Ethereal-users: Re: [Ethereal-users] tcpdump lines to use when capturing

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next
From: Richard Urwin <richard@xxxxxxxxxxxxxxx>
Date: Thu, 8 May 2003 18:59:38 +0100
On Thursday 08 May 2003 6:19 pm, cplusplus@xxxxxxxxx wrote:
> Hello ethereal-admin!
>
> I am trying to capture only smtp.
>
> I have tried to use the tcpdump syntax
> to capture only "smtp" but with no success...
>
> I thought i could do it by entering:
> ether proto smtp
> but no such luck.. :/
>
> Is it possible to catch only the smtp traffic?
>
> Br,
> Christian O.
> chot@xxxxxxx

Try:
    port 25

IIRC, capture filters don't have decoders for any protocol above the level of 
TCP/UDP.

-- 
Richard Urwin