wireshark network interfaces
Hi all, I installed wireshark, with no errors: sudo port install wireshark port installed wireshark The following ports are currently installed: wireshark @0.99.6_0+darwin_8 (active) When I run it, the GUI comes up just fine, but the "List the available capture interfaces" thing comes up blank. I'm connected via wireless, with no ethernet connection right now. In case drivers have to be installed or something, I rebooted, but no joy. /usr/sbin/tcpdump returns: tcpdump: no suitable device found Is the portfile missing a prerequisite? -- Phil Rand philrand@pobox.com
I forgot to mention: Mac OSX 10.4.10 on an Intel Macbook Pro 17 On 8/25/07, Phil Rand <philrand@gmail.com> wrote:
Hi all,
I installed wireshark, with no errors:
sudo port install wireshark
port installed wireshark The following ports are currently installed: wireshark @0.99.6_0+darwin_8 (active)
When I run it, the GUI comes up just fine, but the "List the available capture interfaces" thing comes up blank. I'm connected via wireless, with no ethernet connection right now.
In case drivers have to be installed or something, I rebooted, but no joy.
/usr/sbin/tcpdump returns:
tcpdump: no suitable device found
Is the portfile missing a prerequisite?
-- Phil Rand philrand@pobox.com
-- Phil Rand philrand@pobox.com
Hi You have to run tcpdump and wireshark as root, i.e. with sudo. Lorenz On 25.08.2007, at 19:35, Phil Rand wrote:
Hi all,
I installed wireshark, with no errors:
sudo port install wireshark
port installed wireshark The following ports are currently installed: wireshark @0.99.6_0+darwin_8 (active)
When I run it, the GUI comes up just fine, but the "List the available capture interfaces" thing comes up blank. I'm connected via wireless, with no ethernet connection right now.
In case drivers have to be installed or something, I rebooted, but no joy.
/usr/sbin/tcpdump returns:
tcpdump: no suitable device found
Is the portfile missing a prerequisite?
-- Phil Rand philrand@pobox.com _______________________________________________ macports-users mailing list macports-users@lists.macosforge.org http://lists.macosforge.org/mailman/listinfo/macports-users
Boy do I feel stupid. That was it. Thanks! On 8/25/07, Lorenz Schori <lorenz.schori@gmx.ch> wrote:
Hi
You have to run tcpdump and wireshark as root, i.e. with sudo.
Lorenz
On 25.08.2007, at 19:35, Phil Rand wrote:
Hi all,
I installed wireshark, with no errors:
sudo port install wireshark
port installed wireshark The following ports are currently installed: wireshark @0.99.6_0+darwin_8 (active)
When I run it, the GUI comes up just fine, but the "List the available capture interfaces" thing comes up blank. I'm connected via wireless, with no ethernet connection right now.
In case drivers have to be installed or something, I rebooted, but no joy.
/usr/sbin/tcpdump returns:
tcpdump: no suitable device found
Is the portfile missing a prerequisite?
-- Phil Rand philrand@pobox.com _______________________________________________ macports-users mailing list macports-users@lists.macosforge.org http://lists.macosforge.org/mailman/listinfo/macports-users
-- Phil Rand philrand@pobox.com
Phil Rand wrote:
When I run it, the GUI comes up just fine, but the "List the available capture interfaces" thing comes up blank. I'm connected via wireless, with no ethernet connection right now.
In case drivers have to be installed or something, I rebooted, but no joy.
/usr/sbin/tcpdump returns:
tcpdump: no suitable device found
Is the portfile missing a prerequisite?
I don't believe Wireshark uses tcpdump. However, for what it's worth, what does the command: sudo /usr/sbin/tcdump -i en1 -v return? -- Kevin Walzer Code by Kevin http://www.codebykevin.com
On 25.08.2007, at 19:54, Kevin Walzer wrote:
Phil Rand wrote:
When I run it, the GUI comes up just fine, but the "List the available capture interfaces" thing comes up blank. I'm connected via wireless, with no ethernet connection right now. In case drivers have to be installed or something, I rebooted, but no joy. /usr/sbin/tcpdump returns: tcpdump: no suitable device found Is the portfile missing a prerequisite?
I don't believe Wireshark uses tcpdump.
wireshark and tcpdump both rely on libpcap
On 25.08.2007, at 20:47, grimmwerks wrote:
Dumb question - once wireshark is built, how do you launch it?
You have to start X11 (http://www.apple.com/macosx/features/x11/). Then either you start wireshark from the xterm or you "export DISPLAY=:0" in your Terminal.app or iTerm.app or wathever term you use and start wireshark from there. If you often use X11-apps you might want to place the export command in your .profile
grimmwerks wrote:
Dumb question - once wireshark is built, how do you launch it? _______________________________________________ macports-users mailing list macports-users@lists.macosforge.org http://lists.macosforge.org/mailman/listinfo/macports-users
sudo wireshark or sudo /opt/local/bin/wireshark Run this from xterm in X11. -- Kevin Walzer Code by Kevin http://www.codebykevin.com
On Aug 25, 2007, at 12:47, Lorenz Schori wrote:
On 25.08.2007, at 19:35, Phil Rand wrote:
I installed wireshark, with no errors:
sudo port install wireshark
port installed wireshark The following ports are currently installed: wireshark @0.99.6_0+darwin_8 (active)
When I run it, the GUI comes up just fine, but the "List the available capture interfaces" thing comes up blank. I'm connected via wireless, with no ethernet connection right now.
In case drivers have to be installed or something, I rebooted, but no joy.
/usr/sbin/tcpdump returns:
tcpdump: no suitable device found
Is the portfile missing a prerequisite?
You have to run tcpdump and wireshark as root, i.e. with sudo.
It might help new users if the port would print a message to that effect after installation. I'm Cc'ing the maintainer.
Hi, Sorry to hijack the thread here, but does wireshark work on Intel machines? When I begin capturing on the Airport Extreme interface (802.11n), the current wireless network connection gets dropped. I can sometimes rejoin the wireless network while the capturing process is on. But other times, I cannot. I still need to spend some time on what's going on, but I'd like see how other MacIntel users are doing with the latest wireshark. Thanks! -- Takashi Yoshida tyoshida [at] mac [dot] com On Aug 26, 2007, at 1:44 AM, Phil Rand wrote:
I forgot to mention: Mac OSX 10.4.10 on an Intel Macbook Pro 17
On 8/25/07, Phil Rand <philrand@gmail.com> wrote:
Hi all,
I installed wireshark, with no errors:
sudo port install wireshark
port installed wireshark The following ports are currently installed: wireshark @0.99.6_0+darwin_8 (active)
When I run it, the GUI comes up just fine, but the "List the available capture interfaces" thing comes up blank. I'm connected via wireless, with no ethernet connection right now.
In case drivers have to be installed or something, I rebooted, but no joy.
/usr/sbin/tcpdump returns:
tcpdump: no suitable device found
Is the portfile missing a prerequisite?
-- Phil Rand philrand@pobox.com
-- Phil Rand philrand@pobox.com _______________________________________________ macports-users mailing list macports-users@lists.macosforge.org http://lists.macosforge.org/mailman/listinfo/macports-users
On 26.08.2007, at 18:34, Takashi Yoshida wrote:
Sorry to hijack the thread here, but does wireshark work on Intel machines? When I begin capturing on the Airport Extreme interface (802.11n), the current wireless network connection gets dropped.
I can sometimes rejoin the wireless network while the capturing process is on. But other times, I cannot.
I still need to spend some time on what's going on, but I'd like see how other MacIntel users are doing with the latest wireshark.
Same thing here. I work around this by capturing with tcpdump into a file "tcpdump -s0 -i en1 -w bla.cap" and then analyzing the stuff in wireshark. You may write into a named pipe using tcpdump and read from it with wireshark if you need live data. Lorenz
Hi, Thanks a lot! I will try that! -- Takashi Yoshida tyoshida [at] mac [dot] com On Aug 27, 2007, at 12:40 AM, Lorenz Schori wrote:
On 26.08.2007, at 18:34, Takashi Yoshida wrote:
Sorry to hijack the thread here, but does wireshark work on Intel machines? When I begin capturing on the Airport Extreme interface (802.11n), the current wireless network connection gets dropped.
I can sometimes rejoin the wireless network while the capturing process is on. But other times, I cannot.
I still need to spend some time on what's going on, but I'd like see how other MacIntel users are doing with the latest wireshark.
Same thing here. I work around this by capturing with tcpdump into a file "tcpdump -s0 -i en1 -w bla.cap" and then analyzing the stuff in wireshark. You may write into a named pipe using tcpdump and read from it with wireshark if you need live data.
Lorenz
On Sat, Aug 25, 2007 at 03:02:56PM -0500, Ryan Schmidt wrote:
On Aug 25, 2007, at 12:47, Lorenz Schori wrote:
On 25.08.2007, at 19:35, Phil Rand wrote:
I installed wireshark, with no errors:
sudo port install wireshark
port installed wireshark The following ports are currently installed: wireshark @0.99.6_0+darwin_8 (active)
When I run it, the GUI comes up just fine, but the "List the available capture interfaces" thing comes up blank. I'm connected via wireless, with no ethernet connection right now.
In case drivers have to be installed or something, I rebooted, but no joy.
/usr/sbin/tcpdump returns:
tcpdump: no suitable device found
Is the portfile missing a prerequisite?
You have to run tcpdump and wireshark as root, i.e. with sudo.
It might help new users if the port would print a message to that effect after installation. I'm Cc'ing the maintainer.
I'd say its better if tcpdump and wireshark informed the user, as its far less likely that the user will remember that 'port' told them they needed privs, vs. tcpdump/wireshark telling them at runtime. The best way for that to happen is for users to file a bug against tcpdump and wireshark in their respective bug trackers (i.e. not in macport's bug tracker). -eric
participants (7)
-
Eric Hall
-
grimmwerks
-
Kevin Walzer
-
Lorenz Schori
-
Phil Rand
-
Ryan Schmidt
-
Takashi Yoshida