Before the win7 system was officially launched, many users had to go through the third-party vendors to find the network monitor program. After the official launch of win7, there was no such trouble. The win7 system itself provided this. A good feature, but still many users don't know what the network monitor program is doing, let's take a look.
1. Network Data Flow
The Network Monitor monitors the network data stream, which consists of all the information transmitted over the network at any given time. Information is split into smaller blocks by network software before transmission, and these small blocks are called frames or packets.
Some blocks contain data that Network Monitor can use to answer network problems. For example, by examining the target address, it can be determined whether the frame is a broadcast frame indicating whether all hosts must receive and process, or a direct transmission frame sent to the designated host. By analyzing the frame, the exact cause of the frame can be determined, which helps to determine if the service that produced the frame type can be optimized.
2, capture network data flow
Network monitor copy frame process is called capture, you can capture all network communication sent to the local network card or from the local network card, you can also set the stomach A capture filter to capture a subset of frames. You can also specify a set of conditions to trigger an event for Network Monitor to capture a filter. By using triggers, Network Monitor can respond to events on the network.
If you want to capture frames from a specific computer on the network, specify one or more address pairs in the capture filter. You can monitor up to four specific address pairs simultaneously. The address pair consists of the following:
(1) The addresses of the two computers that you want to monitor for communication.
(2) Specify the arrow of the communication direction you want to monitor.
3. Installing and Using Network Monitors
Network Monitor allows you to capture and display frames (also called packets) received from a local area network (LAN) by a computer running Windows 7. Network administrators can use Network Monitor to detect and resolve network problems that may be encountered on the local computer. The network monitor needs to have the following three parts to work properly:
(1) Network Monitor component: It is composed of the network management system management tool and network monitor driver network protocol. You must install all of these components.
(2) Network Monitor: Use Network Monitor to capture and display the data frames received from the LAN by the computer running win7.
(3) Network Monitor Driver: The Network Monitor driver allows the Network Monitor to receive frames from the NIC and allows users of the Network Monitor version provided by Microsoft Systems Management Server to capture and display from remote computers Frames, which include frames obtained through a dial-up network connection.
Once you understand the basics of Network Monitor, we can use it to work for us.
(1) Design Capture Filters
To design a capture filter, specify a decision statement in the "Capture Filter" dialog box. This dialog shows the decision tree for the filter, which is a graphical representation of the filter logic. The decision tree reflects these specifications when you include or exclude information from the capture specification.
(2) Filtering by Protocol
To capture frames sent using a specific protocol, first capture the SAP/ETYPE specification protocol of the filter. For example, if you want to capture only IP frames, disable all protocols and enable IPETYPE0x800 and IPSAP0x6. By default, all protocols supported by Network Monitor are enabled.
(3) Filter by address
Suppose the network has two computers named YH and Anne, to capture all communication from the YH computer (except for communication from YH to Anne), please Use the following capture filter address sections: AddressesincludeYH<—>AnyexcludeYH<——>Anne. If there is no Include line, then your_compiUer<——>Any is used by default. If you want to capture changes in frames over a certain period of time, you can select the “Start” option in the “Capture" menu until you want to end the capture, click the “Stop” button for a while All the network communication has been recorded. Now let's take a look and click on the “Capture” option to select the “Captured Data” option, and the capture frame will appear. Here you can clearly see the time to capture the frame, the source MAC address, the destination MAC address, the usage protocol, other source addresses, other target source addresses, and other types of address options.
(4) Filtering by Data Mode
By specifying pattern matching in the capture filter, you can limit the capture of frames that contain only specific patterns of ASCII or hexadecimal data.
(5) Using display filters
Like a capture filter, the display filter function is like a database query, allowing you to select a specific type of information. The trick is because the display filter operates on the captured data, so it does not affect the content in the network monitor capture cache. Use the display filter to determine which frames are displayed.
(6) Display captured data
Network Monitor simplifies data analysis by interpreting raw data collected during capture and displaying data in the “frame viewer” window process.
Some users will say that this network monitor program is like a mystery, it is difficult to understand, indeed, it is almost useless for ordinary users, but for users who need it. This is a treasure, I hope to help everyone.
Windows 7 interface has many new changes, such as Windows 7 RC version has some new combination shor
win7 system can not call out the language bar after pressing ctrl+shift on the keyboard The solution
I believe everyone is familiar with the fast broadcast player, and many people are using it. Accordi
How to use win7 system 360 browser history? The specific method is as follows: 1. First, open the
Win 7 see video bilingual parallel how to do?
Win7 system Aero Peek preview desktop can not be checked solution
Just upgrade the computer configuration to see if you can play cf
Win7 broadband connection is always "recognized" how to handle
win7 qq games hall login screen does not show how to solve
How to retrieve the QQ icon on the desktop of Win7 computer?
Win7 computer desktop icon is missing how to retrieve
Win7 open web page encountered DNS no response situation and solution
Causes and solutions for common mouse faults under Win7 system
Win10 open file security warning how to close?
What should I do if the Win10 system cannot run the war?
How Windows 8 displays hidden file suffixes
Why is the program not available on Win8 Metro?
Svchost.exe process takes up the network to download what to do
How does Win7 run too slowly and how to close redundant processes?
Win7 system deletes the local browsing record method
360 accidental kill how to do? 360 antivirus how to set the file as trust?