How to get Wireshark to work with Microsoft Windows Server 2012 R2
I am a long time user of WireShark and I frequently use it for demonstrations in my networking classes. I recently upgraded my instructor workstation and WireShark stopped working. It would start, but then hang. When I checked Task Manager, a process called dumpcap.exe was not responding and like in the movies, hard to kill. Let me share what I did to restore functionality and my sanity.
My first attempts involved uninstalling and reinstalling, with reboots before and after. This did not resolve the issue. I then tried going ever further back into the archives of old versions of WireShark. This also failed miserably. I tried running WireShark in compatibility modes for previous version of Windows – to no avail. Enough about the failures, here’s to success!
I will list exactly what I did but there may be steps that are unnecessary for you. Feel free to modify these steps if you wish. First, I uninstalled WireShark (and WinPcap 4.1.3, the latest at the time of this writing) and rebooted. I then downloaded WinPcap 10. It downloaded as an .msi file, which I installed. Then I downloaded the latest version of WireShark (version 2.2.2). When I installed WireShark, I made sure NOT to select the installation of WinPcap 4.1.3. The install completed successfully and I was able to run WireShark and capture packets again.
Here is a screenshot proving success!
This may work with other versions of Windows (Windows 10, for example) but I have not personally tried it out. Once MY machine worked I was happy. Hopefully, if someone else is experiencing this same pain with their previously working WireShark, these steps will help.
Until next time….
Mark Jacob
Cisco and CompTIA Network + Instructor – Interface Technical Training
Phoenix, AZ
Creating Users and Managing Passwords in Microsoft Office 365
In this Office 365 training video, instructor Spike Xavier demonstrates how to create users and manage passwords in Office 365. For instructor-led Office 365 training classes, see our course schedulle: Spike Xavier SharePoint Instructor – Interface Technical Training Phoenix, AZ 20347: Enabling and Managing Office 365
How to clone a Windows Server 2012 or 2012 R2 Domain Controller
One of the coolest new features in Window Server 2012 and Windows Server 2012 R2 is the ability to clone a Domain Controller. In the past, if we had virtualized Domain Controllers and we actually took a snapshot of it and then rolled back to that snapshot, it would break the logon service on that … Continue reading How to clone a Windows Server 2012 or 2012 R2 Domain Controller
Detailed Forensic Investigation of Malware Infections – April 21, 2015
How does an investigator hunt down and identify unknown malware? In this recording of our IT Security training webinar on April 21, 2015, Security expert Mike Danseglio (CISSP / CEH) performed several malware investigations on infected computers and identify symptoms, find root cause, and follow the leads to determine what’s happening. He demonstrated his preferred … Continue reading Detailed Forensic Investigation of Malware Infections – April 21, 2015
Write a Comment
See what people are saying...