消息分析器1.4具有NETSH ETL跟踪的性能 [英] Message Analyzer 1.4 performance with NETSH ETL traces
问题描述
我使用以下命令在2008R2服务器上捕获了网络跟踪:
netsh trace start capture = yes maxsize = 1024
[重现问题20分钟]
netsh跟踪停止
然后我将生成的ETL文件(大约350MB)复制到运行Message Analyzer 1.4的2012R2虚拟机(1 x vCPU 4GB RAM)( 64位)。我通过双击ETL文件在MA中打开文件并应用"HTTP"过滤器来仅查看HTTP流量。
然后服务器转到100%CPU,然后坐在那里以每分钟大约一行的速度处理数据集。 我放弃并使用任务管理器中的CPU时间大约2.5小时终止进程并且没有数据显示。
然后我打开相同的文件在网络监视器3.4中的同一台机器,整理解析器并应用"HTTP"过滤器,在100%CPU的30秒后获取我正在寻找的数据。它不像Message Analyzer那么漂亮,但它完成了这项工作。
我做错了什么? 现在似乎虽然MA对于一些很酷的新东西来说无疑是不错的,但它无法做网络监视器或Wireshark的基础知识。
谢谢。
Hi,
I've captured a network trace on a 2008R2 server using the following commands:
netsh trace start capture=yes maxsize=1024
[reproduce issue for 20 minutes]
netsh trace stop
I've then copied the resulting ETL file (about 350MB) to a 2012R2 virtual machine (1 x vCPU 4GB RAM) running Message Analyser 1.4 (64-bit). I've opened the file in MA by double-clicking on the ETL file and applied an ‘HTTP’ filter to view only HTTP traffic.
The server then goes to 100% CPU and sits there working through the data set at about one row per minute. I give up and kill the process with the CPU time in task manager at about 2.5 hours and no data yet displayed.
I then open the same file on the same machine in Network Monitor 3.4, sort out the parsers and apply an ‘HTTP' filter and after 30 seconds of 100% CPU get the data I'm looking for. It's not as pretty as Message Analyser but it does the job.
What am I doing wrong? Right now it seems that while MA is no doubt great for some cool new stuff it cannot do the basics of Network Monitor or Wireshark.
Thanks.
推荐答案
我们需要多个CPU才能使用使用Message Analyzer UI。 我们的想法是,您将使用某种强大的机器进行分析。 如果你需要捕获,powershell,netsh或logman可能是另一种选择。 也许这是
很容易为你的VM添加另一个CPU?
We have a requirement of more than one CPU for using the Message Analyzer UI. The idea is that you will use some kind of beefy machine to do analysis. If you need to capture, powershell, netsh or logman might be another option. Maybe it's easy to add another CPU to your VM?
谢谢,
Paul
这篇关于消息分析器1.4具有NETSH ETL跟踪的性能的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
