How to analyze / log SIP on a production server

I have a production unit and there is loads of traffic I need to sort through, to figure out WHY just a few extensions will disconnect abruptly in the middle of a live call. So I’m looking for ways to trace or log specific extensions (or peers, phones, or whatever I can)

Is there a way to log debug, error, or otherwise messages for one sip extension to a file?

-Erich Stein


Download wire shark

then " tcpdump -n -i eth0 -w /tmp/wireshark.pcap -s 2000 udp port 5060 "

will copy all the sip messaging to the file…

then copy the file to your machine and open in wireshark