Re: [sip-clf] [Sip-implementors] Is there a tool that draw tcpdump SIP logs as sequence diagramm?
"Vijay K. Gurbani" <vkg@bell-labs.com> Fri, 12 November 2010 16:58 UTC
Return-Path: <vkg@bell-labs.com>
X-Original-To: sip-clf@core3.amsl.com
Delivered-To: sip-clf@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 9C32D3A6A72 for <sip-clf@core3.amsl.com>; Fri, 12 Nov 2010 08:58:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.599
X-Spam-Level:
X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cAgZFuvCx7ed for <sip-clf@core3.amsl.com>; Fri, 12 Nov 2010 08:57:52 -0800 (PST)
Received: from ihemail1.lucent.com (ihemail1.lucent.com [135.245.0.33]) by core3.amsl.com (Postfix) with ESMTP id 81A3F3A69A2 for <sip-clf@ietf.org>; Fri, 12 Nov 2010 08:57:51 -0800 (PST)
Received: from umail.lucent.com (h135-3-40-63.lucent.com [135.3.40.63]) by ihemail1.lucent.com (8.13.8/IER-o) with ESMTP id oACGwM1l029263 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 12 Nov 2010 10:58:22 -0600 (CST)
Received: from shoonya.ih.lucent.com (Knoppix-135185238233.ih.lucent.com [135.185.238.233]) by umail.lucent.com (8.13.8/TPES) with ESMTP id oACGwMPZ010539; Fri, 12 Nov 2010 10:58:22 -0600 (CST)
Message-ID: <4CDD72A4.6060904@bell-labs.com>
Date: Fri, 12 Nov 2010 11:00:20 -0600
From: "Vijay K. Gurbani" <vkg@bell-labs.com>
Organization: Bell Laboratories, Alcatel-Lucent
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.15) Gecko/20101027 Fedora/3.0.10-1.fc12 Thunderbird/3.0.10
MIME-Version: 1.0
To: sip-implementors@lists.cs.columbia.edu
References: <182416872.20101112225012@gmail.com>
In-Reply-To: <182416872.20101112225012@gmail.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Scanned-By: MIMEDefang 2.57 on 135.245.2.33
Cc: "sip-clf@ietf.org" <sip-clf@ietf.org>
Subject: Re: [sip-clf] [Sip-implementors] Is there a tool that draw tcpdump SIP logs as sequence diagramm?
X-BeenThere: sip-clf@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: SIP Common Log File format discussion list <sip-clf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/sip-clf>, <mailto:sip-clf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sip-clf>
List-Post: <mailto:sip-clf@ietf.org>
List-Help: <mailto:sip-clf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sip-clf>, <mailto:sip-clf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 12 Nov 2010 16:58:00 -0000
On 11/12/2010 10:50 AM, alex.north.east@gmail.com wrote: > Hi, > Are you using any tool that helps you to parse and analyze SIP logs? > I use tcpdump to write logs and wireshark to analyze it. Is there > a tool, that can give me graphic representation of SIP messages? Alex: There isn't a canonical tool that will parse and analyze logs from different SIP vendors (unless you capture the traffic at the packet level and use Wireshark or tcpdump.) However, over at the SIPCLF working group [1], we are working on a common log format for SIP. Once defined, and when a SIP entities from different vendors implements the format, logs will be produced in a standardized manner allowing you to create sequence diagrams and perform other analytics. [1] http://datatracker.ietf.org/wg/sipclf/ Cheers, - vijay -- Vijay K. Gurbani, Bell Laboratories, Alcatel-Lucent 1960 Lucent Lane, Rm. 9C-533, Naperville, Illinois 60566 (USA) Email: vkg@{alcatel-lucent.com,bell-labs.com,acm.org} Web: http://ect.bell-labs.com/who/vkg/
- Re: [sip-clf] [Sip-implementors] Is there a tool … Vijay K. Gurbani