Ethereal-dev: Re: [Ethereal-dev] IPsec dissector to decrypt ESP Payload

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next
From: Sake Blok <sake@xxxxxxxxxx>
Date: Wed, 22 Feb 2006 17:13:27 +0100
On Wed, Feb 22, 2006 at 05:03:38PM +0100, Frederic Roudaut wrote:
> 
> Because I received no comment about my dissector, I ask again ;-).
> Is there any need for my update ? Does anyone plan to use it ?

I quickly browsed through the readme and was not sure where the
dissector would get the PSK or the private key for the SA from. It
would be very useful to be able to look 'inside' an IPsec tunnel
so if there is a mechanism to select a PSK / private key and then 
be able to decrypt the IPSEC traffic I do think I will use it
some times.

I do believe it's necessary to capture from the setup of the 
SA's to be able to do so, which might limit it's usefullness
in the real world (unless you're able to restart the tunnel
of course).

Still, I personally would definately like this functionality 
to be available in the official releases :)


Cheers,   Sake