Trying to track down some VOIP issues and have been noticing that my captures are missing information. My hatred for all things sonicwall aside, what am I missing here?
SW NSA3600 Logging to FTP. ALL interfaces ALL ethertypes ALL ip types ALL source ip/port ALL dest ip/port
My caps from the phone itself differ from the ones caught by the SW. I'm missing things like RTPEVENT. If I pull up telephony and select voice calls it does'tt show test calls that were made.
Topology is very simple. voip subnet -> swtich -> sonicwall
Long story short, am I missing something here. My understanding is that as it is configured now it "should" capture ALL traffic and dump it to the FTP server, yet that doesn't seem to be the case.
No comments:
Post a Comment