Network tracing with pktmon (command line)

builtin / available in Windows10 and above, Windows Server 2019 an above

mkdir c:\temp
cd \temp
pktmon filter add <filter-name>
pktmon filter add <name> -i <ip-address> -p <port> -t <protocol>
pktmon start --capture --trace --provider <provider-name>
...
do something
...
pktmon stop
pktmon filter remove <filter-name>
pktmon etl2txt pktmon.etl pktmon.txt

# example
# run cmd as admin !!!
#
# create directory for trace file
mkdir c:\temp
cd \temp
pktmon filter add filtername1 -i 192.168.0.99 -p 1521 -t tcp
pktmon start --capture --trace -p Microsoft-Windows-TCPIP
...
do something
...
pktmon stop
pktmon filter remove filtername1
pktmon etl2txt Pktmon.etl


work in progress...