Wireshark-dev: Re: [Wireshark-dev] Need help in Decoding RTP Multiplex streams in Wireshark

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: Jaap Keuter <jaap.keuter@xxxxxxxxx>
Date: Wed, 26 Aug 2009 16:28:00 +0200
Hi, 

Is there an RFC on that? Are there sample captures to work with? This always helpsin development. 

Thanx,
Jaap

Now competing at http://www.ec2009.info

On 26 aug 2009, at 07:36, shruti singh <shruti.is.singh@xxxxxxxxx> wrote:

Hi

I need to decode RTP Multiplex streams using wireshark. Presently we can decode only Non -Multiplexed RTP streams in wireshark. 

A multiplexed voice packet is composed by concatenating RTP encapsulated voice packets and IP and UDP headers.

 Below is the Multiplex Packet format

 

IP

UDP

Multiplex Header

Compressed RTP Header

RTP Payload

Multiplex Header

Compressed RTP Header

RTP Payload

  

This Multiplex header is repeated in beginning of each RTP packet. So I was thinking of way to extract this multiplex header & use it to decode each RTP packet following this Multiplex header.

I supose we need to make a dissector packet-rtpmultiplex.c regestring to a UDP port as a starting point.

Dissect the multiplex header, decompress the rtp header and have the RTP dissector dissecting
the resulting "RTP packet" - decompressed header+data.

Could you help me in dissecting the multiplex header and make this work.


Also I need to know the steps to write our own filters in wireshark


It would be great help. Kindly reply as soon as possible


Regards

Shruti

___________________________________________________________________________
Sent via:    Wireshark-dev mailing list <wireshark-dev@xxxxxxxxxxxxx>
Archives:    http://www.wireshark.org/lists/wireshark-dev
Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev
            mailto:wireshark-dev-request@xxxxxxxxxxxxx?subject=unsubscribe