Update the string to look up and click Apply:
Navigate to Parser Profiles tab, right click on Windows and click Set as Active:įor the purpose of this demonstration, we’ll be searching for an SMB path that contains the string college.Ĭlick on Load Filter > Standard Filters > SMB > SmbFileName: Launch Microsoft Network Monitor and open the ETL file:.Download and install Microsoft Network Monitor:.Replicate issue, note the time stamp, and stop trace with the following command: Netsh trace start capture=yes tracefile=c:\net.etl persistent=yes maxsize=4096Ģ. On the VDI, launch the command prompt in administrator mode and start a trace with the following command: My ex-colleague’s challenge lead me to remember another method I had used in the past (probably more than 5 years ago) where we could use the native netsh trace command to capture an ETL file without requiring any software installation and after successfully testing the process, I thought I’d write a blog post to demonstrate it.Ĭreating a network trace capture file on the virtual desktopġ. The challenge he had was that the Wireshark installation would error out during the NCAP install so attempting to use that tool was not a viable option. An ex-colleague recently reached out to me for assistance on how he could perform a network trace and analyze it for a particular Citrix Virtual Apps and Desktop environment and the most common tool I usually recommend is Wireshark.
0 kommentar(er)
