Wireshark · Ethereal-users: Re: [Ethereal-users] help with filter syntax

Ethereal-users: Re: [Ethereal-users] help with filter syntax

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Gerald Combs <gerald@xxxxxxxx>

Date: Thu, 30 Nov 2000 13:58:24 -0600 (EST)

On Thu, 30 Nov 2000, Mitchell K. Smith wrote:

> Greetings.
> 
> I am new to using Ethereal and I need some help with the filter syntax.
> I am using version 0.8.14.
> 
> I am trying to capture SNMP packets only.
> 
> I read the tcpdump man page but I still don't "get it"
> 
> What would the syntax be for the filter field?

SNMP uses UDP port 161, so the capture filter would be "udp port 161", or
simply "port 161".  In case you need it the display filter would be
"snmp" or "udp.port == 161".

Follow-Ups:
- Re: [Ethereal-users] help with filter syntax
  - From: Guy Harris

References:
- [Ethereal-users] help with filter syntax
  - From: Mitchell K. Smith

Prev by Date: Re: [Ethereal-users] Ethereal Network Sniffer
Next by Date: Re: [Ethereal-dev] Re: [Ethereal-users] problem with SIP and RTP decode
Previous by thread: [Ethereal-users] help with filter syntax
Next by thread: Re: [Ethereal-users] help with filter syntax
Index(es):
- Date
- Thread