With RHEL 7 you have 2 options to get Wireshark; it really depends on how modern a version you want and how much work you're up for. Either:
(1) is obviously a lot easier but the version you get will be older than you'd get with (2).
Yes, whatever you capture with Wireshark (or tcpdump or dumpcap) on Linux will be readable with Wireshark on Windows.
answered 23 Dec '15, 06:13