What with the advent and advance of virtualization, networking stacks used for Windows have evolved into complex multipartite entities these days. Therefore, misconfigurations within such infrastructure can result in what is perceived as considerably slower online connections. This is where Packet Monitor, a recent addition to Windows 10, comes in.
This program is what Microsoft calls its "in-box cross-component network diagnostics tool" for its all-pervading OS. Therefore, it might be expected to be able to pinpoint and specify the individual culprits for drops in a given stack.
The facility - also known as PacketMon - is indeed capable of packet-counting, packet-drop detection, detailed drop reporting, packet-capture and of filtering the same according to specific ports.
It is accessed by running pktmon.exe as an administrator, and responds to commands such as pktmon start –etw -m (to start logging); pktmon stop (to stop); and pktmon filter add -p [port number]. It outputs in the .etl format, but can convert these logs to .txt files.
The updated Packet Monitor in Windows 10 May 2020 will be compatible with Microsoft Network Monitor (NetMon) and Wireshark (pcapng). It will also offer high-volume in-memory logging; real-time on-screen monitoring; multi-location (in terms of a given stack) packet capture and flexible counting.
Then again, it will not work on wireless connections, reports on a limited number of components and lacks firewall compatibility. Hopefully, Microsoft will work on these deficiences for future updates.
Are you a techie who knows how to write? Then join our Team! Wanted:
- News Writer (Romania based)
Details here
Source(s)
Microsoft via WinCentral