PcapPlusPlus  Next
PcapFilter.h
Go to the documentation of this file.
1 #pragma once
2 
3 #include <string>
4 #include <vector>
5 #include <memory>
6 #include "ProtocolType.h"
7 #include <stdint.h>
8 #include "ArpLayer.h"
9 #include "RawPacket.h"
10 
11 // Forward Declaration - used in GeneralFilter
12 struct bpf_program;
13 
31 
34 namespace pcpp
35 {
36  // Forward Declaration - used in GeneralFilter
37  class RawPacket;
38 
40  typedef enum
41  {
43  SRC,
45  DST,
47  SRC_OR_DST
48  } Direction;
49 
51  typedef enum
52  {
54  EQUALS,
56  NOT_EQUALS,
58  GREATER_THAN,
60  GREATER_OR_EQUAL,
62  LESS_THAN,
64  LESS_OR_EQUAL
65  } FilterOperator;
66 
67  namespace internal
68  {
71  struct BpfProgramDeleter
72  {
73  void operator()(bpf_program* ptr) const noexcept;
74  };
75  } // namespace internal
76 
79  class BpfFilterWrapper
80  {
81  private:
82  std::string m_FilterStr;
83  LinkLayerType m_LinkType;
84  std::unique_ptr<bpf_program, internal::BpfProgramDeleter> m_Program;
85 
86  void freeProgram();
87 
88  public:
90  BpfFilterWrapper();
91 
94  BpfFilterWrapper(const BpfFilterWrapper& other);
95 
99  BpfFilterWrapper& operator=(const BpfFilterWrapper& other);
100 
106  bool setFilter(const std::string& filter, LinkLayerType linkType = LINKTYPE_ETHERNET);
107 
114  bool matchPacketWithFilter(const RawPacket* rawPacket);
115 
125  bool matchPacketWithFilter(const uint8_t* packetData, uint32_t packetDataLength, timespec packetTimestamp,
126  uint16_t linkType);
127  };
128 
133  class GeneralFilter
134  {
135  protected:
136  BpfFilterWrapper m_BpfWrapper;
137 
138  public:
142  virtual void parseToString(std::string& result) = 0;
143 
147  bool matchPacketWithFilter(RawPacket* rawPacket);
148 
149  GeneralFilter()
150  {}
151 
153  virtual ~GeneralFilter() = default;
154  };
155 
158  class BPFStringFilter : public GeneralFilter
159  {
160  private:
161  const std::string m_FilterStr;
162 
163  public:
164  explicit BPFStringFilter(const std::string& filterStr) : m_FilterStr(filterStr)
165  {}
166 
167  virtual ~BPFStringFilter()
168  {}
169 
173  void parseToString(std::string& result) override;
174 
177  bool verifyFilter();
178  };
179 
185  class IFilterWithDirection : public GeneralFilter
186  {
187  private:
188  Direction m_Dir;
189 
190  protected:
191  void parseDirection(std::string& directionAsString);
192  Direction getDir() const
193  {
194  return m_Dir;
195  }
196  explicit IFilterWithDirection(Direction dir)
197  {
198  m_Dir = dir;
199  }
200 
201  public:
204  void setDirection(Direction dir)
205  {
206  m_Dir = dir;
207  }
208  };
209 
215  class IFilterWithOperator : public GeneralFilter
216  {
217  private:
218  FilterOperator m_Operator;
219 
220  protected:
221  std::string parseOperator();
222  FilterOperator getOperator() const
223  {
224  return m_Operator;
225  }
226  explicit IFilterWithOperator(FilterOperator op)
227  {
228  m_Operator = op;
229  }
230 
231  public:
234  void setOperator(FilterOperator op)
235  {
236  m_Operator = op;
237  }
238  };
239 
244  class IPFilter : public IFilterWithDirection
245  {
246  private:
247  IPAddress m_Address;
248  IPNetwork m_Network;
249 
250  public:
256  IPFilter(const std::string& ipAddress, Direction dir) : IPFilter(IPAddress(ipAddress), dir)
257  {}
258 
262  IPFilter(const IPAddress& ipAddress, Direction dir)
263  : IFilterWithDirection(dir), m_Address(ipAddress), m_Network(ipAddress)
264  {}
265 
276  IPFilter(const std::string& ipAddress, Direction dir, const std::string& netmask)
277  : IPFilter(IPv4Address(ipAddress), dir, netmask)
278  {}
279 
289  IPFilter(const IPAddress& ipAddress, Direction dir, const std::string& netmask)
290  : IFilterWithDirection(dir), m_Address(ipAddress), m_Network(ipAddress, netmask)
291  {}
292 
303  IPFilter(const std::string& ipAddress, Direction dir, int len) : IPFilter(IPAddress(ipAddress), dir, len)
304  {}
305 
315  IPFilter(const IPAddress& ipAddress, Direction dir, int len)
316  : IFilterWithDirection(dir), m_Address(ipAddress), m_Network(ipAddress, len)
317  {}
318 
323  IPFilter(const IPNetwork& network, Direction dir)
324  : IFilterWithDirection(dir), m_Address(network.getNetworkPrefix()), m_Network(network)
325  {}
326 
327  void parseToString(std::string& result) override;
328 
331  void setNetwork(const IPNetwork& network)
332  {
333  m_Network = network;
334  m_Address = m_Network.getNetworkPrefix();
335  }
336 
340  void setAddr(const std::string& ipAddress)
341  {
342  this->setAddr(IPAddress(ipAddress));
343  }
344 
350  void setAddr(const IPAddress& ipAddress)
351  {
352  m_Address = ipAddress;
353  uint8_t newPrefixLen = m_Network.getPrefixLen();
354  if (m_Address.isIPv4() && newPrefixLen > 32u)
355  {
356  newPrefixLen = 32u;
357  }
358 
359  m_Network = IPNetwork(m_Address, newPrefixLen);
360  }
361 
370  void setMask(const std::string& netmask)
371  {
372  m_Network = IPNetwork(m_Address, netmask);
373  }
374 
376  void clearMask()
377  {
378  this->clearLen();
379  }
380 
385  void setLen(const int len)
386  {
387  m_Network = IPNetwork(m_Address, len);
388  }
389 
391  void clearLen()
392  {
393  m_Network = IPNetwork(m_Address);
394  }
395  };
396 
402  class IPv4IDFilter : public IFilterWithOperator
403  {
404  private:
405  uint16_t m_IpID;
406 
407  public:
411  IPv4IDFilter(uint16_t ipID, FilterOperator op) : IFilterWithOperator(op), m_IpID(ipID)
412  {}
413 
414  void parseToString(std::string& result) override;
415 
418  void setIpID(uint16_t ipID)
419  {
420  m_IpID = ipID;
421  }
422  };
423 
429  class IPv4TotalLengthFilter : public IFilterWithOperator
430  {
431  private:
432  uint16_t m_TotalLength;
433 
434  public:
438  IPv4TotalLengthFilter(uint16_t totalLength, FilterOperator op)
439  : IFilterWithOperator(op), m_TotalLength(totalLength)
440  {}
441 
442  void parseToString(std::string& result) override;
443 
446  void setTotalLength(uint16_t totalLength)
447  {
448  m_TotalLength = totalLength;
449  }
450  };
451 
456  class PortFilter : public IFilterWithDirection
457  {
458  private:
459  std::string m_Port;
460  void portToString(uint16_t portAsInt);
461 
462  public:
466  PortFilter(uint16_t port, Direction dir);
467 
468  void parseToString(std::string& result) override;
469 
472  void setPort(uint16_t port)
473  {
474  portToString(port);
475  }
476  };
477 
484  class PortRangeFilter : public IFilterWithDirection
485  {
486  private:
487  uint16_t m_FromPort;
488  uint16_t m_ToPort;
489 
490  public:
495  PortRangeFilter(uint16_t fromPort, uint16_t toPort, Direction dir)
496  : IFilterWithDirection(dir), m_FromPort(fromPort), m_ToPort(toPort)
497  {}
498 
499  void parseToString(std::string& result) override;
500 
503  void setFromPort(uint16_t fromPort)
504  {
505  m_FromPort = fromPort;
506  }
507 
510  void setToPort(uint16_t toPort)
511  {
512  m_ToPort = toPort;
513  }
514  };
515 
521  class MacAddressFilter : public IFilterWithDirection
522  {
523  private:
524  MacAddress m_MacAddress;
525 
526  public:
530  MacAddressFilter(MacAddress address, Direction dir) : IFilterWithDirection(dir), m_MacAddress(address)
531  {}
532 
533  void parseToString(std::string& result) override;
534 
537  void setMacAddress(MacAddress address)
538  {
539  m_MacAddress = address;
540  }
541  };
542 
548  class EtherTypeFilter : public GeneralFilter
549  {
550  private:
551  uint16_t m_EtherType;
552 
553  public:
556  explicit EtherTypeFilter(uint16_t etherType) : m_EtherType(etherType)
557  {}
558 
559  void parseToString(std::string& result) override;
560 
563  void setEtherType(uint16_t etherType)
564  {
565  m_EtherType = etherType;
566  }
567  };
568 
574  class CompositeFilter : public GeneralFilter
575  {
576  protected:
577  std::vector<GeneralFilter*> m_FilterList;
578 
579  public:
581  CompositeFilter() = default;
582 
585  explicit CompositeFilter(const std::vector<GeneralFilter*>& filters);
586 
589  void addFilter(GeneralFilter* filter)
590  {
591  m_FilterList.push_back(filter);
592  }
593 
596  void removeFilter(GeneralFilter* filter);
597 
600  void setFilters(const std::vector<GeneralFilter*>& filters);
601 
603  void clearAllFilters()
604  {
605  m_FilterList.clear();
606  }
607  };
608 
610  enum class CompositeLogicFilterOp
611  {
613  AND,
615  OR,
616  };
617 
618  namespace internal
619  {
620  // Could potentially be moved into CompositeLogicFilter as a private member function, with if constexpr when
621  // C++17 is the minimum supported standard.
622 
625  template <CompositeLogicFilterOp op> constexpr const char* getCompositeLogicOpDelimiter() = delete;
626  template <> constexpr const char* getCompositeLogicOpDelimiter<CompositeLogicFilterOp::AND>()
627  {
628  return " and ";
629  };
630  template <> constexpr const char* getCompositeLogicOpDelimiter<CompositeLogicFilterOp::OR>()
631  {
632  return " or ";
633  };
634  } // namespace internal
635 
640  template <CompositeLogicFilterOp op> class CompositeLogicFilter : public CompositeFilter
641  {
642  public:
643  using CompositeFilter::CompositeFilter;
644 
645  void parseToString(std::string& result) override
646  {
647  result.clear();
648  for (auto it = m_FilterList.cbegin(); it != m_FilterList.cend(); ++it)
649  {
650  std::string innerFilter;
651  (*it)->parseToString(innerFilter);
652  result += '(' + innerFilter + ')';
653  if (m_FilterList.cend() - 1 != it)
654  {
655  result += internal::getCompositeLogicOpDelimiter<op>();
656  }
657  }
658  }
659  };
660 
668  using AndFilter = CompositeLogicFilter<CompositeLogicFilterOp::AND>;
669 
677  using OrFilter = CompositeLogicFilter<CompositeLogicFilterOp::OR>;
678 
683  class NotFilter : public GeneralFilter
684  {
685  private:
686  GeneralFilter* m_FilterToInverse;
687 
688  public:
691  explicit NotFilter(GeneralFilter* filterToInverse)
692  {
693  m_FilterToInverse = filterToInverse;
694  }
695 
696  void parseToString(std::string& result) override;
697 
700  void setFilter(GeneralFilter* filterToInverse)
701  {
702  m_FilterToInverse = filterToInverse;
703  }
704  };
705 
715  class ProtoFilter : public GeneralFilter
716  {
717  private:
718  ProtocolTypeFamily m_ProtoFamily;
719 
720  public:
724  explicit ProtoFilter(ProtocolType proto) : m_ProtoFamily(proto)
725  {}
726 
730  explicit ProtoFilter(ProtocolTypeFamily protoFamily) : m_ProtoFamily(protoFamily)
731  {}
732 
733  void parseToString(std::string& result) override;
734 
738  void setProto(ProtocolType proto)
739  {
740  m_ProtoFamily = proto;
741  }
742 
747  void setProto(ProtocolTypeFamily protoFamily)
748  {
749  m_ProtoFamily = protoFamily;
750  }
751  };
752 
758  class ArpFilter : public GeneralFilter
759  {
760  private:
761  ArpOpcode m_OpCode;
762 
763  public:
766  explicit ArpFilter(ArpOpcode opCode) : m_OpCode(opCode)
767  {}
768 
769  void parseToString(std::string& result) override;
770 
773  void setOpCode(ArpOpcode opCode)
774  {
775  m_OpCode = opCode;
776  }
777  };
778 
784  class VlanFilter : public GeneralFilter
785  {
786  private:
787  uint16_t m_VlanID;
788 
789  public:
792  explicit VlanFilter(uint16_t vlanId) : m_VlanID(vlanId)
793  {}
794 
795  void parseToString(std::string& result) override;
796 
799  void setVlanID(uint16_t vlanId)
800  {
801  m_VlanID = vlanId;
802  }
803  };
804 
809  class TcpFlagsFilter : public GeneralFilter
810  {
811  public:
813  enum TcpFlags
814  {
816  tcpFin = 1,
818  tcpSyn = 2,
820  tcpRst = 4,
822  tcpPush = 8,
824  tcpAck = 16,
826  tcpUrg = 32
827  };
828 
831  enum MatchOptions
832  {
834  MatchAll,
836  MatchOneAtLeast
837  };
838 
839  private:
840  uint8_t m_TcpFlagsBitMask;
841  MatchOptions m_MatchOption;
842 
843  public:
850  TcpFlagsFilter(uint8_t tcpFlagBitMask, MatchOptions matchOption)
851  : m_TcpFlagsBitMask(tcpFlagBitMask), m_MatchOption(matchOption)
852  {}
853 
859  void setTcpFlagsBitMask(uint8_t tcpFlagBitMask, MatchOptions matchOption)
860  {
861  m_TcpFlagsBitMask = tcpFlagBitMask;
862  m_MatchOption = matchOption;
863  }
864 
865  void parseToString(std::string& result) override;
866  };
867 
872  class TcpWindowSizeFilter : public IFilterWithOperator
873  {
874  private:
875  uint16_t m_WindowSize;
876 
877  public:
882  TcpWindowSizeFilter(uint16_t windowSize, FilterOperator op) : IFilterWithOperator(op), m_WindowSize(windowSize)
883  {}
884 
885  void parseToString(std::string& result) override;
886 
889  void setWindowSize(uint16_t windowSize)
890  {
891  m_WindowSize = windowSize;
892  }
893  };
894 
899  class UdpLengthFilter : public IFilterWithOperator
900  {
901  private:
902  uint16_t m_Length;
903 
904  public:
909  UdpLengthFilter(uint16_t length, FilterOperator op) : IFilterWithOperator(op), m_Length(length)
910  {}
911 
912  void parseToString(std::string& result) override;
913 
916  void setLength(uint16_t length)
917  {
918  m_Length = length;
919  }
920  };
921 } // namespace pcpp
pcpp::internal::getCompositeLogicOpDelimiter
constexpr const char * getCompositeLogicOpDelimiter()=delete
pcpp::ArpFilter
Definition: PcapFilter.h:759
pcpp::ArpFilter::ArpFilter
ArpFilter(ArpOpcode opCode)
Definition: PcapFilter.h:766
pcpp::ArpFilter::setOpCode
void setOpCode(ArpOpcode opCode)
Definition: PcapFilter.h:773
pcpp::ArpFilter::parseToString
void parseToString(std::string &result) override
pcpp::BPFStringFilter
Definition: PcapFilter.h:159
pcpp::BPFStringFilter::parseToString
void parseToString(std::string &result) override
pcpp::BpfFilterWrapper
Definition: PcapFilter.h:80
pcpp::BpfFilterWrapper::matchPacketWithFilter
bool matchPacketWithFilter(const RawPacket *rawPacket)
pcpp::BpfFilterWrapper::BpfFilterWrapper
BpfFilterWrapper(const BpfFilterWrapper &other)
pcpp::BpfFilterWrapper::operator=
BpfFilterWrapper & operator=(const BpfFilterWrapper &other)
pcpp::BpfFilterWrapper::matchPacketWithFilter
bool matchPacketWithFilter(const uint8_t *packetData, uint32_t packetDataLength, timespec packetTimestamp, uint16_t linkType)
pcpp::BpfFilterWrapper::BpfFilterWrapper
BpfFilterWrapper()
A c'tor for this class.
pcpp::BpfFilterWrapper::setFilter
bool setFilter(const std::string &filter, LinkLayerType linkType=LINKTYPE_ETHERNET)
pcpp::CompositeFilter
Definition: PcapFilter.h:575
pcpp::CompositeFilter::CompositeFilter
CompositeFilter()=default
An empty constructor for this class. Use addFilter() to add filters to the composite filter.
pcpp::CompositeFilter::removeFilter
void removeFilter(GeneralFilter *filter)
pcpp::CompositeFilter::addFilter
void addFilter(GeneralFilter *filter)
Definition: PcapFilter.h:589
pcpp::CompositeFilter::CompositeFilter
CompositeFilter(const std::vector< GeneralFilter * > &filters)
pcpp::CompositeFilter::setFilters
void setFilters(const std::vector< GeneralFilter * > &filters)
pcpp::CompositeFilter::clearAllFilters
void clearAllFilters()
Remove all filters from the composite filter.
Definition: PcapFilter.h:603
pcpp::CompositeLogicFilter
Definition: PcapFilter.h:641
pcpp::CompositeLogicFilter::parseToString
void parseToString(std::string &result) override
Definition: PcapFilter.h:645
pcpp::EtherTypeFilter
Definition: PcapFilter.h:549
pcpp::EtherTypeFilter::EtherTypeFilter
EtherTypeFilter(uint16_t etherType)
Definition: PcapFilter.h:556
pcpp::EtherTypeFilter::setEtherType
void setEtherType(uint16_t etherType)
Definition: PcapFilter.h:563
pcpp::EtherTypeFilter::parseToString
void parseToString(std::string &result) override
pcpp::GeneralFilter
Definition: PcapFilter.h:134
pcpp::GeneralFilter::matchPacketWithFilter
bool matchPacketWithFilter(RawPacket *rawPacket)
pcpp::GeneralFilter::~GeneralFilter
virtual ~GeneralFilter()=default
Virtual destructor, frees the bpf program.
pcpp::GeneralFilter::parseToString
virtual void parseToString(std::string &result)=0
pcpp::IFilterWithDirection
Definition: PcapFilter.h:186
pcpp::IFilterWithDirection::setDirection
void setDirection(Direction dir)
Definition: PcapFilter.h:204
pcpp::IFilterWithOperator
Definition: PcapFilter.h:216
pcpp::IFilterWithOperator::setOperator
void setOperator(FilterOperator op)
Definition: PcapFilter.h:234
pcpp::IPAddress
Definition: IpAddress.h:318
pcpp::IPAddress::isIPv4
bool isIPv4() const
Definition: IpAddress.h:373
pcpp::IPFilter
Definition: PcapFilter.h:245
pcpp::IPFilter::setMask
void setMask(const std::string &netmask)
Definition: PcapFilter.h:370
pcpp::IPFilter::clearMask
void clearMask()
Clears the subnet mask.
Definition: PcapFilter.h:376
pcpp::IPFilter::setAddr
void setAddr(const std::string &ipAddress)
Definition: PcapFilter.h:340
pcpp::IPFilter::setLen
void setLen(const int len)
Definition: PcapFilter.h:385
pcpp::IPFilter::IPFilter
IPFilter(const IPAddress &ipAddress, Direction dir, int len)
Definition: PcapFilter.h:315
pcpp::IPFilter::IPFilter
IPFilter(const std::string &ipAddress, Direction dir, const std::string &netmask)
Definition: PcapFilter.h:276
pcpp::IPFilter::IPFilter
IPFilter(const IPNetwork &network, Direction dir)
Definition: PcapFilter.h:323
pcpp::IPFilter::setNetwork
void setNetwork(const IPNetwork &network)
Definition: PcapFilter.h:331
pcpp::IPFilter::IPFilter
IPFilter(const std::string &ipAddress, Direction dir, int len)
Definition: PcapFilter.h:303
pcpp::IPFilter::clearLen
void clearLen()
Clears the subnet mask length.
Definition: PcapFilter.h:391
pcpp::IPFilter::parseToString
void parseToString(std::string &result) override
pcpp::IPFilter::IPFilter
IPFilter(const std::string &ipAddress, Direction dir)
Definition: PcapFilter.h:256
pcpp::IPFilter::IPFilter
IPFilter(const IPAddress &ipAddress, Direction dir)
Definition: PcapFilter.h:262
pcpp::IPFilter::IPFilter
IPFilter(const IPAddress &ipAddress, Direction dir, const std::string &netmask)
Definition: PcapFilter.h:289
pcpp::IPFilter::setAddr
void setAddr(const IPAddress &ipAddress)
Definition: PcapFilter.h:350
pcpp::IPNetwork
Definition: IpAddress.h:651
pcpp::IPNetwork::getNetworkPrefix
IPAddress getNetworkPrefix() const
Definition: IpAddress.h:787
pcpp::IPNetwork::getPrefixLen
uint8_t getPrefixLen() const
Definition: IpAddress.h:773
pcpp::IPv4Address
Definition: IpAddress.h:30
pcpp::IPv4IDFilter
Definition: PcapFilter.h:403
pcpp::IPv4IDFilter::parseToString
void parseToString(std::string &result) override
pcpp::IPv4IDFilter::IPv4IDFilter
IPv4IDFilter(uint16_t ipID, FilterOperator op)
Definition: PcapFilter.h:411
pcpp::IPv4IDFilter::setIpID
void setIpID(uint16_t ipID)
Definition: PcapFilter.h:418
pcpp::IPv4TotalLengthFilter
Definition: PcapFilter.h:430
pcpp::IPv4TotalLengthFilter::parseToString
void parseToString(std::string &result) override
pcpp::IPv4TotalLengthFilter::setTotalLength
void setTotalLength(uint16_t totalLength)
Definition: PcapFilter.h:446
pcpp::IPv4TotalLengthFilter::IPv4TotalLengthFilter
IPv4TotalLengthFilter(uint16_t totalLength, FilterOperator op)
Definition: PcapFilter.h:438
pcpp::MacAddressFilter
Definition: PcapFilter.h:522
pcpp::MacAddressFilter::parseToString
void parseToString(std::string &result) override
pcpp::MacAddressFilter::setMacAddress
void setMacAddress(MacAddress address)
Definition: PcapFilter.h:537
pcpp::MacAddressFilter::MacAddressFilter
MacAddressFilter(MacAddress address, Direction dir)
Definition: PcapFilter.h:530
pcpp::MacAddress
Definition: MacAddress.h:24
pcpp::NotFilter
Definition: PcapFilter.h:684
pcpp::NotFilter::setFilter
void setFilter(GeneralFilter *filterToInverse)
Definition: PcapFilter.h:700
pcpp::NotFilter::parseToString
void parseToString(std::string &result) override
pcpp::NotFilter::NotFilter
NotFilter(GeneralFilter *filterToInverse)
Definition: PcapFilter.h:691
pcpp::PortFilter
Definition: PcapFilter.h:457
pcpp::PortFilter::PortFilter
PortFilter(uint16_t port, Direction dir)
pcpp::PortFilter::parseToString
void parseToString(std::string &result) override
pcpp::PortFilter::setPort
void setPort(uint16_t port)
Definition: PcapFilter.h:472
pcpp::PortRangeFilter
Definition: PcapFilter.h:485
pcpp::PortRangeFilter::PortRangeFilter
PortRangeFilter(uint16_t fromPort, uint16_t toPort, Direction dir)
Definition: PcapFilter.h:495
pcpp::PortRangeFilter::setToPort
void setToPort(uint16_t toPort)
Definition: PcapFilter.h:510
pcpp::PortRangeFilter::parseToString
void parseToString(std::string &result) override
pcpp::PortRangeFilter::setFromPort
void setFromPort(uint16_t fromPort)
Definition: PcapFilter.h:503
pcpp::ProtoFilter
Definition: PcapFilter.h:716
pcpp::ProtoFilter::setProto
void setProto(ProtocolType proto)
Definition: PcapFilter.h:738
pcpp::ProtoFilter::ProtoFilter
ProtoFilter(ProtocolTypeFamily protoFamily)
Definition: PcapFilter.h:730
pcpp::ProtoFilter::setProto
void setProto(ProtocolTypeFamily protoFamily)
Definition: PcapFilter.h:747
pcpp::ProtoFilter::ProtoFilter
ProtoFilter(ProtocolType proto)
Definition: PcapFilter.h:724
pcpp::ProtoFilter::parseToString
void parseToString(std::string &result) override
pcpp::RawPacket
Definition: RawPacket.h:259
pcpp::TcpFlagsFilter
Definition: PcapFilter.h:810
pcpp::TcpFlagsFilter::TcpFlags
TcpFlags
An enum of all TCP flags that can be use in the filter.
Definition: PcapFilter.h:814
pcpp::TcpFlagsFilter::tcpSyn
@ tcpSyn
TCP SYN flag.
Definition: PcapFilter.h:818
pcpp::TcpFlagsFilter::tcpFin
@ tcpFin
TCP FIN flag.
Definition: PcapFilter.h:816
pcpp::TcpFlagsFilter::tcpUrg
@ tcpUrg
TCP URG flag.
Definition: PcapFilter.h:826
pcpp::TcpFlagsFilter::tcpAck
@ tcpAck
TCP ACK flag.
Definition: PcapFilter.h:824
pcpp::TcpFlagsFilter::tcpRst
@ tcpRst
TCP RST flag.
Definition: PcapFilter.h:820
pcpp::TcpFlagsFilter::tcpPush
@ tcpPush
TCP PSH flag.
Definition: PcapFilter.h:822
pcpp::TcpFlagsFilter::parseToString
void parseToString(std::string &result) override
pcpp::TcpFlagsFilter::MatchOptions
MatchOptions
Definition: PcapFilter.h:832
pcpp::TcpFlagsFilter::MatchAll
@ MatchAll
Match only packets that contain all flags defined in the filter.
Definition: PcapFilter.h:834
pcpp::TcpFlagsFilter::MatchOneAtLeast
@ MatchOneAtLeast
Match packets that contain at least one of the flags defined in the filter.
Definition: PcapFilter.h:836
pcpp::TcpFlagsFilter::setTcpFlagsBitMask
void setTcpFlagsBitMask(uint8_t tcpFlagBitMask, MatchOptions matchOption)
Definition: PcapFilter.h:859
pcpp::TcpFlagsFilter::TcpFlagsFilter
TcpFlagsFilter(uint8_t tcpFlagBitMask, MatchOptions matchOption)
Definition: PcapFilter.h:850
pcpp::TcpWindowSizeFilter
Definition: PcapFilter.h:873
pcpp::TcpWindowSizeFilter::setWindowSize
void setWindowSize(uint16_t windowSize)
Definition: PcapFilter.h:889
pcpp::TcpWindowSizeFilter::parseToString
void parseToString(std::string &result) override
pcpp::TcpWindowSizeFilter::TcpWindowSizeFilter
TcpWindowSizeFilter(uint16_t windowSize, FilterOperator op)
Definition: PcapFilter.h:882
pcpp::UdpLengthFilter
Definition: PcapFilter.h:900
pcpp::UdpLengthFilter::parseToString
void parseToString(std::string &result) override
pcpp::UdpLengthFilter::setLength
void setLength(uint16_t length)
Definition: PcapFilter.h:916
pcpp::UdpLengthFilter::UdpLengthFilter
UdpLengthFilter(uint16_t length, FilterOperator op)
Definition: PcapFilter.h:909
pcpp::VlanFilter
Definition: PcapFilter.h:785
pcpp::VlanFilter::VlanFilter
VlanFilter(uint16_t vlanId)
Definition: PcapFilter.h:792
pcpp::VlanFilter::parseToString
void parseToString(std::string &result) override
pcpp::VlanFilter::setVlanID
void setVlanID(uint16_t vlanId)
Definition: PcapFilter.h:799
pcpp::ProtocolType
uint8_t ProtocolType
Definition: ProtocolType.h:35
pcpp::ProtocolTypeFamily
uint32_t ProtocolTypeFamily
Definition: ProtocolType.h:39
pcpp
The main namespace for the PcapPlusPlus lib.
Definition: AssertionUtils.h:19
pcpp::ArpOpcode
ArpOpcode
An enum for ARP message type.
Definition: ArpLayer.h:45
pcpp::FilterOperator
FilterOperator
Supported operators enum.
Definition: PcapFilter.h:52
pcpp::GREATER_THAN
@ GREATER_THAN
Greater than.
Definition: PcapFilter.h:58
pcpp::EQUALS
@ EQUALS
Equals.
Definition: PcapFilter.h:54
pcpp::GREATER_OR_EQUAL
@ GREATER_OR_EQUAL
Greater or equal.
Definition: PcapFilter.h:60
pcpp::LESS_THAN
@ LESS_THAN
Less than.
Definition: PcapFilter.h:62
pcpp::NOT_EQUALS
@ NOT_EQUALS
Not equals.
Definition: PcapFilter.h:56
pcpp::LESS_OR_EQUAL
@ LESS_OR_EQUAL
Less or equal.
Definition: PcapFilter.h:64
pcpp::Direction
Direction
An enum that contains direction (source or destination)
Definition: PcapFilter.h:41
pcpp::SRC_OR_DST
@ SRC_OR_DST
Source or destination.
Definition: PcapFilter.h:47
pcpp::DST
@ DST
Destination.
Definition: PcapFilter.h:45
pcpp::SRC
@ SRC
Source.
Definition: PcapFilter.h:43
pcpp::CompositeLogicFilterOp
CompositeLogicFilterOp
Supported composite logic filter operators enum.
Definition: PcapFilter.h:611
pcpp::CompositeLogicFilterOp::OR
@ OR
Logical OR operation.
pcpp::CompositeLogicFilterOp::AND
@ AND
Logical AND operation.
pcpp::LinkLayerType
LinkLayerType
An enum describing all known link layer type. Taken from: http://www.tcpdump.org/linktypes....
Definition: RawPacket.h:20
pcpp::LINKTYPE_ETHERNET
@ LINKTYPE_ETHERNET
IEEE 802.3 Ethernet.
Definition: RawPacket.h:24
pcpp::internal::BpfProgramDeleter
Definition: PcapFilter.h:72