I?ve heard this is a great product but holds a nice price tag to it as well. -carlos From: voiceops-bounces at voiceops.org [mailto:voiceops-bounces at voiceops.org] On Behalf Of Jason L. Nesheim Sent: Saturday, August 29, 2009 9:31 AM To: Nathan Stratton Cc: voiceops at voiceops.org Subject: Re: [VoiceOps] network jitter tools You could also take a look at the Hammer XMS. http://www.empirix.com/products/hammer_xms_service_assurance.asp -- Jason Nesheim ----- Original Message ----- From: "Nathan Stratton" <nathan at robotics.net> To: "anorexicpoodle" <anorexicpoodle at gmail.com> Cc: voiceops at voiceops.org Sent: Wednesday, August 26, 2009 7:46:59 AM Subject: Re: [VoiceOps] network jitter tools On Tue, 25 Aug 2009, anorexicpoodle wrote:
Acme radius CDR's contain RTP statistics per-call for large scale statistics collection. Not sure if/what other SBC's make this data available.
Covergence now acme also does. -Nathan _______________________________________________ VoiceOps mailing list VoiceOps at voiceops.org https://puck.nether.net/mailman/listinfo/voiceops
Does anyone have a suggestion for another wireshark type application for windows that won?t explode when trying to load RTP captures over ~500MB? Brooks R. Bridges Telecommunications Manager Ifbyphone, Inc. Phone: (847) 983-3000 Fax: (847) 676-6553 bbridges at ifbyphone.com http://www.ifbyphone.com From: voiceops-bounces at voiceops.org [mailto:voiceops-bounces at voiceops.org] On Behalf Of Carlos Alcantar Sent: Monday, August 31, 2009 5:31 PM To: voiceops at voiceops.org Subject: Re: [VoiceOps] network jitter tools I?ve heard this is a great product but holds a nice price tag to it as well. -carlos From: voiceops-bounces at voiceops.org [mailto:voiceops-bounces at voiceops.org] On Behalf Of Jason L. Nesheim Sent: Saturday, August 29, 2009 9:31 AM To: Nathan Stratton Cc: voiceops at voiceops.org Subject: Re: [VoiceOps] network jitter tools You could also take a look at the Hammer XMS. http://www.empirix.com/products/hammer_xms_service_assurance.asp -- Jason Nesheim ----- Original Message ----- From: "Nathan Stratton" <nathan at robotics.net> To: "anorexicpoodle" <anorexicpoodle at gmail.com> Cc: voiceops at voiceops.org Sent: Wednesday, August 26, 2009 7:46:59 AM Subject: Re: [VoiceOps] network jitter tools On Tue, 25 Aug 2009, anorexicpoodle wrote:
Acme radius CDR's contain RTP statistics per-call for large scale statistics collection. Not sure if/what other SBC's make this data available.
Covergence now acme also does. -Nathan _______________________________________________ VoiceOps mailing list VoiceOps at voiceops.org https://puck.nether.net/mailman/listinfo/voiceops
http://www.cacetech.com/ You can pre-process with editcap, mergecap, and tshark as well. David On Tue, Sep 1, 2009 at 7:39 AM, Brooks Bridges<bbridges at ifbyphone.com> wrote:
Does anyone have a suggestion for another wireshark type application for windows that won?t explode when trying to load RTP captures over ~500MB?
Brooks R. Bridges
Telecommunications Manager
Ifbyphone, Inc.
Phone: (847) 983-3000
Fax: (847) 676-6553
bbridges at ifbyphone.com
From: voiceops-bounces at voiceops.org [mailto:voiceops-bounces at voiceops.org] On Behalf Of Carlos Alcantar Sent: Monday, August 31, 2009 5:31 PM To: voiceops at voiceops.org Subject: Re: [VoiceOps] network jitter tools
I?ve heard this is a great product but holds a nice price tag to it as well.
-carlos
From: voiceops-bounces at voiceops.org [mailto:voiceops-bounces at voiceops.org] On Behalf Of Jason L. Nesheim Sent: Saturday, August 29, 2009 9:31 AM To: Nathan Stratton Cc: voiceops at voiceops.org Subject: Re: [VoiceOps] network jitter tools
You could also take a look at the Hammer XMS.
http://www.empirix.com/products/hammer_xms_service_assurance.asp
-- Jason Nesheim
----- Original Message ----- From: "Nathan Stratton" <nathan at robotics.net> To: "anorexicpoodle" <anorexicpoodle at gmail.com> Cc: voiceops at voiceops.org Sent: Wednesday, August 26, 2009 7:46:59 AM Subject: Re: [VoiceOps] network jitter tools
On Tue, 25 Aug 2009, anorexicpoodle wrote:
Acme radius CDR's contain RTP statistics per-call for large scale statistics collection. Not sure if/what other SBC's make this data available.
Covergence now acme also does.
-Nathan _______________________________________________ VoiceOps mailing list VoiceOps at voiceops.org https://puck.nether.net/mailman/listinfo/voiceops
_______________________________________________ VoiceOps mailing list VoiceOps at voiceops.org https://puck.nether.net/mailman/listinfo/voiceops
Brooks Bridges wrote:
Does anyone have a suggestion for another wireshark type application for windows that won?t explode when trying to load RTP captures over ~500MB?
I've loaded multi-gigabyte captures into the Linux version. It doesn't explode, it just eats RAM. A lot of RAM. Oh, and, at that point it's so dog slow to filter, analyse or aggregate anything that I lose patience and move onto watching paint dry. -- Alex Balashov - Principal Evariste Systems Web : http://www.evaristesys.com/ Tel : (+1) (678) 954-0670 Direct : (+1) (678) 954-0671
Alex Balashov wrote:
Brooks Bridges wrote:
Does anyone have a suggestion for another wireshark type application for windows that won?t explode when trying to load RTP captures over ~500MB?
I've loaded multi-gigabyte captures into the Linux version. It doesn't explode, it just eats RAM. A lot of RAM.
Oh, and, at that point it's so dog slow to filter, analyse or aggregate anything that I lose patience and move onto watching paint dry.
I use OmniPeek from Wildpackets on my desktop machine when I need to open huge files. 4GB ram quad core phenom, Vista. Works fine for me so far. Depending on the size of the dumps, opening a 2GB file usually takes under a minute to sort it all out. For the voice side, as much as I like Wireshark, it couldn't touch Omni with a 20ft pole. -- =+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+ J. Oquendo SGFA, SGFE, C|EH, CNDA, CHFI, OSCP "It takes 20 years to build a reputation and five minutes to ruin it. If you think about that, you'll do things differently." - Warren Buffett 227C 5D35 7DCB 0893 95AA 4771 1DCE 1FD1 5CCD 6B5E http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x5CCD6B5E
I think the key is that something specific to the voice domain most likely indexes RTP and/or SIP packets by protocol-specific criteria, much in the manner in which database indexes operate. In-memory data structures such as hash tables and binary trees are used, keyed to things like Call-ID GUID, port / IP tuples, etc. Wireshark, as I understand it, just does a full text search on the payloads. I don't know for certain that this is how Wireshark actually works. However, that would explain why searching for packets matching certain header field values (exactly or wildcard/pattern) takes so long. -- Sent from mobile device On Sep 1, 2009, at 12:41 PM, "J. Oquendo" <sil at infiltrated.net> wrote:
Alex Balashov wrote:
Brooks Bridges wrote:
Does anyone have a suggestion for another wireshark type application for windows that won?t explode when trying to load RTP captures over ~500MB?
I've loaded multi-gigabyte captures into the Linux version. It doesn't explode, it just eats RAM. A lot of RAM.
Oh, and, at that point it's so dog slow to filter, analyse or aggregate anything that I lose patience and move onto watching paint dry.
I use OmniPeek from Wildpackets on my desktop machine when I need to open huge files. 4GB ram quad core phenom, Vista. Works fine for me so far. Depending on the size of the dumps, opening a 2GB file usually takes under a minute to sort it all out. For the voice side, as much as I like Wireshark, it couldn't touch Omni with a 20ft pole.
--
=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+ J. Oquendo SGFA, SGFE, C|EH, CNDA, CHFI, OSCP
"It takes 20 years to build a reputation and five minutes to ruin it. If you think about that, you'll do things differently." - Warren Buffett
227C 5D35 7DCB 0893 95AA 4771 1DCE 1FD1 5CCD 6B5E http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x5CCD6B5E
participants (5)
-
abalashov@evaristesys.com -
bbridges@ifbyphone.com -
carlos@race.com -
hiersd@gmail.com -
sil@infiltrated.net