Huge thanks to our Platinum Members Endace and LiveAction,
and our Silver Member Veeam, for supporting the Wireshark Foundation and project.

Display Filter Reference: Elasticsearch

Protocol field name: elasticsearch

Versions: 2.0.0 to 4.2.4

Back to Display Filter Reference

Field name Description Type Versions
elasticsearch.actionActionCharacter string2.0.0 to 4.2.4
elasticsearch.address.formatFormatUnsigned integer (8 bits)2.0.0 to 4.2.4
elasticsearch.address.format.unsupportedUnsupported address formatLabel2.4.0 to 4.2.4
elasticsearch.address.ipv4IPIPv4 address2.0.0 to 4.2.4
elasticsearch.address.ipv6IPIPv6 address2.0.0 to 4.2.4
elasticsearch.address.ipv6.scope_idIPUnsigned integer (32 bits)2.0.0 to 4.2.4
elasticsearch.address.lengthLengthUnsigned integer (8 bits)2.0.0 to 4.2.4
elasticsearch.address.nameNameCharacter string2.0.0 to 4.2.4
elasticsearch.address.portPortUnsigned integer (32 bits)2.0.0 to 4.2.4
elasticsearch.address.typeTypeUnsigned integer (16 bits)2.0.0 to 4.2.4
elasticsearch.address.type.unsupportedUnsupported address typeLabel2.4.0 to 4.2.4
elasticsearch.attributes.lengthAttributes lengthUnsigned integer (32 bits)2.0.0 to 4.2.4
elasticsearch.cluster_nameCluster nameCharacter string2.0.0 to 4.2.4
elasticsearch.dataDataLabel2.0.0 to 4.2.4
elasticsearch.data_compressedCompressed dataLabel2.0.0 to 4.2.4
elasticsearch.featureFeatureCharacter string3.4.0 to 4.2.4
elasticsearch.header.keyKeyCharacter string3.4.0 to 4.2.4
elasticsearch.header.message_lengthMessage lengthUnsigned integer (32 bits)2.0.0 to 4.2.4
elasticsearch.header.requestRequest headerLabel3.4.0 to 4.2.4
elasticsearch.header.request_idRequest IDUnsigned integer (64 bits)2.0.0 to 4.2.4
elasticsearch.header.responseResponse headerLabel3.4.0 to 4.2.4
elasticsearch.header.sizeHeader sizeUnsigned integer (32 bits)3.4.0 to 4.2.4
elasticsearch.header.status_flagsStatus flagsUnsigned integer (8 bits)2.0.0 to 4.2.4
elasticsearch.header.status_flags.compressionCompressionBoolean2.0.0 to 4.2.4
elasticsearch.header.status_flags.errorErrorBoolean2.0.0 to 4.2.4
elasticsearch.header.status_flags.message_typeMessage typeUnsigned integer (8 bits)2.0.0 to 4.2.4
elasticsearch.header.tokenTokenCharacter string2.0.0 to 4.2.4
elasticsearch.header.valueValueCharacter string3.4.0 to 4.2.4
elasticsearch.host_addressHost addressCharacter string2.0.0 to 4.2.4
elasticsearch.host_nameHostnameCharacter string2.0.0 to 4.2.4
elasticsearch.internal_headerInternal headerUnsigned integer (32 bits)2.0.0 to 4.2.4
elasticsearch.node_idNode IDCharacter string2.0.0 to 4.2.4
elasticsearch.node_nameNode nameCharacter string2.0.0 to 4.2.4
elasticsearch.ping_request_idPing IDUnsigned integer (32 bits)2.0.0 to 4.2.4
elasticsearch.versionVersionUnsigned integer (32 bits)2.0.0 to 4.2.4
elasticsearch.version.unsupportedUnsupported header type: Elasticsearch version < 0.20.0RC1Label2.4.0 to 4.2.4