In recent years, the complexity of debugging process has been greatly increased due to the addition of network planning and other advanced functions.Although advanced packet capture tools such as Wireshark can provide diagnostic help to developers, this is beyond the knowledge of ordinary users.But in fact, as early as 2018, Microsoft has built in the network diagnosis tool packet monitor (packetmon) in the windows operating system.
It is reported that packetmon provides packet capture, filtering, packet loss detection, counting and other functions, and it can intercept packets in the route at each location of the entire network stack.
● data packets can be captured at multiple locations of the network stack;
● packet loss detection and cause report;
● supports filtering of run-time encapsulated packets;
● provide flexible packet counter;
● monitoring packets can be implemented on the screen;
● provide high-capacity memory logging;
● compatible with existing Microsoft Network Monitor (netmon) and Wireshark (pcapng) tools.
Of course, packetmon has its limitations. Because it only supports use within Ethernet, is not integrated with firewall, and the packet loss reporting function is only applicable to the supported components.
Interested friends can run pktmon.exe Command, or windows central administration extension in Windows server to access packet monitor (packetmon).