From 9c917acc7e8b7eada5f0105c9020d74fc1ca2042 Mon Sep 17 00:00:00 2001
From: jsatoh <junichi@rworks.jp>
Date: Wed, 18 Jan 2012 08:36:14 +0000
Subject: [PATCH] 2012-01-18  Junichi Satoh  <junichi@rworks.jp>

	* include/help/ja/help_pcap_filter.php: Added a new help file.



git-svn-id: https://svn.code.sf.net/p/pandora/code/trunk@5385 c3f86ba8-e40f-0410-aaad-9ba5e7f4b01f
---
 pandora_console/ChangeLog                     |  4 ++
 .../include/help/ja/help_pcap_filter.php      | 40 +++++++++++++++++++
 2 files changed, 44 insertions(+)
 create mode 100644 pandora_console/include/help/ja/help_pcap_filter.php

diff --git a/pandora_console/ChangeLog b/pandora_console/ChangeLog
index bee8af7756..b42314e8e3 100644
--- a/pandora_console/ChangeLog
+++ b/pandora_console/ChangeLog
@@ -1,3 +1,7 @@
+2012-01-18  Junichi Satoh  <junichi@rworks.jp>
+
+	* include/help/ja/help_pcap_filter.php: Added a new help file.
+
 2012-01-17 Juan Manuel Ramon <juanmanuel.ramon@artica.es>
 
 	* include/functions_network_components.php
diff --git a/pandora_console/include/help/ja/help_pcap_filter.php b/pandora_console/include/help/ja/help_pcap_filter.php
new file mode 100644
index 0000000000..a6c62375fe
--- /dev/null
+++ b/pandora_console/include/help/ja/help_pcap_filter.php
@@ -0,0 +1,40 @@
+<?php
+/**
+ * @package Include/help/ja
+ */
+?>
+<h1>Nfdump フィルターの書式</h1>
+
+フィルターの書式は、tcpdump ととても似ています。例えば次の通りです。
+
+<ul>
+<li>192.168.0.1 発または宛の通信をキャプチャする場合:</li>
+<pre>
+host 192.168.0.1
+</pre>
+
+<ul>
+<li>192.168.0.1 宛の通信をキャプチャする場合:</li>
+<pre>
+dst host 192.168.0.1
+</pre>
+
+<li>192.168.0.0/24 発の通信をキャプチャする場合:</li>
+<pre>
+src net 192.168.0.0/24
+</pre>
+
+<li>HTTP および HTTPS の通信をキャプチャする場合:</li>
+<pre>
+(port 80) or (port 443)
+</pre>
+
+<li>DNS 以外の全通信をキャプチャする場合:</li>
+<pre>
+port not 53
+</pre>
+
+<li>192.168.0.1 宛の SSH 通信をキャプチャする場合:</li>
+<pre>
+(port 22) and (dst host 192.168.0.1)
+</pre>