none
Need help on best course of action and getting started RRS feed

  • Question

  • Hello,

    I need to monitor all local network traffic looking for irregularities/problems. The network equipment I'm trying to monitor through are a router, switch, punchdown block, cat5e cabling, and the ethernet wall ports which were all set up prior to me joining this organization. I've previously done a few EMCO ping monitors to various internet sites but this did not catch the problem I'm looking for so I believe I need to go deeper. 

    My goal is essentially to look for irregularities/problems with our network traffic and to figure out how our network equipment(switch ports, etc) are configured. What are some tools/software/etc I can use to do this?

    Thank you,

    -Aaron

    Monday, December 9, 2019 6:50 PM

All replies

  • Hi Aaron,

    Network Monitor is a tool for capturing network traffic. It enables you to capture, to view, and to analyze network data. 

    You can use it to help troubleshoot problems with your network.

    For your reference:

    Collect data using Network Monitor

    How to setup and collect network capture using Network Monitor tool

    Best Regards,

    Candy


    Please remember to mark the replies as an answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com   


    Tuesday, December 10, 2019 1:56 AM
  • Thank you for the reply Candy,

    I've downloaded and ran the Network Monitor a bit but it keeps freezing and becomes unstable after a few minutes of running.

    -Aaron

    Tuesday, December 10, 2019 9:12 PM
  • Hi Aaron ,

    Please try to check it again after turn off other processes and programs.

    Best Regards,

    Candy


    Please remember to mark the replies as an answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com   

    Wednesday, December 11, 2019 2:01 AM
  • Hi ,

    Just want to confirm the current situations.

    Please feel free to let us know if you need further assistance.                   

    Best Regards,

    Candy


    Please remember to mark the replies as an answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com   

    Thursday, December 12, 2019 7:20 AM
  • Hi ,

    Please feel free to let me know if you have anything unclear.

    In addition, you could mark the useful reply as answer if you want to end this thread up.

    Best Regards,

    Candy


    Please remember to mark the replies as an answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com   

    Friday, December 13, 2019 7:59 AM
  • In the following dataset the freeze/hang happened between 12:06 and 12:08.

    Frame # Time Date Local Adjusted Time Offset Process Name Source Destination Protocol Description Conv ID
    794 12/11/2019 12:04 7.9138706 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128162210, Win=65535 {TCP:172, IPv4:171}
    795 12/11/2019 12:04 7.9190368 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128162295, Win=65535 {TCP:172, IPv4:171}
    804 12/11/2019 12:04 8.3612795 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    808 12/11/2019 12:04 8.4432479 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128162492, Win=65535 {TCP:172, IPv4:171}
    838 12/11/2019 12:04 8.5405112 mstsc.exe Server Client TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:181, SSLVersionSelector:180, TCP:179, IPv4:171}
    863 12/11/2019 12:04 8.5812736 mstsc.exe Client Server TCP TCP:Flags=...A...., SrcPort=62545, DstPort=HTTPS(443), PayloadLen=0, Seq=3515192795, Ack=348177568, Win=63125 {TCP:179, IPv4:171}
    14512 12/11/2019 12:05 55.8701572 mstsc.exe Server Client TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:181, SSLVersionSelector:180, TCP:179, IPv4:171}
    14514 12/11/2019 12:05 55.910105 mstsc.exe Client Server TCP TCP:Flags=...A...., SrcPort=62545, DstPort=HTTPS(443), PayloadLen=0, Seq=3515192795, Ack=348178021, Win=64440 {TCP:179, IPv4:171}
    16349 12/11/2019 12:05 67.8320953 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    16436 12/11/2019 12:05 67.9180231 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128162577, Win=65535 {TCP:172, IPv4:171}
    23967 12/11/2019 12:06 116.1043154 mstsc.exe Server Client TCP TCP:[Keep alive]Flags=...A...., SrcPort=HTTPS(443), DstPort=62545, PayloadLen=0, Seq=348178020, Ack=3515192795, Win=20048 {TCP:179, IPv4:171}
    23968 12/11/2019 12:06 116.1043424 mstsc.exe Client Server TCP TCP:[Dup Ack #14514]Flags=...A...., SrcPort=62545, DstPort=HTTPS(443), PayloadLen=0, Seq=3515192795, Ack=348178021, Win=64440 {TCP:179, IPv4:171}
    23969 12/11/2019 12:06 116.1077302 mstsc.exe Server Client TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:181, SSLVersionSelector:180, TCP:179, IPv4:171}
    23971 12/11/2019 12:06 116.1483358 mstsc.exe Client Server TCP TCP:Flags=...A...., SrcPort=62545, DstPort=HTTPS(443), PayloadLen=0, Seq=3515192795, Ack=348178282, Win=64179 {TCP:179, IPv4:171}
    24174 12/11/2019 12:06 127.8328923 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    24175 12/11/2019 12:06 127.9154556 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128162662, Win=65535 {TCP:172, IPv4:171}
    25125 12/11/2019 12:07 176.0214658 mstsc.exe Server Client TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:181, SSLVersionSelector:180, TCP:179, IPv4:171}
    25126 12/11/2019 12:07 176.0621685 mstsc.exe Client Server TCP TCP:Flags=...A...., SrcPort=62545, DstPort=HTTPS(443), PayloadLen=0, Seq=3515192795, Ack=348178543, Win=63918 {TCP:179, IPv4:171}
    25265 12/11/2019 12:07 187.8317335 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    25267 12/11/2019 12:07 187.9211485 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128162747, Win=65535 {TCP:172, IPv4:171}
    37093 12/11/2019 12:08 247.840527 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    37094 12/11/2019 12:08 247.9263261 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128162832, Win=65535 {TCP:172, IPv4:171}
    42938 12/11/2019 12:09 307.8329327 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    42939 12/11/2019 12:09 307.9196988 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128162917, Win=65535 {TCP:172, IPv4:171}
    44132 12/11/2019 12:10 339.5071783 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44133 12/11/2019 12:10 339.5073817 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44136 12/11/2019 12:10 339.5912598 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128163098, Win=65535 {TCP:172, IPv4:171}
    44138 12/11/2019 12:10 339.5960805 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128163295, Win=65535 {TCP:172, IPv4:171}
    44169 12/11/2019 12:10 340.3884443 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44170 12/11/2019 12:10 340.3959142 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44171 12/11/2019 12:10 340.4076631 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44172 12/11/2019 12:10 340.4118893 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44173 12/11/2019 12:10 340.423901 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44174 12/11/2019 12:10 340.428102 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44175 12/11/2019 12:10 340.4360045 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44176 12/11/2019 12:10 340.4479032 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44177 12/11/2019 12:10 340.4519291 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44178 12/11/2019 12:10 340.4639676 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44179 12/11/2019 12:10 340.4679332 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44180 12/11/2019 12:10 340.4729331 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128163476, Win=65535 {TCP:172, IPv4:171}
    44184 12/11/2019 12:10 340.4760501 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44185 12/11/2019 12:10 340.4800026 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128163657, Win=65535 {TCP:172, IPv4:171}
    44186 12/11/2019 12:10 340.4879259 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44187 12/11/2019 12:10 340.4917703 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128163838, Win=65535 {TCP:172, IPv4:171}
    44188 12/11/2019 12:10 340.4919795 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44189 12/11/2019 12:10 340.4967089 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128164019, Win=65535 {TCP:172, IPv4:171}
    44192 12/11/2019 12:10 340.5039387 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44193 12/11/2019 12:10 340.5079398 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44194 12/11/2019 12:10 340.5086746 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128164200, Win=65535 {TCP:172, IPv4:171}
    44195 12/11/2019 12:10 340.5134487 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128164381, Win=65535 {TCP:172, IPv4:171}
    44197 12/11/2019 12:10 340.5199284 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44198 12/11/2019 12:10 340.5208043 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128164562, Win=65535 {TCP:172, IPv4:171}
    44200 12/11/2019 12:10 340.5277934 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44201 12/11/2019 12:10 340.5318576 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44202 12/11/2019 12:10 340.5330683 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128164743, Win=65535 {TCP:172, IPv4:171}
    44203 12/11/2019 12:10 340.5376015 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128164924, Win=65535 {TCP:172, IPv4:171}
    44204 12/11/2019 12:10 340.5439612 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44205 12/11/2019 12:10 340.5479385 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44206 12/11/2019 12:10 340.548624 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128165105, Win=65535 {TCP:172, IPv4:171}
    44208 12/11/2019 12:10 340.5534507 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128165286, Win=65535 {TCP:172, IPv4:171}
    44209 12/11/2019 12:10 340.5585278 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128165467, Win=65535 {TCP:172, IPv4:171}
    44211 12/11/2019 12:10 340.5598887 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44212 12/11/2019 12:10 340.5678272 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44213 12/11/2019 12:10 340.5698901 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128165648, Win=65535 {TCP:172, IPv4:171}
    44214 12/11/2019 12:10 340.5718429 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44215 12/11/2019 12:10 340.5746925 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128165829, Win=65535 {TCP:172, IPv4:171}
    44216 12/11/2019 12:10 340.5837947 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44217 12/11/2019 12:10 340.5878698 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44218 12/11/2019 12:10 340.5893763 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128166010, Win=65535 {TCP:172, IPv4:171}
    44219 12/11/2019 12:10 340.5945672 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128166191, Win=65535 {TCP:172, IPv4:171}
    44220 12/11/2019 12:10 340.599951 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44221 12/11/2019 12:10 340.6019112 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128166372, Win=65535 {TCP:172, IPv4:171}
    44222 12/11/2019 12:10 340.6078917 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44223 12/11/2019 12:10 340.6096542 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128166553, Win=65535 {TCP:172, IPv4:171}
    44224 12/11/2019 12:10 340.6118384 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44225 12/11/2019 12:10 340.6157811 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128166734, Win=65535 {TCP:172, IPv4:171}
    44226 12/11/2019 12:10 340.6238906 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44227 12/11/2019 12:10 340.6258554 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128166915, Win=65535 {TCP:172, IPv4:171}
    44228 12/11/2019 12:10 340.6276591 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44229 12/11/2019 12:10 340.6306672 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128167096, Win=65535 {TCP:172, IPv4:171}
    44230 12/11/2019 12:10 340.6399335 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}
    44231 12/11/2019 12:10 340.6424171 mstsc.exe Server Client TCP TCP:Flags=...A...., SrcPort=HTTPS(443), DstPort=62550, PayloadLen=0, Seq=849309931, Ack=4128167277, Win=65535 {TCP:172, IPv4:171}
    44232 12/11/2019 12:10 340.6479463 mstsc.exe Client Server TLS TLS:TLS Rec Layer-1 SSL Application Data {TLS:174, SSLVersionSelector:173, TCP:172, IPv4:171}

    Friday, December 13, 2019 6:27 PM
  • Hi ,

    Please understand, from forum support level, analysis of packet capture is beyond our scope.

    If the issue is urgent,I would suggest you open a case with Microsoft, more in-depth investigation can be done so that you would get a more satisfying explanation and solution to this issue.

    Here is the link:

    https://support.microsoft.com/en-us/help/4051701/global-customer-service-phone-numbers

    Best Regards,

    Candy


    Please remember to mark the replies as an answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com   

    Monday, December 16, 2019 1:59 AM