HIP and SHIM6 patches for Wireshark

This patch will allow you to display HIP protocol packets within the Wireshark protocol analyzer (formerly known as Ethereal). This tool lets you observe the HIP exchange and learn about HIP protocol packets.

Features:

HIP packets are protocol 253 IP datagrams
draft-ietf-hip-base-05, draft-ietf-hip-esp-02, draft-ietf-hip-mm-03, draft-ietf-hip-registration-01, draft-ietf-hip-rvs-04 packet formats
verification of the HIP checksum

For convenience, these pre-compiled binary versions also have SHIM6 support, patch by Matthijs Mekking available here: SHIM6 Wireshark patch

Binary versions

These precompiled binary packages have the HIP and SHIM6 patches applied.
Ubuntu 6.10 packages

wireshark_0.99.3a-1ubuntu1-hip_i386.deb (545 kb)
wireshark-common_0.99.3a-1ubuntu1-hip_i386.deb (7170 kb)
tshark_0.99.3a-1ubuntu1-hip_i386.deb (98 kb)

Windows installer

wireshark-setup-0.99.5-hip.exe (17 MB)

Patch instructions

First, obtain the Wireshark source at http://www.wireshark.org.
Download wireshark-0.99.5-hip-base05.patch (48 kb)
To patch and build Wireshark for HIP:

cd /usr/local/src tar xjf ~/wireshark-0.99.5.tar.bz2 cd wireshark-0.99.5 patch -p1 < ~/wireshark-0.99.5-hip-base05.patch ./configure make install

If you receive errors with the above steps, you might also try:

aclocal autoconf ./configure make install

Screenshot

Click on the thumbnail below to view a sample captured IPv4 HIP exchange shown in Ethereal (this shows the older Ethereal version, replaced by Wireshark).

Old Versions

ethereal-0.99.0-hip-base05.patch.gz (12 kb) for base-05 draft
ethereal-setup-0.99.0-hip.exe (12.5 mb) base-05 Windows binary version
ethereal-0.10.10-hip.patch.gz (8 kb) for base-00 draft
ethereal-0.10.10-hip.win32.zip (13.5 mb) base-00 Windows binary version


	HIP Server