Wireshark-users: Re: [Wireshark-users] VoIP calls GRAPH button gone. FLOW button shows SIP but no

From: "Keith French" <keithfrench@xxxxxxxxxxxxx>
Date: Thu, 2 Sep 2010 10:37:00 +0100
I have a similar problem with 1.4.0 and the latest development release 1.5.0 SVN 34041. There are two identical H323 calls in my trace, the FLOW graphs work fine for both displaying the H225, H245 & RTP. However, on one call Prepare Filter only shows the H225, but on the other call it shows H225, H245 & RTP.

I'll raise it on bugzilla & attach my trace.

Keith French.

-----Original Message-----
From: wireshark-users-bounces@xxxxxxxxxxxxx on behalf of Anders Broman
Sent: Wed 01/09/2010 15:44
To: Community support list for Wireshark
Subject: Re: [Wireshark-users] VoIP calls GRAPH button gone. FLOW button shows	SIP but not RTP or T.38
 
Hi,
Could you trye it on a development build from http://www.wireshark.org/download/automated/
it might be related to http://anonsvn.wireshark.org/viewvc/viewvc.cgi?view=rev&revision=33525
Please let us know the result.
Regards
Anders

________________________________
From: wireshark-users-bounces@xxxxxxxxxxxxx [mailto:wireshark-users-bounces@xxxxxxxxxxxxx] On Behalf Of COHEN, HARVEY S (ATTLABS)
Sent: den 31 augusti 2010 22:00
To: wireshark-users@xxxxxxxxxxxxx
Subject: [Wireshark-users] VoIP calls GRAPH button gone. FLOW button shows SIP but not RTP or T.38


I just installed Wireshark 1.4 on WinXP. Under Telephony, VoIP Calls, the GRAPH button has been replaced by a FLOW button. The ladder diagram produced by the FLOW button includes the SIP and RTP, but not the T.38. How can I make the ladder diagram display the T.38 as in previous releases of Wireshark?

This sample has 352 T.38 packets, comprising an entire fax call:

|Time     | 12.40.234.2                           |

|         |                   | 12.20.15.34       |

|0.000    |         INVITE SDP ( g729 g711U telephone-event X-nt-i...req)          |SIP From: "BCM450 FAX"<sip:[email protected] To:<sip:[email protected]

|         |(5060)   ------------------>  (5060)   |

|0.050    |         100 Trying|                   |SIP Status

|         |(5060)   <------------------  (5060)   |

|2.041    |         180 Ringing SDP ( g729 telephone-event)          |SIP Status

|         |(5060)   <------------------  (5060)   |

|2.041    |         RTP (g729)                    |RTP Num packets:507  Duration:23.360s SSRC:0xD5D81350

|         |(28000)  <------------------  (16604)  |

|2.092    |         RTP (g729)                    |RTP Num packets:168  Duration:8.499s SSRC:0x4A0BC4D1

|         |(28000)  ------------------>  (16604)  |

|10.607   |         200 OK SDP ( g729 telephone-event)          |SIP Status

|         |(5060)   <------------------  (5060)   |

|10.611   |         RTP (g729)                    |RTP Num packets:308  Duration:11.799s SSRC:0x4A0BC4D1

|         |(28000)  ------------------>  (16604)  |

|10.619   |         ACK       |                   |SIP Request

|         |(5060)   ------------------>  (5060)   |

|25.352   |         INVITE SDP ( t38)             |SIP Request

|         |(5060)   <------------------  (5060)   |

|25.362   |         100 Trying|                   |SIP Status

|         |(5060)   ------------------>  (5060)   |

|25.403   |         200 OK SDP ( t38)             |SIP Status

|         |(5060)   ------------------>  (5060)   |

|25.470   |         ACK       |                   |SIP Request

|         |(5060)   <------------------  (5060)   |

|47.896   |         BYE       |                   |SIP Request

|         |(5060)   ------------------>  (5060)   |

|47.943   |         200 Ok    |                   |SIP Status

|         |(5060)   <------------------  (5060)   |


Harvey S. Cohen
AT&T Labs, Middletown, NJ
Mobile +1-908-768-5833
Office +1-732-420-4099



<<winmail.dat>>