Difference between revisions of "SIP Capture with TCPDump"
From Kolmisoft Wiki
Jump to navigationJump to search
Line 11: | Line 11: | ||
Packets will be saved to directory /home/capture_file_name | Packets will be saved to directory /home/capture_file_name | ||
You can send captured file capture.pcap from your server and open with Wireshark GUI and analyse the packets. | You can send captured file capture.pcap from your server to your pc and open with Wireshark GUI and analyse the packets. | ||
<br><br> | <br><br> | ||
=Full command explaining= | =Full command explaining= |
Revision as of 17:12, 30 April 2012
About
Tcpdump, a powerful command-line packet analyzer already installed and working on your system by default.
How to use it?
Login to your server aver ssh and put this command into terminal:
tcpdump -i eth0 -n -s 0 port 5060 -vvv -w /home/capture_file_name
Packets will be saved to directory /home/capture_file_name
You can send captured file capture.pcap from your server to your pc and open with Wireshark GUI and analyse the packets.
Full command explaining
You can find full command explaining here:
http://www.jonathanmanning.com/2009/10/26/how-to-voip-sip-capture-with-tcpdump-on-linux/
See also: