As with all applications, network troubleshooting and analysis tools evolve, improve, and basically change from version to version. It doesn’t matter if your troubleshooting software changes to keep up with new technology or to improve general overall performance; you should be aware of these changes before you use the tool in the field.
I’ve been using Wireshark since 2000 and am the first to admit, I don’t like too much change all at once, but then again this is the nature of our field. So I took the plunge by downloading Wireshark version 2.0, and put together a series of short videos introducing network analysts to the new interface.
In this video, I cover the tool's new welcome screen, explain where some of the old features went and show some of the new features.
If you’ve used Wireshark, you might be thrown off when certain buttons are not where they used to be. And if you are new to Wireshark, the videos should make your learning curve shorter.
One of the big reasons to move to Wireshark 2.0 is because it has switched its user interface library from GTK+ to Qt. GTK+ had a huge impact on the look and feel of Wireshark, but doesn’t cover all supported operating systems as Qt does.