Wireshark

  • Riverbed Technology
  • WinPcap
the world's foremost network protocol analyzer
  • Wireshark
    • About
    • Download
    • Blog
  • Get Help
    • Ask a Question
    • FAQs
    • Documentation
    • Mailing Lists
    • Online Tools
    • Wiki
    • Bug Tracker
  • Develop
    • Get Involved
    • Developer's Guide
    • Browse the Code
    • Latest Builds

Display Filter Reference: Hypertext Transfer Protocol

Protocol field name: http
Versions: 1.0.0 to 1.6.5

Back to Display Filter Reference

Field name Type Description Versions
http.accept Character string Accept 1.0.0 to 1.6.5
http.accept_encoding Character string Accept Encoding 1.0.0 to 1.6.5
http.accept_language Character string Accept-Language 1.0.0 to 1.6.5
http.authbasic Character string Credentials 1.0.0 to 1.6.5
http.authorization Character string Authorization 1.0.0 to 1.6.5
http.cache_control Character string Cache-Control 1.0.0 to 1.6.5
http.connection Character string Connection 1.0.0 to 1.6.5
http.content_encoding Character string Content-Encoding 1.0.0 to 1.6.5
http.content_length Unsigned integer, 8 bytes Content length 1.0.0 to 1.6.5
http.content_length_header Character string Content-Length 1.0.5 to 1.6.5
http.content_type Character string Content-Type 1.0.0 to 1.6.5
http.cookie Character string Cookie 1.0.0 to 1.6.5
http.date Character string Date 1.0.0 to 1.6.5
http.host Character string Host 1.0.0 to 1.6.5
http.last_modified Character string Last-Modified 1.0.0 to 1.6.5
http.location Character string Location 1.0.0 to 1.6.5
http.notification Boolean Notification 1.0.0 to 1.6.5
http.proxy_authenticate Character string Proxy-Authenticate 1.0.0 to 1.6.5
http.proxy_authorization Character string Proxy-Authorization 1.0.0 to 1.6.5
http.proxy_connect_host Character string Proxy-Connect-Hostname 1.0.0 to 1.6.5
http.proxy_connect_port Unsigned integer, 2 bytes Proxy-Connect-Port 1.0.0 to 1.6.5
http.referer Character string Referer 1.0.0 to 1.6.5
http.request Boolean Request 1.0.0 to 1.6.5
http.request.full_uri Character string Full request URI 1.6.0 to 1.6.5
http.request.method Character string Request Method 1.0.0 to 1.6.5
http.request.uri Character string Request URI 1.0.0 to 1.6.5
http.request.version Character string Request Version 1.0.0 to 1.6.5
http.response Boolean Response 1.0.0 to 1.6.5
http.response.code Unsigned integer, 2 bytes Status Code 1.0.0 to 1.6.5
http.response.phrase Character string Response Phrase 1.6.0 to 1.6.5
http.server Character string Server 1.0.0 to 1.6.5
http.set_cookie Character string Set-Cookie 1.0.0 to 1.6.5
http.transfer_encoding Character string Transfer-Encoding 1.0.0 to 1.6.5
http.user_agent Character string User-Agent 1.0.0 to 1.6.5
http.www_authenticate Character string WWW-Authenticate 1.0.0 to 1.6.5
http.x_forwarded_for Character string X-Forwarded-For 1.0.0 to 1.6.5

Wireshark and the "fin" logo are registered trademarks of the Wireshark Foundation