Multicast streaming analysis using tcpdump

If you want to track network problems with IPTV streaming you may take a look at IGMP messages exchange in your network. IGMP is used to register clients for multicast streaming. You may record whole stream using Wireshark of course, but there's much lightweight solution:

$ sudo tcpdump -i eth0 igmp
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes
10:33:44.193733 IP > igmp leave
10:33:44.205985 IP > igmp v2 report
10:33:44.304046 IP > igmp v2 report
10:33:44.325005 IP > igmp v2 report
10:33:44.975081 IP > igmp leave
10:33:44.989943 IP > igmp v2 report
10:33:45.049022 IP > igmp leave
10:33:45.369314 IP > igmp v2 report
10:33:45.389416 IP > igmp v2 report
10:33:45.435321 IP > igmp v2 report
10:33:45.789133 IP > igmp v2 report
10:33:45.882137 IP > igmp v2 report
10:33:45.905140 IP > igmp v2 report

Tcpdump is a command line tool that shows all network traffic to stdout (filtered to IGMP protocol in our case) you can filter later by grep and do detailed analysis and statistics.

This entry was posted in en and tagged , . Bookmark the permalink.

Leave a Reply

Your email address will not be published.

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>