Join us June 14-19 in Richmond, Virginia for SharkFest'25 US, the official Wireshark Developer and User Conference
Wireshark logo

Display Filter Reference: Syslog Message

Protocol field name: syslog

Versions: 1.0.0 to 4.4.6

Back to Display Filter Reference

Field name Description Type Versions
syslog.appnameApp NameCharacter string3.0.0 to 4.4.6
syslog.facilityFacilityUnsigned integer (16 bits)1.0.0 to 4.4.6
syslog.hostnameHostnameCharacter string3.0.0 to 4.4.6
syslog.levelLevelUnsigned integer (16 bits)1.0.0 to 4.4.6
syslog.msgMessageCharacter string1.0.0 to 4.4.6
syslog.msg.nonconformantMessage conforms to neither RFC 5424 nor RFC 3164; trailing data appendedLabel4.4.2 to 4.4.6
syslog.msgidMessage IDCharacter string3.0.0 to 4.4.6
syslog.msgid.bomBOMUnsigned integer (24 bits)3.0.1 to 4.4.6
syslog.msglenMessage LengthCharacter string4.4.0 to 4.4.6
syslog.msu_presentSS7 MSU presentBoolean1.0.0 to 4.4.6
syslog.procidProcess IDCharacter string3.0.0 to 4.4.6
syslog.sdStructured DataLabel4.4.0 to 4.4.6
syslog.sd.elementElementLabel4.4.0 to 4.4.6
syslog.sd.element.nameElement NameCharacter string4.4.0 to 4.4.6
syslog.sd.paramParameterLabel4.4.0 to 4.4.6
syslog.sd.param.nameParameter NameCharacter string4.4.0 to 4.4.6
syslog.sd.param.valueParameter ValueCharacter string4.4.0 to 4.4.6
syslog.timestampTimestampDate and time3.0.0 to 4.4.6
syslog.timestamp_rfc3164Timestamp (RFC3164)Character string3.0.1 to 4.4.6
syslog.versionVersionCharacter string3.0.0 to 4.4.6