Install Wireshark Network Packet Analyzer on Ubuntu 20.04 - Step by step guide ?

Install Wireshark Network Packet Analyzer on Ubuntu 20.04 - Step by step guide ?

Wireshark (formerly Ethereal) is an Open-Source software that is used for capturing and investigating network traffic. It is a very popular packet analyzer among network professionals, security analysts, and research scholars around the world.

Here at Outsource Path, as part of our Server Management Services, we regularly help our Customers to perform related Linux System network Monitoring queries.

In this context, we shall look into how to install the Wireshark network analyzer on Ubuntu 20.04.

More about Wireshark ?

Wireshark can examine data from various network interfaces like: Ethernet (IEEE 802.3 ), FDDI, Token ring, IEEE 802.11 wireless LAN etc. It is available for major OSes like Windows, macOS, Linux, and UNIX.'

It has many features like profound inspection of network traffic, real-time capture, offline analysis, R/W support for different capture file types etc. It also organizes SharkFest, an annual educational conference, around the world for imparting knowledge of their product. These conferences are focused on best practice of using Wireshark.

Different ways on installing Wireshark  on Ubuntu 

a. Wireshark Installation via the default repository of Ubuntu

Wireshark is shipped with the official package repository of almost every major Linux distribution and Ubuntu 20.04 LTS is not an exception.

To complete this installation, follow the below steps:

1. Start by updating the APT package repository list with the below command:

$ sudo apt update

2. Now install Wireshark with the below command:

$ sudo apt install wireshark

During the installation process a window will appear asking you to configure Wireshark for non-superusers for capturing packets. In the old version of Wireshark we needed to run it as a root user or with root privileges to be able to capture the traffic. Now we can also allow the non-superusers to capture packets. Although it is a security risk. We also recommend you to use the default way and choose the option to be disabled by hitting 'No'.

3. To launch Wireshark, simply run the below command:

$ wireshark

On the first window of Wireshark you will see a list of devices for capturing traffic.

When we double click the interface 'enp0s3', you might see an error, "The capture session could not be initiated……………..sufficient permissions"

To add the current user to the 'wireshark' group to be able to capture packets, run the Wireshark with sudo privileges:

$ sudo wireshark

Next, when you send a ping request (for e.g. using a terminal) to some website, you will see the interfaces are showing random spikes of traffic.

4. In order to check the version of the Wireshark, use the below command:

$ wireshark -v

b. Wireshark Installation via adding a new PPA or software repository

Canonical provides a PPA on their official website for installing Wireshark. Open a terminal on your Ubuntu 20.04 and run the below command to add this new PPA:

$ sudo add-apt-repository ppa:wireshark-dev/stable

This will get us the latest and stable release of Wireshark which is backported from Debian package versions. Now run the below command to update the repository list on your Ubuntu distribution:

$ sudo apt update

We need to simply enter the ‘apt install’ command to install wireshark:

$ sudo apt install wireshark

This will upgrade our existing wireshark installation.

[Need help to configure Wireshark on your Ubuntu Linux system ? We can help you. ]

Who We Are ?

Most prominent, efficient, and well-performing IT companies and software solutions.

Related Posts