[Recommended] Install Wireshark w/ OpenFlow support
Latest Wireshark (1.12.x) has OpenFlow dissectors: https://wiki.wireshark.org/OpenFlow
However this is not the default wireshark in Ubuntu 14.04 that you get with apt-get install wireshark
.
To install the latest do (based on [ http://linuxg.net/how-to-install-wireshark-1-12-4-on-ubuntu-15-04-ubuntu-14-10-ubuntu-14-04-ubuntu-12-04-and-derivative-systems-via-ppa/ this page]) :
sudo apt-get install -y software-properties-common python-software-properties sudo add-apt-repository ppa:pi-rho/security sudo apt-get update sudo apt-get install wireshark #To avoid the pop-up dialogue you can use sudo DEBIAN_FRONTEND=noninteractive apt-get -y -q install wireshark
To be on the safe side you can remove the repository that was added so that it is not part of of the apt-get update and upgrade
sudo add-apt-repository --remove ppa:pi-rho/security
Allow to capture interfaces when run as non super users (without sudo)
sudo setcap 'CAP_NET_RAW+eip CAP_NET_ADMIN+eip' /usr/bin/dumpcap
[Depricated] Install OpenFlow Dissector for WireShark
These instructions are tested on the standard Ubuntu 12.04 image of InstaGENI racks
Install necessary Packages
sudo apt-get update; sudo apt-get install wireshark glib-2.0 gtk+-2.0 libgtk2.0-dev scons
Download Source Files
Download wireshark source:
wget http://archive.ubuntu.com/ubuntu/pool/universe/w/wireshark/wireshark_1.6.7.orig.tar.bz2 tar xvfj wireshark_1.6.7.orig.tar.bz2
Download OpenFlow dissector source:
wget https://bitbucket.org/barnstorm/of-dissector/get/pre-ws-1.10.0.tar.gz tar xvfz pre-ws-1.10.0.tar.gz
Configure Wireshark
cd wireshark-1.6.7/; ./configure export WIRESHARK=~/wireshark-1.6.7/
Install Dissector
cd ~/barnstorm-of-dissector-85564cc537d4/ cd src/ scons install
This will install the plugin at ~/.wireshark/plugins/openflow.so
If you want to install the plugin for all users move it to the global plugin place:
sudo mv ~/.wireshark/plugins/openflow.so /usr/lib/wireshark/libwireshark1/plugins/
Verify Installation
WireShark is a graphical tool, in order to run it from a remote host you need to enable X11 Forwarding.
On a Linux-friendly machine when you ssh to the remote host add the -X
flag.
To verify installation:
- Run
wireshark
- Open the "Help" --> "About" menu
- Select the "Plugins" tab
- Click the "Name" header to the plugins by name
- Verify that "openflow.so" appears in the list.