Blame: Ethereal - Waikato Linux Users Group

Annotated edit history of Ethereal version 5, including all changes. View license author blame.

Rev	Author	#	Line
4	LawrenceDoliveiro	1	`Ethereal is a [PacketSniffer]. It is no longer being developed as an open-source product; that development has moved to [Wireshark].`
1	JohnMcPherson	2
3	IanMcDonald	3	`It is now in pretty [GTK]2.`
1	JohnMcPherson	4
3	IanMcDonald	5	`A patch for [DCCP] support can be found at http://www.jp.nishida.org/dccp/`
1	JohnMcPherson	6
		7	`!!Tips`
		8	`!Display Filters`
		9	`Although ethereal's help shows you many fields you can use to filter on, such as all the subfields of the various supported protocols, it doesn't give you any help as to how to set up a simple filter!`
		10
		11	`So, here are some simple examples:`
		12
		13	`Hides all [SSH] and [ARP] protocol packets`
		14	`!ssh && !arp`
		15
3	IanMcDonald	16	`Hide all [SSH] protocol packets, as well as [TCP] [ACK]/[FIN] etc packets for ssh connections:`
1	JohnMcPherson	17	`!ssh && tcp.port != 22`
2	JohnMcPherson	18
		19	`Traffic to or from a 192.168 subnet:`
		20	`ip.addr == 192.168.0.0/16`
		21
3	IanMcDonald	22	`Traffic to this [IP] that is [UDP]:`
2	JohnMcPherson	23	`ip.dst == 192.168.1.1 && udp`
		24
		25	`ip.dst`
5	LawrenceDoliveiro	26
		27	`----`
		28	`CategoryNetworking`

Last edited on Sunday, September 6, 2009 12:18:15 pm by LawrenceDoliveiro