im trying to filter all GIOP packets with a filter parameter. I know it works in wireshark by just typing "giop" in the filter - but it wont work when i use it as a parameter?
I cant figure out the right syntax for this filter. Can anyone help here?
asked 12 Jul '12, 00:02
answered 12 Jul '12, 00:44
As HelloWorld mentioned, the "-f" is used for a BPF capture filter. Capture filters are much more limited in how they filter as they need to be as fast as possible to not drop packets while captureing due to filter processing overhead.
From the Wireshark Wiki:
So if you know your GIOP traffic runs on tcp port 2107, you can use the command:
answered 12 Jul '12, 03:18