pooja1063
commented
1 month ago The Flatpak version of Wireshark does not support direct interface captures due to sandboxing limitations. However, you can still capture network traffic by using pipes to pass data from another application to Wireshark. For example, you can use tcpdump to capture packets and pipe them to Wireshark for analysis.
Command: sudo tcpdump -U -i $INTERFACE -w - | flatpak run org.wireshark.Wireshark -k -i -
There are notes about this version not supporting "capturing data" but isn't completely true. While it is unable to use interfaces, pipes allow wireshark to read captured packets from another application in real time. By using pipes, the flatpak version can basically be used in the same way the non-flatpak version is with a little extra setup.[^1]
With this said, I think it's worth rewording the note a bit specifying that direct interface captures aren't supported but Pipes are referencing the CaptureSetup/Pipes page.
[^1]: For example:
sudo tcpdump -U -i $INTERFACE -w - | flatpak run org.wireshark.Wireshark -k -i -