Wireshark · Display Filter Reference: UserLog Protocol

Display Filter Reference: UserLog Protocol

Protocol field name: userlog

Versions: 2.2.0 to 3.6.8

Field name	Description	Type	Versions
userlog.count	LogCount	Unsigned integer (2 bytes)	2.2.0 to 3.6.8
userlog.Destination-IP	Destination-IP	IPv4 address	2.2.0 to 3.6.8
userlog.Destination-NAT-IP	Destination-NAT-IP	IPv4 address	2.2.0 to 3.6.8
userlog.Destination-NAT-Port	Destination-NAT-Port	Unsigned integer (2 bytes)	2.2.0 to 3.6.8
userlog.Destination-Port	Destination-Port	Unsigned integer (2 bytes)	2.2.0 to 3.6.8
userlog.EndTime	EndTime	Date and time	2.2.0 to 3.6.8
userlog.header_reserved	Reserved	Byte sequence	2.2.0 to 3.6.8
userlog.InTotalByte	InTotalByte	Unsigned integer (4 bytes)	2.2.0 to 3.6.8
userlog.InTotalPkg	InTotalPkg	Unsigned integer (4 bytes)	2.2.0 to 3.6.8
userlog.IPToS	IP ToS	Unsigned integer (1 byte)	2.2.0 to 3.6.8
userlog.IPVersion	IP Version	Unsigned integer (1 byte)	2.2.0 to 3.6.8
userlog.logtype	LogType	Unsigned integer (1 byte)	2.2.0 to 3.6.8
userlog.Operator	Operator	Unsigned integer (1 byte)	2.2.0 to 3.6.8
userlog.OutTotalByte	OutTotalByte	Unsigned integer (4 bytes)	2.2.0 to 3.6.8
userlog.OutTotalPkg	OutTotalPkg	Unsigned integer (4 bytes)	2.2.0 to 3.6.8
userlog.proto	Protocol	Unsigned integer (1 byte)	2.2.0 to 3.6.8
userlog.Reserved1	Reserved1	Unsigned integer (4 bytes)	2.2.0 to 3.6.8
userlog.Reserved2	Reserved2	Unsigned integer (4 bytes)	2.2.0 to 3.6.8
userlog.Reserved3	Reserved3	Unsigned integer (4 bytes)	2.2.0 to 3.6.8
userlog.Source-NAT-IP	Source-NAT-IP	IPv4 address	2.2.0 to 3.6.8
userlog.Source-NAT-Port	Source-NAT-Port	Unsigned integer (2 bytes)	2.2.0 to 3.6.8
userlog.Source-Port	Source-Port	Unsigned integer (2 bytes)	2.2.0 to 3.6.8
userlog.SourceIP	Source-IP	IPv4 address	2.2.0 to 3.6.8
userlog.StartTime	StartTime	Date and time	2.2.0 to 3.6.8
userlog.timestamp	TimeStamp	Date and time	2.2.0 to 3.6.8
userlog.version	Version	Unsigned integer (1 byte)	2.2.0 to 3.6.8