cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
850
Views
0
Helpful
4
Replies

match rtp protocol

MARCELO MATURO
Level 1
Level 1

I ned exclude to the encription list rtp traffic. Is there any way to identify this traffic in an access-list?

Thank's

Marcelo

4 Replies 4

ohassairi
Level 5
Level 5

Although there are no standards assigned, RTP is generally configured to use ports 16384-32767

you can simply match the udp traafic in an acl with the above mentioned port range.

The problem is that in this case I am excluding This traffic udp for the encription,and maybe there is not rtp .

Thank's

Joseph W. Doherty
Hall of Fame
Hall of Fame

Many forms of encryption completely conceal the original packet, which makes it impossible to determine an encrypted packet is something like a RTP packet.

Encrypted packets can replicate an original packet's ToS, if they do, and if the ToS is unique enough to only be RTP, you can identify the traffic using it.

If the traffic is encrypted within SSL, there are now applicances that sometimes effectively provide a "man-in-the-middle", where you can decrypt the traffic and then see what it is. Such an appliance could then exclude such traffic.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: