Why wireshark is not identifying my mongo packets? [closed]

About

Asked 4/4, 2019 at 21:31 Answered 4/4, 2019 at 21:31

I'm using Wireshark 3.0.0 (Git) to sniff Mongo packets. I can see the packets in port 27017 but the protocol identifies them as TCP and not as Mongo. After checking protocol preferences, Mongo port is set to 27017.

Why doesn't wireshark detect the packages as Mongo?

Thanks in advance,

Handiwork answered 4/4, 2019 at 21:31 Comment(5)

Presumably because it goes over a regular TCP/IP socket per docs.mongodb.com/manual/reference/mongodb-wire-protocol – Ramillies 4/4, 2019 at 21:32

Can you post a capture file somewhere for analysis? – Egwan 4/4, 2019 at 23:52

Check that the dissector is enabled in Analyze --> Enabled Protocols.... – Pork 6/4, 2019 at 15:29

@MikaS Mongo appers as enabled – Handiwork 25/4, 2019 at 22:34

Using Analyze --> Decode As... and changing TCP port 27017 and field Current to MONGO makes the capture display them but it is not a permanent solution. – Handiwork 25/4, 2019 at 22:38

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags