How to install Wireshark in Debian

To install Wireshark in Debian 8.3

Wireshark is an open-source protocol analyzer software which is used for monitoring and troubleshooting the network traffic. It is simple and easy to install wireshark, and this article explains the method to install Wireshark on Debian 8.3

To know more about the installation procedure of Wireshark in Ubuntu 16.04, visit

https://www.linuxhelp.com/how-to-install-wireshark-2-2-6-latest-version-in-ubuntu-16-04/

Installing Wireshark

Before you start the installation of Wireshark, make sure you add the repo on apt source list as follows. 

root@linuxhelp:~# nano /etc/apt/sources.list

Add the following lines to the end of the file. 

deb http://ftp.debian.org/debian/ stable main contrib non-free
deb http://ftp.de.debian.org/debian jessie main

Once it is done, update the apt source as follows. 

root@linuxhelp:~# apt-get update
Get:1 http://ftp.debian.org jessie-updates InRelease [145 kB]
Ign http://ftp.de.debian.org jessie InRelease           
Hit http://ftp.de.debian.org jessie Release.gpg         
Hit http://ftp.de.debian.org jessie Release
Hit http://ftp.de.debian.org jessie/main amd64 Packages   
Hit http://ftp.de.debian.org jessie/main Translation-en                  
Ign http://ftp.debian.org stable InRelease                               
Get:2 http://ftp.debian.org jessie-updates/main Sources [15.5 kB]
Get:3 http://ftp.debian.org jessie-updates/contrib Sources [32 B]
Get:4 http://ftp.debian.org jessie-updates/main amd64 Packages/DiffIndex [7,408 B]
Get:5 http://ftp.debian.org jessie-updates/contrib amd64 Packages [32 B]
Get:6 http://ftp.debian.org jessie-updates/contrib Translation-en [14 B]
Get:7 http://ftp.debian.org jessie-updates/main Translation-en/DiffIndex [2,704 B]
Hit http://ftp.debian.org stable Release.gpg
Hit http://ftp.debian.org stable Release
Hit http://ftp.debian.org stable/main amd64 Packages
Hit http://ftp.debian.org stable/contrib amd64 Packages
Hit http://ftp.debian.org stable/non-free amd64 Packages
Hit http://ftp.debian.org stable/contrib Translation-en
Hit http://ftp.debian.org stable/main Translation-en
Hit http://ftp.debian.org stable/non-free Translation-en
Fetched 171 kB in 5s (32.0 kB/s)             
Reading package lists... Done

Next install the Wireshark package using apt-get install command.

root@linuxhelp:~# apt-get install wireshark
Reading package lists... Done
Building dependency tree       
Reading state information... Done
The following extra packages will be installed:
  libc-ares2 libsmi2ldbl libwireshark-data libwireshark5 libwiretap4
  libwsutil4 wireshark-common
Suggested packages:
  snmp-mibs-downloader wireshark-doc
The following NEW packages will be installed:
  libc-ares2 libsmi2ldbl libwireshark-data libwireshark5 libwiretap4
  libwsutil4 wireshark wireshark-common
0 upgraded, 8 newly installed, 0 to remove and 2 not upgraded.
Need to get 13.6 MB of archives.
After this operation, 78.7 MB of additional disk space will be used.
Do you want to continue? [Y/n] y
Get:1 http://ftp.debian.org/debian/ stable/main libsmi2ldbl amd64 0.4.8+dfsg2-10+b2 [122 kB]
Get:2 http://ftp.debian.org/debian/ stable/main libc-ares2 amd64 1.10.0-2+deb8u1 [72.5 kB]
Get:3 http://ftp.debian.org/debian/ stable/main libwsutil4 amd64 1.12.1+g01b65bf-4+deb8u10 [95.9 kB]
Get:4 http://ftp.debian.org/debian/ stable/main libwiretap4 amd64 1.12.1+g01b65bf-4+deb8u10 [188 kB]
Get:5 http://ftp.debian.org/debian/ stable/main libwireshark-data all 1.12.1+g01b65bf-4+deb8u10 [838 kB]
Get:6 http://ftp.debian.org/debian/ stable/main libwireshark5 amd64 1.12.1+g01b65bf-4+deb8u10 [11.3 MB]
.
.
.
.Processing triggers for desktop-file-utils (0.22-1) ...
Processing triggers for gnome-menus (3.13.3-6) ...
Processing triggers for mime-support (3.58) ...
Setting up libsmi2ldbl:amd64 (0.4.8+dfsg2-10+b2) ...
Setting up libc-ares2:amd64 (1.10.0-2+deb8u1) ...
Setting up libwsutil4:amd64 (1.12.1+g01b65bf-4+deb8u10) ...
Setting up libwiretap4:amd64 (1.12.1+g01b65bf-4+deb8u10) ...
Setting up libwireshark-data (1.12.1+g01b65bf-4+deb8u10) ...
Setting up libwireshark5:amd64 (1.12.1+g01b65bf-4+deb8u10) ...
Setting up wireshark-common (1.12.1+g01b65bf-4+deb8u10) ...
Setting up wireshark (1.12.1+g01b65bf-4+deb8u10) ...
Processing triggers for libc-bin (2.19-18+deb8u7) ...


Wireshark has been installed, launch wireshark from your activities search bar.

The Wireshark application looks as follows.

Wasn' t it a simple installation procedure? It is so simple to measure your internet traffic through Wireshark. Also, you can troubleshoot and monitor your network. Your network packets are captured and displayed with the detailed protocol information. Also, you can use Wireshark to debug the protocol information.

Tag : debian Wireshark
FAQ
Q
How can I monitor network traffic in Wireshark?
A
Open Wireshark. Click the "Capture" menu, then click "Interfaces." ...

Click the "Start" button to start recording network traffic.

Stop monitoring traffic. ...

Examine each packet's information.
Q
How do you use Wireshark?
A
The following methods can be used to start capturing packets with Wireshark:

You can double-click on an interface in the main window.

You can get an overview of the available interfaces using the “Capture Interfaces” dialog box.
Q
How does the Wireshark work?
A
Wireshark, and any packet sniffer works putting the Ethernet interface in promiscuous mode, receiving all the packets in the local network. ... If you don't need to watch packets traversing a network, then it probably won't be much use to you.
Q
Does Wireshark capture all network traffic?
A
If you're trying to capture network traffic that's not being sent to or from the machine running Wireshark or TShark, i.e. traffic between two or more other machines on an Ethernet segment, you will have to capture in "promiscuous mode".
Q
Is Wireshark safe to use?
A
Yes, it's safe to install so long as you get it from a trustworthy source, probably Wireshark itself for preference.