<br><br><div class="gmail_quote">On Thu, Dec 17, 2009 at 4:01 PM, Frank @ Impact <span dir="ltr"><<a href="mailto:frank@impactfax.com">frank@impactfax.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div link="blue" vlink="purple" lang="EN-US">
<div>
<p class="MsoNormal"><font face="Arial" size="3"><span style="font-size: 12pt; font-family: Arial;">I bit off topic but…</span></font></p>
<p class="MsoNormal"><font face="Arial" size="3"><span style="font-size: 12pt; font-family: Arial;"> </span></font></p>
<p class="MsoNormal"><font face="Arial" size="3"><span style="font-size: 12pt; font-family: Arial;">Using FS to send calls sip to the LD carrier.</span></font></p>
<p class="MsoNormal"><font face="Arial" size="3"><span style="font-size: 12pt; font-family: Arial;"> </span></font></p>
<p class="MsoNormal"><font face="Arial" size="3"><span style="font-size: 12pt; font-family: Arial;">Some calls have problems where they drop the call or audio
drops or whatever.</span></font></p>
<p class="MsoNormal"><font face="Arial" size="3"><span style="font-size: 12pt; font-family: Arial;">The carrier’s first response is that we dropped the
call.<span> </span>But this <span>is<span> </span>a</span> day later after the trouble has
been reported.</span></font></p>
<p class="MsoNormal"><font face="Arial" size="3"><span style="font-size: 12pt; font-family: Arial;"> </span></font></p>
<p class="MsoNormal"><font face="Arial" size="3"><span style="font-size: 12pt; font-family: Arial;">I am looking for guidance on how to log all sip message
traffic and then be able to easily retrieve to find a call and look at what sip
messages really were being based and by whom.<span> </span>Maybe store them in a database or some
other file that might be opened by an analysis tool.</span></font></p>
<p class="MsoNormal"><font face="Arial" size="3"><span style="font-size: 12pt; font-family: Arial;"> </span></font></p>
<p class="MsoNormal"><span><font face="Arial" size="3"><span style="font-size: 12pt; font-family: Arial;">Any suggestions on how to log this
information and then what tool to use for later analysis?</span></font></span><font face="Arial"><span style="font-family: Arial;"></span></font></p>
<p class="MsoNormal"><font face="Arial" size="3"><span style="font-size: 12pt; font-family: Arial;"> </span></font></p></div></div></blockquote><div>Jason Garland's ClueCon2009 videos about tcpdump and wireshark cover the thought of doing a rotating log file so that it captures a bunch of stuff but doesn't go over X number of megabytes... I don't recall exactly where in his videos that part appears, but here are the links to those vids. Hope it helps!<br>
-MC<br></div></div><br>Look at this video first:<br><a href="http://www.viddler.com/explore/cluecon/videos/33/">http://www.viddler.com/explore/cluecon/videos/33/</a><br>Then check this one if you need more info:<br><a href="http://www.viddler.com/explore/cluecon/videos/8/">http://www.viddler.com/explore/cluecon/videos/8/</a><br>