From: Colin B. on
Hey all. Feeling a bit of frustration here.

A while ago, I wanted to use ethereal to track some network conversations,
and discovered that it was renamed (and upgraded) "wireshark."

Has anyone looked at the dependencies and sub-dependencies? WS1.0.4 required
TWENTY-SIX packages, mostly specific versions!

After tracking down every package, making sure the versions all matched
up, I finally got it to a point where...
....it doesn't run unless I set LD_LIBRARY_PATH. (gag!)

If I set that then it runs, with errors, for a few minutes before crashing.

Today I downloaded Wireshark 1.0.5. It requires two _more_ packages. One
of those packages (adns) chokes on my system because of a missing library;

ld.so.1: wireshark: fatal: libnsl.so.1: version `SUNW_1.9.1' not found (required by file /usr/local/lib/libadns.so)

Supposedly this came out in Solaris 10 U5, so that means that I have to
UPGRADE my machine (not just patch, but upgrade) no more than six months
after a new release is out.

I'd go back to ethereal, but it requires GTK 1.2, and wireshark needs
GTK 2.1.

Right now, I'm running wireshark 1.0.4, and it's crashing on me every
five minutes. I'm about to uninstall it and go back to reading raw
output from snoop, because it's less painful.

When did Solaris 3rd party tools get taken over by Linuxisms like this?

Colin

From: Tim Bradshaw on
On Dec 15, 11:00 pm, "Colin B." <cbi...(a)somewhereelse.shaw.ca> wrote:
> Hey all. Feeling a bit of frustration here.
>
> A while ago, I wanted to use ethereal to track some network conversations,
> and discovered that it was renamed (and upgraded) "wireshark."
> [...]
> When did Solaris 3rd party tools get taken over by Linuxisms like this?

Ethereal (so an older version) ships with the companion DVD for 10,
and seems to work fine.
From: michael.guirimand on
Hi Colin,

Just a question :
Why you're not using snoop command?

Michael
From: Colin B. on
michael.guirimand <michael.guirimand(a)gmail.com> wrote:
> Hi Colin,
>
> Just a question :
> Why you're not using snoop command?

Oh, I am. I'm using ethereal/wireshark to parse through the output from
snoop. It makes it much easier to follow a conversation on a heavily-loaded
server. It's not strictly necessary, but it's so much easier.
From: Oscar del Rio on
Colin B. wrote:
> Has anyone looked at the dependencies and sub-dependencies? WS1.0.4 required
> TWENTY-SIX packages, mostly specific versions!
>
> After tracking down every package, making sure the versions all matched
> up, I finally got it to a point where...
> ...it doesn't run unless I set LD_LIBRARY_PATH. (gag!)

have you tried the wireshark packages from blastwave or opencsw?
perhaps not the latest versions but probably better than a non-working one.