= Wireshark wireshark-version:[] Release Notes // AsciiDoc quick reference: http://powerman.name/doc/asciidoc This is a semi-experimental release intended to test new features for Wireshark 2.2. == What is Wireshark? Wireshark is the world's most popular network protocol analyzer. It is used for troubleshooting, analysis, development and education. == What's New //=== Bug Fixes //The following bugs have been fixed: //* ws-buglink:5000[] //* ws-buglink:6000[Wireshark bug] //* cve-idlink:2014-2486[] //* Wireshark accepted your prom invitation then cancelled at the last minute. (ws-buglink:0000[]) _Non-empty section placeholder._ === New and Updated Features The following features are new (or have been significantly updated) since version 2.0.0: ** You can now switch between between Capture and File Format dissection of the current capture file via the View menu in the Qt GUI. //=== Removed Dissectors === New File Format Decoding Support Wireshark is able to display the format of some types of files (rather than displaying the contents of those files). This is useful when you're curious about, or debugging, a file and its format. To open a capture file (such as PCAP) in this mode specify "MIME Files Format" as the file's format in the Open File dialog. New files that Wireshark can open in this mode include: _Non-empty section placeholder._ --sort-and-group-- --sort-and-group-- === New Protocol Support Nokia Intelligent Service Interface (ISI) // Items in --sort-and-group-- blocks will be sorted and comma-separated. --sort-and-group-- ISO14443 --sort-and-group-- === Updated Protocol Support Too many protocols have been updated to list here. === New and Updated Capture File Support _Non-empty section placeholder._ --sort-and-group-- --sort-and-group-- === New and Updated Capture Interfaces support _Non-empty section placeholder._ --sort-and-group-- --sort-and-group-- === Major API Changes The libwireshark API has undergone some major changes: * The address macros (e.g., SET_ADDRESS) have been removed. Use the (lower case) functions of the same names instead. == Getting Wireshark Wireshark source code and installation packages are available from https://www.wireshark.org/download.html. === Vendor-supplied Packages Most Linux and Unix vendors supply their own Wireshark packages. You can usually install or upgrade Wireshark using the package management system specific to that platform. A list of third-party packages can be found on the https://www.wireshark.org/download.html#thirdparty[download page] on the Wireshark web site. == File Locations Wireshark and TShark look in several different locations for preference files, plugins, SNMP MIBS, and RADIUS dictionaries. These locations vary from platform to platform. You can use About→Folders to find the default locations on your system. == Known Problems Dumpcap might not quit if Wireshark or TShark crashes. (ws-buglink:1419[]) The BER dissector might infinitely loop. (ws-buglink:1516[]) Capture filters aren't applied when capturing from named pipes. (ws-buglink:1814[]) Filtering tshark captures with read filters (-R) no longer works. (ws-buglink:2234[]) Resolving (ws-buglink:9044[]) reopens (ws-buglink:3528[]) so that Wireshark no longer automatically decodes gzip data when following a TCP stream. Application crash when changing real-time option. (ws-buglink:4035[]) Hex pane display issue after startup. (ws-buglink:4056[]) Packet list rows are oversized. (ws-buglink:4357[]) Wireshark and TShark will display incorrect delta times in some cases. (ws-buglink:4985[]) The 64-bit version of Wireshark will leak memory on Windows when the display depth is set to 16 bits (ws-buglink:9914[]) Wireshark should let you work with multiple capture files. (ws-buglink:10488[]) == Getting Help Community support is available on https://ask.wireshark.org/[Wireshark's Q&A site] and on the wireshark-users mailing list. Subscription information and archives for all of Wireshark's mailing lists can be found on https://www.wireshark.org/lists/[the web site]. Official Wireshark training and certification are available from http://www.wiresharktraining.com/[Wireshark University]. == Frequently Asked Questions A complete FAQ is available on the https://www.wireshark.org/faq.html[Wireshark web site].