First time here? Check out the FAQ!
THIS IS A TEST INSTANCE. Feel free to ask and answer questions, but take care to avoid triggering too many notifications.
Ask Your Question
0

Installing and running different versions of Wireshark

  • retag add tags

I'm running the latest Windows version (Version 3.0.1 (v3.0.1-0-gea351cd8). Unfortunately there appears to be some issue when viewing certain DOCSIS MAC Management messages which appear on an older version, say 2.6.6. I would like to install an be able to run both so when I encounter this issue - I can simply bring up the older version to view the frames that 3.0.1 and later have issues with. What's the best way to do this? I installed 3.0.1 with WinPcap Compatability mode not selected, i.e. npcap mode, so I should be OK there.

KeithPerry's avatar
1
KeithPerry
asked 2019-04-11 14:19:48 +0000
grahamb's avatar
23.8k
grahamb
updated 2019-04-11 16:15:43 +0000
edit flag offensive 0 remove flag close merge delete

Comments

Any particular reason for using WinPcap mode? Currently it doesn't really make much difference, but in future it may do so, and I'd like to understand any reasons behind your choice.

grahamb's avatar grahamb (2019-04-11 15:03:03 +0000) edit
more
  • delete

I meant with WinPcap Compatability mode not selected. Here's what i have in my notes:

If compatability mode is not selected, Npcap is installed in a different location C:\Windows\System32\Npcap with a different service name npcap so that both drivers can coexist on the same system. In this case, applications which only know about WinPcap will continue using that, while other applications can choose to use the newer and faster Npcap driver instead.

KeithPerry's avatar KeithPerry (2019-04-11 15:12:47 +0000) edit
more
  • delete

OK, I understand.

grahamb's avatar grahamb (2019-04-11 16:15:01 +0000) edit
more
  • delete
add a comment see more comments

1 Answer

0

Caveat: If this DOCSIS bug is not documented, you should add it to the bug database.

Using multiple Wireshark installations

Create a directory for alternative installations ( On Windows, I would use "C:\Users\[you]\wiresharks" and on *nix, ~/wiresharks ). Install any other editions of Wireshark to this directory and add a desktop icon that points to Wireshark.exe in the new installation location (would be C:\Users\<you>\wiresharks).

On *nix, you can add something like this to your ~/.bashrc: 

alias wireshark266='/home/<usr>/wiresharks/wireshark2.6.6/wireshark'

depending on where the wireshark binary is. On Macos, you may need to link to ~/wiresharks/Wireshark.app/contents/MacOS/wireshark instead.

Ross Jacobs's avatar
71
Ross Jacobs
answered 2019-04-11 14:35:54 +0000
grahamb's avatar
23.8k
grahamb
updated 2019-04-11 15:01:17 +0000
edit flag offensive 0 remove flag delete link
more

Comments

Caveat: If this DOCSIS bug is not documented, you should add it to the bug database.

...or it might not get fixed.

Guy Harris's avatar Guy Harris (2019-04-11 19:18:42 +0000) edit
more
  • delete
add a comment see more comments

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account. This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss.

Add Answer