Wireshark For Video Surveillance Tutorial

Author: Brian Karas, Published on Aug 01, 2016

Want to snoop on the data going between your NVR and your IP camera? Wireshark is the tool most commonly used to analyze network traffic and see what is really happening on the wire. It is helpful both in troubleshooting and understanding what is happening with IP camera streams.

This report gives an introduction to Wireshark and how to do some basic analysis on captured data to find information useful for camera setup and debugging, including:

Analyzing transmissions from IP cameras
Finding Unknown static IP addresses of IP cameras
Finding the RTSP URL of an IP camera
Using the follow option to get more data on an IP camera

**** ** ***** ** *** **** ***** ******* **** *** and **** ** ******?*********** *** **** **** ******** **** ** ******* ******* ******* and *** **** ** ****** ********* ** *** ****. ** is ******* **** ** *************** *** ************* **** ** ********* with ** ****** *******.

**** ****** ***** ** ************ ** ********* *** *** ** do **** ***** ******** ** ******** **** ** **** *********** useful *** ****** ***** *** *********, *********:

********* ************* **** ** *******
******* ******* ****** ** ********* ** ** *******
******* *** **** *** ** ** ** ******
***** *** ****** ****** ** *** **** **** ** ** IP ******

[***************]

Getting ******* **** *********

******** ************ *** ******* *** ************, ********* ******** ****** ** ****. If *** *** *** ******** **** ******* ******* ******* *** using ****** ***** *** **** **** ****** **** ** ******* Wireshark ** *** **** ******* ** **** ***. *** ************ should *** ******* * ******* ** ********* *********, *** *** should ** *** ******* ****** ***-**** ***** ** ** ****.

Wireshark *****

***** *** * *** ** ********** ** *********, *** ***** videos ** *********** ** ********* ******* *** ***** ******* ** look ******* *** ******** ****. *** ********* ***** ***** *** to ***** * ****** *******:

Find ** ******* ****** ** ** * ******

** *** **** **** **** ****** * ****** **** *** a ****** ** ******* **** *** ***** *** ****** *** this ******** ***** *** *** **** **. ** ** *********** to ***** **** *** ****** *** **** ***** ** **** up ******* ***** *** ***** *** ****** *******.

** **** *** ** *** *** "***" ****** *** *** to *** * *** ******* ****** ** **** ******* ******** data.

Find *** **** *** ** * ******

** *** **** * ******** ********* ** * ****** *** you **** ** **** *** **** *** ***** **** **** tutorial ***** *** *** ** **** **** ******* ** * packet *******. **** **** *** "***** *******" ******.

Find *** *** **** ******* ** ** *********** ******

** ******* ***** **** **** * ****** ** **** ** the ***** *****, ********* *** **** *** *** *** ******* related ** *** ***** ****** **** **** * *** ******. This ***** ***** *** *** ** *** *** "******" ******.

Other ****** *******

********* *** * **** ******** ********* *********, ** ********* ** the******* ******* *************, ****** *** ******** ** ***** ***** ***** ** **** for *************** ** ****** ** ****** ******* *******.

** *** **** *** ** ******* ** * ****** *** want ** *** *** *** ******* ***** ** ** **** that ****** **** *** **** ******** *** *** *** *** following ******:

**.**** = ***.***.*.*

** *** ******* **** ** *********** **** * ******** ****** you *** *** *** "***" (******) ******:

**.*** == ***.***.**.**

********* *** *** *** * "***" (***********) ****** ** *** all *** ******* ***** **** ** * ******:

**.*** == ***.***.*.***

******* ***** *** ** **** ** ******* *******, **** ** to **** *** ******* **** * ******** **:

**.**** = ***.***.*.** && **.***** == ***

Comments (12)

Jon Swatzell

| 08/01/16 08:27am

***** **** *****!

Undisclosed 1 Manufacturer

| 08/01/16 12:13pm

*****

**** ***** ******* **** ***** *** **** **** ** ******* on *** ******* ** ******* *****. **** **** ** ******* helpful ** *** **********, *** ******* ******* *** ** ********.

***** * **** ********** *** ******* *** ************* **** *** VMS ** *** ******* ***** *****, *** ************* ******* *** VMS *** *** ****** ** ********** ******* ** *** ******** of *****. ***** *** *** ********** ** *** **** - some *** ********* **** ** ******* ********** *** **** **** not *********** ******* ******* ** **** ** ******* *** ****

***** *******

DILEEP LAL

IPVMU Certified | 08/02/16 03:09am

*****, ********* ****...!!

Undisclosed 2 Manufacturer

| 08/02/16 06:30pm

***** *** *********** *******.

**** ****** ***** ***** ***** ** **** *** *** *** for ********, *** *** **** **'* **** *** ******* ************** and **************, * ***** * *** ** ******* ***** **** be ***** *****, *** * *** *** ***** **** *** RTSP ***** ****** ** *** ***** *********. ** * ****** man ** *** ****** **** ******** *** ***** ******* ***** well ** ** *** *** ** ** ******* ** ***!

**** ********* ***** *** ******* ********, *** **** ****** ***** to *** *********** ***** *******. *** ***** *** ****, *** so ********* **** ***** ****** **** ** ***** ** *** camera *** *** ***** ****** ******* ** ******* ***** *,***** faster **** ******* ***

*** ****** **** ****** ** **** *********** *** ********* ***-******** experts.

*** ************ *** ***** **** **** ****, ** **** **** understand ****. ** **** ****?

** **** ***** ***-*** ********** **** ** *** ******, *** you **** ** **** ** ******* **** ******* ** ***** out, **** ***** *** ******* ** ***** **** ***** ********.

**** **** * **** ** ******** *** **** *** ******* this ** *** *** ** ** ********.

***** ******* ******** *** **** ****** *** ****; *** ********** is **** ******, ***** ** ***** ********* ***** ** **** at *** ******* *** ***** *******.

*** ***** * ***** **** *** ****** *** ** *********** switch ** ***** *********, ** *** *** ***** *** **** to ***** ********** ** * ********** **** **** ** ** you *** **** *** *** ******* ** ****, ******* * stand ***** *** *** *** *******. *** ** ***** ***** naturally ********** ********* ** **** ** **** ******, ** ********* in *** *******.

Undisclosed 3

In reply to Undisclosed 2 Manufacturer | 08/02/16 08:11pm

*.*.*.* ***/****/****/***
*** **** ****** ***** ** **** *** **** ** ******** a ********. * ****** ***** ******* ***** ******** ***** ***/****/****/***. And ** * ******supports ****.*, the data stream shall be sent or received via HTTPS to traverse a firewall, and a device shall support media transfer using ***/****/*****/***.
***** ********* **** ****

Brian Karas

IPVM Admin | In reply to Undisclosed 2 Manufacturer | 08/03/16 05:12am

*** ***** * ***** **** *** ****** *** ** *********** switch ** ***** *********, ** *** *** ***** *** **** to ***** ********** ** * ********** **** **** ** ** you *** **** *** *** ******* ** ****, ******* * stand ***** *** *** *** *******.

**** ** * **** ****. * ******** **** ** *** 10/100 ******* ***** ( * **** ***, *** * ******) that *'** ***** ** ** ***** *** *** * **** stream **** * ****** ** ****** ******* *****. * ***-********** smart ****** **** * ****** **** ******* ***** ** *** same *****.

* ***** * *** ** ******* ***** **** ** ***** Onvif, *** * *** *** ***** **** *** **** ***** stream ** *** ***** *********. ** * ****** *** ** the ****** **** ******** *** ***** ******* ***** **** ** on *** *** ** ** ******* ** ***!

***** ***, ** ******* *******, ** **** * ****** **** was * *********** ******* ******* *** ****** *******. ** ***** interpret *** *** *** ******* ** **** **** ** ******* what ***** **** ***** **** ****. ****** **** **** * found ** ********** ******* **** ***** *********** ***** ** ******* packets *** *** ****. **, ** *** *********** * **** to ** **** ** *** ******, *** * ***** *** access ** **** ******* *******, * ***** *** * **** of *** ***** *** ******** ** ************** **** ** ** snoop *******. *** **** ******* ***** ** ******* ** *********** video *******, ** ************ ********* ***** ***** ********* **** ****** you * ****** ** ** **** ******.

**** ******** ******* ****** ***** ****** ****** ** **** ****** ****** ******* **** need * ****** ** ****** ****/***. ****** *** ******* *** to * ********* **, *** *** ***** ****** * ****** that ********** ******* *** * **** ** *** ****** ****** without *** ********** ****** ** *** *******.

Undisclosed 3

In reply to Brian Karas | 08/03/16 09:51am

**** ** * **** ****. * ******** **** ** *** 10/100 ******* ***** ( * **** ***, *** * ******) that *'** ***** ** ** ***** *** *** * **** stream **** * ****** ** ****** ******* *****. * ***-********** smart ****** **** * ****** **** ******* ***** ** *** same *****.

* ****/** ******* ***? ***** ***!

******* *** ** ** *** ** ******* *** *** *** the *** ** ******* **** **** **** *** **.

Undisclosed 2 Manufacturer

| 08/03/16 06:42pm

* **** * ******* ******, *** ****** * **** ******* to ** **** *** *** ** *** *** **** ** yonder *****! * ** **** **** ** **** *** ** old ***** ** *** ***** ** **, ***** *** *** means ********* ******** ** ********* **** **** *******.

*** ***** ** ******* **** ********* *** **-** ********, *** how ********** **** **** ** ******** ******* **. *** ** it's * **** *********** *****!

**** **-** ********, ** *** *** ******* *** ***** *** everyone ** ***** **.

Undisclosed 3

In reply to Undisclosed 2 Manufacturer | 08/03/16 11:55pm

* ** **** **** ** **** *** ** *** ***** in *** ***** ** **, ***** *** *** ***** ********* obsolete ** ********* **** **** *******.

* **** * ******* **** **** *** ****'* ***** ** useful ** *** *** * ****** **.

*** **** *** *****, ** **** *** ******* **** **/******* interfaces *** ***** ** * ****** ***, *** ***** ** are *** ***** ** ********* **** ** * *** **** basis **** ***, ** ***'* ****** **** * ** ********, not *** **** ******. ****** **** ******* ** *****.

****'* *** **'** ** * **** *******...

Patrick Hart

IPVMU Certified | 09/05/16 10:15am

** **** ********* ************* ***** ***** ** ** ******* ***** be **** ** ****...

Undisclosed 3

In reply to Patrick Hart | 09/05/16 10:26am

** **** ********* ************* ***** ***** ** ** ******* ***** be **** ** ****...

*** ***** ** * ********* ************ ** ******* **** **** Ethical ****** ****** ***********.

John Honovich

IPVM Admin | In reply to Patrick Hart | 09/05/16 01:39pm

** **** ********* ************* ***** ***** ** ** *******

***, ** *** ****** ** * *** **** *** *** IP ********** ***** ******** ** *******, **** **** ******* * classes ** ************* ********* **** **** ** ************.

Login to read this IPVM report.

Why do I need to log in?

IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Most Recent Industry Reports

Arecont To Release Industries' Best H.265 Support on Sep 30, 2016

Go big, or go home. That seems to be Arecont's philosophy for H.265, they say they are working on the "best" H.265 implementation in the...

Wall Street Journal Runs Report on Dahua Hack on Sep 30, 2016

The Wall Street Journal is bringing attention to the massive Dahua attack we reported on Tuesday. In an Thursday article entitled, "Hackers Infect...

Dahua USA CEO Tim Wang, Where Is Your Integrity? on Sep 29, 2016

Dahua USA CEO Tim Wang and Dahua Director of Marketing Tim Shen shared their IPVM passwords extensively, resulting in Dahua USA CEO's account...

Allegion NDE Wireless Lock Examined on Sep 29, 2016

While wireless locks are one of the hottest areas of access control, two of its biggest challenges are high cost and limited integration with...

The 'Last Chance to Save' On Hikvision Is Here on Sep 29, 2016

It is over. After at least 8 across the board price cuts in the past 10 months, including an unprecedented back to back 20% off, Hikvision has...

Camera Calculator Class and IPVM Member Orientation October 2016 on Sep 28, 2016

Members, learn how to better design video surveillance systems and get the most out of your IPVM memberships with 2 upcoming live classes. Both...

Axis 4MP Camera Tested (M3046-V) on Sep 28, 2016

Axis has brought 4MP to its camera line in the new M3046-V, the highest resolution model in their revamped M30 series. We bought and tested this...

Hiring Spree At Aimetis 6 Months After Being Acquired on Sep 28, 2016

Aimetis was acquired in April 2016, and is now expanding almost all of their departments, hiring employees from Axis and other industry...

Hikvision Chairman Tours With Chinese Government Boss on Sep 28, 2016

Two China Communist senior officials toured Europe this summer, one was Hikvision's Chairman and the other was his boss, SASAC Director. In this...

Wireshark For Video Surveillance Tutorial

Comments (12)

Jon Swatzell

Undisclosed 1 Manufacturer

DILEEP LAL

Undisclosed 2 Manufacturer

Undisclosed 3

Brian Karas

Undisclosed 3

Undisclosed 2 Manufacturer

Undisclosed 3

Patrick Hart

Undisclosed 3

John Honovich

Login to read this IPVM report.

Most Recent Industry Reports

Member Login