Solved

software that will record packets comming in a network connection

Posted on 2015-02-17
10
94 Views
Last Modified: 2015-03-04
I need to record to a wav file phone calls between two ip phones.
I have mirrored a port on my switch to bring the phone traffic in to a server.
how do hear what the phone calls are.
I can see that there are packets using wireshark, but  I need to prove that both sides of the
conversation are coming into the nic card.
0
Comment
Question by:javagair
  • 4
  • 4
  • 2
10 Comments
 
LVL 20

Assisted Solution

by:José Méndez
José Méndez earned 500 total points
ID: 40615605
Now if you have a packet capture already, just filter the packets displayed by applying this filter

rtp and (ip.addr == 1.1.1.1 or ip.addr == 2.2.2.2)

THis will filter all RTP packets sent/received by 1.1.1.1 and 2.2.2.2, you must replace with the IPs of the phones in question.

WHat brand are those phones?
0
 
LVL 32

Expert Comment

by:Kamran Arshad
ID: 40615856
0
 
LVL 32

Expert Comment

by:Kamran Arshad
ID: 40615858
0
 

Author Comment

by:javagair
ID: 40617401
these are Avaya phones
wireshark says in their faq section that there is no way to separate out just the phone call
which is why I was wondering what I would use to listen on the network line
the company we pay to record calls only picks up our employee and not the caller.
will play the suggested tutorials
0
 
LVL 20

Assisted Solution

by:José Méndez
José Méndez earned 500 total points
ID: 40618075
Could you please show me the Wireshark FAQs? I use Wireshark all day long to separate voip calls.
0
Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

 

Author Comment

by:javagair
ID: 40619120
just saw a answer in wireshark when I was doing web search, didn't save link will have to search again to find it.
0
 

Author Comment

by:javagair
ID: 40619126
messages are coming in as udp, switched them to rtp, instructions say to go to player, but I can not find player in any menu.
have the latest wireshark download, but can't find player anywhere.

thanks

gary
0
 
LVL 20

Assisted Solution

by:José Méndez
José Méndez earned 500 total points
ID: 40619201
Go under Telephony > RTP > Statistics > Show all streams > choose the stream based on the IPs involved, then click on Analyze
0
 

Author Comment

by:javagair
ID: 40619652
yesterday all my traffic was in udp, I told it to convert to rtp
then all my traffic was in rtp
this morning I start wire shark, traffic is h.225.0and tcp
I do not see how to get back to rtp, since I didn't do anything.
so now I have no rtp traffic to look at.
gary
0
 
LVL 20

Accepted Solution

by:
José Méndez earned 500 total points
ID: 40619814
h.225 carries the signaling information required to set up a call (calling, called numbers, state of the call, etc).

Firts throw in a filter like

udp and (ip.addr == 1.1.1.1 or ip.addr == 2.2.2.2)

THis will filter all RTP packets sent/received by 1.1.1.1 and 2.2.2.2, you must replace with the IPs of the phones in question.

Then you will get a bunch of packets in udp that should contain the conversation. Righ click on one of those and choose to Decode As == RTP
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Every year the snow affects people and businesses. According to the Federation of Small Businesses (FSB), in 2009, UK businesses lost an estimated £1.2bn (http://news.bbc.co.uk/1/hi/business/7864804.stm) because of bad weather. This article was c…
Skype is a P2P (Peer to Peer) instant messaging and VOIP (Voice over IP) service – as well as a whole lot more.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now