Xavier Cardil
2009-Jun-29 09:51 UTC
[asterisk-users] how to sniff RTP and SIP traffic only
Hi, do somebody knows how to sniff RTP and SIP traffic only for a faster debugging ? Thanks. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.digium.com/pipermail/asterisk-users/attachments/20090629/5e160c92/attachment.htm
Duncan Turnbull
2009-Jun-29 10:21 UTC
[asterisk-users] how to sniff RTP and SIP traffic only
For Linux use tcpdump on the host you are after tcpdump udp and port 5060 or portrange 10000-16000 -s0 -i eth0 where 5060 is your SIP port and 10000-16000 are your rtp ranges -s0 means snap length of 0 so capture all the packet rather than cutting off at a point And refine it by adding the host you are targetting and -w to write to a file. Then you can import the file in wireshark and use the voip utlities to listen to it fairly easily or use tcpdump -r to read it back and clean it out a bit more Cheers Duncan Xavier Cardil wrote:> Hi, do somebody knows how to sniff RTP and SIP traffic only for a > faster debugging ? > > Thanks. > ------------------------------------------------------------------------ > > _______________________________________________ > -- Bandwidth and Colocation Provided by http://www.api-digital.com -- > > asterisk-users mailing list > To UNSUBSCRIBE or update options visit: > http://lists.digium.com/mailman/listinfo/asterisk-users
Xavier Cardil
2009-Jun-29 10:39 UTC
[asterisk-users] how to sniff RTP and SIP traffic only
Thank you so much !!!!! On Mon, Jun 29, 2009 at 12:21 PM, Duncan Turnbull <duncan at e-simple.co.nz>wrote:> For Linux use tcpdump on the host you are after > > tcpdump udp and port 5060 or portrange 10000-16000 -s0 -i eth0 > > where 5060 is your SIP port and 10000-16000 are your rtp ranges > -s0 means snap length of 0 so capture all the packet rather than cutting > off at a point > > And refine it by adding the host you are targetting and -w to write to a > file. > > Then you can import the file in wireshark and use the voip utlities to > listen to it fairly easily or use tcpdump -r to read it back and clean > it out a bit more > > Cheers Duncan > > Xavier Cardil wrote: > > Hi, do somebody knows how to sniff RTP and SIP traffic only for a > > faster debugging ? > > > > Thanks. > > ------------------------------------------------------------------------ > > > > _______________________________________________ > > -- Bandwidth and Colocation Provided by http://www.api-digital.com -- > > > > asterisk-users mailing list > > To UNSUBSCRIBE or update options visit: > > http://lists.digium.com/mailman/listinfo/asterisk-users > > _______________________________________________ > -- Bandwidth and Colocation Provided by http://www.api-digital.com -- > > asterisk-users mailing list > To UNSUBSCRIBE or update options visit: > http://lists.digium.com/mailman/listinfo/asterisk-users >-------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.digium.com/pipermail/asterisk-users/attachments/20090629/99dcf7ec/attachment-0001.htm
Alex Balashov
2009-Jun-29 21:05 UTC
[asterisk-users] how to sniff RTP and SIP traffic only
Xavier Cardil wrote:> Hi, do somebody knows how to sniff RTP and SIP traffic only for a faster > debugging ?I'm not sure what you mean by "for a faster debugging." As for sniffing the traffic, tcpdump works well. -- Alex Balashov Evariste Systems Web : http://www.evaristesys.com/ Tel : (+1) (678) 954-0670 Direct : (+1) (678) 954-0671 Mobile : (+1) (678) 237-1775
Wireshark will support this... From: asterisk-users-bounces at lists.digium.com [mailto:asterisk-users-bounces at lists.digium.com] On Behalf Of Xavier Cardil Sent: Monday, June 29, 2009 5:51 AM To: asterisk-users at lists.digium.com Subject: [asterisk-users] how to sniff RTP and SIP traffic only Hi, do somebody knows how to sniff RTP and SIP traffic only for a faster debugging ? Thanks. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.digium.com/pipermail/asterisk-users/attachments/20090802/5fd26a0e/attachment.htm