Keysight/IXIA application sending incomplete packets - packet

Currently receiving incomplete packets via Keysight/IXIA. Checked online but unable to find any help and any support would be amazing.

Related

Zeek Packet Analysis for all protocols

I realize Zeek is capable of analyzing packets for a specific protocol using the API. I want to be able to retrieve all packets without being specific to a protocol and create a packets.log type file with uids that can be correlated with the conn.log. I have been searching through the API documentation trying to find a way to do this (all protocols) but have been unsuccessful. Does anyone have any suggestions? Thank you.

Unable to establish calls with Freeswitch sometimes

I am making video calls from Linphone to linphone on android.Both the mobile apps are successfully registered on Freeswitch server.
But when i make a call it does't get established.It is happening randomly only.When i checked dump on server i found that Freeswitch keeps sending Invite on B leg side but does't get any response for invite.There are also multiple sip uri's in invite.
Can somebody help me with this?
Is there anything related to server configuration?
Thanks
It's frequent, call over UDP doesn't work.
Try with TCP and normally it's must work correctly.
For more information about the difference between TCP and UDP look at:
https://stackoverflow.com/a/5970545/7131120

Can recv return EHOSTUNREACH?

According Unix Network Programming by Stevens, EHOSTUNREACH can be returned when readline\recv is used.
However, in linux man pages, EHOSTUNREACH cannot be received by recv.
Who is right?
If an error occurs in the communication the error will be set on the socket and delivered with the next syscall related to the socket. The EHOSTUNREACH error can be (among other things) triggered by sending a UDP packet to a target and getting an ICMP unreachable back. Since this ICMP message comes back only after the send call was done it will not returned for the send but only on the next syscall on the socket which might also be a recv.
Thus I would suggest that this error can be returned in Linux too but I might be wrong. In generally Linux is not UNIX, systems evolve and documentation is often flawed. If you look at the documentation for recv on various platforms you will see that OpenBSD documents EHOSTUNREACHABLE as possible error while FreeBSD, NetBSD, Linux... do not. I would suggest you better expect the unexpected :)

Message lost while the receiver's presence is not updated in OF server

I have browsed this forum searching solution for this problem but couldnt find one. My issue is same as this,
https://vanity-igniterealtime.jiveon.com/message/225504
https://igniterealtime.org/issues/si/jira.issueviews:issue-html/OF-161/OF-161.ht ml
I have configured the Ping request from server side for 30 seconds. But still 30 second is huge time. During that time lots of message are getting lost.
XEP-0184 is more of a client side delivery receipt management. Is that possible that i can get the acknowledgement in server as well?
Is it possible to store all the message in OF until we receive the delivery receipt from receiver. And delete the message from OF once we get the delivery receipt.
Please suggest me on how to prevent this message loss.
Right now there is no working solution in openfire 3.9.3 version.
What i have done is created a custom plugin,
* This will intercept the message packet and add it to custom table, until it receives ack packet from the receiver.
By this way we are avoiding the message loss.

ARP Requests on iPhone

I'm trying to generate ARP (Address Resolution Protocol) request packets on the iPhone and listen for the associated responses that come back.
Google searches have led me into a dead-end. In order to send logical-layer packets, I'd need something along the lines of a raw socket, but need super-user permissions to create them. I'm trying to avoid jailbreaking my phone.
There's lots of c code out there that can do this, but I can't find anything that can translate to iOS due to the permissions.
I was ready to throw in the towel when I decided to Wireshark a couple network discovery apps I have. Namely "Fing" and "Pinggy" (hats off to Fing and Pinggy btw... awesome apps!)
https://itunes.apple.com/us/app/pinggy/id562201096?mt=8
https://itunes.apple.com/us/app/fing-network-scanner/id430921107?mt=8
Running Wireshark alongside these iPhone apps shows that they do an ARP scan from XXX.XXX.X.0 all the way to XXX.XXX.X.255. I do not see any ICMP packets go out simultaneously with the "ARPs". This leads me to believe that sending and receiving ARP packets are indeed possible on iOS.
I've thought about a ping sweep, assuming that it will generate ARP requests on its own. However, I will still need a raw socket to listen to the responses, correct?
Questions: What's available for sending/receiving packets at the logical layer? Specifically for sending receiving ARP packets? Am I missing anything fundamental?
Thanks in advance!
ARP requests do go out when I attempted to ping the problematic devices. This was seen with a Wireshark session running alongside the ping scanner. I found that I could not reproduce the "missing devices" I was seeing earlier that led me to ask my original question.
So, to answer my own question: ARP requests are sent per IP address when doing a simple ping scan on my subnet. I would see the ARP request go out (using Wireshark) as well as the ping request. If you need to generate an ARP request, simply send out a ping.
Even if the "problematic" device won't respond to ping requests, the ARP table will be notified of its existence.
You can't do what you want to do, and get the app in the AppStore,
since what you are trying to do isn't in the public API.
So one thing you could do, for testing purposes on your own network, or enterprise distributed apps is looking in the private/undocumented APIs.
One such list is maintained at https://github.com/nst/iOS-Runtime-Headers, but I can't vouch for its accuracy.
Good luck!