Can't capture SIP and RTP packets. No Voip calls created via Statistics. Can you please help us?
Hi,
our Wireshark on Wirdows server is not capturing SIP and RTP traffic from our SBC. Everybody from our team double checked port settings and we have them correct. We also see syslog messages captured from same SBC. We are able to see Voip calls with other tools (Syslog viewer for example). We tried like 3 different WS version suggested online. We also did other things like delete Wincap, turn off FW ect.
Currently we have WS 3.6.6 version installed on Windows Server 2012 R2 64-bit.
We appreciate any suggestion to help. Thanks.
In your description you mention log messages being present, but what I miss is, are these originating locally, or are these coming in from remote to be logged on the server? Then the question becomes, is the Windows Server even involved in the VoIP calls. Does it have any SIP signalling function, does it have any media processing function?
Well as said we are using this Windows server as syslog/debug server for our SBC. SBC is set to send all syslog, debug, CDR ect. to this server. So to answer your first question logs are coming in from remote SBC. Let me add to this that we was using Wireshark and able to see voip calls with it before 27.5.2022. That's when our issue started.
Why would you expect to see the SIP and RTP packets on this server when this is not involved in any of the SIP or media processing? What network configuration would cause this? The answer "because we did before" is not a valid response in this case.
Ok as said in previous comment: SBC is set to send all syslog, debug, CDR ect. to this server. So SBC is sending copy of packets to this Windows server. Second point is that we are able to see those packets with other tool (as said in original text).
If it is true that the SBC send copies of the SIP and RTP packets to the Windows Server then it would be helpful if you could add a link to a sample capture file here.