Note that code point is formatted according to the rules of the DRDA Distributed Data Management (DDM) architecture as mentioned in my prior blog. The detailed decode pane breaks out the TCP payload for packet #2 like this:Įach command is highlighted in gray. In this, each of three commands or more correctly, "code points", show up as a prepare SQL statement (PRPSQLSTT), followed by attributes (SQLATTR), and finally, the statement itself (SQLSTT) that we were able to make out in the raw data. You can see the select statement but there's so much more! Thanks to Wireshark, we can see additional clues about each packet in the summary:Īs we can see in Packet #2, multiple SQL commands can be sent in a single DRDA packet. If your analyzer doesn't have a decoder for DRDA (as of this writing the "big three" don't have it), all you would see is something like this in the TCP payload: I'll conclude with a look at how DRDA looks when captured and decoded at the packet level. (Oracle's TNS and SQL Server's TDS are the others.) DRDA is an Open Group standard, but found almost exclusively in IBM DB2 environments. My previous blog introduced the reader to the Distributed Relational Database Architecture (DRDA) protocol, one of the "big 3" when it comes to SQL application layer protocols used by commercial DBMS.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |