I need some help to gather the necessary pieces to do an offline install of Wireshark from source. This is for use on an isolated network where we want to create custom dissectors, so I have to be able to build from source. asked 15 Feb '11, 13:29  ygor |
2 Answers:
I found a solution that mostly achieves the first desired goal:
The thumb drive will run Wireshark on any Windows machine and has the custom dissectors available. Now, I need to see if I can do the same thing for a Linux machine. This answer is marked "community wiki". answered 09 Mar '11, 07:03 ygor edited 09 Mar '11, 07:04 |
See the Wireshark Developer's Guide for info on building Wireshark on either Windows or *nix: answered 15 Feb '11, 13:54  Bill Meier ♦♦ showing 5 of 9 show 4 more comments |
OK, fine. I did that.
When I got to 2.2.8 (Install Libraries) and typed
nmake -f Makefile.nmake setupit started trying to connect toanonsvn.wireshark.orgtodownload gtk+-bundle_2.16.6-20100207_win32.zipThis would be one of the "necessary pieces" mentioned in the original posting.
I can download it and jump it over the "air-gap", but where do I put it and how many more pieces will be needed ?
That's defined by the symbol WIRESHARK_LIBS in
config.nmake. There are about 13 more.Ah ha ! There they are ! Ok, I also found stuff in Makefile.nmake like
gtk+-bundle_$(GTK_PKG)_$(WIRESHARK_TARGET_PLATFORM).zipon line 775Are all of these pieces in the bucket I'd get if I SVN'ed the source tree instead of using the tarball from the download page ?
No; The support stuff is downloaded via the make setup process.
If possible, it might be simpler for you to do the initial
make setupon a PC with access to the Internet and then copy over the resultingWIRESHARK_LIBSdirectory.(
I totally agree: An online machine would be an easy set-up. But my problem is that the machine in question is offline and cannot be placed online, thus my request for assistance.
I do understand what you are saying. I was merely asking if you could do a Wireshark
make setupon a different PC with access to the Internet and then copy/move over everything to the offline machine. :)(I also understand that that would require installing VC on that machine, etc and thus might not be worth the effort).
Another issue is that the ultimate target machine has a cygwin installation that is part of another development environment. I am concerned that it would interfere with wireshark if it is not the same version. How does one tell the version of cygwin ? I may not have access to the original installation media.
cygwin is used to run certain bash scripts and to gain access to certain *nix tools (listed in the Developer's Guide).
My experience is that the specific cygwin version being used isn't really all that important.
Checking for required applications: ... bash: /usr/bin/bash bison: /usr/bin/bison flex: /usr/bin/flex env: /usr/bin/env grep: /usr/bin/grep /usr/bin/find: /usr/bin/find perl: /usr/bin/perl ... sed: /usr/bin/sed unzip: /usr/bin/unzip wget: /usr/bin/wgetThanks, Bill. This is a lot of good info. I now have a few ideas of ways to get this done. I will be happy to share my results.