Wireshark: Difference between revisions
→Membership Operator
| (2 intermediate revisions by the same user not shown) | |||
Line 42:
=== Combining Expressions ===
{| class="wikitable"
!Description !! English !! C-like !! Example
|-
|-
|-
|-
▲ ip.src==10.0.0.5 or ip.src==192.1.1.1
| Logical NOT || not || ! || not llc
|}
▲ tr.dst[0:3] == 0.6.29 xor tr.src[0:3] == 0.6.29
=== Membership Operator ===
* Below are equivalent:
tcp.port in {80, 443, 8080} --> tcp.port == 80 || tcp.port == 443 || tcp.port == 8080
http.request.method in {"HEAD", "GET"}
ip.addr in {10.0.0.5 .. 10.0.0.9, 192.168.1.1..192.168.1.9}
| |||