How to Install Wireshark Network Protocol Analyzer on Ubuntu 16.04

r00t February 20, 2018

Install Wireshark Network Protocol Analyzer on Ubuntu 16.04

In this tutorial we will show you how to install Wireshark Network Protocol Analyzer on Ubuntu 16.04. We will also install and configure its prerequisites. Wireshark is an open-source protocol analyzer software, very used for monitoring the network traffic. It captures network packets in real time & presents them in human readable format. Wireshark allows us to monitor the network packets up to microscopic levels. Wireshark also has a command line utility called ‘tshark‘ that performs the same functions as Wireshark, but through the terminal and not through the GUI.

I recommend to use a minimal Ubuntu server setup as a basis for the tutorial, that can be a virtual or a root server image with an Ubuntu 16.04 minimal install from a web hosting company or you use our minimal server tutorial to install a server from scratch.

Install Wireshark Network Protocol Analyzer on Ubuntu 16.04

Step 1. First, ensure your system and apt package lists are fully up-to-date by running the following:

apt-get update -y
apt-get upgrade -y

Step 2. Installing Wireshark.

First, run command to add the PPA:

add-apt-repository ppa:wireshark-dev/stable

Install wireshark using following command:

apt-get update
apt-get install wireshark

Once the Wireshark is installed execute the below command so that non-root users can capture live packets of interfaces:

sudo setcap 'CAP_NET_RAW+eip CAP_NET_ADMIN+eip' /usr/bin/dumpcap

Congratulation’s! You have successfully install and configured Wireshark on your Ubuntu 16.04 server. Thanks for using this tutorial installing Wireshark Network Protocol Analyzer on Ubuntu 16.04 LTS (Xenial Xerus) system.

The Tags:

Leave a Comment

Comments are closed.