Network Monitor

  • Intro to Filtering with Network Monitor 3.0

    Challenges of Filtering One of the biggest changes between NM2.x and NM3.0 is the way you do filtering. Old NM2.x hacks may be challenged by the loss of the UI wizard to build filters. On the other hand, Ethereal users may be pleased and further encouraged...
  • Santa’s Bag was Full

    The Elves are working furiously on the next version of Network Monitor 3.2. But it seems that NM3.2 won’t be under the tree for Christmas for this season. In a few more months, however, we will have a new Beta available for public consumption. And you...
  • NMCap: the easy way to Automate Capturing

    OK, I'm not going to blow smoke up your Async port. I don't mean to say that the NMCap is necessarily easy to use, though it's not that hard. But any command line utility always has its quirks. Isn't that why GUI was invented? What NMCap does make...
  • Network Monitor 3.2 has arrived!

    I’m so excited about this release I had to commandeer Paul’s blog for the day and write about it. My name is Tawanda Sibanda and I am the lead program manager for Network Monitor. The team put a lot of effort into this version, adding many of the requests...
  • Network Monitor 3.4 has Released!

    I’m proud to announce the release of Network Monitor 3.4 to the Microsoft Download center . We’ve included a bunch of new exciting features and updates. A new high performance capturing feature allows you to capture on faster networks without...
  • Network Monitor 3.2 Beta has released!!!

    I’m excited to announce that the Network Monitor 3.2 Beta has released. There are some exiting new features listed below of which many I have already spoken about in this blog: http://blogs.technet.com/netmon/archive/2007/12/28/santa-s-bag-was-full...
  • NM3 TV – Video Help for using NM3

    If a picture is worth a thousand words, than a video must be worth, …30fps * 1000 * …uh…ok…, like a whole lot. So this blog is going to be devoted to providing short help videos to help understand how to use the features of...
  • Wireless Capturing With Network Monitor 3.1

    One of the exciting new features in NM3.1 is the ability to capture wireless network data and management packets on Vista. This new feature provides Network Monitor a useful tool for trouble shooting wireless problems. What do you mean, wireless Management...
  • Network Monitor 3.4 Beta Released on Connect!

    We are extremely excited to announce that the Network Monitor 3.4 Beta has released on Connect . If you haven't done so already, please sign-up (for free) and help us test the new version while exploring it. There are some great new features, UI enhancements...
  • Network Monitor 3.0 has released!!

    After many months of hard work we are proud to announce the Release to Web of Microsoft Network Monitor 3.0 (NM3). The final version is available from Microsoft Connects site ( http://connect.microsoft.com ). The Connects site does require you have a...
  • Using Columns and Properties

    You might have had an occasion to add a new column in Network Monitor 3.0. But the list of available choices might be quite daunting. What you may not know, however, is that the list is derived from properties in the NPL script that makes up each parser...
  • Network Monitor 3.1 Has Released!

    The NM3.1 is now available on http://connect.microsoft.com featuring wireless sniffing and an easier way to create filters using "Right Click Add To Filter". Here is a list of features that are new to NM3.1. What's New in Network Monitor 3.1? ...
  • Network Monitor 3.1 Beta Has Released!

    The NM3.1 Beta is available on http://connect.Microsoft.com and simmering with new features for you to test. I'll bet you can't wait to sniff wireless management traffic; for sure an exciting new feature. Not sure how to create a filter? Now this is much...
  • Understanding HTTP Flow with Netmon 3 - By Yuri Diogenes

    1. Introduction One of the most common protocols that we need to deal with these days is the HTTP Protocol. This is not only a privilege of Internet users, there are a lot of Intranet users that also use this protocol for internal transactions. ...
  • Using Color Rules to Show Direction

    By Jin Feng Differentiating client requests and server responses can provide a clear-cut view and make it easier to understand what’s going on within a trace. Normally, with a flat trace this can be hard to determine and distinguish one packet from another...
  • Using NMAPI to Access TCP Payload

    The TCP Payload often carries data that you want to access directly using the Network Monitor API. Below I will detail how to do this using a simple C++ example and the NMAPI. Why Not add a TCP.Payload Field? The TCP Payload can carry all types of payloads...
  • Trouble Shooting Name Resolution with NM3

    Using the previous blog on “Intro to Name Resolution” we should have a basic idea of what is supposed to happen when a name needs to be resolved. Now let’s discuss how you’d use Network Monitor to determine where the problem is when connecting to your...
  • Color Filtering Error Messages

    Color Filters in Network Monitor are a simple way to make frames stick out in a trace. Dealing with large traces often makes it difficult to see important information. The sea of data represented by network traffic becomes a difficult backdrop to catch...
  • EventMon: Stopping a Capture Based on an EventLog Event

    Having worked in Product Support for many years, I’ve had many occasions where a specific Event Log error was showing up, and we wanted to understand how this event related to the problem we were t-shooting. And in some cases, the Event Log error was...
  • NMDecrypt Expert Updates - Version 2.3

    When I first wrote about NMDecrypt Expert in this blog I mentioned some limitations. There have also been bugs reported since then. I decided I would fix some of these problems and address some of the limitations. My hope is to make this tool even more...
  • Open Source Network Monitor Parsers

    With the release of Network Monitor 3.2 we plan to do all of our parser development as an open source project on http://www.codeplex.com/NMParsers . We will be releasing parser packages for Microsoft Protocols on a regular schedule. All parser issues...
  • Marking Frames with Network Monitor 3.4

    Marking frames is a convenient way to temporarily flag a location in the trace you wish to keep track of during a troubleshooting session. But there is no built in way to mark frames in Network Monitor 3.4. However, using frame comments , coloring rules...
  • How can we help?

    Hi! I’m the Group Program Manager for Microsoft’s Protocol Engineering Team. Our team includes those who bring you Netmon. We are approaching our Beta of version 3.3. It’s the most exciting protocol analyzer on the planet, in my humble opinion. The team...
  • Network Monitor 3.3 has arrived!

    Guest blog by Tawanda Sibanda, Lead Program Manager for Network Monitor Ladies and gentlemen … the Microsoft Network monitor team is excited to announce the release of Network Monitor 3.3. A record 7 months after version 3.2 this is our quickest release...
  • Parser Profiles in Network Monitor 3.4

    Parser Profiles are a new feature available in our 3.4 Beta . Rich parsers provide detailed information about every part of packet. However this detail comes with a price as it takes longer to parse and filter frames. Parser Profiles are designed to help...