Article ID: 924037 - View products that this article applies to.
This article describes how to use the Network Monitor Capture Utility (Netcap.exe) to capture network traffic information on source and destination computers. You can use this information to troubleshoot performance issues that you may experience during the file copy process.
Several factors affect network file copy performance. To identify the root cause of a problem and to identify the computer that is adversely affecting file copy performance, collect simultaneous network traces on source and destination computers.
You can capture network traffic by running the Netcap.exe utility at a command prompt. The Netcap.exe utility is installed when you install the support tools that are included with Microsoft Windows XP. For more information about how to install support tools, click the following article number to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/306794/ )How to install the Support Tools from the Windows XP CD-ROM
You must use the full Network Monitor interface to open the resulting capture files (.cap). Network Monitor is included with the following products:
Command syntax for the Netcap.exe utility
To capture network traces on source and destination computers, follow these steps:
Usage: Netcap.exe [/B:Number] [/T Type Buffer HexOffset HexPattern ] [/F:Filter file.cf] [/C:Capture file] [/N:Number] [/L:HH:MM:SS] [/TCF:Folder name] Example: NetCap /B:20 /N:2 /T BP 100 0a ff1f /F:d:\IPFilter.CF /B:Number Specifies the buffer size in megabytes (MB). Number may be a value from 1 to 1000. The default size is 1 MB. /T Specifies the use of a trigger to determine when to stop capturing. If the trigger is omitted, the Netcap.exe utility captures data until the buffer is full and then stops. The "/T /N" option captures until the spacebar is pressed. This option uses the buffer as a queue. If the buffer becomes full, the utility overwrites the oldest entries. Note: If you use the "/T /N" option, press the spacebar to stop capturing. Type B = buffer, P = pattern, BP = buffer then pattern, PB = pattern then buffer, N = no trigger Buffer Percent buffer size ('25', '50', '75', '100') is used together with B, BP, or PB (not P). HexOffset Hexadecimal offset from start of frame is used together with P, BP, or PB (not B). HexPattern Hexadecimal pattern to match is used together with P, BP, or PB (not B). The pattern must be an even number of hexadecimal digits. /C:Capture file Move temporary capture to a full path or to a file name. This entry can be any valid local or remote path. If the "/C" option is not specified, the capture file remains in the default temporary capture folder. /F:Filter file.cf A Network Monitor 2.x-generated capture filter (*.cf). /L:HH:MM:SS Capture for set time. (The maximum time = 99:99:99.) Note: This option overrides the default 100 percent trigger unless the "/T trigger type " option is also specified. /TCF:Folder name Permanently changes the temporary capture folder. Warning: The path must be on a fixed local hard disk drive. As soon as the path is set, you only have to use the switch again to change the directory. /Remove Removes the Netcap.exe instance of the Network Monitor driver. /N:Number Network adapter index number for this computer.
For more information, click the following article number to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/310875/ )Description of the Network Monitor Capture Utility
Article ID: 924037 - Last Review: October 11, 2007 - Revision: 1.4
Contact us for more help
Connect with Answer Desk for expert help.