0
Why I can not write normal filter in wireshark filter input?
you see I write the filter:
ip.src==192.168.2.228
there seems do not work.
aircraft
Posted 2019-08-29T04:15:11.580
Reputation: 456
I can not write normal filter in wireshark filter input
Answers
1
The field you are in is looking for a Capture Filter, which uses a different syntax than a display filter. The Capture Filter you are looking for is:
host 192.168.2.228
That will capture only traffic to or from IP address 192.168.2.228.
Once you have packets captured, you can use a Display Filter to further filter them. For a Display Filter, your example syntax is correct.
ip.src==192.168.2.228
Doug Deden
Posted 2019-08-29T04:15:11.580
Reputation: 1 568