11-06-2017 04:48 PM - edited 03-12-2019 04:42 AM
i have site-to-site vpn working well and voice team installed sip trunk between two sites and we are receiving calls from other site via vpn tunnel , now we facing issue with the call as one call consume 1 Mega internet bandwidth and after troubleshooting with cisco TAC , they want to capture voice traffic that coming in the tunnel and supposed this traffic is encapsulated , how can i capture these traffic
ASA 5512-x
version 9.4
11-06-2017 05:14 PM
theoretically you can´t capture specific protocol inside the VPN tunnel as it is encapsulated. You can try this on the ASA by using a ACL marking the source and destination IP address and then use the command 'capture' with required parameters. You can also use port span.
However, why the consume of 1 Mbps internet is reason for a TAC ? Depends on the codec you are using, one call can consume almost 100 Kbps. If you have 10 simultaneously calls, you already have 1 Mbps.
-If I helped you somehow, please, rate it as useful.-
11-06-2017 07:39 PM
11-07-2017 01:04 AM
i tried to capture using ACL Marking the source and destination ip of traffic inside tunnel but didn't work
also i was thinking maybe use specific debug command , is it possible ?
or we can install vpn tunnel without encapsulation , is it possible also ?
11-07-2017 01:42 AM
Not possible capture on tunnel and not possible does not encapsulate.
You need to perform capture after traffic is decapsulated.
-If I helped you somehow, please, rate it as useful.-
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide