Collect Network Traces with Skyhigh Client Proxy Support Tool
Overview
From Skyhigh Client Proxy version 4.9.3 onwards, installing Wireshark is no longer required to capture network traces using the SCP SupportTool. This is now achieved by utilizing the built-in netsh trace utility in Windows. The SupportTool will collect the necessary packets and save them into a .etl file named netsh-trace.etl. To convert the .etl file into a Wireshark-readable format, the Microsoft Network Monitor tool must be used.
Steps to capture traces
NOTE: The SCP Support Tool is located at C:\Program Files\Skyhigh\SCP\SCP Support Tool x64\. Run the tool as Administrator and select All Interfaces under the Network Traces section to ensure complete data collection.
- Select Output Folder.
- Enable the Network Traces checkbox.
- Select the required Interface to capture traffic.
- Click Start Capture.
- Reproduce the issue.
- Click Stop Capture.
- Click Collect to gather all logs.
NOTE: Ensure the SCP Support Tool log collection includes a minimum of approximately 16 log files.
- The output file will be saved
support_tool_work_dirunder the namenetsh-trace.etlalong with the vscore logs. - Once all the logs are collected, share the
support_tool_work_dirafter the initial analysis.
Converting the etl file to Wireshark readable cap file
To convert the captured ETL file, use the Microsoft Network Monitor tool. This can be done on the support or development machine to verify the captured packets.
- Download and install the tool.
- Run the Network Monitor tool
- Open the
netsh-trace.etlfile by following the path - File > Open > Capture. - Save the file as
a .capfile by following the path File > Save As
Sample ETL file opened in Network Monitor
Save the opened .etl file to .cap to view from Wireshark
Converted sample
