Solved

software that will record packets comming in a network connection

Posted on 2015-02-17
10
110 Views
Last Modified: 2015-03-04
I need to record to a wav file phone calls between two ip phones.
I have mirrored a port on my switch to bring the phone traffic in to a server.
how do hear what the phone calls are.
I can see that there are packets using wireshark, but  I need to prove that both sides of the
conversation are coming into the nic card.
0
Comment
Question by:javagair
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
  • 2
10 Comments
 
LVL 20

Assisted Solution

by:José Méndez
José Méndez earned 500 total points
ID: 40615605
Now if you have a packet capture already, just filter the packets displayed by applying this filter

rtp and (ip.addr == 1.1.1.1 or ip.addr == 2.2.2.2)

THis will filter all RTP packets sent/received by 1.1.1.1 and 2.2.2.2, you must replace with the IPs of the phones in question.

WHat brand are those phones?
0
 
LVL 32

Expert Comment

by:Kamran Arshad
ID: 40615856
0
 
LVL 32

Expert Comment

by:Kamran Arshad
ID: 40615858
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 

Author Comment

by:javagair
ID: 40617401
these are Avaya phones
wireshark says in their faq section that there is no way to separate out just the phone call
which is why I was wondering what I would use to listen on the network line
the company we pay to record calls only picks up our employee and not the caller.
will play the suggested tutorials
0
 
LVL 20

Assisted Solution

by:José Méndez
José Méndez earned 500 total points
ID: 40618075
Could you please show me the Wireshark FAQs? I use Wireshark all day long to separate voip calls.
0
 

Author Comment

by:javagair
ID: 40619120
just saw a answer in wireshark when I was doing web search, didn't save link will have to search again to find it.
0
 

Author Comment

by:javagair
ID: 40619126
messages are coming in as udp, switched them to rtp, instructions say to go to player, but I can not find player in any menu.
have the latest wireshark download, but can't find player anywhere.

thanks

gary
0
 
LVL 20

Assisted Solution

by:José Méndez
José Méndez earned 500 total points
ID: 40619201
Go under Telephony > RTP > Statistics > Show all streams > choose the stream based on the IPs involved, then click on Analyze
0
 

Author Comment

by:javagair
ID: 40619652
yesterday all my traffic was in udp, I told it to convert to rtp
then all my traffic was in rtp
this morning I start wire shark, traffic is h.225.0and tcp
I do not see how to get back to rtp, since I didn't do anything.
so now I have no rtp traffic to look at.
gary
0
 
LVL 20

Accepted Solution

by:
José Méndez earned 500 total points
ID: 40619814
h.225 carries the signaling information required to set up a call (calling, called numbers, state of the call, etc).

Firts throw in a filter like

udp and (ip.addr == 1.1.1.1 or ip.addr == 2.2.2.2)

THis will filter all RTP packets sent/received by 1.1.1.1 and 2.2.2.2, you must replace with the IPs of the phones in question.

Then you will get a bunch of packets in udp that should contain the conversation. Righ click on one of those and choose to Decode As == RTP
0

Featured Post

[Live Webinar] The Cloud Skills Gap

As Cloud technologies come of age, business leaders grapple with the impact it has on their team's skills and the gap associated with the use of a cloud platform.

Join experts from 451 Research and Concerto Cloud Services on July 27th where we will examine fact and fiction.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In my office we had 10 Cisco 7940G IP phones that were useless as they were showing PROTOCOL APPLICATION INVALID when started. I searched through Google and worked for a week continuously on those phones, and finally got them working. This is a di…
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Suggested Courses

635 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question