User guide

iGuard/inSight User Guide

Release 7.0.0.4

Search by Protocol

Searching for a protocol in captured results will return all traffic transmitted using that protocol.

You can get results containing specific subsets of a protocol (e.g., HTTPS, HTTP_post,

HTTP_response, etc.) or all subsets of that protocol.

Note: Some protocols have subsets (e.g., FTP_response, FTP_request, etc.). Of these, only

FTP, SMTP, POP3 and IMAP are supported from the command line. HTTP subsets must be

specified by launching the protocol list from the "?" and checking the relevant boxes.

Example

Note: For multiple queries, separate each search term by a comma; do not add spaces.

Supported Protocols

HTTP_Request, HTTP_Response, HTTP_Post, HTTP_Webmail, HTTP_Webmail_Attach

STMP, SMTP_Request, SMTP_Response SMTP_Attach

POP3, POP3_Request, POP3_Response, POP3_Attach

IMAP, IMAP_Request, IMAP_Response, IMAP_Attach

FTP, FTP_Request, FTP_Response, FTP_Data

Telnet, Rlogin, SSH

Yahoo_Chat, AOL_Chat, MSN_Chat, IRC

RTSP, HTTPS, SOCKS, RDP

BitTorrent, ICY, Kazaa, Skype

PCAnywhere, CITRIX

RDF, CVS, CMS

VNC, SMB, NTLM, LDAP

DASL_Request, Verisign Certificates, ICQ