Wireshark not showing any IP addresses or protocols in captures
I am running Wireshark 3.6.2 on Ubuntu 22.04 as root. In the past, I would see the source and destination IP addresses and the protocol. Now, I can see none of these. I saw one article that suggested removing the configuration directory (.config/wireshark/...) which I did after closing Wireshark, but this made no difference. I know I am accessing both local and wan sites when I capture, and from my previous experience, I do not recall seeing any captures without both source and destination ip addresses, and recall ARP messages being common - but there are no protocols shown. When I look at the frames, all the protocol and address information seems to be absent. I have just tried removing wireshark and reinstalling it, but the issues remain constant. Any clues as to what is going on/ how to fix this? Many thanks for any help.
If you expand
Framein the 3.19. The “Packet Details” Pane, what protocols are listed?[Protocols in frame: eth:ethertype:data](In the example above the
IPv4dissector is disabled)My apologies, but I was unable to add an image, however, in essence, the part you mentioned looks like [Protocols in frame: ] for every frame!
What is
Encapsulation type: Ethernet (1)at the top of theFrameinformation?Many thanks :- "Encapsulation type: Linux cooked-mode capture v1 (25)" This was the same for all frames I randomly looked at - but isn't something I have ever tampered with! (Far beyond my knowledge/ understanding! It is how Wireshark has been capturing the data!)
Dear Chuckc, Thank you so very much - you are a genius - it turns out all protocols were disabled, and as soon as I enabled all protocols, all the data began showing. My sincere thanks for all your help. How might I mark your help as the solution? Kind Regards