From:
wireshark-users-bounces@xxxxxxxxxxxxx
[mailto:wireshark-users-bounces@xxxxxxxxxxxxx] On Behalf Of sandeep nitta
Sent: Thursday, August 28, 2008
10:51 AM
To: Community support list for
Wireshark
Subject: Re: [Wireshark-users]
Question
You need to identify which Voip protocols are being used in your Voip
Traffic.
Ex: SIP commonly uses port 5060 for UDP and 5061 for TCP
Similarily, once you identify which protocol is being used in your
network and on which port it traverses, you are ready to go ahead
Say, all your traffic goes on port 5060 and on "x" interface,
you can use the following filter
tshark -i x port 5060 -w <name of pcap that you want to
analyze"
you can look at the man page of tshark and what functionality the -z
switch provides to further analyze the captued trace file.
On Thu, Aug 28, 2008 at 9:15 PM, Terry Martin
<tmartin@xxxxxxxxxxxxxxxx>
wrote:
I
am new to the list but I am trying to understand how to collect VoIP traffic
using Tshark and generate similar reports to what you can get when you use the
VoIP analysis in wireshark? Can any one point me the right direction to
obtain that type of data? How to setup the filters
Thanks
Terry Martin
TimeData Corporation
VP
of Network Operation
work:
212-644-1600 X3
Cell:
503-318-8909
_______________________________________________
Wireshark-users mailing list
Wireshark-users@xxxxxxxxxxxxx
https://wireshark.org/mailman/listinfo/wireshark-users
