Why my installation of Wireshark cannot analyze RTP protocol?

Question

I am using wireshark 3.2.4 on Windows10, to capture a rtp over TCP/UDP stream to do analyze, but the protocol column shows no RTP data.

So I searched the web, and see an article about RTP in wireshark, then I downloaded the the SampleCaptures file rtp_example.raw.gz and open in wireshark, but different from the screenshot in the article, where there are RTP and h.245, here is my screenshot of opening rtp_example.raw.gz, so what should I do to get the similar analyse results as the article shows? Thanks.

Answer 1

If Wireshark can't find the right dissector for a package by itsself you can tell it how to interpret the received packages:

1. Select in your capture one of the lines that represents a package that you think is part of the RTP stream. It probably has protocol UDP.
2. Select 'Decode as...' from the Analyze menu, or by right-clicking
3. Select the line that represents your stream and set the value for 'Current' to 'RTP'. Click OK.

In your capture you will now see that packages from that stream are interpreted as RTP.

More info in the Wireshark help docs.