This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Wireshark 2 missing option to “Try to decode RTP outside of conversation”?

0

I use Wireshark mostly for reading SIP traffic and troubleshooting VoIP networks. In previous versions, the option (under Edit > Preferences > Protocols > RTP) "Try to decode RTP outside of conversations" was useful in cases in which sufficient SIP signaling is missing from the packet capture. Without that option checked, RTP is represented as UDP packets with unknown data payload.

In version 2 of Wireshark this option is missing, at least under RTP protocol preferences. Is it somewhere else? Is there another way to replicate this behavior?

(I am using both versions 1.12.10 and 2.0.2.)

asked 10 Mar '16, 05:52

Michael_Lindsey's gravatar image

Michael_Lindsey
6113
accept rate: 0%

One Answer:

1

Starting from Wireshark 2.0, this option is replaced by the activation of RTP heuristic dissectors. Go to Analyze -> Enabled Protocols -> RTP and activate rtp_udp checkbox

answered 10 Mar '16, 06:38

Pascal%20Quantin's gravatar image

Pascal Quantin
5.5k1060
accept rate: 30%

edited 10 Mar '16, 06:38

Thank you! I have enabled it and will try that out.

(10 Mar '16, 07:36) Michael_Lindsey