Microsoft adds more features to PacketMon network diagnostic tool in Windows 10 version 2004

PacketMon is an advanced command line-based network debugging tool launched by Microsoft. This tool can be used to monitor system network activities and data packets.

This tool was originally released in 2018, but in the already released Windows 10 v2004 version, Microsoft has added several new features to the tool.

Users can understand this tool as a network packet monitor. For advanced users, you can use the functions provided by this tool to debug your own network.

In the new version, Microsoft updated this command-line tool to add new functions, which are applicable to Windows 10 2004 and Windows Server 2019.

New features include the ability to capture packets at multiple locations on the network stack, packet loss detection, and packet loss cause reports, and support for filtering of encapsulated packets at runtime.

It provides a very flexible packet counter, can implement packet monitoring on the screen, and provides high-capacity memory logging for advanced users to troubleshoot.

In addition, this packet monitor is also compatible with Microsoft Network Monitor (NetMon) and the very famous packet capture tool Wireshark (pcapng).

Enter pktmon.exe help in the command prompt in administrator mode to view the content supported by the tool, which mainly includes monitoring the data packet and converting it to text.

Capabilities:

• Packet capture at multiple locations of the networking stack
• Packet drop detection, including drop reason reporting
• Runtime packet filtering with encapsulation support
• Flexible packet counters
• Real-time on-screen packet monitoring
• High volume in-memory logging
• Microsoft Network Monitor (NetMon) and Wireshark (pcapng) compatibility

Limitations:

• Supports Ethernet only
• No Firewall integration
• Drop reporting is only available for supported components