Ask Your Question
0

Why RTP packets are not recognized in the UDP protocol for Windows 10, and for Windows 7 everything is ok. I use wireshark version 3.6.3. Help me please

asked 2022-04-28 20:07:52 +0000

Volodymyr_UA gravatar image

00bcaaddccaa00bcaaffeead0800450000c80b3f0000f9119bc30d0300110d03000c45ae462000b400008008d0c2a0e392ea143a0011555555d5d5d5d5d5d555d5d555d555d55555d5d5d5d5d5d5d5d5d555d5d5d5d55555d5d5d5d5d5d5d55555d55555d5d5d5d5d5d555d5d5d555d5d5555555d5d5d5d5d555d555d555d5d5d51b45431659d555d5d5d555d5d555d5d5d5d5d55555d5d5d5d5d5d5d5d555d5d55555d5d5d5555555d5d555d555d55555d555d5d5d5d5d5d555d5d5d5d5d5d5d5d5d5d5d5d5d5d5d5d5d5d555d5d555d5d5d555d5d5

edit retag flag offensive close merge delete

Comments

0x0d would have done it ;-)

hugo.vanderkooij gravatar imagehugo.vanderkooij ( 2022-04-29 06:29:55 +0000 )edit
add a comment

1 Answer

Sort by ยป oldest newest most voted
0

answered 2022-04-29 03:06:16 +0000

Chuckc gravatar image

updated 2022-04-29 03:18:46 +0000

  • Was it a clean install on Windows 10? rtp_udp is disabled by default.

  • Check frame.protocols to see if another protocol grabbed it without adding to the tree.
    [Protocols in frame: eth:ethertype:ip:udp:someip]
    Disable someip_udp_heur.

CyberChef link to format hex data

00000000  00 BC AA DD CC AA 00 BC AA FF EE AD 08 00 45 00
00000010  00 C8 0B 3F 00 00 F9 11 9B C3 0D 03 00 11 0D 03
00000020  00 0C 45 AE 46 20 00 B4 00 00 80 08 D0 C2 A0 E3
00000030  92 EA 14 3A 00 11 55 55 55 D5 D5 D5 D5 D5 D5 55
00000040  D5 D5 55 D5 55 D5 55 55 D5 D5 D5 D5 D5 D5 D5 D5
00000050  D5 55 D5 D5 D5 D5 55 55 D5 D5 D5 D5 D5 D5 D5 55
00000060  55 D5 55 55 D5 D5 D5 D5 D5 D5 55 D5 D5 D5 55 D5
00000070  D5 55 55 55 D5 D5 D5 D5 D5 55 D5 55 D5 55 D5 D5
00000080  D5 1B 45 43 16 59 D5 55 D5 D5 D5 55 D5 D5 55 D5
00000090  D5 D5 D5 D5 55 55 D5 D5 D5 D5 D5 D5 D5 D5 55 D5
000000A0  D5 55 55 D5 D5 D5 55 55 55 D5 D5 55 D5 55 D5 55
000000B0  55 D5 55 D5 D5 D5 D5 D5 D5 55 D5 D5 D5 D5 D5 D5
000000C0  D5 D5 D5 D5 D5 D5 D5 D5 D5 D5 D5 D5 55 D5 D5 55
000000D0  D5 D5 D5 55 D5 D5
edit flag offensive delete link more

Comments

Thank you, when I did the decoding of UDP in RTP, everything turned out and I got a good result. I'm just a beginner.

Volodymyr_UA gravatar imageVolodymyr_UA ( 2022-04-29 05:06:30 +0000 )edit

Yes, clean install Windows 10. Other protocols are decoded. It only occurred for this traffic.

Volodymyr_UA gravatar imageVolodymyr_UA ( 2022-04-30 16:38:58 +0000 )edit
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2022-04-28 20:07:52 +0000

Seen: 178 times

Last updated: Apr 29 '22

Related questions

same packet decoded as different UDP/RTP between MacOS and other linux machine

Copyright Wireshark Foundation, 2017-2023 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service
Powered by Askbot version 0.10.2