Wireshark on CentOS 7 (TL;DR version)

You need to get a copy of a later Wireshark (version 2.4) on your CentOS 7 system, without needing to follow all the instructions in Building Wireshark 2.4.0 for Centos 7. Wireshark provides one of the widest used network analysis tools available.

Update: 3 December 2018 The repository will deploy Wireshark 2.6.5 by default
Update: 12 October 2018 Please read the notes on Wireshark – Building rpms a different way since 2.6.4

Let’s go, you’re in a hurry..

  1. Install a prebuilt .repo file

    wget https://www.1310nm.net/repository/CentOS/7/wireshark.repo
    Now move it to the yum repositories directory
    sudo mv wireshark.repo /etc/yum.repos.d/
  2. Update yum

    sudo yum update

    You should see entries for the wireshark repository included

  3. Install Wireshark, accept the GPG key

    yum install wireshark-qt
    This will install the wireshark version using the Qt front-end as version 2.4.0 finally removes the GTK support.
    You will receive a prompt as below, select Y only if the fingerprint matches.
    Retrieving key from https://www.1310nm.net/repository/RPM-GPG-KEY-publisher@1310nm.net
    Importing GPG key 0x8B4AE102:
    Userid : "Package Publisher (Package Publisher @ thirteen-ten nanometer networks) <publisher@1310nm.net>"
    Fingerprint: c963 6096 c244 b68f 5306 031a c22c 2e77 8b4a e102
    From : https://www.1310nm.net/repository/RPM-GPG-KEY-publisher@1310nm.net
    Is this ok [y/N]:

  4. Run Wireshark

    From a command-line, wireshark, or from the menu, Applications|Internet|Wireshark.

If you haven’t left already, drop a comment below to say thank you!