Solved

Wireshark not seeing Cisco 7945G VOIP traffic as RTP

Posted on 2011-09-20
3
1,224 Views
Last Modified: 2012-08-13
I put the port on my Cisco 7945G phone into promiscuous mode so that my laptop see all traffic to/from the phone.  When I make a call I see a big stream of traffic from the phone to the voice gateway.  See example packet below.  This must be RTP traffic.  But wireshark is not classifying as such just seeing it as UDP traffic.   I am sure that these UDP packets are carrying voice.  When I go into Telephony/RTP Streams Wireshark says it sees no RTP streams.  Telephony/Voip Calls likewise yields nothing.  Why is wireshark not perceiving the voice traffic as expected?  Thanks!

336      09:56:36.912318      10.10.34.50      10.10.36.6      UDP      Source port: 28176  Destination port: 16486
0
Comment
Question by:amigan_99
  • 2
3 Comments
 
LVL 20

Accepted Solution

by:
José Méndez earned 500 total points
ID: 36570298
Not sure why honestly, but you can right click > Decode as > RTP and it will clear the screen if there are no rtp packets, or show them all decoded if truly rtp.
0
 
LVL 1

Author Closing Comment

by:amigan_99
ID: 36570341
Yes!  So now wireshark sees those as G.729.  That reminds me I had put my own phone to G.729 as an experiment way back.  So if I change to G.711 - Telephony/Voice calls would let me listen to the stream?  Or is that another program?  A huge help.
0
 
LVL 20

Expert Comment

by:José Méndez
ID: 36570369
Yes, G.711 will allow wireshark to transcode the information. I think you can use Asterisk to transcode from G.729 to wav as explained here: http://www.experts-exchange.com/expertsZone.jsp

Regards,
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

So you think no one can listen in on your VOIP conversations, eh? Well... if you haven't setup Secure Real Time Transport (SRTP), your voice communications can be hacked into by just about anyone! First, let's talk about the intended audience for…
As companies replace their old PBX phone systems with Unified IP Communications, many are finding out that legacy applications such as fax do not work well with VoIP. Fortunately, Cloud Faxing provides a cost-effective alternative that works over an…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question