[VOIPSEC] RTP packet signature
Hadriel Kaplan
HKaplan at acmepacket.com
Thu Oct 6 16:20:54 CDT 2005
Sure it can - select a UDP packet that it didn't decode, choose
Analyze->Decode As..., and select RTP from the drop down list. :)
Seriously, though, if you do force it to decode it as RTP, it's pretty
obvious if it's really RTP or not. Plus it will decode the reverse stream
(if it uses the same UDP ports), and do a best-fit to detect 2833 DTMF and
SID packets out of that. And you can do Statistics->RTP->Stream Analysis to
look at the stream data.
-hadriel
-----Original Message-----
From: Voipsec-bounces at voipsa.org [mailto:Voipsec-bounces at voipsa.org] On
Behalf Of mailinglist
Sent: Wednesday, October 05, 2005 2:37 PM
To: 'Haluska, John J'
Cc: Voipsec at voipsa.org
Subject: Re: [VOIPSEC] RTP packet signature
Take a look at Ethereal. I checks the signalling and then uses the
signalling as hint that a packet is a RTP packet. Seems like without looking
at the signalling it is not possible to detect that a packet is a RTP
packet.
More information about the Voipsec
mailing list