diff options
Diffstat (limited to 'dfilters')
-rw-r--r-- | dfilters | 16 |
1 files changed, 0 insertions, 16 deletions
diff --git a/dfilters b/dfilters deleted file mode 100644 index 5a89fafac7..0000000000 --- a/dfilters +++ /dev/null @@ -1,16 +0,0 @@ -"Ethernet address 00:00:5e:00:53:00" eth.addr == 00:00:5e:00:53:00 -"Ethernet type 0x0806 (ARP)" eth.type == 0x0806 -"Ethernet broadcast" eth.addr == ff:ff:ff:ff:ff:ff -"No ARP" not arp -"IPv4 only" ip -"IPv4 address 192.0.2.1" ip.addr == 192.0.2.1 -"IPv4 address isn't 192.0.2.1 (don't use != for this!)" !(ip.addr == 192.0.2.1) -"IPv6 only" ipv6 -"IPv6 address 2001:db8::1" ipv6.addr == 2001:db8::1 -"TCP only" tcp -"UDP only" udp -"Non-DNS" !(udp.port == 53 || tcp.port == 53) -"TCP or UDP port is 80 (HTTP)" tcp.port == 80 || udp.port == 80 -"HTTP" http -"No ARP and no DNS" not arp and !(udp.port == 53) -"Non-HTTP and non-SMTP to/from 192.0.2.1" ip.addr == 192.0.2.1 and not tcp.port in {80 25} |