We've created our own UDP protocol in Packetbeat.
We're successfully accessed the payload past UDP using the Payload field within the Packet struct. We see the tuple information as well for IP.
What we're wondering however is how can we access other lower layer information from IP (TTL), or Ethernet (VLAN ID, MAC addresses), etc. Is that possible? If not, is there at least a way to get the entire packet payload (not just past UDP), so that we could parse this ourselves?
Thanks in advance,
- David H.