• State Not Answered
  • Replies 4 replies
  • Subscribers 86 subscribers
  • Views 199 views
  • Users 0 members are here
Attachments (0)
Nordic Case Info
  • Case ID: 357532
Options

nRF connect cannot see packages after connection

tdarlic

Hello everyone

I am following BLE tutorial on Nordic DevAcademy
Last part of BLE shows you how to use the nRF52480 to have a BLE sniffer in the Wireshark
I have installed Wireshark and successfully connected and passed all part of training except the very last one. 
Once devices get bonded and connnected using a SC LTK key the Wireshark does not see any packets from this device anymore
I am using Wireshark v4.6.3 and I have nRF52480 as a dongle. OS is Linux Mint 22.3
My test board is nRF54l15-DK which has been compiled with the code as in the lesson, I can see the UART output in console as on the image below and I got the SC LTK key and put it into the input box
I use Samsung S22 Ultra with nRF Connect application to connect to the nRF54l15-DK and sucessfully do the thing - switch on/off LED and read the status of the button
If I do not use security I see all packets. But once I switch on security and then connect the Wireshark does not receive the packets anymore
As soon as I disconnect from the nRF54l15-DK on my phone in nRF Connect application or if I reset the board I immediately start to receive ADV_IND packets

Parents
  • 0

    Hi,

    If you never see any packets at all, once entering security, then that may mean the LTK is wrong, or the connection is using a different security from the one you selected from the drop-down. For instance, this may be the case if the connection is not using Secure Connections, either because the sample does not support it, or the phone does not. In that case, you may have to select "Legacy LTK" in the "key" dropdown in Wireshark.

    Alternatively, depending on the security used, there might be other valid dropdowns that you can use for sharing the required information with Wireshark, for it to be able to follow the connection. In that case, which one depends on the project configurations and the capabilities of the devices making the connection.

    Regards,
    Terje

  • 0 in reply to tesc

    Thank you for answering. 

    Yes, that makes sense. I tried changing the LTK method but cannot recall the steps now. I'll try again.

    But shouldn't the wireshark show the packets and indicate they were encrypted rather then not showing them at all?

Reply Children
No Data
Related
Terms of service