Solved

Invalid capture filter error message in wireshark

Posted on 2010-11-10
2
1,650 Views
Last Modified: 2012-05-10
Matteo I'm having the same problem, but when I try to use the filter smtp.rsp.parameter contains "Authentication Unsuccessful" in wireshark I just get an error message that says Invalid Capture filter. what to do?

Please see attached image.
invalid-capture-filter.jpg
0
Comment
Question by:bobox00
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 10

Accepted Solution

by:
yasserd earned 500 total points
ID: 34108678
This is a display filter NOT a capture filter. That means AFTER capturing the data you can use this filter to display only what you wanted.

I don't think that you can use a capture filter to do exactly what you want but it is possible to reduce the number of captured packets using specific capture filters (like capturing only tcp on port 25).

If you're using winPcap engine, you'll find filtering syntax here: http://www.winpcap.org/docs/docs_412/html/group__language.html
0
 

Author Closing Comment

by:bobox00
ID: 34132281
Thanks!
0

Featured Post

Is your NGFW recommended by NSS Labs?

Ours is! NSS Labs Next Generation Firewall Test gives the WatchGuard Firebox M4600 a "Recommended" rating! Curious where your NGFW landed on the  Security Value Map? See the map and download the full report today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of you may be aware of the recent Google Docs scam emails that have been floating around coming from various people that you know. Here's a guide on identifying How To Identify the Scam Email You will see an email from someone you’ve had co…
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

729 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question