Solved

Invalid capture filter error message in wireshark

Posted on 2010-11-10
2
1,665 Views
Last Modified: 2012-05-10
Matteo I'm having the same problem, but when I try to use the filter smtp.rsp.parameter contains "Authentication Unsuccessful" in wireshark I just get an error message that says Invalid Capture filter. what to do?

Please see attached image.
invalid-capture-filter.jpg
0
Comment
Question by:bobox00
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 10

Accepted Solution

by:
yasserd earned 500 total points
ID: 34108678
This is a display filter NOT a capture filter. That means AFTER capturing the data you can use this filter to display only what you wanted.

I don't think that you can use a capture filter to do exactly what you want but it is possible to reduce the number of captured packets using specific capture filters (like capturing only tcp on port 25).

If you're using winPcap engine, you'll find filtering syntax here: http://www.winpcap.org/docs/docs_412/html/group__language.html
0
 

Author Closing Comment

by:bobox00
ID: 34132281
Thanks!
0

Featured Post

Turn your laptop into a mobile console!

The CV211 Laptop USB Console Adapter provides a direct Laptop-to-Computer connection for fast and easy remote desktop access with no software to install.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There is a lot to be said for protecting yourself and your accounts with 2 factor authentication.  I found to my own chagrin, that there is a big downside as well.
This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Suggested Courses

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question