Share via

Network Event Packet Capture Cmdlets in Windows PowerShell

  • 项目

Windows PowerShell® 是基于任务的命令行 shell 和脚本语言,专为系统管理而设计。本参考主题面向信息技术 (IT) 专业人员,可在利用 Windows PowerShell cmdlet 编写脚本和对任务实施自动化时提供协助。

NetEventPacketCapture Cmdlets

This reference provides cmdlet descriptions and syntax for all NetEventPacketCapture cmdlets. It lists the cmdlets in alphabetical order based on the verb at the beginning of the cmdlet.

Cmdlet Description

Add-NetEventNetworkAdapter

Adds a network adapter as a filter on a provider.

Add-NetEventPacketCaptureProvider

Adds a Remote Packet Capture provider.

Add-NetEventProvider

Adds an ETW provider to a session.

Add-NetEventVmNetworkAdapter

Adds a virtual network adapter as a filter on the provider.

Add-NetEventVmSwitch

Adds a Hyper-V virtual switch as a filter on a provider.

Get-NetEventNetworkAdapter

Gets the network adapters associated with a Remote Packet Capture provider.

Get-NetEventPacketCaptureProvider

Displays a Remote Packet Capture provider.

Get-NetEventProvider

Displays the ETW providers that are present on the computer or associated with an event and packet capture session.

Get-NetEventSession

Gets network event sessions.

Get-NetEventVmNetworkAdapter

Gets virtual network adapters from a provider.

Get-NetEventVmSwitch

Gets Hyper-V virtual switches from a provider.

New-NetEventSession

Creates a network event session.

Remove-NetEventNetworkAdapter

Removes network adapters associated with a provider.

Remove-NetEventPacketCaptureProvider

Removes the Remote Packet Capture provider and deletes the settings.

Remove-NetEventProvider

Removes an ETW provider from a session.

Remove-NetEventSession

Removes a network event session.

Remove-NetEventVmNetworkAdapter

Removes virtual network adapters from a provider.

Remove-NetEventVmSwitch

Removes Hyper-V virtual switches from a provider.

Set-NetEventPacketCaptureProvider

Modifies the configuration for a Remote Packet Capture provider.

Set-NetEventProvider

Modifies settings for an ETW provider.

Set-NetEventSession

Modifies a network event session.

Start-NetEventSession

Starts event and packet capture for a network event session.

Stop-NetEventSession

Stops event and packet capture for a network event session.

备注

To list all the cmdlets that are available, use the Get-Command –Module NetEventPacketCapture cmdlet.

有关任何 cmdlet 或其语法的详细信息,请使用 Get-Help <cmdlet 名称> cmdlet,其中 *<cmdlet 名称>*是你要搜索的 cmdlet 的名称。若需了解详细信息,可以运行以下任一 cmdlet:

Get-Help <cmdlet 名称> -Detailed
Get-Help <cmdlet 名称> -Examples
Get-Help <cmdlet 名称> -Full