Wireshark · Ethereal-users: Re: [Ethereal-users] help with filter syntax

Ethereal-users: Re: [Ethereal-users] help with filter syntax

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Craig Rodrigues <rodrigc@xxxxxxxxxxxx>

Date: Thu, 30 Nov 2000 15:43:11 -0500

On Thu, Nov 30, 2000 at 12:39:24PM -0800, Guy Harris wrote:
> > SNMP uses UDP port 161, so the capture filter would be "udp port 161", or
> > simply "port 161".
> 
> "udp port snmp" might also work, depending on whether the database
> "getservbyname()" uses exists (probably "/etc/services", on a UNIX
> machine, or an equivalent NIS map) and has an entry for "snmp" in it.

You would probably want to capture port 161 (snmp) and port 162 (snmp-trap).
So using a filter string something like:
port 161 or port 162
-- 
Craig Rodrigues        
http://www.gis.net/~craigr    
rodrigc@xxxxxxxxxxxx

Follow-Ups:
- Re: [Ethereal-users] help with filter syntax
  - From: Guy Harris

References:
- Re: [Ethereal-users] help with filter syntax
  - From: Gerald Combs
- Re: [Ethereal-users] help with filter syntax
  - From: Guy Harris

Prev by Date: Re: [Ethereal-users] help with filter syntax
Next by Date: Re: [Ethereal-users] help with filter syntax
Previous by thread: Re: [Ethereal-users] help with filter syntax
Next by thread: Re: [Ethereal-users] help with filter syntax
Index(es):
- Date
- Thread