10-29-2008 11:23 AM - edited 03-04-2019 12:07 AM
I ned exclude to the encription list rtp traffic. Is there any way to identify this traffic in an access-list?
Thank's
Marcelo
10-30-2008 12:15 AM
Although there are no standards assigned, RTP is generally configured to use ports 16384-32767
10-30-2008 02:41 AM
you can simply match the udp traafic in an acl with the above mentioned port range.
10-30-2008 04:36 AM
The problem is that in this case I am excluding This traffic udp for the encription,and maybe there is not rtp .
Thank's
10-30-2008 05:34 AM
Many forms of encryption completely conceal the original packet, which makes it impossible to determine an encrypted packet is something like a RTP packet.
Encrypted packets can replicate an original packet's ToS, if they do, and if the ToS is unique enough to only be RTP, you can identify the traffic using it.
If the traffic is encrypted within SSL, there are now applicances that sometimes effectively provide a "man-in-the-middle", where you can decrypt the traffic and then see what it is. Such an appliance could then exclude such traffic.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: