<div dir="ltr">The captures you provided does not contain any useful information, there was no sip headers in there.<div><br></div><div>you should provide something like the file attached. Here is a command that you can extract the sip info from a tshark pcap</div><div><br></div><div><div><font face="monospace, monospace" style="background-color:rgb(255,255,255)" color="#0000ff">tshark -r /hello.pcap -V -T fields -e ip -e udp.port -e tcp.port -e sip.Request-Line -e sip.msg_hdr -e sip.msg_body -w world.pcap -E separator="</font></div><div><font face="monospace, monospace" style="background-color:rgb(255,255,255)" color="#0000ff">" | tee > pcap.txt</font></div></div><div><font face="monospace, monospace" style="background-color:rgb(255,255,255)" color="#0000ff"><br></font></div><div><font style="background-color:rgb(255,255,255)" color="#000000" face="arial, helvetica, sans-serif">(Notice the newline for the separator, thats required if yu want the fields on new lines.)</font></div><div><font style="background-color:rgb(255,255,255)" color="#000000" face="arial, helvetica, sans-serif"><br></font></div><div><font style="background-color:rgb(255,255,255)" color="#000000" face="arial, helvetica, sans-serif"><br></font></div><div><font style="background-color:rgb(255,255,255)" color="#000000" face="arial, helvetica, sans-serif">Here is a un-encrypted version of a pcap, and you should get something similar after decrypting with your private key.</font></div><div><br></div><div><br></div><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Sun, Jul 12, 2015 at 1:49 PM, Nabeel <span dir="ltr"><<a href="mailto:nabeelshikder@gmail.com" target="_blank">nabeelshikder@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">The one attached has a bit more information after I set up Wireshark correctly with the server's private key.</div><div class="HOEnZb"><div class="h5"><div class="gmail_extra"><br><div class="gmail_quote">On 12 July 2015 at 17:20, Nabeel <span dir="ltr"><<a href="mailto:nabeelshikder@gmail.com" target="_blank">nabeelshikder@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Please find the decoded 'plain text' version exported from Wireshark attached to this Email.<div><br></div><div>I am still unclear how to add this 'route header' or whatever else is required to make a call connect over TLS.</div><div><br></div><div>Why must there be so many configurations just to set the correct port?</div></div><div><div><div class="gmail_extra"><br><div class="gmail_quote">On 12 July 2015 at 13:38, Podrigal, Aron <span dir="ltr"><<a href="mailto:aronp@guaranteedplus.com" target="_blank">aronp@guaranteedplus.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><p dir="ltr"><a href="https://wiki.freeswitch.org/wiki/Packet_Capture#Analyze_a_packet_capture_with_SIP_TLS_on_port_5061" target="_blank">https://wiki.freeswitch.org/wiki/Packet_Capture#Analyze_a_packet_capture_with_SIP_TLS_on_port_5061</a></p><div><div>
<div class="gmail_quote">On Jul 12, 2015 8:05 AM, "Nabeel" <<a href="mailto:nabeelshikder@gmail.com" target="_blank">nabeelshikder@gmail.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><p dir="ltr">Well, that was the output of that command. How do I decrypt it? </p>
<div class="gmail_quote">On 12 Jul 2015 13:03, "Podrigal, Aron" <<a href="mailto:aronp@guaranteedplus.com" target="_blank">aronp@guaranteedplus.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><p dir="ltr">Encrypted :) </p>
<div class="gmail_quote">On Jul 12, 2015 3:17 AM, "Nabeel" <<a href="mailto:nabeelshikder@gmail.com" target="_blank">nabeelshikder@gmail.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">I have attached the output of "# ngrep -tqd any -W byline port 5061" as you suggested.<div><br></div><div>Please let me know how I can add <span style="font-size:12.8000001907349px">transport=tls to contact, because in my config file I see nothing about contact header. </span></div></div><div class="gmail_extra"><br><div class="gmail_quote">On 12 July 2015 at 05:10, Podrigal, Aron <span dir="ltr"><<a href="mailto:aronp@guaranteedplus.com" target="_blank">aronp@guaranteedplus.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><p dir="ltr">Hello Nabeel, </p>
<p dir="ltr">I was expecting to get a textual file with all sip headers like the output of ngrep -tqd any -W byline I did not have a pc to be able to decode this pcap with tshark. I'll try to give a look at it tomorrow. </p>
<p dir="ltr">Just a note, try adding a transport=tls to contact. </p>
<div class="gmail_quote"><div><div>On Jul 11, 2015 2:59 AM, "Nabeel" <<a href="mailto:nabeelshikder@gmail.com" target="_blank">nabeelshikder@gmail.com</a>> wrote:<br type="attribution"></div></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div><div dir="ltr"><div>In the log, I see that 'uri' does not have ';transport=tls', but the 'ruri' does have ';transport=tls' :</div><div><br></div><div>DBG:core:parse_msg: uri: <sip:<a href="http://mydomain.com" target="_blank">mydomain.com</a>></div><div><br></div><div><div>DBG:core:parse_to: display={}, ruri={<a href="mailto:sip%3Ausername@mydomain.com" target="_blank">sip:username@mydomain.com</a>;transport=tls}</div></div><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On 11 July 2015 at 07:33, Nabeel <span dir="ltr"><<a href="mailto:nabeelshikder@gmail.com" target="_blank">nabeelshikder@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div class="gmail_extra"><font face="arial, helvetica, sans-serif">I checked the SIP capture in Wireshark and it seems the client is using the wrong port:</font></div><div class="gmail_extra"><font face="arial, helvetica, sans-serif"><br></font></div><div class="gmail_extra"><font face="arial, helvetica, sans-serif">"Src port 3921 (3921) [Client IP]</font></div><div class="gmail_extra"><font face="arial, helvetica, sans-serif"><br></font></div><div class="gmail_extra"><font face="arial, helvetica, sans-serif">Dst port 5061 (5061) [OpenSIPS IP]"</font></div><div class="gmail_extra"><font face="arial, helvetica, sans-serif"><br></font></div><div class="gmail_extra"><font face="arial, helvetica, sans-serif">The client is set to use port 5061 in its settings and I have the following in OpenSIPS config:</font></div><div class="gmail_extra"><font face="arial, helvetica, sans-serif"><br></font></div><font face="arial, helvetica, sans-serif"><tt>$<span>rp</span> = 50</tt><tt>61</tt><tt><br></tt><tt>add_uri_param("transport=tls");</tt><tt><br>force_send_socket("tls:ip:port");</tt></font><div class="gmail_extra"><font face="arial, helvetica, sans-serif"><br></font></div><div class="gmail_extra"><font face="arial, helvetica, sans-serif">So how can I add the route header to fix this?</font></div><div class="gmail_extra"><font face="arial, helvetica, sans-serif"><br></font></div><div class="gmail_extra"><br></div></div>
</blockquote></div><br></div>
<br></div></div><span>_______________________________________________<br>
Users mailing list<br>
<a href="mailto:Users@lists.opensips.org" target="_blank">Users@lists.opensips.org</a><br>
<a href="http://lists.opensips.org/cgi-bin/mailman/listinfo/users" rel="noreferrer" target="_blank">http://lists.opensips.org/cgi-bin/mailman/listinfo/users</a><br>
<br></span></blockquote></div>
<br>_______________________________________________<br>
Users mailing list<br>
<a href="mailto:Users@lists.opensips.org" target="_blank">Users@lists.opensips.org</a><br>
<a href="http://lists.opensips.org/cgi-bin/mailman/listinfo/users" rel="noreferrer" target="_blank">http://lists.opensips.org/cgi-bin/mailman/listinfo/users</a><br>
<br></blockquote></div><br></div>
</blockquote></div>
</blockquote></div>
</blockquote></div>
</div></div></blockquote></div><br></div>
</div></div></blockquote></div><br></div>
</div></div></blockquote></div><br><br clear="all"><div><br></div>-- <br><div class="gmail_signature"><div dir="ltr">Aron Podrigal<div>-</div><div>//Be happy :-)</div></div></div>
</div>