From 5d97cee7da31ac605f6a643b6c0492fb1a83456e Mon Sep 17 00:00:00 2001
From: Gerald Combs <gerald@wireshark.org>
Date: Wed, 27 Jun 2018 11:36:15 -0700
Subject: [PATCH] Remove IPX from our default filters.

Remove IPX items from the default capture, color, and display filter
files. Suggested by Laura Chappell at SharkFest 2018.

Change-Id: I5e14caaa69efc638a5da7c795bf8a9e5e890b3fd
Reviewed-on: https://code.wireshark.org/review/28489
Petri-Dish: Anders Broman <a.broman58@gmail.com>
Tested-by: Petri Dish Buildbot
Reviewed-by: Anders Broman <a.broman58@gmail.com>
---
 cfilters     | 2 +-
 colorfilters | 3 +--
 dfilters     | 1 -
 3 files changed, 2 insertions(+), 4 deletions(-)

diff --git a/cfilters b/cfilters
index 67b62a4d4b..b22fa938c6 100644
--- a/cfilters
+++ b/cfilters
@@ -6,9 +6,9 @@
 "IPv4 address 192.0.2.1" host 192.0.2.1
 "IPv6 only" ip6
 "IPv6 address 2001:db8::1" host 2001:db8::1
-"IPX only" ipx
 "TCP only" tcp
 "UDP only" udp
+"Non-DNS" not port 53
 "TCP or UDP port 80 (HTTP)" port 80
 "HTTP TCP port (80)" tcp port http
 "No ARP and no DNS" not arp and port not 53
diff --git a/colorfilters b/colorfilters
index 5dd37ce09e..53038d4ac8 100644
--- a/colorfilters
+++ b/colorfilters
@@ -10,9 +10,8 @@
 @SCTP ABORT@sctp.chunk_type eq ABORT@[42148,0,0][65535,64764,40092]
 @TTL low or unexpected@( ! ip.dst == 224.0.0.0/4 && ip.ttl < 5 && !pim && !ospf) || (ip.dst == 224.0.0.0/24 && ip.dst != 224.0.0.251 && ip.ttl != 1 && !(vrrp || carp))@[42148,0,0][60652,61680,60395]
 @Checksum Errors@eth.fcs.status=="Bad" || ip.checksum.status=="Bad" || tcp.checksum.status=="Bad" || udp.checksum.status=="Bad" || sctp.checksum.status=="Bad" || mstp.checksum.status=="Bad" || cdp.checksum.status=="Bad" || edp.checksum.status=="Bad" || wlan.fcs.status=="Bad" || stt.checksum.status=="Bad"@[4718,10030,11796][63479,34695,34695]
-@SMB@smb || nbss || nbns || nbipx || ipxsap || netbios@[65278,65535,53456][4718,10030,11796]
+@SMB@smb || nbss || nbns || netbios@[65278,65535,53456][4718,10030,11796]
 @HTTP@http || tcp.port == 80 || http2@[58596,65535,51143][4718,10030,11796]
-@IPX@ipx || spx@[65534,58325,58808][4718,10030,11796]
 @DCERPC@dcerpc@[51199,38706,65533][4718,10030,11796]
 @Routing@hsrp || eigrp || ospf || bgp || cdp || vrrp || carp || gvrp || igmp || ismp@[65534,62325,54808][4718,10030,11796]
 @TCP SYN/FIN@tcp.flags & 0x02 || tcp.flags.fin == 1@[41026,41026,41026][4718,10030,11796]
diff --git a/dfilters b/dfilters
index 45295ca5a6..5a89fafac7 100644
--- a/dfilters
+++ b/dfilters
@@ -7,7 +7,6 @@
 "IPv4 address isn't 192.0.2.1 (don't use != for this!)" !(ip.addr == 192.0.2.1)
 "IPv6 only" ipv6
 "IPv6 address 2001:db8::1" ipv6.addr == 2001:db8::1
-"IPX only" ipx
 "TCP only" tcp
 "UDP only" udp
 "Non-DNS" !(udp.port == 53 || tcp.port == 53)