Netsh has a rich set of scenarios available for tracing network stacks.
I hear that Netmon is capable of formating these traces.
Any truth to this?
True & true (on NT6).
http://blogs.technet.com/b/netmon/archive/2009/05/13/event-tracing-for-windo
ws-and-network-monitor.aspx
I was so struck by the usefulness of this approach that I added tracing to a
driver to capture internal network traffic at various processing points that
are never seen outside the driver and wrote a netMon parser to decode it.
That driver now has a highly unobtrusive way of getting telemetry out of it
and the power of netmon to decode all of the gobbledygook into a very nice
bit of information.
And that driver works on XP+ (though the trace files can only be opened on
Win7).
Good Luck,
Dave Cattley
-----Original Message-----
From: xxxxx@lists.osr.com
[mailto:xxxxx@lists.osr.com] On Behalf Of xxxxx@yahoo.com
Sent: Thursday, October 20, 2011 2:41 PM
To: Windows System Software Devs Interest List
Subject: [ntdev] netsh and netmon for tracing and formatting
Netsh has a rich set of scenarios available for tracing network stacks.
I hear that Netmon is capable of formating these traces.
Any truth to this?
NTDEV is sponsored by OSR
For our schedule of WDF, WDM, debugging and other seminars visit:
http://www.osr.com/seminars
To unsubscribe, visit the List Server section of OSR Online at
http://www.osronline.com/page.cfm?name=ListServer
Thanks Dave.
I’ll get busy with captures and deocde attempts.