security services to be used by all Diameter applications. The Diameter base application needs to be supported by all Diameter implementations.

History

This is the successor of the ["RADIUS"] protocol.

Protocol dependencies

  • ["TCP"]: Typically, DIAMETER uses ["TCP"] as its transport protocol. The well known TCP port for DIAMETER traffic is 3868.
  • ["SCTP"]: Typically, DIAMETER uses ["SCTP"] as its transport protocol. The well known SCTP port for DIAMETER traffic is 3868.

Example traffic

XXX - Add example traffic here (as plain text or Wireshark screenshot).

Wireshark

The DIAMETER dissector is fully functional. DIAMETER uses internal value strings to display AVP names etc., or, if Libxml is present on the system, it reads a XML dictionary which is located in the Diameter folder. A Windows port of Libxml can be found at http://www.zlatkovic.com/libxml.en.html. Unpack the libxml2.dll and place it in the Wireshark directory ( Program files/Wireshark ).

Preference Settings

(XXX add links to preference settings affecting how PROTO is dissected).

Example capture file

XXX - Add a simple example capture file to the SampleCaptures page and link from here. Keep it short, it's also a good idea to gzip it to make it even smaller, as Wireshark can open gzipped files automatically.

Display Filter

A complete list of DIAMETER display filter fields can be found in the [http://www.wireshark.org/docs/dfref/d/diameter.html display filter reference]

  • Show only DIAMETER traffic:

     diameter 

Capture Filter

You cannot directly filter DIAMETER protocols while capturing. However, if you know the ["TCP"] port used (see above), you can filter on that one.

  • Capture DIAMETER traffic over the default TCP port (3868):

     tcp port 3868 

Internet-Drafts:

Open source Diameter implementation:

Discussion

DIAMETER (last edited 2014-04-16 20:07:46 by JeffMorriss)