Wireshark · Display Filter Reference: UserLog Protocol

Display Filter Reference: UserLog Protocol

Protocol field name: userlog

Versions: 2.2.0 to 3.6.0

Field name	Description	Type	Versions
userlog.count	LogCount	Unsigned integer, 2 bytes	2.2.0 to 3.6.0
userlog.Destination-IP	Destination-IP	IPv4 address	2.2.0 to 3.6.0
userlog.Destination-NAT-IP	Destination-NAT-IP	IPv4 address	2.2.0 to 3.6.0
userlog.Destination-NAT-Port	Destination-NAT-Port	Unsigned integer, 2 bytes	2.2.0 to 3.6.0
userlog.Destination-Port	Destination-Port	Unsigned integer, 2 bytes	2.2.0 to 3.6.0
userlog.EndTime	EndTime	Date and time	2.2.0 to 3.6.0
userlog.header_reserved	Reserved	Sequence of bytes	2.2.0 to 3.6.0
userlog.InTotalByte	InTotalByte	Unsigned integer, 4 bytes	2.2.0 to 3.6.0
userlog.InTotalPkg	InTotalPkg	Unsigned integer, 4 bytes	2.2.0 to 3.6.0
userlog.IPToS	IP ToS	Unsigned integer, 1 byte	2.2.0 to 3.6.0
userlog.IPVersion	IP Version	Unsigned integer, 1 byte	2.2.0 to 3.6.0
userlog.logtype	LogType	Unsigned integer, 1 byte	2.2.0 to 3.6.0
userlog.Operator	Operator	Unsigned integer, 1 byte	2.2.0 to 3.6.0
userlog.OutTotalByte	OutTotalByte	Unsigned integer, 4 bytes	2.2.0 to 3.6.0
userlog.OutTotalPkg	OutTotalPkg	Unsigned integer, 4 bytes	2.2.0 to 3.6.0
userlog.proto	Protocol	Unsigned integer, 1 byte	2.2.0 to 3.6.0
userlog.Reserved1	Reserved1	Unsigned integer, 4 bytes	2.2.0 to 3.6.0
userlog.Reserved2	Reserved2	Unsigned integer, 4 bytes	2.2.0 to 3.6.0
userlog.Reserved3	Reserved3	Unsigned integer, 4 bytes	2.2.0 to 3.6.0
userlog.Source-NAT-IP	Source-NAT-IP	IPv4 address	2.2.0 to 3.6.0
userlog.Source-NAT-Port	Source-NAT-Port	Unsigned integer, 2 bytes	2.2.0 to 3.6.0
userlog.Source-Port	Source-Port	Unsigned integer, 2 bytes	2.2.0 to 3.6.0
userlog.SourceIP	Source-IP	IPv4 address	2.2.0 to 3.6.0
userlog.StartTime	StartTime	Date and time	2.2.0 to 3.6.0
userlog.timestamp	TimeStamp	Date and time	2.2.0 to 3.6.0
userlog.version	Version	Unsigned integer, 1 byte	2.2.0 to 3.6.0