|
|
|
@ -1,59 +1,15 @@
|
|
|
|
|
Installing Wireshark on FreeBSD/OpenBSD/NetBSD/DragonFly BSD
|
|
|
|
|
========================================================================
|
|
|
|
|
|
|
|
|
|
1. Extra packages required
|
|
|
|
|
2. Compiling Wireshark
|
|
|
|
|
3. Berkeley Packet Filter (BPF) requirement
|
|
|
|
|
4. Running Wireshark as a non-root user
|
|
|
|
|
1. Berkeley Packet Filter (BPF) requirement
|
|
|
|
|
2. Running Wireshark as a non-root user
|
|
|
|
|
|
|
|
|
|
For general installation instructions, see the INSTALL file, along with
|
|
|
|
|
the Developer's Guide located at https://www.wireshark.org/docs/ and
|
|
|
|
|
in the docbook/ directory. Additional BSD specific notes and requirements
|
|
|
|
|
follow.
|
|
|
|
|
|
|
|
|
|
1. Extra packages required
|
|
|
|
|
---------------------------
|
|
|
|
|
Wireshark requires a number of additional programs to function.
|
|
|
|
|
Install the latest versions of the following programs before compiling:
|
|
|
|
|
|
|
|
|
|
The easiest way to install these is by using your operating system's
|
|
|
|
|
ports or packages system. If you prefer to build from source, the programs
|
|
|
|
|
can be found at the following sites:
|
|
|
|
|
|
|
|
|
|
glib 2.32 or later:
|
|
|
|
|
ftp.gnome.org:/pub/gnome/sources/glib/
|
|
|
|
|
http://ftp.gnome.org/pub/gnome/sources/glib/
|
|
|
|
|
|
|
|
|
|
pkgconfig:
|
|
|
|
|
http://pkgconfig.freedesktop.org/releases/
|
|
|
|
|
|
|
|
|
|
python 3.4 or later:
|
|
|
|
|
https://www.python.org/downloads/source/
|
|
|
|
|
|
|
|
|
|
If you want to use the Wireshark GUI, install one or both of these toolkits:
|
|
|
|
|
|
|
|
|
|
Qt 5.3 or later:
|
|
|
|
|
http://download.qt-project.org/official_releases/qt/
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
(These programs may require additional dependencies)
|
|
|
|
|
|
|
|
|
|
Additional programs can be used to enhance Wireshark's functionality.
|
|
|
|
|
These can be found by typing ./configure --help or looking at the output
|
|
|
|
|
at the end of running the configure script.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2. Compiling Wireshark
|
|
|
|
|
-----------------------
|
|
|
|
|
To compile Wireshark with the default options, run configure, make and
|
|
|
|
|
make install (you may have to run "autogen.sh" first):
|
|
|
|
|
|
|
|
|
|
./configure
|
|
|
|
|
make
|
|
|
|
|
make install
|
|
|
|
|
|
|
|
|
|
The configure and make steps can be run as a non-root user and you can
|
|
|
|
|
run Wireshark from the compilation directory itself. You must run make
|
|
|
|
|
install as root in order to copy the program to the proper directories.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3. Berkeley Packet Filter (BPF) requirement
|
|
|
|
|
1. Berkeley Packet Filter (BPF) requirement
|
|
|
|
|
--------------------------------------------
|
|
|
|
|
In order to capture packets (with Wireshark/TShark, tcpdump, or any
|
|
|
|
|
other packet capture program) on a BSD system, your kernel must have the
|
|
|
|
@ -74,7 +30,7 @@ use. Recent versions of most BSDs will create bpf devices as needed, so
|
|
|
|
|
you don't have to configure the number of devices that will be
|
|
|
|
|
available.
|
|
|
|
|
|
|
|
|
|
4. Running wireshark as a non-root user
|
|
|
|
|
2. Running wireshark as a non-root user
|
|
|
|
|
-------------------------------------------
|
|
|
|
|
Since the bpf devices are read-only by the owner (root), you normally
|
|
|
|
|
have to run packet capturing programs such as Wireshark as root. It is
|
|
|
|
|