Huge thanks to our Platinum Members Endace and LiveAction,
and our Silver Member Veeam, for supporting the Wireshark Foundation and project.
Wireshark logo

Display Filter Reference: Microsoft Windows Logon Protocol (Old)

Protocol field name: smb_netlogon

Versions: 1.0.0 to 4.2.4

Back to Display Filter Reference

Field name Description Type Versions
smb_netlogon.client_site_nameClient Site NameCharacter string1.0.0 to 4.2.4
smb_netlogon.commandCommandUnsigned integer (8 bits)1.0.0 to 4.2.4
smb_netlogon.computer_nameComputer NameCharacter string1.0.0 to 4.2.4
smb_netlogon.dataDataByte sequence2.0.0 to 4.2.4
smb_netlogon.date_timeDate/TimeUnsigned integer (32 bits)1.0.0 to 4.2.4
smb_netlogon.db_countDB CountUnsigned integer (32 bits)1.0.0 to 4.2.4
smb_netlogon.db_indexDatabase IndexUnsigned integer (32 bits)1.0.0 to 4.2.4
smb_netlogon.domain.guidDomain GUIDByte sequence1.0.0 to 4.2.4
smb_netlogon.domain_dns_nameDomain DNS NameCharacter string1.0.0 to 4.2.4
smb_netlogon.domain_nameDomain NameCharacter string1.0.0 to 4.2.4
smb_netlogon.domain_sid_sizeDomain SID SizeUnsigned integer (32 bits)1.0.0 to 4.2.4
smb_netlogon.flagsAccount controlUnsigned integer (32 bits)2.0.0 to 4.2.4
smb_netlogon.flags.autolockAutolockBoolean1.0.0 to 4.2.4
smb_netlogon.flags.enabledEnabledBoolean1.0.0 to 4.2.4
smb_netlogon.flags.expireExpireBoolean1.0.0 to 4.2.4
smb_netlogon.flags.homedirHomedirBoolean1.0.0 to 4.2.4
smb_netlogon.flags.interdomainInterdomain TrustBoolean1.0.0 to 4.2.4
smb_netlogon.flags.mnsMNS UserBoolean1.0.0 to 4.2.4
smb_netlogon.flags.normalNormal UserBoolean1.0.0 to 4.2.4
smb_netlogon.flags.passwordPasswordBoolean1.0.0 to 4.2.4
smb_netlogon.flags.serverServer TrustBoolean1.0.0 to 4.2.4
smb_netlogon.flags.temp_dupTemp Duplicate UserBoolean1.0.0 to 4.2.4
smb_netlogon.flags.workstationWorkstation TrustBoolean1.0.0 to 4.2.4
smb_netlogon.forest_dns_nameForest DNS NameCharacter string1.0.0 to 4.2.4
smb_netlogon.large_serialLarge Serial NumberUnsigned integer (64 bits)1.0.0 to 4.2.4
smb_netlogon.lm_tokenLM TokenUnsigned integer (16 bits)1.0.0 to 4.2.4
smb_netlogon.lmnt_tokenLMNT TokenUnsigned integer (16 bits)1.0.0 to 4.2.4
smb_netlogon.low_serialLow Serial NumberUnsigned integer (32 bits)1.0.0 to 4.2.4
smb_netlogon.mailslot_nameMailslot NameCharacter string1.0.0 to 4.2.4
smb_netlogon.major_versionWorkstation Major VersionUnsigned integer (8 bits)1.0.0 to 4.2.4
smb_netlogon.minor_versionWorkstation Minor VersionUnsigned integer (8 bits)1.0.0 to 4.2.4
smb_netlogon.nt_date_timeNT Date/TimeDate and time1.0.0 to 4.2.4
smb_netlogon.nt_versionNT VersionUnsigned integer (32 bits)1.0.0 to 4.2.4
smb_netlogon.os_versionWorkstation OS VersionUnsigned integer (8 bits)1.0.0 to 4.2.4
smb_netlogon.pdc_namePDC NameCharacter string1.0.0 to 4.2.4
smb_netlogon.pulsePulseUnsigned integer (32 bits)1.0.0 to 4.2.4
smb_netlogon.randomRandomUnsigned integer (32 bits)1.0.0 to 4.2.4
smb_netlogon.request_countRequest CountUnsigned integer (16 bits)1.0.0 to 4.2.4
smb_netlogon.script_nameScript NameCharacter string1.0.0 to 4.2.4
smb_netlogon.server_dns_nameServer DNS NameCharacter string1.0.0 to 4.2.4
smb_netlogon.server_ipServer IPIPv4 address1.0.0 to 4.2.4
smb_netlogon.server_nameServer NameCharacter string1.0.0 to 4.2.4
smb_netlogon.server_site_nameServer Site NameCharacter string1.0.0 to 4.2.4
smb_netlogon.signatureSignatureUnsigned integer (64 bits)2.0.0 to 4.2.4
smb_netlogon.unicode_computer_nameUnicode Computer NameCharacter string1.0.0 to 4.2.4
smb_netlogon.unicode_pdc_nameUnicode PDC NameCharacter string1.0.0 to 4.2.4
smb_netlogon.unknownUnknownUnsigned integer (8 bits)1.0.0 to 4.2.4
smb_netlogon.updateUpdate TypeUnsigned integer (16 bits)1.0.0 to 4.2.4
smb_netlogon.user_nameUser NameCharacter string1.0.0 to 4.2.4

Wireshark logo footer

© Wireshark Foundation · Privacy Policy

Facebook·Mastodon·Twitter·YouTube