AudioCodes Mediant 500L MSBR

To Next Page

To Previous Page

User's Manual 57. Syslog and Debug Recordings

Version 6.8 743 Mediant 500L MSBR

Parameter Description

Capture Type

CLI: capture-type

[LoggingFilters_CaptureType]

Enables debug recordings for the defined logging filter and defines

what to record:

 [0] None (default)

 [1] Signaling = Information related to signaling such as SIP

signaling messages, Syslog, CDR, and the device's internal

processing messages.

 [2] Signaling & Media = Signaling and media (RTP/RTCP/T.38).

 [3] Signaling & Media & PCM = Signaling, media, and PCM

(voice signals from and to TDM).

 [4] PSTN trace = ISDN and CAS traces - applicable only for

Trunk-related filters.

Note: This parameter is not applicable when 'Filter Type' is set to

IP Trace.

57.5.1 Filtering IP Network Traces

You can filter Syslog and debug recording messages for IP network traces, by setting the

'Filter Type' parameter to IP Trace in the Logging Filters table. IP traces are used to record

any IP stream, according to destination and/or source IP address, or port and Layer-4

protocol (UDP, TCP or any other IP type as defined by http://www.iana.com). Network

traces are typically used to record HTTP.

When the IP Trace option is selected, only the ‘Value’ parameter is applicable; the 'Syslog'

and 'Capture Type' parameters are not relevant. The 'Value' parameter configures the

Wireshark-like filtering expressions for your IP trace. The following Wireshark-like

expressions are supported:

Table 57-6: Supported Wireshark-like Expressions for 'Value' Parameter

Expression Description

ip.src, ip.dst Source and destination IP address

ip.addr IP address - up to two IP addresses can be entered

ip.proto IP protocol type (PDU) entered as an enumeration value

(e.g., 1 is ICMP, 6 is TCP, 17 is UDP)

udp, tcp, icmp, sip, ldap, http, https Single expressions for protocol type

udp.port, tcp.port Transport layer

udp.srcport, tcp.srcport Transport layer for source port

udp.dstport, tcp.dstport Transport layer for destination port

and, &&, ==, <, > Between expressions

Below are examples of configured expressions for the 'Value' parameter:



udp && ip.addr==10.8.6.55



ip.src==10.8.6.55 && udp.port>=5000 and udp.port<6000



ip.dst==10.8.0.1/16



ip.addr==10.8.6.40

For conditions requiring the "or" / "||" expression, add multiple table rows. For example, the

Wireshark condition "(ip.src == 1.1.1.1 or ip.src == 2.2.2.2) and ip.dst == 3.3.3.3" can be

configured using the following two table row entries:

Main Page

Table of Contents

Other manuals for AudioCodes Mediant 500L MSBR

Related product manuals