• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1800
  • Last Modified:

Invalid capture filter error message in wireshark

Matteo I'm having the same problem, but when I try to use the filter smtp.rsp.parameter contains "Authentication Unsuccessful" in wireshark I just get an error message that says Invalid Capture filter. what to do?

Please see attached image.
invalid-capture-filter.jpg
0
bobox00
Asked:
bobox00
1 Solution
 
yasserdCommented:
This is a display filter NOT a capture filter. That means AFTER capturing the data you can use this filter to display only what you wanted.

I don't think that you can use a capture filter to do exactly what you want but it is possible to reduce the number of captured packets using specific capture filters (like capturing only tcp on port 25).

If you're using winPcap engine, you'll find filtering syntax here: http://www.winpcap.org/docs/docs_412/html/group__language.html
0
 
bobox00Author Commented:
Thanks!
0

Featured Post

Choose an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now