1. 首頁
  2. 問答
  3. 虛擬局域網(0x8100)支持dpkt python

虛擬局域網(0x8100)支持dpkt python

2015-12-18 35 views
0

我有一個數據包顯示是一種類型的vlan。我正在使用dpkt 1.6版本來提取字段。但是,似乎不支持vlan類型。當條件爲虛擬局域網(0x8100)支持dpkt python

eth = dpkt.ethernet.Ethernet(header_sampled_packet) 
print eth.type

應用它顯示類型爲0x0800的是IP類型,但它實際上必須0X8100。

在dpkt中不支持VLAN嗎? 或支持更高版本。 如何通過dpkt提取字段或者是否有其他包? 。

我有十六進制與VLAN數據流,這是sFlow的十六進制數據

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

來源

2015-12-18 Laxmi Kadariya

+0

這個問題很難追蹤沒有任何數據。請添加您認爲被錯誤解釋的數據包的十六進制轉儲。 –

+0

@KlausD。在dpkt中支持vlan嗎? –

+0

我正在使用dpkt 1.6 –

回答

0

步入dptk.ethernet.py文件後,我發現,高清_unpack_data(個體經營,BUF):被拉出VLAN信息已經。

if self.type == ETH_TYPE_8021Q: 
    self.tag, self.type = struct.unpack('>HH', buf[:4]) 
    buf = buf[4:]

我不擅長dpkt但我認爲self.tag是VLAN ID和類型是self.data

在我的代碼我這樣做的類型:

for ts, buf in pcap: 
    try: 
     eth = dpkt.ethernet.Ethernet(buf) 
     ip = eth.data 
     if eth.type == dpkt.ethernet.ETH_TYPE_PPPoE_DISC or eth.type == dpkt.ethernet.ETH_TYPE_PPPoE: 
      ip = dpkt.pppoe.PPPoE(eth.data) 
     if hasattr(eth, 'tag'): 
      print("eth tag = %s" %(eth.tag)) 
    except Exception as dpkterr: 
     print("Dpkt exception: %s" %(dpkterr))

這似乎工作。

來源

2016-07-21 01:48:45 user2106070

相關問題

 相關問題