Lua can be used to write dissectors, post-dissectors and taps. Lua options allow us to work with the Lua interpreter optionally build into Wireshark. Index #1: 'Value' parameter is configured to "ip.src = 2.2.2.2 and ip.dst = 3.3.3.Here we can find some auxilary tools, for example Lua. Index #0: 'Value' parameter is configured to "ip.src = 1.1.1.1 and ip.dst = 3.3.3.3" (without apostrophes) For example, the Wireshark condition "ip.src = 1.1.1.1 or ip.src = 2.2.2.2" and "ip.dst = 3.3.3.3" can be done by adding two rows in the table, where the 'Value' parameter of each row has the following value: ■ The following are examples of configured expressions for the 'Value' parameter: ■ Supported Wireshark-like Expressions for 'Value' ParameterĬomparison operators used between expressions.ĭefines IPv4 addresses (up to two) to capture.ĭefines the destination IPv4 address to capture.ĭefines the IP protocol type (PDU) entered as an enumeration value (e.g., 1 is ICMP, 6 is TCP, and 17 is UDP) to capture.ĭefines the source IPv4 address to capture.Ĭaptures all IPv6 packets (source and destination).ĭefines IPv6 addresses (up to two) to capture.ĭefines the destination IPv6 address to capture.ĭefines the source IPv6 address to capture.ĭefines single expressions of the protocol type to capture.ĭefines the transport layer of the destination port to capture.ĭefines the transport layer of the source port to capture. The following Wireshark-like expressions are supported:
This parameter configures Wireshark-like filtering expressions for your IP trace.
When the IP Trace option is selected, only the ‘Value’ parameter is applicable in the Logging Filters table. Network traces are typically used to record HTTP.
IP traces record any IP stream, according to destination and/or source IP address, or port and Layer-4 protocol (UDP, TCP or any other IP type as defined by ). You can filter syslog and debug recording messages for IP network traces, by configuring the 'Filter Type' parameter to IP Trace in the Logging Filters table. Filtering IP Network Traces using Wireshark-Like Expressions
0 kommentar(er)
