Applies to:
Windows Server 2008
Windows Vista
Windows Server 2003
Windows XP
To capture network packets (for those coming from a Unix background, Packet sniffer or protocol analyzer, or TCPDump), you will need to install Network Monitor (Netmon)
Microsoft Network Monitor 3.4
http://www.microsoft.com/en-us/download/details.aspx?id=4865
Image may be NSFW.
Clik here to view.
Depending on which processor you have, pick the right one.
In this example, I’ll be using the x64 package.
Image may be NSFW.
Clik here to view.
Click on “Run”
Image may be NSFW.
Clik here to view.
Click on “Run”
Image may be NSFW.
Clik here to view.
Click on “Yes”
Image may be NSFW.
Clik here to view.
Click on “Yes”
Image may be NSFW.
Clik here to view.
Select the radio button for “I accept the terms in the License Agreement”
Image may be NSFW.
Clik here to view.
Click on “Next”
Image may be NSFW.
Clik here to view.
Click on “Typical”
Image may be NSFW.
Clik here to view.
Click on “Install”
Image may be NSFW.
Clik here to view.
Click on “Finish”.
Ok, now we are ready to collect data.
Image may be NSFW.
Clik here to view.
Right click on the “Microsoft Network Monitor 3.4” icon
Image may be NSFW.
Clik here to view.
Click on “Run as administrator”
Warning: If you don’t elevate, you will not be able to see the Network Interfaces.
Image may be NSFW.
Clik here to view.
Select the “Network (s)” that you want to monitor.
Image may be NSFW.
Clik here to view.
Click on Tools and Options…
Image may be NSFW.
Clik here to view.
Click on the “Parser Profiles”
Image may be NSFW.
Clik here to view.
Select “High Performance Capturing”
Click on “Set As Active”
Click on OK
Image may be NSFW.
Clik here to view.
Click on “New capture tab”
Image may be NSFW.
Clik here to view.
Whenever you are ready to start the network capture, click on “Start”
Write down the questions to help you and your peers analyze the network trace.
Network tracing (packet sniffing) data to provide when troubleshooting.
http://blogs.technet.com/b/yongrhee/archive/2012/12/20/network-tracing-packet-sniffing-data-to-provide-when-troubleshooting.aspx
Clik here to view.