Hi all, Has anyone successfully compiled wireshark 1.12.9 / 2.0.1 on linux with winpcap 4.1.3 and got a fully functional GUI working against rpcapd ? I manage to compile and get the remote interface Tab, I see the remote interfaces and manage to "start" a remote capture, but no packets arrive. From looking at the generated TCP control packets, no "start" command is sent to the capture server. Thanks, This question is marked "community wiki". asked 14 Feb '16, 04:05  yaniv_rad |
This is a static archive of our old Q&A Site.
Please post any new questions and answers at ask.wireshark.org.
GTK or Qt interface?
I used GTK2, but the problem doesn't seem with the GUI. The remote interface tab is present and the functionality of finding the remote capture device works. The problem is with the execution of the RPCAP protocol. I see the enumeration of the interfaces, the "authentication" message and the interface "open" message. The missing part is a "start" message to tell the remote capture device to start sending the captured packets.