This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Wireshark for Red Hat Enterprise Linux

0

Hi Experts,

The download page on Wireshark page says that Wireshark is available as a standard package for RedHat Enterprise Linux. Does that mean it is pre installed ? Could you please tell me what to do if it is not installed there. I am not a Linux expert, I just have to guide my unix support team on the same. Is it not possible to get a direct installable for RedHat ? Kindly Relpy

Thanks, Manish

asked 19 Jul '13, 01:04

Manish%20Ubana's gravatar image

Manish Ubana
1112
accept rate: 0%


3 Answers:

4

Please run these commands as root.

yum list wireshark*

From that list pick the packages you want/need and run

yum install wireshark
yum install wireshark-gnome
etc.

Regards
Kurt

answered 19 Jul '13, 01:49

Kurt%20Knochner's gravatar image

Kurt Knochner ♦
24.8k1039237
accept rate: 15%

edited 19 Jul '13, 01:51

Thank you very much Kurt

(19 Jul '13, 02:10) Manish Ubana

You are welcome!

Hint: If a supplied answer resolves your question can you please "accept" it by clicking the checkmark icon next to it. This highlights good answers for the benefit of subsequent users with the same or similar questions.

(19 Jul '13, 03:59) Kurt Knochner ♦

I checked with the linux team , they say that the wireshark package is not there. Anyway by which we can install it manually. Can you please tell me if I can find the wireshark installables for RedHat Enterprise Edition somewhere?

Thanks

(22 Jul '13, 06:24) Manish Ubana

And which version of Redhat Enterprise Edition would that be and what were the results of yum list wireshark* as above?

(22 Jul '13, 06:31) grahamb ♦

I checked with the linux team , they say that the wireshark package is not there.

What is the 'error' message?

Anyway by which we can install it manually.

Of course you can install it manually, however you would need the RPM packages from Red Hat and quite some other packages to resolve dependencies. This is all possible but way to much work to be worth it. Please go back to your linux team and ask them for the error message and if they have changed the repository servers in their installation (/etc/yum.conf and /etc/yum.repos.d/)

(22 Jul '13, 06:44) Kurt Knochner ♦

alt text

  1. The Red Hat Enterprise Edition version is 5.6
  2. Attaching the screen shot for yum command and rpm -qa command executed on the system
  3. Regarding the repository in the installation the unix team informed me that there is no yum configured on the system.

Thank you all for you replies

(23 Jul '13, 06:59) Manish Ubana

did you read the error message of yum??

Cite: This system is not registered with RHN.

I guess that's the reason why you don't get any updates/packages ;-)) Please go back to your linux admins and ask them if they also see this as a potential problem.

BTW: The yum command should have been

yum list wireshark*

asterisk at the end.

(23 Jul '13, 10:00) Kurt Knochner ♦
showing 5 of 7 show 2 more comments

0

I think the version on RHN is quite old. Its better if you download the latest version and have it installed.

answered 19 Jul '13, 12:12

Jay%20Tang's gravatar image

Jay Tang
16115
accept rate: 0%

yes, pretty old: 1.2.14 and just 'downlaod' isn't that easy. I haven't found a installable package for RHEL ... :-(

(22 Jul '13, 09:44) mrEEde2

I have no idea if they are any use, but rpmfind turned up some packages for RHEL, and one of them purports to be a recent Wireshark release 1.10.

(22 Jul '13, 10:21) grahamb ♦

0

If you're going the manual root as discussed in the other answers, I suggest compiling it from source (you can compile a newer version than the old default off a yum install from the stock repo's anyway).

What version of Redhat are you using? I seem to remember the GTK2 dependencies being a major pain for Wireshark 1.8 or greater on RHEL 5 or CentOS 5, but would support WS 1.6 no problem. If you're RHEL 6 then I recommend compiling Wireshark 1.10 (download the source from wireshark.org).

As for dependencies, I compiled it from a stock CentOS6/RHEL6 install with the following yum-able packages (I believe this is all):

gtk2 gtk2-devel bison flex gcc libpcap libpcap-devel make (just in case make isn't installed :) )

From there, just do the normal: ./configure make make install

A word of warning if you do this - there will be a great number of "warning" pop-ups when you do the 'make' command in particular. This also takes a long time.

answered 22 Jul '13, 19:24

Quadratic's gravatar image

Quadratic
1.9k6928
accept rate: 13%