This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Which version of Wireshark supports Remote Interfaces.

0

Hi...

My version of Wireshark does not support analysis of Remote Interfaces. (Ver 2.0.1 running on Apple iMac OSX Yosemite 10.10.5).

Does anyone know which version of WireShark does...and how I get hold of it?

Many thanks,

Dave.

asked 30 Jan '16, 04:48

CDD_Dave's gravatar image

CDD_Dave
6114
accept rate: 0%

edited 30 Jan '16, 05:43

One Answer:

1

which version of WireShark does

The version that's built with a version of libpcap/WinPcap that supports remote interfaces and that's running with a version of libpcap/WinPcap that supports remote interfaces.

and how I get hold of it?

Either 1) run Windows (BootCamp or a virtual machine monitor such as VMware Fusion, Parallels Workstations, or VirtualBox) and run the Windows version or 2) add the support to libpcap yourself, compile libpcap, and then compile Wireshark with that version of libpcap.

(No, there's no easy way. At some point in the future there may be a standard libpcap release with remote capture support, and at some point after that Apple may pick up that release, and at some point the OS X version of Wireshark may be modified to use those capabilities if present.)

answered 30 Jan '16, 14:26

Guy%20Harris's gravatar image

Guy Harris ♦♦
17.4k335196
accept rate: 19%

Guy...

Many thanks.

Excellent guidance!

Dave.

(31 Jan '16, 01:18) CDD_Dave