Wireshark · Display Filter Reference: Syslog message

Display Filter Reference: Syslog message

Protocol field name: syslog

Versions: 1.0.0 to 3.4.0

Back to Display Filter Reference

Field name	Description	Type	Versions
syslog.appname	Syslog app name	Character string	3.0.0 to 3.4.0
syslog.facility	Facility	Unsigned integer, 1 byte	1.0.0 to 3.4.0
syslog.hostname	Syslog hostname	Character string	3.0.0 to 3.4.0
syslog.level	Level	Unsigned integer, 1 byte	1.0.0 to 3.4.0
syslog.msg	Message	Character string	1.0.0 to 3.4.0
syslog.msgid	Syslog message id	Character string	3.0.0 to 3.4.0
syslog.msgid.bom	Syslog BOM	Unsigned integer, 3 bytes	3.0.1 to 3.4.0
syslog.msu_present	SS7 MSU present	Boolean	1.0.0 to 3.4.0
syslog.procid	Syslog process id	Character string	3.0.0 to 3.4.0
syslog.timestamp	Syslog timestamp	Date and time	3.0.0 to 3.4.0
syslog.timestamp_rfc3164	Syslog timestamp (RFC3164)	Character string	3.0.1 to 3.4.0
syslog.version	Syslog version	Character string	3.0.0 to 3.4.0

Go Beyond with Riverbed Technology

Riverbed is Wireshark's primary sponsor and provides our funding. They also make great products that fully integrate with Wireshark.

I have a lot of traffic...

ANSWER: SteelCentral™ AppResponse 11

• Full stack analysis – from packets to pages
• Rich performance metrics & pre-defined insights for fast problem identification/resolution
• Modular, flexible solution for deeply-analyzing network & application performance

Learn More