Display Filter Reference: Extensible Authentication Protocol
Protocol field name: eap
Versions: 1.0.0 to 3.4.5
Back to Display Filter Reference
| Field name | Description | Type | Versions |
|---|---|---|---|
| eap.aka.error_code | EAP-AKA Error Code | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.aka.notification_type | EAP-AKA Notification Type | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.aka.reserved | EAP-AKA Reserved | Unsigned integer, 2 bytes | 1.8.0 to 3.4.5 |
| eap.aka.subtype | EAP-AKA Subtype | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.aka.subtype.attribute | EAP-AKA Attribute | Label | 1.8.0 to 3.4.5 |
| eap.aka.subtype.len | EAP-AKA Length | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.aka.subtype.type | EAP-AKA Type | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.aka.subtype.value | EAP-AKA Value | Sequence of bytes | 1.8.0 to 3.4.5 |
| eap.bad_length | Bad length (too small or too large) | Label | 3.2.0 to 3.4.5 |
| eap.code | Code | Unsigned integer, 1 byte | 1.0.0 to 3.4.5 |
| eap.data | EAP Data | Sequence of bytes | 2.0.0 to 3.4.5 |
| eap.desired_type | Desired Auth Type | Unsigned integer, 1 byte | 1.0.0 to 3.4.5 |
| eap.dictionary_attacks | Vulnerable to dictionary attacks. If possible, change EAP type. See http://www.cisco.com/warp/public/cc/pd/witc/ao350ap/prodlit/2331_pp.pdf | Label | 1.12.0 to 3.4.5 |
| eap.ext.vendor_id | EAP-EXT Vendor Id | Unsigned integer, 2 bytes | 1.0.0 to 3.4.5 |
| eap.ext.vendor_type | EAP-EXT Vendor Type | Unsigned integer, 1 byte | 1.0.0 to 3.4.5 |
| eap.gpsk.csuite.specifier | Specifier | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.gpsk.csuite.vendor | Vendor | Unsigned integer, 4 bytes | 3.4.0 to 3.4.5 |
| eap.gpsk.csuite_list_len | Len | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.gpsk.failure_code | EAP-GPSK Failure code | Unsigned integer, 4 bytes | 3.4.0 to 3.4.5 |
| eap.gpsk.id_peer | EAP-GPSK ID_Peer | Character string | 3.4.0 to 3.4.5 |
| eap.gpsk.id_peer.len | EAP-GPSK ID_Peer len | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.gpsk.id_server | EAP-GPSK ID_Server | Character string | 3.4.0 to 3.4.5 |
| eap.gpsk.id_server.len | EAP-GPSK ID_Server len | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.gpsk.opcode | EAP-GPSK OP-Code | Unsigned integer, 1 byte | 3.4.0 to 3.4.5 |
| eap.gpsk.payload_mac | EAP-GPSK Payload MAC | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.gpsk.pd_payload | EAP-GPSK PD_Payload | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.gpsk.pd_payload.len | EAP-GPSK PD_Payload len | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.gpsk.rand_peer | EAP-GPSK Rand_Peer | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.gpsk.rand_server | EAP-GPSK Rand_Server | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.id | Id | Unsigned integer, 1 byte | 1.0.0 to 3.4.5 |
| eap.identity | Identity | Character string | 1.8.0 to 3.4.5 |
| eap.identity.actual_len | Identity Actual Length | Unsigned integer, 2 bytes | 2.4.0 to 3.4.5 |
| eap.identity.full | Identity (Full) | Character string | 3.4.0 to 3.4.5 |
| eap.identity.invalid | Invalid identity code | Label | 2.6.5 to 3.4.5 |
| eap.identity.mcc | Identity Mobile Country Code | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.identity.mnc | Identity Mobile Network Code | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.identity.padding | Padding | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.identity.prefix | Identity Prefix | Character, 1 byte | 3.4.0 to 3.4.5 |
| eap.identity.pseudo | Identity (Pseudonym) | Character string | 3.2.0 to 3.2.13 |
| eap.identity.reauth | Identity (Reauth) | Character string | 3.2.0 to 3.2.13 |
| eap.identity.type | Identity Type | Character string | 3.4.0 to 3.4.5 |
| eap.identity.wlan.mcc | WLAN Identity Mobile Country Code | Unsigned integer, 2 bytes | 2.4.0 to 3.2.13 |
| eap.identity.wlan.mnc | WLAN Identity Mobile Network Code | Unsigned integer, 2 bytes | 2.4.0 to 3.2.13 |
| eap.identity.wlan.prefix | WLAN Identity Prefix | Character, 1 byte | 2.4.0 to 3.2.13 |
| eap.leap.ap_challenge | EAP-LEAP AP-Challenge | Sequence of bytes | 1.8.0 to 3.4.5 |
| eap.leap.ap_response | EAP-LEAP AP-Response | Sequence of bytes | 1.8.0 to 3.4.5 |
| eap.leap.count | EAP-LEAP Count | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.leap.data | EAP-LEAP Data | Sequence of bytes | 2.0.0 to 3.4.5 |
| eap.leap.name | EAP-LEAP Name | Character string | 1.8.0 to 3.4.5 |
| eap.leap.peer_challenge | EAP-LEAP Peer-Challenge | Sequence of bytes | 1.8.0 to 3.4.5 |
| eap.leap.peer_response | EAP-LEAP Peer-Response | Sequence of bytes | 1.8.0 to 3.4.5 |
| eap.leap.reserved | EAP-LEAP Reserved | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.leap.version | EAP-LEAP Version | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.len | Length | Unsigned integer, 2 bytes | 1.0.0 to 3.4.5 |
| eap.md5.extra_data | EAP-MD5 Extra Data | Sequence of bytes | 1.8.0 to 3.4.5 |
| eap.md5.value | EAP-MD5 Value | Sequence of bytes | 1.8.0 to 3.4.5 |
| eap.md5.value_size | EAP-MD5 Value-Size | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.md5.value_size.overflow | Overflow | Label | 1.12.0 to 3.4.5 |
| eap.mitm_attacks | Vulnerable to MITM attacks. If possible, change EAP type. | Label | 1.12.0 to 3.4.5 |
| eap.ms_chap_v2.challenge | EAP-MS-CHAP-v2 Challenge | Sequence of bytes | 1.8.0 to 3.4.5 |
| eap.ms_chap_v2.data | EAP-MS-CHAP-v2 Data | Sequence of bytes | 2.0.0 to 3.4.5 |
| eap.ms_chap_v2.failure_request | EAP-MS-CHAP-v2 Failure-Request | Character string | 1.8.0 to 3.4.5 |
| eap.ms_chap_v2.flags | EAP-MS-CHAP-v2 Flags | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.ms_chap_v2.id | EAP-MS-CHAP-v2 Id | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.ms_chap_v2.length | EAP-MS-CHAP-v2 Length | Unsigned integer, 2 bytes | 1.8.0 to 3.4.5 |
| eap.ms_chap_v2.length.invalid | Invalid Length | Label | 1.12.0 to 3.4.5 |
| eap.ms_chap_v2.message | EAP-MS-CHAP-v2 Message | Character string | 1.8.0 to 3.4.5 |
| eap.ms_chap_v2.name | EAP-MS-CHAP-v2 Name | Character string | 1.8.0 to 3.4.5 |
| eap.ms_chap_v2.nt_response | EAP-MS-CHAP-v2 NT-Response | Sequence of bytes | 1.8.0 to 3.4.5 |
| eap.ms_chap_v2.opcode | EAP-MS-CHAP-v2 OpCode | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.ms_chap_v2.peer_challenge | EAP-MS-CHAP-v2 Peer-Challenge | Sequence of bytes | 1.8.0 to 3.4.5 |
| eap.ms_chap_v2.reserved | EAP-MS-CHAP-v2 Reserved | Sequence of bytes | 1.8.0 to 3.4.5 |
| eap.ms_chap_v2.response | EAP-MS-CHAP-v2 Response (Unknown Length) | Sequence of bytes | 2.0.0 to 3.4.5 |
| eap.ms_chap_v2.value_size | EAP-MS-CHAP-v2 Value-Size | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.notification | Notification | Character string | 1.8.0 to 3.4.5 |
| eap.pax.a | EAP-PAX A | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.pax.a.len | EAP-PAX A len | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.pax.ade | EAP-PAX ADE | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.pax.ade.len | EAP-PAX ADE len | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.pax.b | EAP-PAX B | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.pax.b.len | EAP-PAX B len | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.pax.cid | EAP-PAX CID | Character string | 3.4.0 to 3.4.5 |
| eap.pax.cid.len | EAP-PAX CID len | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.pax.dh_group_id | EAP-PAX DH Group ID | Unsigned integer, 1 byte | 3.4.0 to 3.4.5 |
| eap.pax.flags | EAP-PAX Flags | Unsigned integer, 1 byte | 3.4.0 to 3.4.5 |
| eap.pax.flags.ai | ADE Included | Boolean | 3.4.0 to 3.4.5 |
| eap.pax.flags.ce | certificate enabled | Boolean | 3.4.0 to 3.4.5 |
| eap.pax.flags.mf | more fragments | Boolean | 3.4.0 to 3.4.5 |
| eap.pax.flags.reserved | reserved | Boolean | 3.4.0 to 3.4.5 |
| eap.pax.icv | EAP-PAX ICV | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.pax.mac_ck | EAP-PAX MAC_CK | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.pax.mac_ck.len | EAP-PAX MAC_CK len | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.pax.mac_id | EAP-PAX MAC ID | Unsigned integer, 1 byte | 3.4.0 to 3.4.5 |
| eap.pax.opcode | EAP-PAX OP-Code | Unsigned integer, 1 byte | 3.4.0 to 3.4.5 |
| eap.pax.public_key_id | EAP-PAX Public Key ID | Unsigned integer, 1 byte | 3.4.0 to 3.4.5 |
| eap.psk.flags | EAP-PSK Flags | Unsigned integer, 1 byte | 3.4.0 to 3.4.5 |
| eap.psk.flags.reserved | Reserved | Unsigned integer, 1 byte | 3.4.0 to 3.4.5 |
| eap.psk.flags.t | T | Unsigned integer, 1 byte | 3.4.0 to 3.4.5 |
| eap.psk.id_p | EAP-PSK ID_P | Character string | 3.4.0 to 3.4.5 |
| eap.psk.id_s | EAP-PSK ID_S | Character string | 3.4.0 to 3.4.5 |
| eap.psk.mac_p | EAP-PSK MAC_P | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.psk.mac_s | EAP-PSK MAC_S | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.psk.pchannel | EAP-PSK Protected Channel (encrypted) | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.psk.rand_p | EAP-PSK RAND_P | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.psk.rand_s | EAP-PSK RAND_S | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.retransmission | This packet is a retransmission | Label | 3.2.0 to 3.4.5 |
| eap.sake.attr.len | Attribute Length | Unsigned integer, 1 byte | 3.4.0 to 3.4.5 |
| eap.sake.attr.type | Attribute Type | Unsigned integer, 1 byte | 3.4.0 to 3.4.5 |
| eap.sake.attr.val | Attribute Value | Sequence of bytes | 3.4.0 to 3.4.5 |
| eap.sake.attr.val_str | Attribute Value | Character string | 3.4.0 to 3.4.5 |
| eap.sake.attr.val_uint48 | Attribute Value | Unsigned integer, 6 bytes | 3.4.0 to 3.4.5 |
| eap.sake.session_id | EAP-SAKE Session ID | Unsigned integer, 1 byte | 3.4.0 to 3.4.5 |
| eap.sake.subtype | EAP-SAKE Subtype | Unsigned integer, 1 byte | 3.4.0 to 3.4.5 |
| eap.sake.version | EAP-SAKE Version | Unsigned integer, 1 byte | 3.4.0 to 3.4.5 |
| eap.sim.error_code | EAP-SIM Error Code | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.sim.notification_type | EAP-SIM Notification Type | Unsigned integer, 2 bytes | 3.4.0 to 3.4.5 |
| eap.sim.reserved | EAP-SIM Reserved | Unsigned integer, 2 bytes | 1.8.0 to 3.4.5 |
| eap.sim.subtype | EAP-SIM Subtype | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.sim.subtype.attribute | EAP-SIM Attribute | Label | 1.8.0 to 3.4.5 |
| eap.sim.subtype.len | EAP-SIM Length | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.sim.subtype.type | EAP-SIM Type | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.sim.subtype.value | EAP-SIM Value | Sequence of bytes | 1.8.0 to 3.4.5 |
| eap.tls.flags | EAP-TLS Flags | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.tls.flags.len_included | Length Included | Boolean | 1.8.0 to 3.4.5 |
| eap.tls.flags.more_fragments | More Fragments | Boolean | 1.8.0 to 3.4.5 |
| eap.tls.flags.start | Start | Boolean | 1.8.0 to 3.4.5 |
| eap.tls.flags.version | Version | Unsigned integer, 1 byte | 1.8.0 to 3.4.5 |
| eap.tls.fragment | EAP-TLS Fragment | Frame number | 1.8.0 to 3.4.5 |
| eap.tls.fragment.count | Fragment Count | Unsigned integer, 4 bytes | 1.8.0 to 3.4.5 |
| eap.tls.fragment.error | Defragmentation Error | Frame number | 1.8.0 to 3.4.5 |
| eap.tls.fragment.fragment.too_long | Fragment Too Long | Boolean | 1.8.0 to 3.4.5 |
| eap.tls.fragment.multiple_tails | Multiple Tail Fragments Found | Boolean | 1.8.0 to 3.4.5 |
| eap.tls.fragment.overlap | Fragment Overlap | Boolean | 1.8.0 to 3.4.5 |
| eap.tls.fragment.overlap_conflict | Conflicting Data In Fragment Overlap | Boolean | 1.8.0 to 3.4.5 |
| eap.tls.fragments | EAP-TLS Fragments | Label | 1.8.0 to 3.4.5 |
| eap.tls.len | EAP-TLS Length | Unsigned integer, 4 bytes | 1.8.0 to 3.4.5 |
| eap.tls.reassembled.len | Reassembled EAP-TLS Length | Unsigned integer, 4 bytes | 1.8.0 to 3.4.5 |
| eap.type | Type | Unsigned integer, 1 byte | 1.0.0 to 3.4.5 |
| eaptls.fragment | EAP-TLS Fragment | Frame number | 1.0.0 to 1.6.16 |
| eaptls.fragment.count | Fragment count | Unsigned integer, 4 bytes | 1.6.0 to 1.6.16 |
| eaptls.fragment.error | Defragmentation error | Frame number | 1.0.0 to 1.6.16 |
| eaptls.fragment.multipletails | Multiple tail fragments found | Boolean | 1.0.0 to 1.6.16 |
| eaptls.fragment.overlap | Fragment overlap | Boolean | 1.0.0 to 1.6.16 |
| eaptls.fragment.overlap.conflict | Conflicting data in fragment overlap | Boolean | 1.0.0 to 1.6.16 |
| eaptls.fragment.toolongfragment | Fragment too long | Boolean | 1.0.0 to 1.6.16 |
| eaptls.fragments | EAP-TLS Fragments | Label | 1.0.0 to 1.6.16 |
| eaptls.reassembled.length | Reassembled EAP-TLS length | Unsigned integer, 4 bytes | 1.4.0 to 1.6.16 |
Go Beyond with Riverbed Technology
I have a lot of traffic...
ANSWER: SteelCentral™ AppResponse 11
- • Full stack analysis – from packets to pages
- • Rich performance metrics & pre-defined insights for fast problem identification/resolution
- • Modular, flexible solution for deeply-analyzing network & application performance