Wireshark is the world’s foremost and widely-used network protocol analyzer. It lets you see what’s happening on your network at a microscopic level.
Wi-Fi 6, also known as 802.11ax, the latest step in a journey of nonstop innovation. The standard builds on the strengths of 802.11ac while adding efficiency, flexibility, and scalability that allows new and existing networks increased speed and capacity with next-generation applications.
The Intel® Wi-Fi 6 AX200 adapter is designed to support the upcoming IEEE 802.11ax standard – Wi-Fi 6 technology and the Wi-Fi Alliance Wi-Fi 61 certification. The product supports 2×2 Wi-Fi 6 technology, including new features such as UL and DL OFDMA and 1024QAM, delivering data rates of up to 2.4Gbps2 and increased network capacity.
There is little free protocol sniffer analysis software which can support Wi-Fi 6 standard, especially wireless frame capture supporting.
In this tutorial, I will show you the steps to install wireshark on Ubuntu 18.04
Requirements
- A Laptop PC running Ubuntu 18.04.
- A Laptop PC installed Intel AX200 802.11ax wireless adapter.
Getting Started
Before starting, you will need to update your system with the latest version. You can do this by running the following command:
$ sudo apt-get update -y
$ sudo apt-get upgrade -y
Once your system is updated, restart your system to apply the changes.
Upgrade Linux Kernel
Just upgrade to the latest Linux Kernel, >5.1, and use the latest firmware for the Wireless adapter. I have upgrade the Linux Kernel to 5.1 version
Download and install kernel for official site :
cd /tmp/
$ sudo dpkg -i *.deb
After installation is finished, reboot your ubuntu system.
$ sudo reboot
And Check linux kernel version :
$ uname -a
INSTALL AX200 Latest firmware
As The driver itself has not made it into the kernel of Ubuntu 18.04 and Ubuntu 19.04 Linux Kernel. so we need install the AX200 firmware to Linux.
Download the latest firmware from the below link.
To install firmware:
1. Copy the files into the distribution-specific firmware directory, /lib/firmware.
2. If the directory doesn’t work, refer to your distribution documentation.
3. If you configure the kernel yourself, make sure firmware loading is enabled.
Configure Wireless adapter to Monitor mode
In order to see 802.11 headers, you will have to capture in monitor mode.
The easiest way to turn manually turn monitor mode on or off for an interface is with the airmon-ng script in aircrack-ng; your distribution may already have a package for aircrack-ng.
So we need install the aircrack-ng Package first
$ sudo apt-get install aircrack-ng
Note that the behavior of airmon-ng will differ between drivers that support the new mac80211 framework and drivers that don’t. For drivers that support it, a command such as
sudo airmon-ng start wlan0
Then Linux terminal will produce output such as
Interface Chipset Driver
wlan0 Intel 4965 a/b/g/n iwl4965 – [phy0]
(monitor mode enabled on mon0)
The “monitor mode enabled on mon0” means that you must then capture on the “mon0” interface, not on the “wlan0” interface, to capture in monitor mode. To turn monitor mode off, you would use a command such as
sudo airmon-ng stop mon0,
not sudo airmon-ng stop wlan0.
Install development Wireshark version to support latest Wi-Fi 6 spec.
Add PPA repository and install Wireshark.
sudo add-apt-repository ppa:wireshark-dev/stable
sudo apt update
sudo apt -y install wireshark
Sudo apt -y install wireshark-qt
Install Wireshark Development version
To get the development release, add
sudo add-apt-repository ppa:dreibh/ppa
Install Wireshark from the repository
sudo apt update
sudo apt -y install wireshark
Verify wireshark can capture 11AX frame
$ sudo wireshark
Then check the 11AX beacon frames, and if the wireshark can parse 11AX frames, then the setup is successful!
—end—
Wi-Fi Logic 