Capture RTP and SIP Traffic using tcpdump
location: linuxexchange.com - date: January 1, 1970
I need to capture SIP and RTP traffic to find a problem with something. I can capture SIP messages fine but am having a problem with capturing the RTP traffic.
I've tried the following but this is only getting out the SIP packages and no RTP.
tcpdump -T rtp -vvv src -s 1500 -i any -w /home/lantrace_test2.pcap
The other way I was thinking of doing it is as rtp uses a range of UDP ports, capturing the range that we are using for the RTP traffic but I can't find a way of capturing a range of ports so not sure if tcpdump supports port ranges for capture
Thanks for any help you can provide
Is it possible to capture all network traffic using wireshark in ubuntu?
location: ubuntuforums.com - date: February 27, 2013
I want to know if using Ubuntu OS can capture all the network traffic/packets in a LAN using Wireshark.
I'm trying to capture the packets from my Desktop PC (connected via cable to the router) and my Phone (connected to the router wireless, Android).
If not, are there any other software that can capture packets on other devices(in a LAN) in Ubuntu like Wireshark?
Unable to capture IP Broadcast packets using tcpdump
location: linuxexchange.com - date: February 2, 2014
I was using a sample udp client program to send an IP broadcast packet, and tried to capture the same using tcpdump and used the following sample commands
sudo tcpdump -n src port 1050
sudo tcpdump -i em1 "port 1050"
Here is the output of ip route (with modified IP addresses)
default via x.x.x.x dev em1 proto static
x.46.78.0/23 dev em1 proto kernel scope link src x.y.79.16 metric 1
x.y.0.0/16 dev p4p1.1102 proto kernel scope link src x.y.7.45 metric 6
x.y.0.0/16 dev p4p1.1103 proto kernel scope link src x.y.7.45 metric 6
x.y.0.0/24 dev p4p1.1100 proto kernel scope link src x.y.0.1 metric 6
x.y.1.0/24 dev prvn-bridge proto kernel scope link src x.y.1.10 metric 20
x.y.122.0/24 dev virbr0 proto kernel scope link src x.y.122.1
x.0.0.0/4 dev p4p1.1102 proto static
x.0.0.0/4 dev p4p1.1103 proto static
//Client code used for sending IP Broadcast packet (modified version of http://www.csee.usf.edu/~christen/tools/udpClient.c)
#define BSD // WIN f
Rotating capture files using tcpdump
location: linuxquestions.com - date: April 6, 2010
Ideally, I would like to set up tcpdump to rotate log file every 1 hour and retain files for the lat 14 days but I don't think any combination of -C and -W would allow me to do that (Atleast I haven't been able to figure it out), so I am trying to rotate the files every X number of MB and retain the last 20 files. This seems to be fairly simple with the '-C X -W 20' option but I am having some trouble in customizing the names of the log files. I have tried '-w capture-$(date +%Y-%M-%d-%H:%M-)' thinking that each file would start with the current date and time but all files are using the date and time when the capture was started so the only difference is the number at the end (which is done by -W). I would appreciate any help in figuring out if I can customize the names of the file so that it has the date and time when the capture in started. In fact if I can do that, I dont need the numbers that '-W' appends at the end but I dont know how to get rid of them.
Any if any e
How to capture last N seconds of packets using tcpdump
location: linuxexchange.com - date: June 16, 2011
How can I capture the last N seconds of packets using tcpdump?
How to filter traffic using port+process in IPTables
location: linuxquestions.com - date: February 29, 2004
I want to prevent any process other than Apache from accepting connections on port 80. How to do such thing ? Also how to do it for other processes?
how to block gmail & gtalk (https traffic)using squid
location: linuxquestions.com - date: June 22, 2009
I am using Mandriva 2008.0 Edition. I want to block gmail & gtalk using squid proxy server.
I already block http traffic using squid proxy like http://www.gmail.com
but when user go trough using https://www.gmail.com then squid is unable to block these traffic.
Another problem is that i want to give access to gmail & gtalk from some special user's but block to rest of all others.
Please help me to sort out these problem
If it is not possible to block https traffics using squid porxy, please suggest me how to write iptable rules to block gmail & gtalk.
i am using "Firestarter" as firewall but it doesn't provide option to block
How can I show only 127.0.0.1 traffic using Wireshark?
location: linuxexchange.com - date: November 24, 2014
Every time I try to filter to just show a specific IP address, I get an error indicating that it is "not an interface or a field." I have no idea what that means. Furthermore, I don’t really see any localhost traffic in the logs anyway.
How can I show TCP localhost traffic?
Platform: Windows 7
How to filter MAC addresses using tcpdump?
location: linuxexchange.com - date: August 9, 2015
I am running tcpdump on DD-WRT routers in order to capture uplink data from mobile phones. I would like to listen only to some mac addresses. To do this I tried to run the command using a syntax similar to Wireshark:
tcpdump -i prism0 ether src[0:3] 5c:95:ae -s0 -w | nc 192.168.1.147 31337
so that I can listen to all the devices that have as initial mac address 5c:95:ae.
The problem is that the syntax is wrong and I was wondering if anyone of you knows the right syntax to get what I want.
Setting up Sip call using Asterisk
location: linuxexchange.com - date: January 1, 1970
I have to setup a secured sip session between android phones on 3G network. SIP signaling would be secured with TLS and media stream with SRTP. And I have never touched these protocols and components required to accomplish this.
I want to test it first with a LAN setup, for that I am trying to setup following with latest versions so that I don't miss on some security features:
Asterisk (+ Dahdi + LibPre)
Sipdroid on Android.
But for reducing variables I am going to test it on two PCs with some minimalistic SIP UAs and without any secure protocols. Just to make sure that asterisk is running fine.
I have Ubuntu 10.04 running on Parallels Desktop on MacBook Pro.
What are the components needed to make this happen, meaning do I need FreePBX for Lan based call is Asterisk is not a PBX?
I have read "asterisk to asterisk" calling. Is it a SIP UA as well, I have also read that it will act as a SIP Server.
Some link where I can get myself educated to set
Page: 1 2 3 4 5 6 7 8 9 10