we are trying to collect LYNC flows, between clients and servers, for analysis needs.
We see and decode correctly the SIP trafic.
We collect an TCP flow (TLS) on server port 8057 (PSOM), for Web conferencing..
And we have an other high trafic on a very hudge range of UDP ports.
My questions is : What could we decode with DC-RUM for this type of application (Lync) ?
Take a look here:
But it's only really Worth something if they run their own server. If they run the cloud instance, Everything will be encoded and you will basically only see flows.
I also added a PDF - Fun to look at but much harder to follow.