I am looking at a large number of SNMP packets and want to be able to search them all for specific strings of human readable text. Here are some examples: "Loss" "LOS" "Loss Of Signal" "Loss of Enet link from Controller" If anyone has done anything similar, your feedback would be most welcome.
asked 15 Jul '16, 14:13
You could try using a Wireshark Display Filter incorporating the "matches" (or "contains") operator.
If a case-insensitive match of "Los" is not restrictive enough, then you could always
Experiment a bit to find the filter that best meets your exact needs.
answered 15 Jul '16, 14:45
I was able to use: snmp.value.octets contains "Loss"
I think with this type of string I can search the SNMP contents for any type of message now.
answered 15 Jul '16, 16:27