Using Syslog for Logging of Complete SIP Messaging on Spectralink 84-Series Handsets



Similar documents
Domain Requirements in Spectralink SIP Phones

Available Update Methods

Spectralink 7000 Site Survey. User Guide

Application note: Handset Sharing on Spectralink IP- DECT Server 400 and 6500

Information on Syslog For more information on syslog, see RFC Released: December 2006 Interoperability issues: None. Table 1: Syslog at a Glance

Syslog on Polycom Phones

Device Certificates on Polycom Phones

LinkPlus Interface Guide

Deploying and Configuring Polycom Phones in 802.1X Environments

LinkPlus Interface Guide

Customizing the Display Background on Polycom VVX Business Media Phones

Supporting the Calendar, Instant Messaging, and Presence Features on Polycom Phones

Update Configuration. Reboot Phone To upload files to assist in diagnostics, you can choose:

Using Enhanced Feature Keys and Configurable Soft Keys on Polycom Phones

Broadcasting Audio Messages with Group Paging and Push-to-Talk

LinkPlus Interface Guide

Using custom certificates with Spectralink 8400 Series Handsets

Broadcasting Audio Messages with Group Paging and Push-to-Talk

Using Multiple Appearance Directory Number - Single Call Appearance with Polycom Phones

Dell Statistica Statistica Enterprise Installation Instructions

Veeam Task Manager for Hyper-V

RealPresence Platform Director

IBM WebSphere Application Server Communications Enabled Applications

enetworks TM Using the Syslog Feature C.1 Configuring the Syslog Feature

Using Premium Automatic Call Distribution for Call Centers

Configuration Guide. SafeNet Authentication Service. Remote Logging Agent

Enabling Remote Management of SQL Server Integration Services

RSA Security Analytics

Dell One Identity Cloud Access Manager How to Configure vworkspace Integration

Cisco Unified Communications Manager (CUCM)

Connectivity to Polycom RealPresence Platform Source Data

Technical Bulletin 5844

Introducing the Locking Feature. About Your User Password. Locking and Unlocking Your Phone. Calling and Answering from a Locked Phone

Quick Start Guide for Symantec Event Collector for ForeScout CounterACT

Moxa Device Manager 2.3 User s Manual

SOFTWARE 3.0 SEPTEMBER CAROUSEL

Log Insight Manager. Deployment Guide

PortSIP Encryption Relay Server Deployment Guide

IP Session/Cyberdata IP Endpoints. IP Paging and Access Control

MS Skype for Business and Lync. Integration Guide

Dell One Identity Cloud Access Manager How to Configure for High Availability

Using the Unified Call Appearance List

Security Slots on Polycom SoundPoint IP, SoundStation IP, SoundStation Duo and VVX Series Phones

NCD ThinPATH Load Balancing Startup Guide

Integrate Websense Web Security Gateway (WSG)

2X HTML5 Gateway v10.6

Polycom recommends that all legacy phones be updated to the most recent patch of their last supported SIP and BootROM software versions.

Polycom RealPresence Access Director System

Using Feature Synchronized Automatic Call Distribution with Polycom Phones

PRINT FLEET MANAGER USER MANUAL

Polycom RealPresence DMA 7000 System, Virtual Edition

Polycom RealPresence Mobile for Apple ipad

Deployment Guide for the Polycom SoundStructure VoIP Interface for Cisco Unified Communications Manager (SIP)

SOFTWARE 3.0 SEPTEMBER CAROUSEL

Virtual Office. Technical Requirements. Version 3.1. Revision 1.0

Folder Proxy + OWA + ECP/EAC Guide. Version 2.0 April 2016

WiFiPerf User Guide 1.5

How to Provision a Polycom Phone

Installation Guide Wireless 4-Port USB Sharing Station. GUWIP204 Part No. M1172-a

Dell InTrust Preparing for Auditing and Monitoring Microsoft IIS

Engineering Advisory Power Consumption and Management on Polycom Phones

LANDesk Management Suite 8.7 Extended Device Discovery

Dell Statistica Document Management System (SDMS) Installation Instructions

Deploying the BIG-IP LTM with IBM QRadar Logging

HyperFS PC Client Tools

MobileStatus Server Installation and Configuration Guide

Spectralink 8020/8030 Wireless Telephones Quick Start Guide

How To Use A Presence Desktop On A Pc Or Mac Or Ipad (For A Non-Profit) For Free

Troubleshooting Procedures for Cisco TelePresence Video Communication Server

Adaptec Event Monitor Utility. User s Guide

Linking 2 Sites Together Using VPN How To

RSA Security Analytics

REQUIREMENTS AND INSTALLATION OF THE NEFSIS DEDICATED SERVER

Technical Bulletin 18292

Mitel MiVoice Business 3300 ICP

Configuring PPP And SIP

Multi-Tech FaxFinder IP

DashBoard Beta Web Server

Monitoring Open VPN Access Server

Polycom VVX 300, 310, 400 and 410 Business Media Phone

GETTING STARTED GUIDE. 1.3 September D. Polycom RealAccess

Syslog Server Configuration on Wireless LAN Controllers (WLCs)

Chapter 8 Monitoring and Logging

User Document. Adobe Acrobat 7.0 for Microsoft Windows Group Policy Objects and Active Directory

Nimsoft Monitor. sysloggtw Guide. v1.4 series

Snare for Firefox Snare Agent for the Firefox Browser

Polycom RSS 4000 / RealPresence Capture Server 1.6 and RealPresence Media Manager 6.6

LogLogic Trend Micro OfficeScan Log Configuration Guide

Upgrade Guide. CA Application Delivery Analysis 10.1

PingFederate. Identity Menu Builder. User Guide. Version 1.0

How To Program A Talkswitch Phone On A Cell Phone On An Ip Phone On Your Ip Phone (For A Sim Sim) On A Pc Or Ip Phone For A Sim Phone On Iphone Or Ipro (For An Ipro) On

Trend Micro Incorporated reserves the right to make changes to this document and to the products described herein without notice.

Flow Publisher v1.0 Getting Started Guide. Get started with WhatsUp Flow Publisher.

Dell One Identity Cloud Access Manager How to Configure Microsoft Office 365

An Oracle White Paper September Oracle WebLogic Server 12c on Microsoft Windows Azure

Dell InTrust Preparing for Auditing Cisco PIX Firewall

Transcription:

Using Syslog for Logging of Complete SIP Messaging on Spectralink 84-Series Handsets This bulletin provides detailed information on how to use syslog to log the complete text of every SIP message in the least disruptive manner. System Affected Spectralink 84-Series Handsets Description Syslog is a standard for forwarding log messages in an IP network. Polycom phones can be configured to log the complete text of every SIP message they send or receive. Logging the complete text of SIP messages provides an alternative tool for debugging problems when the use of a network capture tool such as Wireshark is not available. However, logging SIP messages using the default method of logging to the phone s flash file system causes an excessive load on the phone s CPU, making the phone unresponsive and possibly even causing it to reboot. This quick tip describes how to use the syslog facility on the phone to capture the logged information and reduce the load on the phone. This technical bulletin contains information on: Requirements Configuration Performance Considerations Summary Example Configuration For more information on syslog, refer to Syslog Menu of the current 84-Series Administrator s Guide at http://support.spectralink.com/resources/spectralink-84-series-wireless-telephoneadmin-guide.

Requirements You must have the following: The machine running the syslog server must be accessible by the phone. If the syslog messages are to be sent over TCP, the syslog server must be TCP capable. If the phone is configured to use TLS as the transport, then either a syslog server that supports TLS is needed or a front-end server that supports TLS such as Stunnel http://www.stunnel.org must also be available. Configuration To configure the phone to send log messages to the syslog server, refer to the 84-Series Administrator s Guide. Logging to the Syslog Server Only To reduce the load on the phone, you should configure it to only log to the syslog server and not to the phone s flash file system. Make the following changes to your phone s configuration file: log.render.stdout= 0 log.render.file= 0 Setting the Log level for SIP Messages The default loglevel for log messages from the SIP module is set to 4. For the SIP module to log the text of any SIP messaging it sends or receives, this level must be set to 0. Make the following changes to your phone s configuration file: log.level.change.sip= 0 The rendering level for syslog must also be changed to 0. It may be set either from the phone s Syslog Menu or via the device.syslog.renderlevel parameter in your phone s configuration file. Using TLS to Transport Syslog Messages If the SIP messaging being logged is considered sensitive, the phone can be configured to use TLS to transport the syslog messages. This can be set from the phone s Syslog Menu->Server Type. By default, the syslog server type is UDP. If you decided to use TLS, the syslog server must also support TLS or a front-end server must provide TLS support. One such server is the open source Stunnel server available at http://www.stunnel.org. An example configuration using stunnel and the open source version of March 2012 2

syslog-ng (http://www.balabit.com/network-security/syslog-ng/opensource-logging-system/) is available in Example Configuration. Performance Considerations Network Bandwidth Use of syslog to capture SIP messaging results in an approximate 10 fold increase in network traffic over the original SIP messaging. This is a result of the additional information that is added to each line of the SIP message by the logging subsystem and the fact that each line output by the logging subsystem results in a separate syslog message. Summary In situations where getting a network capture is not a viable option turning up SIP logging and using syslog to save the messages is an alternative. It is not advisable to have all of your sites phones configured this way all of the time, because of the increased load on the network. However, if you are troubleshooting a specific phone, the additional load is negligible. Using syslog to capture regular log messages at the default log levels will also not dramatically impact a well designed network. Example Configuration The following example shows the configuration of stunnel and syslog for TLS.This example is from a Linux machine running SuSe 10.1. It is assumed that the syslog and stunnel servers are running on the same machine. To configure stunnel and syslog for TLS: 1. Obtain and install a copy of stunnel and syslog-ng. 2. Obtain a signed server side CAfile certificate for the syslog machine from one of the public CA's or create your own CA and server certificate. For more information, refer to Installing Certificates on Spectralink 84-Series Handsets on the cert key Spectralink Support Portal at http://support.spectralink.com/resources/installing-certificatesspectralink-84-series-handsets. 3. In the stunnel.conf file, set to point to the location of your CA certificate. The stunnel.conf file is usually located in the /etc/stunnel/ folder on a Linux machine. 4. In the stunnel.conf file, set to point to the signed server certificate and to point to the corresponding key file. March 2012 3

[syslog] accept = 14680 Technical Bulletin CS-12-33 5. In the stunnel.conf file, add the following lines: connect = 127.0.0.1:5140 This will accept syslog TLS messages from any IP address, and forward them to the localhost source port stunnel 5140. port(5140) {tcp(ip("127.0.0.1") 6. If the CA certificate is a custom one, add it to the phone. For max-connections(1));}; more information, refer to Installing Certificates on Spectralink 84-Series Handsets. 7. In the syslog-ng config file, add the following lines: 8. Restart both syslog and stunnel. March 2012 4

Copyright Notice 2012-2014 Spectralink Corporation All rights reserved. Spectralink TM, the Spectralink logo and the names and marks associated with Spectralink s products are trademarks and/or service marks of Spectralink Corporation and are common law marks in the United States and various other countries. All other trademarks are property of their respective owners. No portion hereof may be reproduced or transmitted in any form or by any means, for any purpose other than the recipient s personal use, without the express written permission of Spectralink. All rights reserved under the International and pan-american Copyright Conventions. No part of this manual, or the software described herein, may be reproduced or transmitted in any form or by any means, or translated into another language or format, in whole or in part, without the express written permission of Spectralink Corporation. Do not remove (or allow any third party to remove) any product identification, copyright or other notices. Notice Spectralink Corporation has prepared this document for use by Spectralink personnel and customers. The drawings and specifications contained herein are the property of Spectralink and shall be neither reproduced in whole or in part without the prior written approval of Spectralink, nor be implied to grant any license to make, use, or sell equipment manufactured in accordance herewith. Spectralink reserves the right to make changes in specifications and other information contained in this document without prior notice, and the reader should in all cases consult Spectralink to determine whether any such changes have been made. NO REPRESENTATION OR OTHER AFFIRMATION OF FACT CONTAINED IN THIS DOCUMENT INCLUDING BUT NOT LIMITED TO STATEMENTS REGARDING CAPACITY, RESPONSE-TIME PERFORMANCE, SUITABILITY FOR USE, OR PERFORMANCE OF PRODUCTS DESCRIBED HEREIN SHALL BE DEEMED TO BE A WARRANTY BY SPECTRALINK FOR ANY PURPOSE, OR GIVE RISE TO ANY LIABILITY OF SPECTRALINK WHATSOEVER. Warranty The Product Warranty and Software License and Warranty and other support documents are available at http://support.spectralink.com. Contact Information US Location Denmark Location 800-775-5330 +45 7560 2850 Spectralink Corporation Spectralink Europe ApS 2560 55th Street Langmarksvej 34 Boulder, CO 80301 8700 Horsens info@spectralink.com infodk@spectralink.com March 2012 5

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information