DOWNDLOAD

Unicorn Network Threat Analyzer

  • Capture network traffic
  • Troubleshoot Wired & Wireless Network
  • Analyze network threats
Read More…
Free Downlaod

How to Successfully yum install Wireshark and Troubleshoot Common Issues

AndyHuang

Contents hide
Summary
Related posts:

1. InstallationTo install Wireshark, use the command: `yum install Wireshark`.

Run as root user: yum install wireshark

2. Running

Type the command in the terminal:

#wireshark

bash: wireshark: command not found

#whereis wireshark

wireshark: /usr/lib/wireshark /usr/share/wireshark

#cd /usr/lib/wireshark

#ls

plugins

#cd /usr/share/wireshark; ls

AUTHORS-SHORT dtds mergecap.html tshark.html

capinfos.html dumpcap.html radius wimaxasncp

cfilters editcap.html rawshark.html wireshark-filter.html

colorfilters help services wireshark.html

COPYING idl2wrs.html smi_modules ws.css

dfilters ipmap.html text2pcap.html

diameter manuf tpncp

Solution:

http://forums.fedoraforum.org/showthread.php?p=1307301

yum search wireshark (search for rpm packages matching specific characters)

yum install wireshark-gnome.i386 (graphical interface of Wireshark)

#whereis wireshark

wireshark: /usr/bin/wireshark /usr/sbin/wireshark /usr/share/wireshark /usr/share/man/man1/wireshark.1.gz

#wireshark

Success!

Usage

View TCP communication packets, enter tcp in the filter conditions; Apply;

View packets of a specified port: enter tcp.port eq 7905 in the filter conditions

View packets of a specified IP: ip.addr eq 192.168.1.104

View packets of a specified IP and PORT: ip.addr eq 192.168.1.104 and tcp.port eq 7905

Simple usage of network packet capture tool Wireshark http://www.linuxidc.com/Linux/2013-05/84174.htm

Install Wireshark under Ubuntu 12.04 http://www.linuxidc.com/Linux/2012-06/63582.htm

Start Wireshark packet capture from a regular user in Linux http://www.linuxidc.com/Linux/2012-06/63580.htm

Summary

The article details the process of installing and running Wireshark on Linux. To install, use the command as the root user: `yum install wireshark`. If Wireshark is not immediately found, use `yum search wireshark` to locate the appropriate package and install `wireshark-gnome.i386` for a graphical interface. After installation, verify the location of Wireshark with `whereis wireshark` and launch it with the command `wireshark`. The article also provides filtering tips for viewing specific TCP communication packets and includes links for further reading.

Related posts:

  1. Nsenter Command: Debug Container Networks with Tcpdump
  2. What is a Broadcast Storm and How to Prevent It
  3. TLS Protocol Analysis: A Step-by-Step Guide to the Handshake Process
  4. TTL Troubleshooting: Diagnose Network Issues Easily