Capture Network Packet without Wireshark

Posted byFeivelPosted inUncategorizedTags:,

Cheat Code
> netsh trace start persistent=yes capture=yes tracefile=c:\temp\capture.etl
> netsh trace stop

There are too many time we need to troubleshoot issue all the way to network level.
Unable to connect, strange application error, etc.
Nothing beats the capturing network packets to know at the lowest level.
Use the above cheat code to capture the packet for analysis.
Next time I’ll post on how to analyze the captured packet.

Warning
The captured file can be huge, quickly turn off the cheat once issue reproduced!

Follow-up:
> Tracing TCP packets

Image by Linnea Herner from Pixabay

Published by Feivel

We love to travel!

One thought on “Capture Network Packet without Wireshark

  1. Pingback: Digging the .ETL file – network packets file for TCP connection – My IT Cheat Code

Leave a comment

Design a site like this with WordPress.com
Get started