How to install Wireshark 2.2.5 on Ubuntu 16.04

To install Wireshark 2.2.5 on Ubuntu 16.04

Wireshark is an open-source network packet analyzer tool which tries to capture network packets and displays that packet data. Installing Wireshark is so simple, and we have already covered the installation of Wireshark on Debian. This article covers the installation of the latest version of Wireshark on Ubuntu.

Features:
&bull Cross- Platform
&bull Capture live packet data from a network interface.
&bull Import packets from text files containing hex dumps of packet data.
&bull Display packets with very detailed protocol information.
&bull Saves the captured packet data.
&bull Export some or all packets in a number of capture file formats.
&bull Filter packets on many criteria.
&bull Search for packets on many criteria and many more features available.

Installing Wireshark

Before you initiate the installation of Wireshark, make sure you add its package into repository via ppa.

root@linuxhelp1:~# add-apt-repository ppa:wireshark-dev/stable
 Latest stable Wireshark releases back-ported from Debian package versions.
Press [ENTER] to continue or ctrl-c to cancel adding it
.
.
.
gpg: /tmp/tmpz615rmhk/trustdb.gpg: trustdb created
gpg: key 14ECA0F0: public key " Launchpad PPA for Wireshark Developers"  imported
gpg: Total number processed: 1
gpg:               imported: 1  (RSA: 1)
OK

Once it is done, update the machine as follows. 

root@linuxhelp1:~# apt-get update
Hit:1 http://ppa.launchpad.net/deluge-team/ppa/ubuntu xenial InRelease
Hit:2 http://in.archive.ubuntu.com/ubuntu xenial InRelease
Get:3 http://security.ubuntu.com/ubuntu xenial-security InRelease [102 kB]                     
Get:4 http://ppa.launchpad.net/wireshark-dev/stable/ubuntu xenial InRelease [24.4 kB]
.
.
.
Get:9 http://in.archive.ubuntu.com/ubuntu xenial-backports InRelease [102 kB]                         
Fetched 339 kB in 2s (149 kB/s)                             
Reading package lists... Done

Now is the time to install the Wireshark package. Use the following command for the same purpose. 

root@linuxhelp1:~# apt-get install wireshark
Reading package lists... Done
Building dependency tree       
Reading state information... Done
The following additional packages will be installed:
  geoip-database-extra javascript-common libc-ares2 libjs-openlayers libnghttp2-14 libnl-route-3-200
.
.
.
Setting up wireshark-qt (2.2.5+g440fd4d-2~xenial1) ...
Setting up wireshark (2.2.5+g440fd4d-2~xenial1) ...
Processing triggers for libc-bin (2.23-0ubuntu3) ...

Wireshark has been installed. Launch the Wireshark package from Ubuntu Dashboard.

Now you can monitor network packets easily through Wireshark.

It was a pretty simple process, wasn' t it? The latest version of Wireshark comes with a lot of features which will make your network monitoring tasks an easy process. It now displays the GPRS-NS message PDU type in octal instead of hexadecimal. Also, it crashes on closing SNMP capture file when the snmp credentials are present. A lot more new features are added to Wireshark thus making it a reliable network protocol analyzer.

Tag : Wireshark
FAQ
Q
Is Wireshark safe to use?
A
Yes, it's safe to install so long as you get it from a trustworthy source, probably Wireshark itself for preference.
Q
How does the Wireshark work?
A
Wireshark, and any packet sniffer works putting the Ethernet interface in promiscuous mode, receiving all the packets in the local network. ... If you don't need to watch packets traversing a network, then it probably won't be much use to you.
Q
I installed the Wireshark RPM (or other package); why did it install TShark but not Wireshark?
A
Many distributions have separate Wireshark packages, one for non-GUI components such as TShark, editcap, dumpcap, etc. and one for the GUI. If this is the case on your system, there's probabl
Q
Does Wireshark capture all network traffic?
A
If you're trying to capture network traffic that's not being sent to or from the machine running Wireshark or TShark, i.e. traffic between two or more other machines on an Ethernet segment, you will have to capture in "promiscuous mode".
Q
What are the other best variants for dark tables?
A
Following are the alternatives Adobe photoshop, digikam Paint.Net and it goes on.