Linux uses Wireshark for packet capture analysis (including SIP and RTP packets)

encountered the problem of packet capture analysis under Linux, it uses wireshark, very powerful packet capture analysis software, installed directly in the system, Then use the bright clutch!

I am using the Ubuntu server version, perform the installation: apt-get install wireshark

Use the command to capture the package after successful installation: tshark -i eth0 port 6060

Grab the package of network card and port!

Of course, you can also use the system's own tcpdump to capture packets. Tcpdump -i eth0 -s 0 -w /tmp/test.cap

Then use wireshark for unpacking analysis, download path under windows:

https://www.wireshark.org/

Download and install, you need to pay attention to, basically come out are UDP and TCP packets, if you want to view other types of packets such as RTP, you can find the UDP packet of the corresponding port for decoding operation, to convert !