Network Event Packet Capture Cmdlets

  • [アーティクル]

適用対象: Windows 10, Windows PowerShell 5.0, Windows Server Technical Preview

Windows PowerShell® は、特にシステム管理用に設計されている、タスク ベースのコマンド ライン シェルとスクリプト言語です。IT プロフェッショナルを対象としたこのリファレンス トピックは、Windows PowerShell コマンドレットを活用してタスクをスクリプト化および自動化する場合に役立ちます。

NetEventPacketCapture Cmdlets

This reference provides cmdlet descriptions and syntax for all NetEventPacketCapture cmdlets. It lists the cmdlets in alphabetical order based on the verb at the beginning of the cmdlet.

Cmdlet Description

Add-NetEventNetworkAdapter

Adds a network adapter as a filter on a provider.

Add-NetEventPacketCaptureProvider

Adds a Remote Packet Capture provider.

Add-NetEventProvider

Adds an ETW provider to a session.

Add-NetEventVmNetworkAdapter

Adds a virtual network adapter as a filter on the provider.

Add-NetEventVmSwitch

Adds a Hyper-V virtual switch as a filter on a provider.

Add-NetEventWFPCaptureProvider

Creates a WFP Capture provider.

Get-NetEventNetworkAdapter

Gets the network adapters associated with a Remote Packet Capture provider.

Get-NetEventPacketCaptureProvider

Displays a Remote Packet Capture provider.

Get-NetEventProvider

Displays the ETW providers that are present on the computer or associated with an event and packet capture session.

Get-NetEventSession

Gets network event sessions.

Get-NetEventVmNetworkAdapter

Gets virtual network adapters from a provider.

Get-NetEventVmSwitch

Gets Hyper-V virtual switches from a provider.

Get-NetEventWFPCaptureProvider

Displays settings for a local or remote WFP Capture provider.

New-NetEventSession

Creates a network event session.

Remove-NetEventNetworkAdapter

Removes network adapters associated with a provider.

Remove-NetEventPacketCaptureProvider

Removes the Remote Packet Capture provider and deletes the settings.

Remove-NetEventProvider

Removes an ETW provider from a session.

Remove-NetEventSession

Removes a network event session.

Remove-NetEventVmNetworkAdapter

Removes virtual network adapters from a provider.

Remove-NetEventVmSwitch

Removes Hyper-V virtual switches from a provider.

Remove-NetEventWFPCaptureProvider

Removes a local or remote WFP Capture provider.

Set-NetEventPacketCaptureProvider

Modifies the configuration for a Remote Packet Capture provider.

Set-NetEventProvider

Modifies settings for an ETW provider.

Set-NetEventSession

Modifies a network event session.

Set-NetEventWFPCaptureProvider

Modifies the configuration of a WFP Capture provider.

Start-NetEventSession

Starts event and packet capture for a network event session.

Stop-NetEventSession

Stops event and packet capture for a network event session.

注意

To list all the cmdlets that are available, use the Get-Command –Module NetEventPacketCapture cmdlet.

コマンドレットの詳細や構文を確認するには、Get-Help <コマンドレット名> コマンドレットを使用します。<コマンドレット名> には、調査対象のコマンドレットの名前を指定します。さらに詳しい情報については、次のコマンドレットを実行してください。

Get-Help <コマンドレット名> -Detailed
Get-Help <コマンドレット名> -Examples
Get-Help <コマンドレット名> -Full