Wireshark For Video Surveillance Tutorial

Author: Brian Karas, Published on Aug 01, 2016

Want to snoop on the data going between your NVR and your IP camera?  Wireshark is the tool most commonly used to analyze network traffic and see what is really happening on the wire. It is helpful both in troubleshooting and understanding what is happening with IP camera streams.

This report gives an introduction to Wireshark and how to do some basic analysis on captured data to find information useful for camera setup and debugging, including:

  • Analyzing transmissions from IP cameras
  • Finding Unknown static IP addresses of IP cameras
  • Finding the RTSP URL of an IP camera
  • Using the follow option to get more data on an IP camera

**** ** ***** ** *** **** ***** ******* **** *** and **** ** ******?  *********** *** **** **** ******** **** ** ******* ******* ******* *** see **** ** ****** ********* ** *** ****. ** ** helpful **** ** *************** *** ************* **** ** ********* **** IP ****** *******.

**** ****** ***** ** ************ ** ********* *** *** ** do **** ***** ******** ** ******** **** ** **** *********** useful *** ****** ***** *** *********, *********:

  • ********* ************* **** ** *******
  • ******* ******* ****** ** ********* ** ** *******
  • ******* *** **** *** ** ** ** ******
  • ***** *** ****** ****** ** *** **** **** ** ** IP ******

[***************]

Getting ******* **** *********

******** ************ *** ******* *** ************, ********* ******** ****** ** ****.  If *** *** *** ******** **** ******* ******* ******* *** using ****** ***** *** **** **** ****** **** ** ******* Wireshark ** *** **** ******* ** **** ***. *** ************ should *** ******* * ******* ** ********* *********, *** *** should ** *** ******* ****** ***-**** ***** ** ** ****.

Wireshark *****

***** *** * *** ** ********** ** *********, *** ***** videos ** *********** ** ********* ******* *** ***** ******* ** look ******* *** ******** ****.  *** ********* ***** ***** *** to ***** * ****** *******:

Find ** ******* ****** ** ** * ******

** *** **** **** **** ****** * ****** **** *** a ****** ** ******* **** *** ***** *** ****** *** this ******** ***** *** *** **** **.  ** ** *********** to ***** **** *** ****** *** **** ***** ** **** up ******* ***** *** ***** *** ****** *******.

** **** *** ** *** *** "***" ****** *** *** to *** * *** ******* ****** ** **** ******* ******** data.


Find *** **** *** ** * ******

** *** **** * ******** ********* ** * ****** *** you **** ** **** *** **** *** ***** **** **** tutorial ***** *** *** ** **** **** ******* ** * packet *******.  **** **** *** "***** *******" ******.


Find *** *** **** ******* ** ** *********** ******

** ******* ***** **** **** * ****** ** **** ** the ***** *****, ********* *** **** *** *** *** ******* related ** *** ***** ****** **** **** * *** ******.  This ***** ***** *** *** ** *** *** "******" ******.


Other ****** *******

********* *** * **** ******** ********* *********, ** ********* ** the ******* ******* *************, ****** *** ******** ** ***** ***** ***** ** **** for *************** ** ****** ** ****** ******* *******.

** *** **** *** ** ******* ** * ****** *** want ** *** *** *** ******* ***** ** ** **** that ****** **** *** **** ******** *** *** *** *** following ******:

**.**** = ***.***.*.*

** *** ******* **** ** *********** **** * ******** ****** you *** *** *** "***" (******) ******:

**.*** == ***.***.**.**

********* *** *** *** * "***" (***********) ****** ** *** all *** ******* ***** **** ** * ******:

**.*** == ***.***.*.***

******* ***** *** ** **** ** ******* *******, **** ** to **** *** ******* **** * ******** **:

**.**** = ***.***.*.** && **.***** == ***

 

Comments (12)

Thumbnail business cat

Jon Swatzell

08/01/16 03:27pm

***** **** *****!

Undisclosed Manufacturer #1

08/01/16 07:13pm

*****

**** ***** ******* **** ***** *** **** **** ** ******* on *** ******* ** ******* *****. **** **** ** ******* helpful ** *** **********, *** ******* ******* *** ** ********.

***** * **** ********** *** ******* *** ************* **** *** VMS ** *** ******* ***** *****, *** ************* ******* *** VMS *** *** ****** ** ********** ******* ** *** ******** of *****. ***** *** *** ********** ** *** **** - some *** ********* **** ** ******* ********** *** **** **** not *********** ******* ******* ** **** ** ******* *** ****

***** *******

Thumbnail dileep

DILEEP LAL

IPVMU Certified | 08/02/16 10:09am

*****, ********* ****...!!

Undisclosed Manufacturer #2

08/03/16 01:30am

***** *** *********** *******.

**** ****** ***** ***** ***** ** **** *** *** *** for ********, *** *** **** **'* **** *** ******* ************** and **************, * ***** * *** ** ******* ***** **** be ***** *****, *** * *** *** ***** **** *** RTSP ***** ****** ** *** ***** *********. ** * ****** man ** *** ****** **** ******** *** ***** ******* ***** well ** ** *** *** ** ** ******* ** ***!

**** ********* ***** *** ******* ********, *** **** ****** ***** to *** *********** ***** *******. *** ***** *** ****, *** so ********* **** ***** ****** **** ** ***** ** *** camera *** *** ***** ****** ******* ** ******* ***** *,***** faster **** ******* ***

*** ****** **** ****** ** **** *********** *** ********* ***-******** experts.

*** ************ *** ***** **** **** ****, ** **** **** understand ****. ** **** ****?

** **** ***** ***-*** ********** **** ** *** ******, *** you **** ** **** ** ******* **** ******* ** ***** out, **** ***** *** ******* ** ***** **** ***** ********.

**** **** * **** ** ******** *** **** *** ******* this ** *** *** ** ** ********.

***** ******* ******** *** **** ****** *** ****; *** ********** is **** ******, ***** ** ***** ********* ***** ** **** at *** ******* *** ***** *******.

*** ***** * ***** **** *** ****** *** ** *********** switch ** ***** *********, ** *** *** ***** *** **** to ***** ********** ** * ********** **** **** ** ** you *** **** *** *** ******* ** ****, ******* * stand ***** *** *** *** *******. *** ** ***** ***** naturally ********** ********* ** **** ** **** ******, ** ********* in *** *******.

Undisclosed #3

In reply to Undisclosed Manufacturer #2 | 08/03/16 03:11am

*.*.*.* ***/****/****/***

*** **** ****** ***** ** **** *** **** ** ******** a ********. * ****** ***** ******* ***** ******** ***** ***/****/****/***. And ** * ******supports ****.*, the data stream shall be sent or received via HTTPS to traverse a firewall, and a device shall support media transfer using ***/****/*****/***.

***** ********* **** ****

Thumbnail brk1

Brian Karas

IPVM | In reply to Undisclosed Manufacturer #2 | 08/03/16 12:12pm

*** ***** * ***** **** *** ****** *** ** *********** switch ** ***** *********, ** *** *** ***** *** **** to ***** ********** ** * ********** **** **** ** ** you *** **** *** *** ******* ** ****, ******* * stand ***** *** *** *** *******.

**** ** * **** ****. * ******** **** ** *** 10/100 ******* ***** ( * **** ***, *** * ******) that *'** ***** ** ** ***** *** *** * **** stream **** * ****** ** ****** ******* *****. * ***-********** smart ****** **** * ****** **** ******* ***** ** *** same *****.

* ***** * *** ** ******* ***** **** ** ***** Onvif, *** * *** *** ***** **** *** **** ***** stream ** *** ***** *********. ** * ****** *** ** the ****** **** ******** *** ***** ******* ***** **** ** on *** *** ** ** ******* ** ***!

***** ***, ** ******* *******, ** **** * ****** **** was * *********** ******* ******* *** ****** *******. ** ***** interpret *** *** *** ******* ** **** **** ** ******* what ***** **** ***** **** ****. ****** **** **** * found ** ********** ******* **** ***** *********** ***** ** ******* packets *** *** ****. **, ** *** *********** * **** to ** **** ** *** ******, *** * ***** *** access ** **** ******* *******, * ***** *** * **** of *** ***** *** ******** ** ************** **** ** ** snoop *******. *** **** ******* ***** ** ******* ** *********** video *******, ** ************ ********* ***** ***** ********* **** ****** you * ****** ** ** **** ******.

**** ******** ******* ****** ***** ****** ****** ** **** ****** ****** ******* **** need * ****** ** ****** ****/***. ****** *** ******* *** to * ********* **, *** *** ***** ****** * ****** that ********** ******* *** * **** ** *** ****** ****** without *** ********** ****** ** *** *******.

Undisclosed #3

In reply to Brian Karas | 08/03/16 04:51pm

**** ** * **** ****. * ******** **** ** *** 10/100 ******* ***** ( * **** ***, *** * ******) that *'** ***** ** ** ***** *** *** * **** stream **** * ****** ** ****** ******* *****. * ***-********** smart ****** **** * ****** **** ******* ***** ** *** same *****.

* ****/** ******* ***? ***** ***!

******* *** ** ** *** ** ******* *** *** *** the *** ** ******* **** **** **** *** **.

Undisclosed Manufacturer #2

08/04/16 01:42am

* **** * ******* ******, *** ****** * **** ******* to ** **** *** *** ** *** *** **** ** yonder *****! * ** **** **** ** **** *** ** old ***** ** *** ***** ** **, ***** *** *** means ********* ******** ** ********* **** **** *******.

*** ***** ** ******* **** ********* *** **-** ********, *** how ********** **** **** ** ******** ******* **. *** ** it's * **** *********** *****!

**** **-** ********, ** *** *** ******* *** ***** *** everyone ** ***** **.

Undisclosed #3

In reply to Undisclosed Manufacturer #2 | 08/04/16 06:55am

* ** **** **** ** **** *** ** *** ***** in *** ***** ** **, ***** *** *** ***** ********* obsolete ** ********* **** **** *******.

* **** * ******* **** **** *** ****'* ***** ** useful ** *** *** * ****** **.

*** **** *** *****, ** **** *** ******* **** **/******* interfaces *** ***** ** * ****** ***, *** ***** ** are *** ***** ** ********* **** ** * *** **** basis **** ***, ** ***'* ****** **** * ** ********, not *** **** ******. ****** **** ******* ** *****.

****'* *** **'** ** * **** *******...

Thumbnail patrick hart

Patrick Hart

IPVMU Certified | 09/05/16 05:15pm

** **** ********* ************* ***** ***** ** ** ******* ***** be **** ** ****...

Undisclosed #3

In reply to Patrick Hart | 09/05/16 05:26pm

** **** ********* ************* ***** ***** ** ** ******* ***** be **** ** ****...

*** ***** ** * ********* ************ ** ******* **** **** Ethical ****** ****** ***********.

John Honovich

IPVM | In reply to Patrick Hart | 09/05/16 08:39pm

** **** ********* ************* ***** ***** ** ** *******

***, ** *** ****** ** * *** **** *** *** IP ********** ***** ******** ** *******, **** **** ******* * classes ** ************* ********* **** **** ** ************.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Most Recent Industry Reports

Avigilon CEO Attacks Asian Companies Cyber Insecurity on Aug 18, 2017
Avigilon CEO is taking aim at their Asian competitors. And he is going directly after these company's cyber security issues. In this note, we...
Sony Next Gen HD Dome Camera Tested (SNC-EM642R) on Aug 18, 2017
Sony has released their latest generation, claiming improved WDR and low light, increased IR range, and more. We tested the SNC-EM642R outdoor IR...
IP Networking Course September 2017 on Aug 17, 2017
This is the only networking course designed specifically for video surveillance professionals plus it includes live training, personal help and...
Knightscope Raises $10 Million With $3,320 Average Per Investor on Aug 17, 2017
Congrats to Knightscope. And condolences to their legion of little investors. Knightscope has disclosed they have raised $10+ million from their...
Axis and Arecont Legal Conflict Over Multi-Imager Cameras on Aug 17, 2017
Arecont threatened Axis. Axis has responded by moving to invalidate an Arecont patent. It is an important contest. Multi-imagers are Arecont's...
Directory Of Consumer Security Cameras on Aug 16, 2017
The consumer camera segment continues to grow, with new startups and models from existing players released seemingly every month. In this report we...
Cat 5e vs Cat 6 vs Cat 6a Network Cable Usage Statistics on Aug 16, 2017
Cat 5e? Cat 6? Cat 6a? What do integrators use in practice, today? 140+ integrators told IPVM. Here are the results: For those who want to...
Hikvision Responds To Cracked Security Codes on Aug 15, 2017
Hikvision has responded to IPVM's report on Hikvision's security code being cracked, both with a 2 page update to dealers and communication...
Stolen Video NVR / DVR Statistics on Aug 15, 2017
"But what happens if someone steals my recorder?" Anyone who has done more than a handful of jobs has probably heard this question several times....
Hikvision Europe Cutting Out Unauthorized End User Sales on Aug 15, 2017
The days of anyone buying Hikvision from anywhere off the Internet are numbered, at least in Europe, if Hikvision's plan comes to fruition. In...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact