summaryrefslogtreecommitdiffstats
path: root/src/usr/local/share/protocols/snmp.pat
diff options
context:
space:
mode:
Diffstat (limited to 'src/usr/local/share/protocols/snmp.pat')
-rw-r--r--src/usr/local/share/protocols/snmp.pat19
1 files changed, 19 insertions, 0 deletions
diff --git a/src/usr/local/share/protocols/snmp.pat b/src/usr/local/share/protocols/snmp.pat
new file mode 100644
index 0000000..a7186b2
--- /dev/null
+++ b/src/usr/local/share/protocols/snmp.pat
@@ -0,0 +1,19 @@
+# SNMP - Simple Network Management Protocol - RFC 1157
+# Pattern attributes: good veryfast fast superset
+# Protocol groups: networking ietf_internet_standard
+# Wiki: http://www.protocolinfo.org/wiki/SNMP
+# Copyright (C) 2008 Matthew Strait, Ethan Sommer; See ../LICENSE
+#
+# Usually runs on UDP ports 161 (monitoring) and 162 (traps).
+#
+# These filters match SNMPv1 packets without fail, and are made as
+# specific as possible not to match any ASN.1 encoded protocols. However
+# these could still be matched by other protocols that use ASN.1 encoding
+
+# Contributed by Goli SriSairam <goli_sai AT yahoo.com>
+
+# This pattern has been tested and is believed to work well.
+
+# All SNMPv1 traffic. See snmp-mon.pat and snmp-trap.pat for details.
+snmp
+^\x02\x01\x04.+([\xa0-\xa3]\x02[\x01-\x04].?.?.?.?\x02\x01.?\x02\x01.?\x30|\xa4\x06.+\x40\x04.?.?.?.?\x02\x01.?\x02\x01.?\x43)
OpenPOWER on IntegriCloud